From e3f414a8c38e24d05934f86305840ead45332d2b Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?No=C3=A9mi=20V=C3=A1nyi?= Date: Mon, 30 Aug 2021 08:21:41 +0200 Subject: [PATCH] Follow up changes in dashboards in mage check && fix minor issue (#27553) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR follows up the missing dashboard checks in `mage check`. It also addresses a minor dashboard decoding issue in `-decode` flag of `export dashboard`. Furthermore, assets from the Saved Objects API are separated into different JSON files. We went back to JSONs to make it more developer-friendly. By sticking with the more human-readable JSONs it helps people to review changes a bit better. When exporting dashboards I suggest you use the `-folder` flag. You have to specify a root folder e.g. a module name and the Beat/exporter will create a `{foldername}/_meta/kibana/7` folder for you. The assets will be separated into different directories and the name of them will be the ID of the asset. ```sh $ ./filebeat export dashboard --id Metricbeat-host-overview --folder system $ tree metricbeat/module/system/_meta/kibana/7 metricbeat/module/system/_meta/kibana/7 ├── dashboard │   ├── 79ffd6e0-faa0-11e6-947f-177f697178b8-ecs.json │   ├── c431f410-f9ac-11e9-90e8-1fb18e796788.json │   ├── CPU-slash-Memory-per-container-ecs.json │   └── Metricbeat-system-overview-ecs.json └── visualization ├── 089b85d0-1b16-11e7-b09e-037021c4f8df-ecs.json ├── 19e123b0-4d5a-11e7-aee5-fdc812cc3bec-ecs.json ├── 1aae9140-1b93-11e7-8ada-3df93aab833e-ecs.json ├── 26732e20-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json ├── 2e224660-1b19-11e7-b09e-037021c4f8df-ecs.json ├── 34f97ee0-1b96-11e7-8ada-3df93aab833e-ecs.json ├── 3d65d450-a9c3-11e7-af20-67db8aecb295-ecs.json ├── 4b254630-f998-11e9-90e8-1fb18e796788.json ├── 4d546850-1b15-11e7-b09e-037021c4f8df-ecs.json ├── 4e4bb1e0-1b1b-11e7-b09e-037021c4f8df-ecs.json ├── 522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs.json ├── 590a60f0-5d87-11e7-8884-1bb4c3b890e4-ecs.json ├── 6b7b9a40-faa1-11e6-86b1-cd7735ff7e23-ecs.json ├── 7cdb1330-4d1a-11e7-a196-69b9a7a020a9-ecs.json ├── 825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs.json ├── 83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json ├── 855899e0-1b1c-11e7-b09e-037021c4f8df-ecs.json ├── 8c071e20-f999-11e9-90e8-1fb18e796788.json ├── 96976150-4d5d-11e7-aa29-87a97a796de6-ecs.json ├── 99381c80-4d60-11e7-9a4c-ed99bbcaa42b-ecs.json ├── 9c69cad0-f9b0-11e9-90e8-1fb18e796788.json ├── a30871f0-f98f-11e9-90e8-1fb18e796788.json ├── ab2d1e90-1b1a-11e7-b09e-037021c4f8df-ecs.json ├── bb3a8720-f991-11e9-90e8-1fb18e796788.json ├── bfa5e400-1b16-11e7-b09e-037021c4f8df-ecs.json ├── c5e3cf90-4d60-11e7-9a4c-ed99bbcaa42b-ecs.json ├── c6f2ffd0-4d17-11e7-a196-69b9a7a020a9-ecs.json ├── Container-Block-IO-ecs.json ├── Container-CPU-usage-ecs.json ├── Container-Memory-stats-ecs.json ├── d2e80340-4d5c-11e7-aa29-87a97a796de6-ecs.json ├── d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json ├── d3f51850-f9b6-11e9-90e8-1fb18e796788.json ├── e0f001c0-1b18-11e7-b09e-037021c4f8df-ecs.json ├── e6e639e0-f992-11e9-90e8-1fb18e796788.json ├── fe064790-1b1f-11e7-bec4-a5e9ec5cab8b-ecs.json └── System-Navigation-ecs.json ``` It adds extra checks that make sure dashboards are formatted correctly. It also makes dashboard exporting more developer friendly. (cherry picked from commit c017771ed251ee62d2dfe97727b343b2d4a31bb0) --- ...a5f40-c243-11e7-8692-232bd1143e8a-ecs.json | 165 ++ ...391b0-c1ca-11e7-8995-936807a28b16-ecs.json | 120 ++ .../auditbeat-kernel-executions.ndjson | 5 - .../auditbeat-kernel-overview.ndjson | 4 - .../dashboard/auditbeat-kernel-sockets.ndjson | 9 - ...c2c00-c1c0-11e7-8995-936807a28b16-ecs.json | 99 ++ ...0c430-c1c3-11e7-8995-936807a28b16-ecs.json | 84 + ...8b030-c246-11e7-8692-232bd1143e8a-ecs.json | 135 ++ ...93470-c240-11e7-8692-232bd1143e8a-ecs.json | 143 ++ ...2f5b0-c1c6-11e7-8995-936807a28b16-ecs.json | 111 ++ ...34160-c24c-11e7-8692-232bd1143e8a-ecs.json | 163 ++ ...79220-c25a-11e7-8692-232bd1143e8a-ecs.json | 90 ++ ...8e8d0-c1c8-11e7-8995-936807a28b16-ecs.json | 71 + ...ac370-c1ca-11e7-8995-936807a28b16-ecs.json | 68 + ...80df0-c1c0-11e7-8995-936807a28b16-ecs.json | 84 + ...20450-c256-11e7-8692-232bd1143e8a-ecs.json | 84 + ...e0c70-c252-11e7-8692-232bd1143e8a-ecs.json | 84 + ...91de0-c250-11e7-8692-232bd1143e8a-ecs.json | 102 ++ ...83730-c246-11e7-8692-232bd1143e8a-ecs.json | 106 ++ ...a6de0-c1c1-11e7-8995-936807a28b16-ecs.json | 68 + ...882f0-c242-11e7-8692-232bd1143e8a-ecs.json | 139 ++ auditbeat/module/auditd/module.yml | 6 +- .../7/dashboard/AV0tXkjYg1PYniApZbKP-ecs.json | 296 ++++ .../dashboard/auditbeat-file-integrity.ndjson | 13 - ...0a060-cb44-11e7-9835-2f31fe08873b-ecs.json | 77 + .../AV0tV05vg1PYniApZbA2-ecs.json | 155 ++ .../AV0tVcg6g1PYniApZa-v-ecs.json | 116 ++ .../AV0tW0djg1PYniApZbGL-ecs.json | 77 + .../AV0tWL-Yg1PYniApZbCs-ecs.json | 77 + .../AV0tWSdXg1PYniApZbDU-ecs.json | 77 + .../AV0tY6jwg1PYniApZbRY-ecs.json | 90 ++ .../AV0tav8Ag1PYniApZbbK-ecs.json | 147 ++ .../AV0tbcUdg1PYniApZbe1-ecs.json | 115 ++ .../AV0tc_xZg1PYniApZbnL-ecs.json | 102 ++ .../AV0te0TCg1PYniApZbw9-ecs.json | 77 + .../AV0tes4Eg1PYniApZbwV-ecs.json | 77 + auditbeat/module/file_integrity/module.yml | 2 +- dev-tools/cmd/dashboards/export_dashboards.go | 30 +- dev-tools/mage/check.go | 89 +- dev-tools/mage/dashboard.go | 5 +- dev-tools/mage/kibana.go | 2 +- .../Filebeat-Apache-Dashboard-ecs.json | 218 +++ .../kibana/7/dashboard/Filebeat-apache.ndjson | 9 - .../7/search/Apache-access-logs-ecs.json | 58 + .../7/search/Apache-errors-log-ecs.json | 58 + .../Apache-access-unique-IPs-map-ecs.json | 88 ++ .../7/visualization/Apache-browsers-ecs.json | 81 + .../Apache-error-logs-over-time-ecs.json | 80 + .../Apache-operating-systems-ecs.json | 81 + ...Apache-response-codes-of-top-URLs-ecs.json | 88 ++ .../Apache-response-codes-over-time-ecs.json | 87 ++ filebeat/module/apache/module.yml | 2 +- .../kibana/7/dashboard/Filebeat-auditd.ndjson | 7 - ...b49f0-0a0f-11e7-8a62-2d05eaaac5cb-ecs.json | 200 +++ ...0a370-0a11-11e7-8b04-eb22a5669f27-ecs.json | 46 + ...0fa70-0a11-11e7-9e84-43da493ad0c7-ecs.json | 29 + ...dbe50-0a0f-11e7-825f-6748cda7d858-ecs.json | 81 + ...5bdd0-0a0e-11e7-825f-6748cda7d858-ecs.json | 70 + ...11910-0a87-11e7-8b04-eb22a5669f27-ecs.json | 70 + ...26930-0a7f-11e7-8b04-eb22a5669f27-ecs.json | 86 + filebeat/module/auditd/module.yml | 2 +- ...0d580-aa34-11e8-9c06-877f0445e3e0-ecs.json | 119 ++ .../Filebeat-haproxy-overview.ndjson | 5 - ...8b9c0-aa32-11e8-9c06-877f0445e3e0-ecs.json | 94 ++ ...51360-aa32-11e8-9c06-877f0445e3e0-ecs.json | 80 + ...f8ef0-aa33-11e8-9c06-877f0445e3e0-ecs.json | 159 ++ ...671f0-aa32-11e8-9c06-877f0445e3e0-ecs.json | 80 + filebeat/module/haproxy/module.yml | 2 +- ...09570-2419-11e7-a83b-d5f4cebac9ff-ecs.json | 107 ++ .../Filebeat-icinga-debug-log.ndjson | 4 - .../dashboard/Filebeat-icinga-main-log.ndjson | 4 - .../Filebeat-icinga-startup-errors.ndjson | 3 - ...63ea0-2417-11e7-a83b-d5f4cebac9ff-ecs.json | 86 + ...3d260-2417-11e7-a83b-d5f4cebac9ff-ecs.json | 107 ++ ...043e0-2417-11e7-a83b-d5f4cebac9ff-ecs.json | 46 + ...6e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs.json | 109 ++ ...f5a30-2413-11e7-a0d9-39604d45ca7f-ecs.json | 109 ++ ...34b60-2419-11e7-a83b-d5f4cebac9ff-ecs.json | 78 + ...77780-2418-11e7-a83b-d5f4cebac9ff-ecs.json | 78 + ...b5e00-2417-11e7-a83b-d5f4cebac9ff-ecs.json | 72 + ...5dc40-2417-11e7-a83b-d5f4cebac9ff-ecs.json | 85 + ...9d4b0-2418-11e7-a83b-d5f4cebac9ff-ecs.json | 87 ++ filebeat/module/icinga/module.yml | 6 +- ...8ad30-fe16-11e7-a3b0-d13028918f9f-ecs.json | 163 ++ .../kibana/7/dashboard/Filebeat-iis.ndjson | 7 - ...38230-fe17-11e7-a3b0-d13028918f9f-ecs.json | 145 ++ ...29c80-fe12-11e7-a3b0-d13028918f9f-ecs.json | 88 ++ ...02cd0-fe1b-11e7-a3b0-d13028918f9f-ecs.json | 90 ++ ...3f9c0-fe12-11e7-a3b0-d13028918f9f-ecs.json | 88 ++ ...db5b0-fe11-11e7-a3b0-d13028918f9f-ecs.json | 78 + ...414b0-fe14-11e7-a3b0-d13028918f9f-ecs.json | 145 ++ ...caca0-87ee-11e7-ad9c-db80de0bf8d3-ecs.json | 137 ++ .../dashboard/Filebeat-Kafka-overview.ndjson | 5 - .../kibana/7/search/All Kafka logs-ecs.json | 109 ++ .../7/search/Kafka stacktraces-ecs.json | 46 + ...c33c0-87ee-11e7-ad9c-db80de0bf8d3-ecs.json | 144 ++ ...er-of-kafka-stracktraces-by-class-ecs.json | 143 ++ filebeat/module/kafka/module.yml | 2 +- .../Filebeat-Logstash-Log-Dashboard-ecs.json | 108 ++ ...lebeat-Logstash-Slowlog-Dashboard-ecs.json | 139 ++ .../7/dashboard/Filebeat-logstash-log.ndjson | 4 - .../Filebeat-logstash-slowlog.ndjson | 6 - ...e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs.json | 112 ++ ...ba090-cbda-11e7-9852-73e0a9df1bb6-ecs.json | 110 ++ ...dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs.json | 70 + ...15630-cbdf-11e7-9852-73e0a9df1bb6-ecs.json | 116 ++ ...b7240-cbda-11e7-9852-73e0a9df1bb6-ecs.json | 145 ++ filebeat/module/logstash/module.yml | 4 +- .../Filebeat-Mongodb-overview.ndjson | 4 - ...f35b0-0a82-11e8-bffe-ff7d4f68cf94-ecs.json | 120 ++ ...96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs.json | 48 + ...fe000-0a7e-11e8-bffe-ff7d4f68cf94-ecs.json | 48 + ...f5710-0a82-11e8-bffe-ff7d4f68cf94-ecs.json | 71 + filebeat/module/mongodb/module.yml | 2 +- .../Filebeat-MySQL-Dashboard-ecs.json | 177 +++ .../kibana/7/dashboard/Filebeat-mysql.ndjson | 8 - .../7/search/Filebeat-MySQL-Slow-log-ecs.json | 120 ++ .../search/Filebeat-MySQL-error-log-ecs.json | 121 ++ .../MySQL-Error-logs-levels-ecs.json | 75 + .../MySQL-Slow-logs-by-count-ecs.json | 67 + .../MySQL-Slow-queries-over-time-ecs.json | 145 ++ .../7/visualization/MySQL-error-logs-ecs.json | 146 ++ .../MySQL-slowest-queries-ecs.json | 92 ++ filebeat/module/mysql/module.yml | 2 +- .../dashboard/Filebeat-nats-overview-ecs.json | 254 +++ .../7/dashboard/Filebeat-nats-overview.ndjson | 10 - ...83600-41af-11e9-a4da-b1df688edbcd-ecs.json | 139 ++ ...061d0-41ad-11e9-a4da-b1df688edbcd-ecs.json | 138 ++ ...cca40-41ae-11e9-a4da-b1df688edbcd-ecs.json | 74 + ...d9ec0-41a8-11e9-a4da-b1df688edbcd-ecs.json | 138 ++ ...7a800-41a8-11e9-a4da-b1df688edbcd-ecs.json | 141 ++ ...6c780-41ad-11e9-a4da-b1df688edbcd-ecs.json | 74 + ...62870-41ae-11e9-a4da-b1df688edbcd-ecs.json | 74 + ...1ab80-41a8-11e9-a4da-b1df688edbcd-ecs.json | 131 ++ ...9ae20-41ed-11e9-ac5c-71ffa38a62e3-ecs.json | 158 ++ filebeat/module/nats/module.yml | 2 +- ...212a0-a2a1-11e7-928f-5dbe6f6f5519-ecs.json | 137 ++ .../0b3dba40-f341-11ea-a3fd-1b45ec532bb3.json | 119 ++ ...9e6e0-a29e-11e7-928f-5dbe6f6f5519-ecs.json | 232 +++ .../Filebeat-nginx-ingress-logs.ndjson | 5 - .../Filebeat-nginx-ingress-overview.ndjson | 12 - .../7/dashboard/Filebeat-nginx-logs.ndjson | 5 - .../dashboard/Filebeat-nginx-overview.ndjson | 10 - .../dfbc0840-f340-11ea-a3fd-1b45ec532bb3.json | 271 ++++ ...e66d0-a1f0-11e7-928f-5dbe6f6f5519-ecs.json | 60 + ...25600-a1f0-11e7-928f-5dbe6f6f5519-ecs.json | 58 + .../7/search/Filebeat-Nginx-module-ecs.json | 61 + .../a832bcf0-f342-11ea-a3fd-1b45ec532bb3.json | 58 + .../d20d4ea0-f342-11ea-a3fd-1b45ec532bb3.json | 60 + ...6f320-a29f-11e7-928f-5dbe6f6f5519-ecs.json | 78 + .../1aa782a0-f345-11ea-a3fd-1b45ec532bb3.json | 80 + ...b1a80-a1f4-11e7-928f-5dbe6f6f5519-ecs.json | 89 ++ ...22e50-a1f6-11e7-928f-5dbe6f6f5519-ecs.json | 66 + .../78738850-f342-11ea-a3fd-1b45ec532bb3.json | 91 ++ ...4fa00-a1f5-11e7-928f-5dbe6f6f5519-ecs.json | 72 + ...09780-a2a5-11e7-928f-5dbe6f6f5519-ecs.json | 29 + .../Nginx-Access-Browsers-ecs.json | 83 + .../7/visualization/Nginx-Access-Map-ecs.json | 86 + .../visualization/Nginx-Access-OSes-ecs.json | 83 + .../a3bf1ce0-f347-11ea-a3fd-1b45ec532bb3.json | 81 + .../afd506b0-f348-11ea-a3fd-1b45ec532bb3.json | 87 ++ ...b1b20-a1f4-11e7-928f-5dbe6f6f5519-ecs.json | 105 ++ .../ba138ab0-f344-11ea-a3fd-1b45ec532bb3.json | 107 ++ .../c37e2770-f341-11ea-a3fd-1b45ec532bb3.json | 36 + .../ee250270-f344-11ea-a3fd-1b45ec532bb3.json | 74 + .../f137cb40-f345-11ea-a3fd-1b45ec532bb3.json | 74 + filebeat/module/nginx/module.yml | 8 +- ...5ae20-eb02-11e7-8f04-51231daa5b05-ecs.json | 163 ++ ...7ce90-f4aa-11e7-8647-534bb4c21040-ecs.json | 137 ++ .../7/dashboard/osquery-compliance.ndjson | 9 - .../kibana/7/dashboard/osquery-rootkit.ndjson | 6 - ...5dc00-f49b-11e7-8647-534bb4c21040-ecs.json | 133 ++ ...4b080-eb02-11e7-8f04-51231daa5b05-ecs.json | 78 + ...482d0-eb00-11e7-8f04-51231daa5b05-ecs.json | 78 + ...6baa0-eb02-11e7-8f04-51231daa5b05-ecs.json | 76 + ...e21e0-eb03-11e7-8f04-51231daa5b05-ecs.json | 78 + ...1ed30-eb03-11e7-8f04-51231daa5b05-ecs.json | 102 ++ ...f3630-eb05-11e7-8f04-51231daa5b05-ecs.json | 133 ++ ...e0760-f4ab-11e7-8647-534bb4c21040-ecs.json | 29 + ...10290-f4aa-11e7-8647-534bb4c21040-ecs.json | 29 + ...d8bb0-eb01-11e7-8f04-51231daa5b05-ecs.json | 88 ++ ...87180-f4a9-11e7-8647-534bb4c21040-ecs.json | 77 + ...bba50-f4a9-11e7-8647-534bb4c21040-ecs.json | 77 + filebeat/module/osquery/module.yml | 4 +- .../2713ee40-f3b1-11ea-ba07-c1efedbf0bf9.json | 302 ++++ .../7/dashboard/pensando-dfw-overview.ndjson | 13 - .../0583e120-cc8f-11ea-918e-c778f7abe5d7.json | 87 ++ .../07983660-cd38-11ea-a0ef-8f5241e594be.json | 84 + .../1d2d5f00-cc89-11ea-918e-c778f7abe5d7.json | 94 ++ .../2aa5d850-cc85-11ea-918e-c778f7abe5d7.json | 118 ++ .../39e26d70-cc4d-11ea-918e-c778f7abe5d7.json | 38 + .../a73c8dc0-cc8d-11ea-918e-c778f7abe5d7.json | 99 ++ .../b8bfd3e0-e8b7-11ea-ba07-c1efedbf0bf9.json | 80 + .../bc6a36b0-cdba-11ea-a0ef-8f5241e594be.json | 77 + .../bf9d4650-cc8a-11ea-918e-c778f7abe5d7.json | 101 ++ .../c6188140-cdb9-11ea-a0ef-8f5241e594be.json | 96 ++ .../fa745d10-cc88-11ea-918e-c778f7abe5d7.json | 94 ++ .../fd2202d0-cc86-11ea-918e-c778f7abe5d7.json | 116 ++ ...be870-87f4-11e7-ad9c-db80de0bf8d3-ecs.json | 117 ++ .../Filebeat-Postgresql-overview.ndjson | 4 - .../Filebeat-Postgresql-slowlogs.ndjson | 4 - ...5f230-87f3-11e7-ad9c-db80de0bf8d3-ecs.json | 118 ++ .../7/search/PostgreSQL All Logs-ecs.json | 75 + .../PostgreSQL Query Durations-ecs.json | 47 + .../7/search/Slow PostgreSQL Queries-ecs.json | 47 + ...d5370-87f3-11e7-ad9c-db80de0bf8d3-ecs.json | 195 +++ .../PostgreSQL Log Level Count-ecs.json | 111 ++ ...stgreSQL Query Count and Duration-ecs.json | 215 +++ filebeat/module/postgresql/module.yml | 4 +- ...a2930-478e-11e7-b1f0-cb29bac6bf8b-ecs.json | 163 ++ .../kibana/7/dashboard/Filebeat-redis.ndjson | 6 - ...87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs.json | 47 + ...13570-4791-11e7-be88-2ddb32f3df97-ecs.json | 110 ++ ...9afe0-478f-11e7-b1f0-cb29bac6bf8b-ecs.json | 85 + ...64600-478f-11e7-be88-2ddb32f3df97-ecs.json | 163 ++ ...caa80-4791-11e7-be88-2ddb32f3df97-ecs.json | 143 ++ filebeat/module/redis/module.yml | 2 +- ...855f0-ff6a-11e8-93c5-d5ecd1b3e307-ecs.json | 175 +++ .../filebeat-santa-log-overview.ndjson | 8 - ...6a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs.json | 110 ++ ...58000-ff6d-11e8-93c5-d5ecd1b3e307-ecs.json | 73 + ...9d690-ff6b-11e8-93c5-d5ecd1b3e307-ecs.json | 66 + ...62fe0-ff6c-11e8-93c5-d5ecd1b3e307-ecs.json | 104 ++ ...77b80-ff6b-11e8-93c5-d5ecd1b3e307-ecs.json | 76 + ...c0460-ff6c-11e8-93c5-d5ecd1b3e307-ecs.json | 77 + ...521d0-ff69-11e8-93c5-d5ecd1b3e307-ecs.json | 36 + filebeat/module/santa/module.yml | 2 +- ...f2380-fa78-11e6-ae9b-81e5311e8cab-ecs.json | 198 +++ ...876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs.json | 127 ++ ...7a150-f9ce-11e6-8115-a7c18106d86a-ecs.json | 198 +++ .../Filebeat-auth-sudo-commands.ndjson | 6 - .../Filebeat-new-users-and-groups.ndjson | 10 - .../Filebeat-ssh-login-attempts.ndjson | 7 - .../Filebeat-syslog-dashboard-ecs.json | 128 ++ .../kibana/7/dashboard/Filebeat-syslog.ndjson | 5 - ...39dc0-f9c9-11e6-a747-6121780e0414-ecs.json | 47 + ...0c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs.json | 47 + .../7/search/Syslog-system-logs-ecs.json | 58 + ...321e0-fa25-11e6-bbd3-29c986c96e5a-ecs.json | 46 + ...039f0-fa7f-11e6-a1df-a78bd7504d38-ecs.json | 44 + ...67040-fa80-11e6-a1df-a78bd7504d38-ecs.json | 88 ++ ...417e0-8462-11e7-bab8-bd2f0fb42c54-ecs.json | 29 + ...ffe70-f9ce-11e6-8115-a7c18106d86a-ecs.json | 70 + ...bb290-fa80-11e6-a1df-a78bd7504d38-ecs.json | 78 + ...c3eb0-f9d3-11e6-8a3e-2b904044ea1d-ecs.json | 93 ++ ...64310-fa2b-11e6-bbd3-29c986c96e5a-ecs.json | 83 + ...af030-fa2a-11e6-bbd3-29c986c96e5a-ecs.json | 78 + ...15c00-fa78-11e6-ae9b-81e5311e8cab-ecs.json | 78 + ...74f30-f9cd-11e6-8115-a7c18106d86a-ecs.json | 87 ++ .../Syslog-events-by-hostname-ecs.json | 80 + .../Syslog-hostnames-and-processes-ecs.json | 79 + ...bb400-f9cc-11e6-8115-a7c18106d86a-ecs.json | 93 ++ ...ee420-fa79-11e6-a1df-a78bd7504d38-ecs.json | 88 ++ ...89770-fa2b-11e6-bbd3-29c986c96e5a-ecs.json | 88 ++ ...1b140-fa78-11e6-a1df-a78bd7504d38-ecs.json | 87 ++ ...8d2f0-fa77-11e6-ae9b-81e5311e8cab-ecs.json | 142 ++ filebeat/module/system/module.yml | 8 +- .../Filebeat-Traefik-Dashboard-ecs.json | 166 ++ .../Filebeat-traefik-overview.ndjson | 8 - .../7/search/Filebeat-Traefik-module-ecs.json | 55 + .../visualization/New-Visualization-ecs.json | 87 ++ .../7/visualization/Sent-sizes-ecs.json | 99 ++ .../Traefik-Access-Browsers-ecs.json | 83 + .../visualization/Traefik-Access-Map-ecs.json | 86 + .../Traefik-Access-OSes-ecs.json | 83 + ...Access-Response-codes-by-top-URLs-ecs.json | 91 ++ filebeat/module/traefik/module.yml | 8 +- libbeat/cmd/export/dashboard.go | 22 +- libbeat/dashboards/decode.go | 21 +- libbeat/dashboards/export.go | 67 + libbeat/dashboards/importer.go | 3 +- libbeat/dashboards/kibana_loader.go | 15 +- libbeat/kibana/client.go | 4 +- libbeat/kibana/client_test.go | 6 +- libbeat/scripts/unpack_dashboards.py | 27 +- libbeat/tests/system/test_dashboard.py | 42 +- .../Metricbeat-aerospike-overview.ndjson | 10 - .../b15668d0-bac3-11e9-a579-f5c0a5d81340.json | 264 ++++ .../23758d10-bac9-11e9-a579-f5c0a5d81340.json | 146 ++ .../3586e810-bac8-11e9-a579-f5c0a5d81340.json | 146 ++ .../5b9bf0d0-bac9-11e9-a579-f5c0a5d81340.json | 146 ++ .../72523510-bac3-11e9-a579-f5c0a5d81340.json | 59 + .../8c173130-bac3-11e9-a579-f5c0a5d81340.json | 59 + .../9ce7ae20-baca-11e9-a579-f5c0a5d81340.json | 83 + .../b5121f00-bac8-11e9-a579-f5c0a5d81340.json | 146 ++ .../bd767280-bac9-11e9-a579-f5c0a5d81340.json | 90 ++ .../eae846a0-bac7-11e9-a579-f5c0a5d81340.json | 180 +++ ...icbeat-Apache-HTTPD-server-status-ecs.json | 200 +++ .../Metricbeat-apache-overview.ndjson | 9 - .../kibana/7/search/Apache-HTTPD-ecs.json | 55 + .../7/visualization/Apache-HTTPD-CPU-ecs.json | 120 ++ .../Apache-HTTPD-Hostname-list-ecs.json | 75 + ...ache-HTTPD-Load1-slash-5-slash-15-ecs.json | 103 ++ .../Apache-HTTPD-Scoreboard-ecs.json | 184 +++ ...e-HTTPD-Total-accesses-and-kbytes-ecs.json | 58 + .../Apache-HTTPD-Uptime-ecs.json | 58 + .../Apache-HTTPD-Workers-ecs.json | 94 ++ metricbeat/module/apache/module.yml | 2 +- .../dashboard/Metricbeat-ceph-overview.ndjson | 7 - .../c93f2c30-b473-11e9-a579-f5c0a5d81340.json | 166 ++ .../054a0900-b467-11e9-a579-f5c0a5d81340.json | 118 ++ .../13efa190-b46c-11e9-a579-f5c0a5d81340.json | 85 + .../346d00d0-b46b-11e9-a579-f5c0a5d81340.json | 90 ++ .../393df790-b470-11e9-a579-f5c0a5d81340.json | 86 + .../88d48440-b46b-11e9-a579-f5c0a5d81340.json | 90 ++ .../aa9c2f10-b470-11e9-a579-f5c0a5d81340.json | 78 + .../6d0cf140-2deb-11e9-bf7e-f35bf5d2e71b.json | 202 +++ .../Metricbeat-consul-overview.ndjson | 9 - .../1e97c1d0-2dea-11e9-bf7e-f35bf5d2e71b.json | 70 + .../37c75bc0-2dea-11e9-bf7e-f35bf5d2e71b.json | 63 + .../69b29820-2dea-11e9-bf7e-f35bf5d2e71b.json | 63 + .../6c39d4b0-2de9-11e9-bf7e-f35bf5d2e71b.json | 63 + .../8ab67000-2dea-11e9-bf7e-f35bf5d2e71b.json | 69 + .../d275dbc0-2de9-11e9-bf7e-f35bf5d2e71b.json | 64 + .../dda0c950-2dea-11e9-bf7e-f35bf5d2e71b.json | 92 ++ .../ea842730-2de9-11e9-bf7e-f35bf5d2e71b.json | 63 + .../46d21220-b9f1-11e9-a579-f5c0a5d81340.json | 276 ++++ .../Metricbeat-couchbase-overview.ndjson | 12 - .../17a01210-b9e0-11e9-a579-f5c0a5d81340.json | 68 + .../19eed0e0-ba8c-11e9-a579-f5c0a5d81340.json | 68 + .../467c99c0-b9de-11e9-a579-f5c0a5d81340.json | 68 + .../63efced0-b9f4-11e9-a579-f5c0a5d81340.json | 68 + .../7cc8def0-b9e1-11e9-a579-f5c0a5d81340.json | 95 ++ .../97ee1ea0-b9f2-11e9-a579-f5c0a5d81340.json | 69 + .../99980c90-ba8b-11e9-a579-f5c0a5d81340.json | 68 + .../c4c81a30-b9dd-11e9-a579-f5c0a5d81340.json | 86 + .../e23a9fe0-b9db-11e9-a579-f5c0a5d81340.json | 68 + .../e781add0-b9dc-11e9-a579-f5c0a5d81340.json | 73 + .../f515f2e0-b9e0-11e9-a579-f5c0a5d81340.json | 146 ++ .../Metricbeat-couchdb-overview.ndjson | 8 - .../a3ab9a60-b952-11e9-a579-f5c0a5d81340.json | 188 +++ .../06018310-b952-11e9-a579-f5c0a5d81340.json | 112 ++ .../1b60bb70-b94f-11e9-a579-f5c0a5d81340.json | 248 +++ .../496910f0-b952-11e9-a579-f5c0a5d81340.json | 112 ++ .../702584a0-b950-11e9-a579-f5c0a5d81340.json | 113 ++ .../8e15ece0-b94e-11e9-a579-f5c0a5d81340.json | 384 +++++ .../abfaf130-b951-11e9-a579-f5c0a5d81340.json | 112 ++ .../f8c29f10-b94f-11e9-a579-f5c0a5d81340.json | 78 + .../7/dashboard/AV4REOpp5NkDleZmzKkE-ecs.json | 204 +++ .../Metricbeat-docker-overview.ndjson | 9 - .../7/search/Metricbeat-Docker-ecs.json | 55 + .../7/visualization/Docker-CPU-usage-ecs.json | 167 ++ .../visualization/Docker-Network-IO-ecs.json | 174 +++ .../Docker-Number-of-Containers-ecs.json | 115 ++ .../visualization/Docker-containers-ecs.json | 120 ++ .../Docker-containers-per-host-ecs.json | 71 + .../Docker-images-and-names-ecs.json | 79 + .../Docker-memory-usage-ecs.json | 164 ++ metricbeat/module/docker/module.yml | 2 +- .../Metricbeat-golang-overview.ndjson | 7 - ...c7320-f519-11e6-a3c9-9d1f7c42b045-ecs.json | 161 ++ ...00780-f529-11e6-844d-b170e2f0a07e-ecs.json | 35 + ...88680-f52a-11e6-969c-518c48c913e4-ecs.json | 35 + ...a8bf0-f52a-11e6-969c-518c48c913e4-ecs.json | 35 + ...26b50-f52a-11e6-969c-518c48c913e4-ecs.json | 35 + ...6cb80-f52a-11e6-969c-518c48c913e4-ecs.json | 35 + ...a5200-f52a-11e6-969c-518c48c913e4-ecs.json | 35 + metricbeat/module/golang/module.yml | 2 +- ...6a4b0-47bd-11e8-bc13-1397384faad3-ecs.json | 205 +++ ...55c30-47dd-11e8-bc13-1397384faad3-ecs.json | 124 ++ ...50a50-47e0-11e8-bc13-1397384faad3-ecs.json | 163 ++ ...1c900-471d-11e8-bc13-1397384faad3-ecs.json | 163 ++ .../Metricbeat-haproxy-backend.ndjson | 7 - .../Metricbeat-haproxy-frontend.ndjson | 3 - .../Metricbeat-haproxy-http-backend.ndjson | 9 - .../Metricbeat-haproxy-http-frontend.ndjson | 4 - .../Metricbeat-haproxy-http-server.ndjson | 7 - .../Metricbeat-haproxy-overview.ndjson | 5 - ...78d00-47c5-11e8-bc13-1397384faad3-ecs.json | 79 + ...57ae0-47c5-11e8-bc13-1397384faad3-ecs.json | 100 ++ ...1ed00-479c-11e8-bc13-1397384faad3-ecs.json | 85 + ...56d00-47d7-11e8-bc13-1397384faad3-ecs.json | 141 ++ ...ed190-473b-11e8-bc13-1397384faad3-ecs.json | 85 + ...84b00-47e1-11e8-bc13-1397384faad3-ecs.json | 78 + ...50d50-47db-11e8-bc13-1397384faad3-ecs.json | 79 + ...b6cd0-471d-11e8-bc13-1397384faad3-ecs.json | 154 ++ ...59190-47c5-11e8-bc13-1397384faad3-ecs.json | 96 ++ ...f0300-47dc-11e8-bc13-1397384faad3-ecs.json | 75 + ...b0910-47e4-11e8-bc13-1397384faad3-ecs.json | 108 ++ ...d1040-47be-11e8-bc13-1397384faad3-ecs.json | 62 + ...b4fd0-471c-11e8-bc13-1397384faad3-ecs.json | 104 ++ ...63670-47a1-11e8-bc13-1397384faad3-ecs.json | 61 + ...ab500-4735-11e8-bc13-1397384faad3-ecs.json | 79 + ...27ed0-47dc-11e8-bc13-1397384faad3-ecs.json | 75 + ...dfa60-47bd-11e8-bc13-1397384faad3-ecs.json | 213 +++ metricbeat/module/haproxy/module.yml | 12 +- .../Metricbeat-kafka-overview.ndjson | 10 - ...88d90-8e63-11e8-8fa2-3d5f811fbd0f-ecs.json | 251 +++ ...1f1a0-90e7-11e8-8fa2-3d5f811fbd0f-ecs.json | 109 ++ ...d5960-d2ed-11e8-8766-dbbdc39e7ba9-ecs.json | 139 ++ ...fee50-d2f5-11e8-8766-dbbdc39e7ba9-ecs.json | 244 +++ ...f2360-8f21-11e8-8fa2-3d5f811fbd0f-ecs.json | 88 ++ ...f79a0-8e65-11e8-8fa2-3d5f811fbd0f-ecs.json | 71 + ...188f0-8e79-11e8-8fa2-3d5f811fbd0f-ecs.json | 87 ++ ...576e0-d231-11e8-8766-dbbdc39e7ba9-ecs.json | 121 ++ ...12c80-8e63-11e8-8fa2-3d5f811fbd0f-ecs.json | 112 ++ ...9f8d0-8e8e-11e8-8fa2-3d5f811fbd0f-ecs.json | 170 ++ .../5e649d60-9901-11e9-ba57-b7ab4e2d4b58.json | 212 +++ .../97312060-9c1b-11e9-9dc8-fd27291d427f.json | 254 +++ .../Metricbeat-kubernetes-apiserver.ndjson | 4 - ...cbeat-kubernetes-controller-manager.ndjson | 10 - .../Metricbeat-kubernetes-overview.ndjson | 15 - .../Metricbeat-kubernetes-proxy.ndjson | 8 - .../Metricbeat-kubernetes-scheduler.ndjson | 8 - ...225b0-5794-11e8-afa2-e9067ea62228-ecs.json | 100 ++ .../e0381d10-e4a6-11eb-9d53-3b3d1d47c519.json | 330 ++++ .../f5ab5510-9c94-11e9-94fd-c91206cd5249.json | 212 +++ ...a54c0-2bf5-11e7-859b-f78b612cde28-ecs.json | 73 + .../09b404f0-99af-11e9-ba57-b7ab4e2d4b58.json | 156 ++ .../0ca95350-9c24-11e9-9dc8-fd27291d427f.json | 67 + .../15bd4420-9c9b-11e9-94fd-c91206cd5249.json | 106 ++ ...a4470-2bfd-11e7-859b-f78b612cde28-ecs.json | 98 ++ ...a6ad0-30e0-11e7-8df8-6d3604a72912-ecs.json | 87 ++ ...546b0-30d6-11e7-8df8-6d3604a72912-ecs.json | 98 ++ .../2ba628e0-9c2a-11e9-9dc8-fd27291d427f.json | 84 + .../382ace30-9d98-11e9-b2ae-49acc4cbcea9.json | 70 + .../3dbf6230-9c20-11e9-9dc8-fd27291d427f.json | 147 ++ .../3e1e1fd0-9c27-11e9-9dc8-fd27291d427f.json | 65 + ...fccf0-30d6-11e7-8df8-6d3604a72912-ecs.json | 85 + ...12b40-2bf4-11e7-859b-f78b612cde28-ecs.json | 153 ++ .../485c8550-9c3a-11e9-9dc8-fd27291d427f.json | 73 + ...644f0-30d6-11e7-8df8-6d3604a72912-ecs.json | 87 ++ ...c4fd0-30e0-11e7-8df8-6d3604a72912-ecs.json | 73 + ...eb750-5794-11e8-afa2-e9067ea62228-ecs.json | 83 + .../7d80f790-9d96-11e9-b2ae-49acc4cbcea9.json | 70 + .../826d80c0-9c97-11e9-94fd-c91206cd5249.json | 153 ++ .../84d9b200-9d98-11e9-b2ae-49acc4cbcea9.json | 84 + .../8a95de50-9c38-11e9-9dc8-fd27291d427f.json | 70 + .../8c6c2690-9bd8-11e9-9dc8-fd27291d427f.json | 106 ++ .../95595810-9ca8-11e9-94fd-c91206cd5249.json | 71 + ...7f110-57a2-11e8-afa2-e9067ea62228-ecs.json | 85 + ...9d360-30df-11e7-8df8-6d3604a72912-ecs.json | 87 ++ .../b8a24790-9bf0-11e9-9dc8-fd27291d427f.json | 259 +++ .../ba7bf750-9bf5-11e9-9dc8-fd27291d427f.json | 242 +++ .../bcb194a0-9bf8-11e9-9dc8-fd27291d427f.json | 79 + .../cac89fb0-9906-11e9-ba57-b7ab4e2d4b58.json | 84 + ...59410-2bfb-11e7-859b-f78b612cde28-ecs.json | 85 + .../d54c65f0-e4a6-11eb-9d53-3b3d1d47c519.json | 59 + ...64360-2bfc-11e7-859b-f78b612cde28-ecs.json | 133 ++ .../d86b2da0-9c20-11e9-9dc8-fd27291d427f.json | 106 ++ .../d9fc1b80-9c9c-11e9-94fd-c91206cd5249.json | 244 +++ ...ff7c0-30ed-11e7-b9e5-2b5b07213ab3-ecs.json | 89 ++ .../e0ddd3e0-98fe-11e9-ba57-b7ab4e2d4b58.json | 70 + ...18b90-2bfb-11e7-859b-f78b612cde28-ecs.json | 88 ++ ...60ff0-57a0-11e8-afa2-e9067ea62228-ecs.json | 116 ++ metricbeat/module/kubernetes/module.yml | 2 +- .../7/dashboard/Metricbeat-MongoDB-ecs.json | 211 +++ .../Metricbeat-mongodb-overview.ndjson | 10 - .../kibana/7/search/MongoDB-search-ecs.json | 55 + ...goDB-Concurrent-transactions-Read-ecs.json | 159 ++ ...oDB-Concurrent-transactions-Write-ecs.json | 159 ++ .../MongoDB-Engine-ampersand-Version-ecs.json | 83 + .../MongoDB-WiredTiger-Cache-ecs.json | 162 ++ .../7/visualization/MongoDB-asserts-ecs.json | 182 +++ .../7/visualization/MongoDB-hosts-ecs.json | 108 ++ .../MongoDB-memory-stats-ecs.json | 173 +++ .../MongoDB-operation-counters-ecs.json | 192 +++ metricbeat/module/mongodb/module.yml | 2 +- .../57b3fb50-6309-11ea-a83e-25b8612d00cc.json | 388 +++++ .../Metricbeat-mysql-overview.ndjson | 17 - .../0774bbb0-c69c-11ea-a106-5be590f42b74.json | 194 +++ .../3e5c4490-c6a1-11ea-a106-5be590f42b74.json | 157 ++ .../493e8460-630d-11ea-a83e-25b8612d00cc.json | 123 ++ .../4fa69a10-630b-11ea-a83e-25b8612d00cc.json | 82 + .../779ee920-6309-11ea-a83e-25b8612d00cc.json | 152 ++ .../7ea77d30-630a-11ea-a83e-25b8612d00cc.json | 82 + .../822df290-630f-11ea-a83e-25b8612d00cc.json | 110 ++ .../8b276c80-c6ad-11ea-a106-5be590f42b74.json | 128 ++ .../96d46630-63a4-11ea-a83e-25b8612d00cc.json | 110 ++ .../98c7bca0-63a2-11ea-a83e-25b8612d00cc.json | 116 ++ .../a1e00160-63a4-11ea-a83e-25b8612d00cc.json | 111 ++ ...326b0-f1f5-11e7-85ab-594b1652e0d1-ecs.json | 111 ++ .../bf60bc10-639b-11ea-a83e-25b8612d00cc.json | 115 ++ .../c8661020-6310-11ea-a83e-25b8612d00cc.json | 124 ++ .../cd72e030-c6a6-11ea-a106-5be590f42b74.json | 128 ++ .../fc6b5a40-630d-11ea-a83e-25b8612d00cc.json | 79 + metricbeat/module/mysql/module.yml | 2 +- .../Metricbeat-Nats-Dashboard-ecs.json | 369 +++++ .../dashboard/Metricbeat-nats-overview.ndjson | 16 - ...f1bc0-1e45-11e9-a1b4-79a7ae42ab61-ecs.json | 93 ++ .../3a670a80-2986-11eb-8245-71f739a9f622.json | 70 + .../431edfc0-2988-11eb-8245-71f739a9f622.json | 72 + .../5146f2a0-2987-11eb-8245-71f739a9f622.json | 71 + .../55c2d340-2986-11eb-8245-71f739a9f622.json | 71 + .../68d40020-2987-11eb-8245-71f739a9f622.json | 71 + ...215c0-1e46-11e9-a1b4-79a7ae42ab61-ecs.json | 174 +++ .../84e60a90-2a79-11eb-952d-594e5c56d011.json | 78 + .../898d2fe0-2986-11eb-8245-71f739a9f622.json | 71 + ...9b220-1e44-11e9-a1b4-79a7ae42ab61-ecs.json | 141 ++ .../b877eb90-2988-11eb-8245-71f739a9f622.json | 72 + .../d3142a50-2987-11eb-8245-71f739a9f622.json | 71 + .../d80d4c30-2a81-11eb-9625-31ed579c09b3.json | 152 ++ ...743a0-1f1c-11e9-a673-d9577e5e50eb-ecs.json | 137 ++ .../eeb33da0-2987-11eb-8245-71f739a9f622.json | 72 + metricbeat/module/nats/module.yml | 2 +- ...d2930-f1a5-11e7-a9ef-93c69af7b129-ecs.json | 142 ++ .../metricbeat-nginx-overview.ndjson | 6 - ...8e0f0-f1a4-11e7-a9ef-93c69af7b129-ecs.json | 61 + ...df8a0-f1a1-11e7-a9ef-93c69af7b129-ecs.json | 68 + ...92240-f1a1-11e7-a9ef-93c69af7b129-ecs.json | 107 ++ ...3a570-f1a1-11e7-a9ef-93c69af7b129-ecs.json | 68 + ...ffe30-f1a4-11e7-a9ef-93c69af7b129-ecs.json | 106 ++ metricbeat/module/nginx/module.yml | 2 +- .../4288b790-b79f-11e9-a579-f5c0a5d81340.json | 254 +++ .../Metricbeat-postgresql-overview.ndjson | 11 - .../0cb65170-b909-11e9-a579-f5c0a5d81340.json | 114 ++ .../147875b0-b903-11e9-a579-f5c0a5d81340.json | 98 ++ .../20931ef0-b79a-11e9-a579-f5c0a5d81340.json | 147 ++ .../570973a0-b798-11e9-a579-f5c0a5d81340.json | 115 ++ .../66d67200-b799-11e9-a579-f5c0a5d81340.json | 147 ++ .../960ecdf0-b79a-11e9-a579-f5c0a5d81340.json | 115 ++ .../98e6b0a0-b79b-11e9-a579-f5c0a5d81340.json | 59 + .../d733c630-b797-11e9-a579-f5c0a5d81340.json | 115 ++ .../e2b28ce0-b908-11e9-a579-f5c0a5d81340.json | 112 ++ .../fbfa67e0-b796-11e9-a579-f5c0a5d81340.json | 88 ++ .../6a9b80c0-b2ed-11e9-9a23-67ee28886a4b.json | 210 +++ .../Metricbeat-prometheus-overview.ndjson | 9 - .../0b356630-b308-11e9-9a23-67ee28886a4b.json | 90 ++ .../138704c0-b2f8-11e9-9a23-67ee28886a4b.json | 96 ++ .../19886730-b2e7-11e9-9a23-67ee28886a4b.json | 75 + .../79345b00-b2e5-11e9-9a23-67ee28886a4b.json | 67 + .../d7740b40-b2fc-11e9-9a23-67ee28886a4b.json | 114 ++ .../edd33100-b305-11e9-9a23-67ee28886a4b.json | 78 + .../f77c5900-b2e4-11e9-9a23-67ee28886a4b.json | 84 + .../ffb70040-b2ec-11e9-9a23-67ee28886a4b.json | 75 + .../7/dashboard/AV4YobKIge1VCbKU_qVo-ecs.json | 124 ++ .../Metricbeat-rabbitmq-overview.ndjson | 6 - .../7/search/Metricbeat-Rabbitmq-ecs.json | 52 + .../RabbitMQ-Erlang-Process-Usage-ecs.json | 88 ++ .../RabbitMQ-Memory-Usage-ecs.json | 89 ++ .../RabbitMQ-Queue-Index-Operations-ecs.json | 163 ++ .../Rabbitmq-Number-of-Nodes-ecs.json | 50 + metricbeat/module/rabbitmq/module.yml | 2 +- ...69190-0511-11e9-9c60-d582a238e2c5-ecs.json | 190 +++ .../7/dashboard/AV4YjZ5pux-M-tCAunxK-ecs.json | 198 +++ .../7/dashboard/Metricbeat-redis-keys.ndjson | 6 - .../Metricbeat-redis-overview.ndjson | 9 - .../kibana/7/search/Metricbeat-Redis-ecs.json | 55 + ...39210-050d-11e9-9c60-d582a238e2c5-ecs.json | 59 + ...5ac40-050e-11e9-9c60-d582a238e2c5-ecs.json | 166 ++ ...a5fd0-0514-11e9-9c60-d582a238e2c5-ecs.json | 208 +++ ...bc7d0-050c-11e9-9c60-d582a238e2c5-ecs.json | 211 +++ ...1a4a0-0513-11e9-9c60-d582a238e2c5-ecs.json | 193 +++ .../Redis-Clients-Metrics-ecs.json | 95 ++ .../Redis-Connected-clients-ecs.json | 147 ++ .../7/visualization/Redis-Keyspaces-ecs.json | 147 ++ .../Redis-Server-Versions-ecs.json | 71 + .../7/visualization/Redis-hosts-ecs.json | 119 ++ .../Redis-multiplexing-API-ecs.json | 71 + .../visualization/Redis-server-mode-ecs.json | 71 + metricbeat/module/redis/module.yml | 2 +- ...fd6e0-faa0-11e6-947f-177f697178b8-ecs.json | 523 +++++++ .../CPU-slash-Memory-per-container-ecs.json | 143 ++ .../Metricbeat-Host-Services-overview.ndjson | 8 - .../Metricbeat-containers-overview.ndjson | 5 - .../dashboard/Metricbeat-host-overview.ndjson | 24 - .../Metricbeat-system-overview-ecs.json | 268 ++++ .../Metricbeat-system-overview.ndjson | 11 - .../c431f410-f9ac-11e9-90e8-1fb18e796788.json | 188 +++ ...b85d0-1b16-11e7-b09e-037021c4f8df-ecs.json | 131 ++ ...123b0-4d5a-11e7-aee5-fdc812cc3bec-ecs.json | 93 ++ ...e9140-1b93-11e7-8ada-3df93aab833e-ecs.json | 133 ++ ...32e20-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json | 75 + ...24660-1b19-11e7-b09e-037021c4f8df-ecs.json | 91 ++ ...97ee0-1b96-11e7-8ada-3df93aab833e-ecs.json | 100 ++ ...5d450-a9c3-11e7-af20-67db8aecb295-ecs.json | 29 + .../4b254630-f998-11e9-90e8-1fb18e796788.json | 72 + ...46850-1b15-11e7-b09e-037021c4f8df-ecs.json | 105 ++ ...bb1e0-1b1b-11e7-b09e-037021c4f8df-ecs.json | 116 ++ ...ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs.json | 133 ++ ...a60f0-5d87-11e7-8884-1bb4c3b890e4-ecs.json | 98 ++ ...b9a40-faa1-11e6-86b1-cd7735ff7e23-ecs.json | 131 ++ ...b1330-4d1a-11e7-a196-69b9a7a020a9-ecs.json | 113 ++ ...fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs.json | 126 ++ ...12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json | 125 ++ ...899e0-1b1c-11e7-b09e-037021c4f8df-ecs.json | 92 ++ .../8c071e20-f999-11e9-90e8-1fb18e796788.json | 70 + ...76150-4d5d-11e7-aa29-87a97a796de6-ecs.json | 89 ++ ...81c80-4d60-11e7-9a4c-ed99bbcaa42b-ecs.json | 69 + .../9c69cad0-f9b0-11e9-90e8-1fb18e796788.json | 138 ++ .../visualization/Container-Block-IO-ecs.json | 106 ++ .../Container-CPU-usage-ecs.json | 126 ++ .../Container-Memory-stats-ecs.json | 216 +++ .../visualization/System-Navigation-ecs.json | 35 + .../a30871f0-f98f-11e9-90e8-1fb18e796788.json | 90 ++ ...d1e90-1b1a-11e7-b09e-037021c4f8df-ecs.json | 171 ++ .../bb3a8720-f991-11e9-90e8-1fb18e796788.json | 107 ++ ...5e400-1b16-11e7-b09e-037021c4f8df-ecs.json | 127 ++ ...3cf90-4d60-11e7-9a4c-ed99bbcaa42b-ecs.json | 69 + ...2ffd0-4d17-11e7-a196-69b9a7a020a9-ecs.json | 97 ++ ...80340-4d5c-11e7-aa29-87a97a796de6-ecs.json | 89 ++ ...66e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json | 93 ++ .../d3f51850-f9b6-11e9-90e8-1fb18e796788.json | 67 + ...001c0-1b18-11e7-b09e-037021c4f8df-ecs.json | 79 + .../e6e639e0-f992-11e9-90e8-1fb18e796788.json | 107 ++ ...64790-1b1f-11e7-bec4-a5e9ec5cab8b-ecs.json | 92 ++ .../module/system/hostnamechange_test.go | 2 +- metricbeat/module/system/module.yml | 6 +- ...ca290-f0af-11e7-b9ff-9f96241065de-ecs.json | 119 ++ .../Metricbeat-uwsgi-overview.ndjson | 5 - ...f96e0-f0ae-11e7-b9ff-9f96241065de-ecs.json | 28 + ...58e70-f0ae-11e7-b9ff-9f96241065de-ecs.json | 28 + ...194b0-f0ae-11e7-b9ff-9f96241065de-ecs.json | 28 + ...a80b0-f0ae-11e7-b9ff-9f96241065de-ecs.json | 28 + metricbeat/module/uwsgi/module.yml | 2 +- .../0ebd0be0-f049-11e9-aaf3-15199b632da7.json | 181 +++ .../8a2d1540-f049-11e9-aaf3-15199b632da7.json | 140 ++ .../dashboard/metricbeat-vsphere-host.ndjson | 9 - .../7/dashboard/metricbeat-vsphere-vm.ndjson | 7 - .../1411b690-f017-11e9-aaf3-15199b632da7.json | 44 + .../47125df0-f040-11e9-aaf3-15199b632da7.json | 211 +++ .../5c6a93a0-f04c-11e9-aaf3-15199b632da7.json | 106 ++ .../5f74c330-f048-11e9-aaf3-15199b632da7.json | 123 ++ .../783f2c50-f040-11e9-aaf3-15199b632da7.json | 211 +++ .../79dcd290-f047-11e9-aaf3-15199b632da7.json | 128 ++ .../867e0c70-f048-11e9-aaf3-15199b632da7.json | 123 ++ .../9afddd20-f04c-11e9-aaf3-15199b632da7.json | 106 ++ .../a6026680-f017-11e9-aaf3-15199b632da7.json | 106 ++ .../ab07c5d0-f03f-11e9-aaf3-15199b632da7.json | 211 +++ .../d6370680-f049-11e9-aaf3-15199b632da7.json | 90 ++ .../dae93d90-f041-11e9-aaf3-15199b632da7.json | 220 +++ .../e3a3e080-f018-11e9-aaf3-15199b632da7.json | 160 ++ metricbeat/module/vsphere/module.yml | 4 +- ...ba730-c991-11e7-9835-2f31fe08873b-ecs.json | 166 ++ .../metricbeat-windows-service.ndjson | 7 - ...7ccc0-c98d-11e7-9835-2f31fe08873b-ecs.json | 113 ++ ...5fff0-c98e-11e7-9835-2f31fe08873b-ecs.json | 83 + ...5ad60-c996-11e7-9835-2f31fe08873b-ecs.json | 96 ++ ...c45f0-c991-11e7-9835-2f31fe08873b-ecs.json | 87 ++ ...b2ba0-ca29-11e7-9835-2f31fe08873b-ecs.json | 181 +++ ...277d0-c98c-11e7-9835-2f31fe08873b-ecs.json | 144 ++ metricbeat/module/windows/module.yml | 2 +- ...207a0-231e-11e9-bb66-8baac426dfd4-ecs.json | 140 ++ .../Metricbeat-zookeeper-overview.ndjson | 6 - ...f8930-231a-11e9-bb66-8baac426dfd4-ecs.json | 63 + ...b7770-2319-11e9-bb66-8baac426dfd4-ecs.json | 63 + ...e43c0-2319-11e9-bb66-8baac426dfd4-ecs.json | 63 + ...52b50-231c-11e9-bb66-8baac426dfd4-ecs.json | 103 ++ ...13c60-231b-11e9-bb66-8baac426dfd4-ecs.json | 110 ++ ...20940-1454-11e9-9de0-f98d1808db8e-ecs.json | 59 + .../7/dashboard/DNS-Unique-Domains-ecs.json | 44 + .../7/dashboard/Packetbeat-Cassandra-ecs.json | 79 + .../7/dashboard/Packetbeat-Dashboard-ecs.json | 79 + .../7/dashboard/Packetbeat-Flows-ecs.json | 49 + .../7/dashboard/Packetbeat-HTTP-ecs.json | 59 + .../Packetbeat-MongoDB-performance-ecs.json | 64 + .../Packetbeat-MySQL-performance-ecs.json | 64 + .../7/dashboard/Packetbeat-NFS-ecs.json | 69 + .../Packetbeat-PgSQL-performance-ecs.json | 64 + .../Packetbeat-Thrift-performance-ecs.json | 59 + .../7/dashboard/Packetbeat-cassandra.ndjson | 13 - .../7/dashboard/Packetbeat-dhcpv4.ndjson | 8 - .../dashboard/Packetbeat-dns-overview.ndjson | 9 - .../dashboard/Packetbeat-dns-tunneling.ndjson | 6 - .../7/dashboard/Packetbeat-flows.ndjson | 7 - .../kibana/7/dashboard/Packetbeat-http.ndjson | 9 - .../7/dashboard/Packetbeat-mongodb.ndjson | 12 - .../7/dashboard/Packetbeat-mysql.ndjson | 11 - .../kibana/7/dashboard/Packetbeat-nfs.ndjson | 12 - .../7/dashboard/Packetbeat-overview.ndjson | 17 - .../7/dashboard/Packetbeat-pgsql.ndjson | 11 - .../7/dashboard/Packetbeat-thrift.ndjson | 10 - .../kibana/7/dashboard/Packetbeat-tls.ndjson | 20 - ...35890-8baa-11e8-9676-ef67484126fb-ecs.json | 59 + .../kibana/7/dashboard/tls-sessions-ecs.json | 89 ++ ...fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs.json | 45 + ...b1360-d49d-11e7-996f-bd7c1ca4591b-ecs.json | 40 + ...08f00-88ca-11e7-ad9c-db80de0bf8d3-ecs.json | 40 + ...af860-d520-11e7-9fff-7b1ebf397ba9-ecs.json | 45 + ...ff590-d37d-11e7-9914-4982455b3063-ecs.json | 40 + ...08e80-d2d8-11e7-9914-4982455b3063-ecs.json | 40 + .../7/search/Cassandra-QueryView-ecs.json | 48 + .../7/search/MongoDB-transactions-ecs.json | 45 + ...transactions-with-write-concern-0-ecs.json | 45 + .../7/search/MySQL-Transactions-ecs.json | 44 + .../kibana/7/search/MySQL-errors-ecs.json | 49 + .../7/search/NFS-errors-search-ecs.json | 50 + .../7/search/Packetbeat-Flows-Search-ecs.json | 43 + .../7/search/Packetbeat-Search-ecs.json | 48 + .../kibana/7/search/PgSQL-errors-ecs.json | 49 + .../7/search/PgSQL-transactions-ecs.json | 44 + .../kibana/7/search/Thrift-errors-ecs.json | 49 + .../7/search/Thrift-transactions-ecs.json | 44 + .../7/search/Transactions-errors-ecs.json | 53 + ...92150-8ba8-11e8-9676-ef67484126fb-ecs.json | 47 + ...d23b0-d37c-11e7-9914-4982455b3063-ecs.json | 40 + ...e8485-7df5-47ce-8009-9dc3c42bcf17-ecs.json | 43 + ...83e60-190b-11e9-be0d-adde5066235e-ecs.json | 40 + ...3c0b0-d2d7-11e7-9914-4982455b3063-ecs.json | 40 + packetbeat/_meta/kibana/7/search/nfs-ecs.json | 40 + ...fe5e0-d2dd-11e7-9914-4982455b3063-ecs.json | 28 + ...de380-d361-11e7-9914-4982455b3063-ecs.json | 32 + ...8a910-d396-11e7-8fa0-232aa9259081-ecs.json | 28 + ...0b790-d37d-11e7-9914-4982455b3063-ecs.json | 28 + ...33ea0-8bad-11e8-9676-ef67484126fb-ecs.json | 28 + ...67370-d392-11e7-8fa0-232aa9259081-ecs.json | 28 + ...dfbe0-8bac-11e8-9676-ef67484126fb-ecs.json | 28 + ...d2bf0-d3a8-11e7-9081-ab2af08e9961-ecs.json | 28 + ...9db20-8bab-11e8-9676-ef67484126fb-ecs.json | 28 + ...d25c0-1459-11e9-9de0-f98d1808db8e-ecs.json | 28 + ...0fcd0-8baa-11e8-9676-ef67484126fb-ecs.json | 21 + ...43f90-d396-11e7-8fa0-232aa9259081-ecs.json | 28 + .../Bytes-Transferred-per-Domain-ecs.json | 28 + .../7/visualization/Cassandra-Ops-ecs.json | 33 + .../Cassandra-RequestCount-ecs.json | 33 + .../Cassandra-RequestCountByType-ecs.json | 33 + ...Cassandra-RequestCountStackByType-ecs.json | 33 + .../Cassandra-ResponseCountByType-ecs.json | 33 + ...assandra-ResponseCountStackByType-ecs.json | 33 + .../Cassandra-ResponseKeyspace-ecs.json | 33 + .../Cassandra-ResponseTime-ecs.json | 33 + .../Cassandra-ResponseType-ecs.json | 33 + .../7/visualization/Client-locations-ecs.json | 27 + .../Connections-over-time-ecs.json | 28 + .../7/visualization/DB-transactions-ecs.json | 32 + .../visualization/DNS-Query-Summary-ecs.json | 28 + .../visualization/DNS-Question-Types-ecs.json | 33 + .../DNS-Request-Status-Over-Time-ecs.json | 33 + .../visualization/DNS-Response-Codes-ecs.json | 33 + .../DNS-Top-10-Questions-ecs.json | 38 + .../Errors-count-over-time-ecs.json | 28 + ...Errors-vs-successful-transactions-ecs.json | 28 + .../HTTP-codes-for-the-top-queries-ecs.json | 28 + .../7/visualization/HTTP-error-codes-ecs.json | 32 + .../HTTP-error-codes-evolution-ecs.json | 37 + .../visualization/Latency-histogram-ecs.json | 28 + .../7/visualization/MongoDB-commands-ecs.json | 28 + .../7/visualization/MongoDB-errors-ecs.json | 28 + .../MongoDB-errors-per-collection-ecs.json | 28 + .../MongoDB-in-slash-out-throughput-ecs.json | 28 + ...goDB-response-times-by-collection-ecs.json | 28 + .../Most-frequent-MySQL-queries-ecs.json | 28 + .../Most-frequent-PgSQL-queries-ecs.json | 28 + .../7/visualization/MySQL-Errors-ecs.json | 28 + .../7/visualization/MySQL-Methods-ecs.json | 28 + .../MySQL-Reads-vs-Writes-ecs.json | 28 + .../7/visualization/MySQL-throughput-ecs.json | 28 + .../Mysql-response-times-percentiles-ecs.json | 28 + .../NFS-bytes-in-slash-out-ecs.json | 28 + .../NFS-clients-pie-chart-ecs.json | 28 + .../7/visualization/NFS-errors-ecs.json | 28 + .../NFS-operation-table-ecs.json | 28 + .../NFS-operations-area-chart-ecs.json | 28 + .../visualization/NFS-response-times-ecs.json | 28 + .../NFS-top-group-pie-chart-ecs.json | 28 + .../NFS-top-users-pie-chart-ecs.json | 28 + .../7/visualization/Navigation-ecs.json | 21 + ...etwork-traffic-between-your-hosts-ecs.json | 28 + ...tions-with-writeConcern-w-equal-0-ecs.json | 28 + .../7/visualization/PgSQL-Errors-ecs.json | 28 + .../7/visualization/PgSQL-Methods-ecs.json | 28 + .../PgSQL-Reads-vs-Writes-ecs.json | 28 + .../PgSQL-response-times-percentiles-ecs.json | 28 + .../7/visualization/PgSQL-throughput-ecs.json | 28 + .../Response-times-percentiles-ecs.json | 28 + .../Response-times-repartition-ecs.json | 28 + .../Slowest-MySQL-queries-ecs.json | 28 + .../Slowest-PgSQL-queries-ecs.json | 28 + .../Slowest-Thrift-RPC-methods-ecs.json | 28 + .../visualization/Thrift-RPC-Errors-ecs.json | 28 + .../Thrift-requests-per-minute-ecs.json | 28 + ...Thrift-response-times-percentiles-ecs.json | 28 + .../Top-10-HTTP-requests-ecs.json | 28 + .../Top-Thrift-RPC-calls-with-errors-ecs.json | 27 + .../Top-Thrift-RPC-methods-ecs.json | 28 + .../Top-hosts-creating-traffic-ecs.json | 28 + .../Top-hosts-receiving-traffic-ecs.json | 28 + .../Top-slowest-MongoDB-queries-ecs.json | 28 + ...Total-number-of-HTTP-transactions-ecs.json | 28 + .../Unique-FQDNs-per-eTLD 1-Table-ecs.json | 28 + .../Unique-FQDNs-per-eTLD 1-ecs.json | 28 + .../7/visualization/Web-transactions-ecs.json | 28 + ...d09d0-d361-11e7-9914-4982455b3063-ecs.json | 28 + ...a8b50-d49d-11e7-996f-bd7c1ca4591b-ecs.json | 28 + ...e33c0-d37d-11e7-9914-4982455b3063-ecs.json | 28 + ...b6ed0-1459-11e9-9de0-f98d1808db8e-ecs.json | 28 + ...377a0-d353-11e7-9914-4982455b3063-ecs.json | 32 + ...20dc0-8bac-11e8-9676-ef67484126fb-ecs.json | 28 + ...15950-d560-11e7-9fff-7b1ebf397ba9-ecs.json | 33 + ...43240-1665-11e7-a6de-cbac1a3d0a7d-ecs.json | 27 + ...09730-1b80-11e9-83df-75eebb35951e-ecs.json | 28 + ...a8f20-8bb5-11e8-9676-ef67484126fb-ecs.json | 28 + .../7/dashboard/Winlogbeat-Dashboard-ecs.json | 49 + .../7/dashboard/Winlogbeat-overview.ndjson | 6 - .../7/visualization/Event-Levels-ecs.json | 27 + ...-of-Events-Over-Time-By-Event-Log-ecs.json | 27 + .../7/visualization/Number-of-Events-ecs.json | 27 + .../kibana/7/visualization/Sources-ecs.json | 27 + .../7/visualization/Top-Event-IDs-ecs.json | 27 + ...c52f0-286a-11e9-9d21-0be348776e6c-ecs.json | 203 +++ ...7f200-285e-11e9-805f-43bf57dfa519-ecs.json | 203 +++ ...46cb0-27f2-11e9-89af-fd12d59dac90-ecs.json | 600 +++++++ ...8f110-2863-11e9-97cb-474beda9f119-ecs.json | 224 +++ ...a3ef0-2867-11e9-9d21-0be348776e6c-ecs.json | 266 ++++ ...6a660-2864-11e9-97cb-474beda9f119-ecs.json | 203 +++ .../auditbeat-system-host-dashboard.ndjson | 8 - .../auditbeat-system-login-dashboard.ndjson | 9 - ...auditbeat-system-overview-dashboard.ndjson | 19 - .../auditbeat-system-package-dashboard.ndjson | 9 - .../auditbeat-system-process-dashboard.ndjson | 10 - .../auditbeat-system-socket-dashboard.ndjson | 12 - .../auditbeat-system-user-dashboard.ndjson | 9 - ...62590-18da-11e9-9094-c50574723088-ecs.json | 182 +++ ...611b0-2862-11e9-97cb-474beda9f119-ecs.json | 80 + ...4c720-285f-11e9-805f-43bf57dfa519-ecs.json | 79 + ...ef230-2868-11e9-9d21-0be348776e6c-ecs.json | 78 + ...ed610-2867-11e9-9d21-0be348776e6c-ecs.json | 79 + ...a3db0-2864-11e9-97cb-474beda9f119-ecs.json | 79 + ...78cd0-18ca-11e9-9094-c50574723088-ecs.json | 78 + ...ebd30-27ff-11e9-805f-43bf57dfa519-ecs.json | 110 ++ ...a0d20-27fc-11e9-89af-fd12d59dac90-ecs.json | 139 ++ ...8b4c0-2864-11e9-97cb-474beda9f119-ecs.json | 112 ++ ...90830-27fd-11e9-89af-fd12d59dac90-ecs.json | 139 ++ ...1daa0-286b-11e9-9d21-0be348776e6c-ecs.json | 115 ++ ...905e0-27fd-11e9-89af-fd12d59dac90-ecs.json | 139 ++ ...36470-2863-11e9-97cb-474beda9f119-ecs.json | 116 ++ ...4eff0-2864-11e9-97cb-474beda9f119-ecs.json | 167 ++ ...c5b50-27f6-11e9-89af-fd12d59dac90-ecs.json | 36 + ...485f0-18da-11e9-9094-c50574723088-ecs.json | 109 ++ ...701d0-2869-11e9-9d21-0be348776e6c-ecs.json | 167 ++ ...fa900-2867-11e9-9d21-0be348776e6c-ecs.json | 167 ++ ...35e50-27ff-11e9-805f-43bf57dfa519-ecs.json | 198 +++ ...df9b0-27f7-11e9-89af-fd12d59dac90-ecs.json | 112 ++ ...5f250-285e-11e9-805f-43bf57dfa519-ecs.json | 149 ++ ...51940-2868-11e9-9d21-0be348776e6c-ecs.json | 131 ++ ...3dd90-27f2-11e9-89af-fd12d59dac90-ecs.json | 109 ++ ...91460-2867-11e9-9d21-0be348776e6c-ecs.json | 115 ++ ...80de0-2864-11e9-97cb-474beda9f119-ecs.json | 131 ++ ...46ec0-27fd-11e9-89af-fd12d59dac90-ecs.json | 139 ++ ...3c420-27f4-11e9-89af-fd12d59dac90-ecs.json | 108 ++ ...55df0-2869-11e9-9d21-0be348776e6c-ecs.json | 115 ++ ...08fd0-2862-11e9-97cb-474beda9f119-ecs.json | 131 ++ ...62a30-1901-11e9-9094-c50574723088-ecs.json | 179 +++ ...991a0-18cb-11e9-9094-c50574723088-ecs.json | 131 ++ ...51650-285e-11e9-805f-43bf57dfa519-ecs.json | 149 ++ ...2af00-2862-11e9-97cb-474beda9f119-ecs.json | 167 ++ ...5dae0-27fd-11e9-89af-fd12d59dac90-ecs.json | 139 ++ ...9a700-286b-11e9-9d21-0be348776e6c-ecs.json | 115 ++ ...d1870-27f1-11e9-89af-fd12d59dac90-ecs.json | 109 ++ ...9c530-27fe-11e9-805f-43bf57dfa519-ecs.json | 139 ++ ...aa0a0-18ca-11e9-9094-c50574723088-ecs.json | 109 ++ ...c0540-286b-11e9-9d21-0be348776e6c-ecs.json | 115 ++ ...14de0-2863-11e9-97cb-474beda9f119-ecs.json | 143 ++ ...25fe0-285e-11e9-805f-43bf57dfa519-ecs.json | 167 ++ ...b58a0-2860-11e9-805f-43bf57dfa519-ecs.json | 131 ++ ...25120-27f2-11e9-89af-fd12d59dac90-ecs.json | 109 ++ ...dbfd0-2866-11e9-9d21-0be348776e6c-ecs.json | 112 ++ ...92ad0-18d7-11e9-9094-c50574723088-ecs.json | 169 ++ ...365a0-2862-11e9-97cb-474beda9f119-ecs.json | 116 ++ ...4fb20-27f3-11e9-89af-fd12d59dac90-ecs.json | 109 ++ ...3f530-2868-11e9-9d21-0be348776e6c-ecs.json | 143 ++ .../26434790-1464-11ea-8fd8-030a13064883.json | 97 ++ ...ilebeat-activemq-application-events.ndjson | 4 - .../Filebeat-activemq-audit-events.ndjson | 4 - .../ffe86390-145f-11ea-8fd8-030a13064883.json | 97 ++ .../896ef3a0-145f-11ea-8fd8-030a13064883.json | 46 + .../d784ec10-1460-11ea-8fd8-030a13064883.json | 46 + .../026da780-1463-11ea-8fd8-030a13064883.json | 172 ++ .../38011a70-145a-11ea-8fd8-030a13064883.json | 258 +++ .../38874920-1454-11ea-8fd8-030a13064883.json | 124 ++ .../a0f15d50-1460-11ea-8fd8-030a13064883.json | 248 +++ x-pack/filebeat/module/activemq/module.yml | 4 +- .../15503340-4488-11ea-ad63-791a5dc86f10.json | 151 ++ .../3af47420-3e7b-11ea-bb0a-69c3ca1d410f.json | 239 +++ .../4746e000-bacd-11e9-9f70-1f7bda85a5eb.json | 100 ++ .../9c09cd20-7399-11ea-a345-f985c61fe654.json | 219 +++ .../Filebeat-aws-elb-overview.ndjson | 10 - .../Filebeat-aws-s3access-overview.ndjson | 4 - .../Filebeat-aws-vpcflow-overview.ndjson | 6 - .../dashboard/filebeat-aws-cloudtrail.ndjson | 9 - .../0edf0640-3e7e-11ea-bb0a-69c3ca1d410f.json | 27 + .../513a3d70-4482-11ea-ad63-791a5dc86f10.json | 32 + .../dae24080-739a-11ea-a345-f985c61fe654.json | 27 + .../30ccde50-7397-11ea-a345-f985c61fe654.json | 72 + .../5e5a3c90-bac0-11e9-9f70-1f7bda85a5eb.json | 108 ++ .../c1aee600-4487-11ea-ad63-791a5dc86f10.json | 107 ++ .../0f056420-739e-11ea-a345-f985c61fe654.json | 81 + .../219c1850-3e82-11ea-bb0a-69c3ca1d410f.json | 70 + .../247e2990-4699-11ea-ad63-791a5dc86f10.json | 59 + .../396089c0-7399-11ea-a345-f985c61fe654.json | 96 ++ .../4c23e4c0-739a-11ea-a345-f985c61fe654.json | 164 ++ .../5c93cd10-bac3-11e9-9f70-1f7bda85a5eb.json | 106 ++ .../73970bc0-3e86-11ea-bb0a-69c3ca1d410f.json | 101 ++ .../75853f20-4484-11ea-ad63-791a5dc86f10.json | 105 ++ .../76af8140-3e84-11ea-bb0a-69c3ca1d410f.json | 71 + .../7bca4f50-739c-11ea-a345-f985c61fe654.json | 80 + .../8ec43590-739b-11ea-a345-f985c61fe654.json | 87 ++ .../99ffdb00-bacb-11e9-9f70-1f7bda85a5eb.json | 145 ++ .../b6a308f0-3e82-11ea-bb0a-69c3ca1d410f.json | 70 + .../bad8c910-4485-11ea-ad63-791a5dc86f10.json | 172 ++ .../bd37d720-3e84-11ea-bb0a-69c3ca1d410f.json | 71 + .../ceb7c030-3e86-11ea-bb0a-69c3ca1d410f.json | 101 ++ .../d8b1e830-3e82-11ea-bb0a-69c3ca1d410f.json | 70 + .../e50c51e0-3e7f-11ea-bb0a-69c3ca1d410f.json | 70 + .../f8b63860-739e-11ea-a345-f985c61fe654.json | 80 + x-pack/filebeat/module/aws/module.yml | 2 +- .../0f559cc0-f0d5-11e9-90ec-112a988266d5.json | 141 ++ .../41e84340-ec20-11e9-90ec-112a988266d5.json | 329 ++++ .../87095750-f05a-11e9-90ec-112a988266d5.json | 284 ++++ .../Filebeat-azure-alerts-overview.ndjson | 6 - .../dashboard/Filebeat-azure-overview.ndjson | 14 - .../Filebeat-azure-user-activity.ndjson | 11 - .../097d74d0-f044-11e9-90ec-112a988266d5.json | 59 + .../0dd135c0-f0cc-11e9-90ec-112a988266d5.json | 96 ++ .../46544960-f0d5-11e9-90ec-112a988266d5.json | 36 + .../52c2a4e0-ec1f-11e9-90ec-112a988266d5.json | 95 ++ .../52da1700-f05d-11e9-90ec-112a988266d5.json | 162 ++ .../6db84660-53e9-11ea-b1b7-7de801e1c297.json | 206 +++ .../6ece76d0-f0cc-11e9-90ec-112a988266d5.json | 172 ++ .../709995e0-ec16-11e9-90ec-112a988266d5.json | 95 ++ .../71b62ca0-ec1a-11e9-90ec-112a988266d5.json | 162 ++ .../9ed46680-f0ce-11e9-90ec-112a988266d5.json | 105 ++ .../b0471750-f05b-11e9-90ec-112a988266d5.json | 77 + .../bc65e840-ec1e-11e9-90ec-112a988266d5.json | 95 ++ .../c43855e0-f05a-11e9-90ec-112a988266d5.json | 36 + .../c704b050-f0de-11e9-90ec-112a988266d5.json | 142 ++ .../d91ce8d0-53e8-11ea-b1b7-7de801e1c297.json | 207 +++ .../da67d650-ec14-11e9-90ec-112a988266d5.json | 65 + .../e0203fc0-f05f-11e9-90ec-112a988266d5.json | 79 + .../e37cd3d0-ec23-11e9-90ec-112a988266d5.json | 121 ++ .../e4c7f4b0-f045-11e9-90ec-112a988266d5.json | 136 ++ .../f684a750-ec23-11e9-90ec-112a988266d5.json | 128 ++ .../fe24ac90-f05a-11e9-90ec-112a988266d5.json | 36 + .../ffe22180-ec1c-11e9-90ec-112a988266d5.json | 93 ++ .../56428e01-0c47-4770-8ba4-9345a029ea41.json | 361 +++++ .../9e352900-89c3-4c1b-863e-249e24d0dac9.json | 433 ++++++ .../c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b.json | 413 +++++ .../db1e1aca-279e-4ecc-b84e-fe58644f7619.json | 338 ++++ .../dd0bc9af-2e89-4150-9b42-62517ea56b71.json | 467 ++++++ .../filebeat-cef-endpoint-os-activity.ndjson | 18 - .../filebeat-cef-endpoint-overview.ndjson | 15 - .../filebeat-cef-microsoft-dns.ndjson | 15 - .../filebeat-cef-network-overview.ndjson | 19 - ...eat-cef-network-suspicious-activity.ndjson | 14 - .../5cede2d3-20fe-4140-add4-4c4f841b71a2.json | 52 + .../68202a5c-c8f2-432f-8c08-04fbfacb95c8.json | 87 ++ .../e6cf2383-71f4-4db1-a791-1a7d4f110194.json | 57 + .../f85a3444-8a43-4e46-b872-4e44bc25d0f3.json | 68 + .../013ff153-7b80-490b-8fec-6e56cba785ed.json | 66 + .../01c3618c-9962-4fe9-b9c5-f73dfecc6eba.json | 135 ++ .../0abfc226-535b-45a2-b534-e9bc87e5584f.json | 114 ++ .../0f4028b2-3dc2-4cb6-80d8-285c847a02a1.json | 117 ++ .../118af639-1f37-4541-a960-5a3ff0613e0e.json | 150 ++ .../1204cf27-05e0-4905-bfa1-688aaaaaa840.json | 66 + .../158d809a-89db-4ffa-88a1-eb5c4bf58d50.json | 125 ++ .../16aef3e9-e33b-4bab-b32f-d8c5b1263ac0.json | 123 ++ .../1b521f56-8089-433f-88f7-56aba867e07d.json | 82 + .../1b9cc5b7-7747-49de-96b1-a4bc7f675716.json | 99 ++ .../249e2737-b41f-4115-b303-88bc9d279655.json | 123 ++ .../26a65f68-d7a6-4b47-befc-c5a6819bb91b.json | 157 ++ .../2726382e-638a-4dcc-94fc-0ffdc0f92048.json | 117 ++ .../295986d4-d2ea-4541-8e82-7dc95c0cd830.json | 108 ++ .../316fdc75-7215-4c6b-8e1b-70a097b34e28.json | 80 + .../33747d52-ec4c-4d91-86d8-fbdf9b9c82db.json | 110 ++ .../3c19f138-2ab3-4ecb-bb1b-86fb90158042.json | 67 + .../499f50ba-2f84-4f7c-9021-73a4efc47921.json | 168 ++ .../4a7c10c7-4abd-47b4-b4c3-dee33377fbdf.json | 66 + .../4e25b5ce-53c3-46fc-b5e5-71d3c52f1956.json | 66 + .../4fccee0c-7193-4aa8-919f-0b0b0a16d013.json | 86 + .../566d8b4e-ec5c-4b8b-bd68-3cc9cb236110.json | 131 ++ .../581a296e-e34a-48f1-93e4-fc4bdadfc68d.json | 82 + .../589fec8c-336e-4122-8fef-a450bddf84f6.json | 66 + .../59ad829b-12b8-4256-95a5-e7078eda628b.json | 201 +++ .../5bf6e4dc-4273-4e1e-a803-04347eebeb53.json | 106 ++ .../5f187dc8-aa7e-4f91-a2d8-1186ce254d00.json | 203 +++ .../6437e9bb-9ed1-4e2d-bb10-e63ccd35c409.json | 80 + .../677891a1-90c4-4273-b126-f0e54689bd76.json | 36 + .../718b074e-3dd1-4d03-ba11-7f869cdcd703.json | 139 ++ .../7454c034-c5f3-48fe-8fce-ef4385c80350.json | 135 ++ .../74d2c072-6dfd-4249-8e63-dc7b0cf3c960.json | 65 + .../759e8dc3-0fdb-4cb6-ba47-87a2e2ff8df3.json | 65 + .../76c088c3-486e-4420-8840-5ede667edffe.json | 103 ++ .../77ee0e91-010b-4897-b483-7e9a907d2afe.json | 113 ++ .../7e2b0659-0760-4182-8b29-3ee69f26bc6f.json | 110 ++ .../82f3fae3-1189-4f04-8ea5-47fde1d2e7b1.json | 89 ++ .../86bd5f13-ca6b-43fa-b209-54e7460344bb.json | 66 + .../89998099-9a39-44cf-beba-5b97f0524cf9.json | 151 ++ .../8b31af8b-522e-41fe-b9d6-9a3451b54108.json | 86 + .../8cd00d20-957d-4663-be4d-ea80b1609586.json | 66 + .../8f6075c5-f525-4173-92a4-3a56e96e362d.json | 109 ++ .../92aecea0-a632-4a55-bb56-50e4cdaca036.json | 80 + .../9457ee67-895f-4b78-a543-268f9687a745.json | 102 ++ .../9bef4db9-a8b2-4be8-b2b0-6ea02fab424d.json | 114 ++ .../a729c249-8d34-4eb1-bbb0-5d25cf224114.json | 109 ++ .../a97e3628-022b-46cf-8f29-a73cf9bb4e26.json | 167 ++ .../aaa80503-6d96-4a33-806f-b8a10aefe696.json | 83 + .../acc915fe-b971-4795-9040-3fbfdf62abe1.json | 66 + .../b1002b5c-08fc-4bbe-b9a0-6243a8637e60.json | 152 ++ .../c394e650-b16c-407c-b305-bd409d69d433.json | 36 + .../c5120e27-1f8c-41e3-83ee-78ec4d470c2f.json | 65 + .../d02dd523-ce91-40e9-9209-83797f80ed45.json | 139 ++ .../d061c7a9-7f92-4bf4-b35c-499b9f4b987a.json | 135 ++ .../df056709-2deb-4363-ae7a-b0148ea456c6.json | 152 ++ .../e06d85f2-2da4-41e2-b2ab-f685b64bb3f9.json | 80 + .../e513c269-350c-40c3-ac20-16c5782103b8.json | 146 ++ .../e89a64e8-928c-41fc-8745-3c8157b21cdb.json | 120 ++ .../f03d734b-b85c-4e99-9c0e-9c89716a81f3.json | 89 ++ .../f0e60404-ddf4-4b46-8e45-e28c4fb6d60d.json | 117 ++ .../f3c573ad-2c16-4de5-9ec3-0a47141d4fa0.json | 107 ++ .../f5258de9-71f7-410f-b713-201007f77470.json | 66 + .../f57734dd-0f32-42b4-94dd-5d597f6735e1.json | 80 + .../fa8b26c1-6973-4381-adb3-bcde0d03a520.json | 180 +++ .../fcf798a8-db8f-4492-827b-8fa7581108a9.json | 180 +++ .../fe7b63d1-dbc7-4376-af7f-ace97a9f2e60.json | 143 ++ .../fff249b2-18b6-4b48-bcf7-dd4595d111e7.json | 152 ++ .../7/dashboard/Filebeat-Cisco-ASA.ndjson | 11 - .../a555b160-4987-11e9-b8ce-ed898b5ef295.json | 192 +++ .../14fce5e0-498f-11e9-b8ce-ed898b5ef295.json | 44 + .../753406e0-4986-11e9-b8ce-ed898b5ef295.json | 44 + .../96c6ff60-4986-11e9-b8ce-ed898b5ef295.json | 44 + .../08ef4d90-499b-11e9-b8ce-ed898b5ef295.json | 86 + .../118da960-4987-11e9-b8ce-ed898b5ef295.json | 96 ++ .../5d0322d0-4987-11e9-b8ce-ed898b5ef295.json | 96 ++ .../80d0c1b0-498a-11e9-b8ce-ed898b5ef295.json | 139 ++ .../a3b5ab10-4989-11e9-b8ce-ed898b5ef295.json | 152 ++ .../d05cdf60-498b-11e9-b8ce-ed898b5ef295.json | 85 + .../fd89b1e0-49a2-11e9-b8ce-ed898b5ef295.json | 112 ++ x-pack/filebeat/module/cisco/module.yml | 2 +- .../53aa1f70-443e-11e9-8548-ab7fbe04f038.json | 118 ++ .../Coredns-Overview-Dashboard.ndjson | 5 - .../3ad75810-4429-11e9-8548-ab7fbe04f038.json | 81 + .../75743f70-443c-11e9-8548-ab7fbe04f038.json | 100 ++ .../9dc640e0-4432-11e9-8548-ab7fbe04f038.json | 74 + .../cfde7fb0-443d-11e9-8548-ab7fbe04f038.json | 109 ++ x-pack/filebeat/module/coredns/module.yml | 2 +- x-pack/filebeat/module/crowdstrike/module.yml | 2 +- .../Filebeat-cyberarkpas-audit.ndjson | 3 - .../eb12ef60-96f6-11eb-bbf8-d77aef8ad7a6.json | 1382 +++++++++++++++++ .../a9b82df0-97a5-11eb-bbf8-d77aef8ad7a6.json | 145 ++ .../fec0d170-96f7-11eb-bbf8-d77aef8ad7a6.json | 40 + x-pack/filebeat/module/cyberarkpas/module.yml | 2 +- .../0c610510-5cbd-11e9-8477-077ec9664dbd.json | 160 ++ .../Filebeat-Envoyproxy-Overview.ndjson | 7 - .../0a994af0-5c9d-11e9-8477-077ec9664dbd.json | 121 ++ .../36f872a0-5c03-11e9-85b4-19d0072eb4f2.json | 125 ++ .../38f96190-5c99-11e9-8477-077ec9664dbd.json | 178 +++ .../7e4084e0-5c99-11e9-8477-077ec9664dbd.json | 130 ++ .../80844540-5c97-11e9-8477-077ec9664dbd.json | 121 ++ .../ab48c3f0-5ca6-11e9-8477-077ec9664dbd.json | 121 ++ x-pack/filebeat/module/envoyproxy/module.yml | 2 +- .../6576c480-73a2-11ea-a345-f985c61fe654.json | 189 +++ .../7/dashboard/filebeat-gcp-audit.ndjson | 8 - .../a97de660-73a5-11ea-a345-f985c61fe654.json | 27 + .../d88364c0-73a1-11ea-a345-f985c61fe654.json | 72 + .../33ee1320-73a5-11ea-a345-f985c61fe654.json | 73 + .../4627efa0-73a2-11ea-a345-f985c61fe654.json | 164 ++ .../6d90d320-73a4-11ea-a345-f985c61fe654.json | 80 + .../a8e40240-73a3-11ea-a345-f985c61fe654.json | 80 + .../eb5bf570-73a2-11ea-a345-f985c61fe654.json | 80 + .../dashboard/Filebeat-IBMMQ-Overview.ndjson | 9 - .../ba1d8830-7c7b-11e9-9645-e37efaf5baff.json | 209 +++ .../82db7ba0-adec-11e9-8358-1517661d7c84.json | 78 + .../3ff778d0-adf0-11e9-8358-1517661d7c84.json | 89 ++ .../4b2794c0-d901-11e8-aa1c-3fc8e6195a8e.json | 67 + .../57eae940-adf0-11e9-8358-1517661d7c84.json | 89 ++ .../845fca50-adef-11e9-8358-1517661d7c84.json | 89 ++ .../b6308f30-7c7e-11e9-9645-e37efaf5baff.json | 159 ++ .../bf8e5de0-7c7f-11e9-9645-e37efaf5baff.json | 59 + .../df35c4b0-adf0-11e9-8358-1517661d7c84.json | 125 ++ x-pack/filebeat/module/ibmmq/module.yml | 2 +- .../Filebeat-Iptables-Overview.ndjson | 9 - ...Iptables-Ubiquiti-Firewall-Overview.ndjson | 10 - ...fb9e0-1f51-11e9-93ed-f7e068f4aebb-ecs.json | 216 +++ ...f0980-1ff3-11e9-ae2a-939083c6a64e-ecs.json | 218 +++ ...2cab0-1fdb-11e9-ae2a-939083c6a64e-ecs.json | 44 + ...d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs.json | 44 + ...1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs.json | 44 + ...80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs.json | 44 + ...bcb50-1ff6-11e9-ae2a-939083c6a64e-ecs.json | 102 ++ ...82fd0-1ff0-11e9-ae2a-939083c6a64e-ecs.json | 84 + ...9f5e0-1e98-11e9-8ec4-cf5d91a864b3-ecs.json | 84 + ...e0910-1f26-11e9-8ec4-cf5d91a864b3-ecs.json | 84 + ...13eb0-1f51-11e9-93ed-f7e068f4aebb-ecs.json | 137 ++ ...53050-1fe9-11e9-ae2a-939083c6a64e-ecs.json | 91 ++ ...402b0-1f29-11e9-8ec4-cf5d91a864b3-ecs.json | 84 + ...b3620-1fda-11e9-ae2a-939083c6a64e-ecs.json | 163 ++ ...3aa20-1fef-11e9-ae2a-939083c6a64e-ecs.json | 97 ++ ...b7370-1f1d-11e9-8ec4-cf5d91a864b3-ecs.json | 84 + ...94ec0-1efd-11e9-8ec4-cf5d91a864b3-ecs.json | 97 ++ ...ea010-1efd-11e9-8ec4-cf5d91a864b3-ecs.json | 91 ++ ...a1ad0-1ff4-11e9-ae2a-939083c6a64e-ecs.json | 124 ++ x-pack/filebeat/module/iptables/module.yml | 4 +- .../65402c30-ca6a-11ea-9d4d-9737a63aaa55.json | 186 +++ .../Filebeat-microsoft-atp-overview.ndjson | 8 - .../14d367f0-ca68-11ea-9d4d-9737a63aaa55.json | 139 ++ .../e415af10-ca67-11ea-9d4d-9737a63aaa55.json | 164 ++ .../00e8fca0-ca68-11ea-9d4d-9737a63aaa55.json | 247 +++ .../3c64f400-ca68-11ea-9d4d-9737a63aaa55.json | 134 ++ .../62f081c0-ca68-11ea-9d4d-9737a63aaa55.json | 130 ++ .../9e902dc0-ca68-11ea-9d4d-9737a63aaa55.json | 130 ++ .../b9fcbf60-ca68-11ea-9d4d-9737a63aaa55.json | 130 ++ x-pack/filebeat/module/microsoft/module.yml | 2 +- .../7/dashboard/Filebeat-MISP-Overview.ndjson | 4 - .../c6cac9e0-f105-11e9-9a88-690b10c8ee99.json | 102 ++ .../73287f70-f1fb-11e9-9a88-690b10c8ee99.json | 107 ++ .../7d369390-f105-11e9-9a88-690b10c8ee99.json | 154 ++ .../8fc4b140-ed36-11e9-9a88-690b10c8ee99.json | 80 + x-pack/filebeat/module/misp/module.yml | 2 +- .../14387a13-53bc-43a4-b9cd-63977aa8d87c.json | 319 ++++ .../34e26884-161a-4448-9556-43b5bf2f62a2.json | 339 ++++ .../38012abe-c611-4124-8497-381fcd85acc8.json | 980 ++++++++++++ .../77326664-23be-4bf1-a126-6d7e60cfc024.json | 174 +++ .../94972700-de4a-4272-9143-2fa8d4981365.json | 168 ++ .../acd7a630-0c71-4840-bc9e-4a3801374a32.json | 179 +++ .../c64665f9-d222-421e-90b0-c7310d944b8a.json | 234 +++ .../feebb4e6-b13e-4e4e-b9fc-d3a178276425.json | 234 +++ ...filebeat-netflow-autonomous-systems.ndjson | 9 - ...ebeat-netflow-conversation-partners.ndjson | 6 - .../filebeat-netflow-flow-exporters.ndjson | 9 - .../filebeat-netflow-flow-records.ndjson | 5 - .../filebeat-netflow-geo-location.ndjson | 6 - .../filebeat-netflow-overview.ndjson | 14 - .../7/dashboard/filebeat-netflow-top-n.ndjson | 10 - .../filebeat-netflow-traffic-analysis.ndjson | 42 - .../a34c6611-79d8-4b50-ae3f-8b328d28e24a.json | 52 + .../0177bf1a-cba8-4ba6-a1d7-73caed86ffc2.json | 102 ++ .../036aef95-ec90-468d-ad7c-3cc4405e9e81.json | 105 ++ .../0528bc66-6981-400a-a02d-c1d221b38890.json | 37 + .../0b2818fd-aecc-4bef-b566-9466eb702ae4.json | 76 + .../12aad647-c45d-4667-a029-152c1a97cbbc.json | 37 + .../14c7136d-b4aa-4367-9461-52bf8b5c4796.json | 73 + .../15295ea6-ba84-47db-8ced-9312abbf495c.json | 105 ++ .../1558508d-591c-49be-bef4-85fdac18a960.json | 89 ++ .../15e2a267-2495-4df2-a121-abe410d2f18c.json | 37 + .../16262df9-a979-4136-935e-d883c7d373d7.json | 102 ++ .../1cd36f5d-d9c7-4098-acdb-14d312ecfb72.json | 37 + .../1cf30eac-aae8-47fa-a156-37f6346d2d5a.json | 76 + .../1e74d5cb-556d-42ee-8042-88f6c1af47f0.json | 37 + .../201d7dd1-a880-4a64-b631-db5629340db9.json | 37 + .../2316bb53-d98a-4f0f-8cd8-51e9fb317823.json | 88 ++ .../248e00b4-8fc2-406f-8907-729d5380aaa7.json | 76 + .../2b3d4e86-2254-4033-8fe3-ce4753fafd03.json | 105 ++ .../2dca3025-692c-4876-8bcc-e0b248dc9819.json | 102 ++ .../30cd1009-2925-4c9b-820d-d689f5d1efda.json | 37 + .../31708a70-4957-4a8a-8065-5c88a344ad02.json | 76 + .../31b5f6fd-eb9d-4e97-90fd-367062ef217f.json | 105 ++ .../32e712ed-fa15-4db7-8575-8476e8d65b03.json | 102 ++ .../3a4209e2-281c-467e-b5cb-315bf4a2661f.json | 37 + .../3dec20c0-0d4f-43ef-8864-3779e1a1b33f.json | 76 + .../3e27fb83-b3e3-4c15-b999-ed6da49b7a86.json | 37 + .../441c6c50-fa1a-489c-96c6-76f7925dea24.json | 73 + .../4ac97841-c89f-4d50-b3c6-6253f7e1dd1a.json | 75 + .../4bb0255e-18ed-45e4-bfb9-de8e35b12094.json | 152 ++ .../5292a65b-c532-422a-9008-1251a8073a3a.json | 118 ++ .../5303e99b-389c-47b7-ae7a-945c5a92ba49.json | 105 ++ .../57e13a20-e94f-4465-a942-42148634a1d2.json | 76 + .../5ccac452-e90a-4dde-ae9b-1be36ce3f761.json | 89 ++ .../5cfb2c9a-4815-4a25-9d7e-ab0ef55ffe63.json | 37 + .../5d868836-c7b2-4812-bf47-4838aac281d9.json | 37 + .../63ef5338-fdf2-488e-b78a-f0e98daccc95.json | 102 ++ .../67fdca65-a9df-47f0-a8a4-1e8b056325de.json | 89 ++ .../681f0ce4-d828-4a99-b643-0c0715530050.json | 37 + .../6bbd6712-494a-4fd9-b3d3-757304681f0f.json | 37 + .../717cd7c7-bfca-435d-8ee7-38259927aade.json | 37 + .../751ecb6f-11c3-458d-b039-f6d57a6379fa.json | 37 + .../7d447b22-89dc-4f32-b549-4b8620af4d76.json | 37 + .../7fa6cb0a-518d-46e9-a228-15cd4253a957.json | 76 + .../85ebf558-402b-45d2-a186-e15f8673ec07.json | 37 + .../8f83cf97-4a48-421f-8db5-690297d1f4fb.json | 37 + .../a14c3248-952d-42aa-bd7d-9b39157a776f.json | 76 + .../a1704d46-15fc-41c2-851d-796ceb49877f.json | 37 + .../a5efa3dd-f53a-4d14-9d3f-ee73345fd93d.json | 37 + .../a685420e-c45f-4b62-932b-5b76ac8b8ca2.json | 76 + .../abfa0b19-60cd-4984-9c3d-02ebf0aa1dfb.json | 37 + .../ae334aec-31fa-4df7-a064-40b18831d819.json | 144 ++ .../aed09724-0a69-4331-84f5-3d2067c43930.json | 88 ++ .../af707b01-29f1-462b-b279-6d2e803f3645.json | 102 ++ .../b02c2713-17f0-41dd-88a3-ce33b446f19d.json | 76 + .../b677cd82-b33e-49b3-8b6e-0e110177b163.json | 76 + .../c27c6a3b-93ee-44d5-8d0c-9b097e575f52.json | 101 ++ .../c54f5529-e6d7-4c26-8e8e-3b35de132035.json | 89 ++ .../cccff92f-cb71-49a9-9caf-84867751d31e.json | 105 ++ .../cf399a85-e348-4ac1-a399-e8f5a44114c4.json | 76 + .../d27b5d74-b3b4-4311-a0e6-08ff8f4345df.json | 37 + .../d3df8d28-65f8-4ea1-8b33-f479380a0600.json | 37 + .../d41a9663-e5ad-47a7-955e-3803ae4e23c0.json | 37 + .../d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3.json | 37 + .../d5568704-e30b-4108-bb49-06a9b8dce6a6.json | 102 ++ .../d59a031c-70d6-47d7-966d-7fcb805be9be.json | 37 + .../ddd27657-c3c8-4f82-8059-6d7763dd599b.json | 102 ++ .../e822f94c-5f65-4963-a540-74ca9c25bd2d.json | 89 ++ .../e99dc327-03de-4561-9e0c-f550710125c2.json | 56 + .../e9ad835b-b2f2-42d3-a3e7-555a593deacf.json | 105 ++ .../ebea013f-9b5b-4f61-a9c8-c62bebf62ae9.json | 118 ++ .../f27c1479-0625-4cdc-92de-672e47db0f87.json | 102 ++ .../f4c8cb5a-7336-449e-ab99-6e867b435b85.json | 96 ++ .../f531f957-e8c0-497a-ad41-ef39c2d29671.json | 88 ++ .../f668ecdb-eec7-44c6-9060-26aaf9fc8404.json | 37 + .../f75063c7-48b7-4de4-b8cb-d07eb2cea0e9.json | 37 + .../f772028b-d5a6-4d55-b441-493871981a60.json | 76 + .../f7808e70-df2a-4532-a350-966704567c24.json | 88 ++ .../f86a7769-8ef6-408d-bbe3-985d0ea0a3f7.json | 37 + .../fd6c1144-5026-4795-b7af-a9aa3fc28c56.json | 76 + .../712e2c00-685d-11ea-8d6a-292ef5d68366.json | 198 +++ .../7/dashboard/Filebeat-O365-Audit.ndjson | 8 - .../dbae13c0-685c-11ea-8d6a-292ef5d68366.json | 27 + .../8b8e5a10-6886-11ea-8d6a-292ef5d68366.json | 143 ++ .../fdc14020-6859-11ea-8d6a-292ef5d68366.json | 44 + .../0be1adb0-6860-11ea-8d6a-292ef5d68366.json | 81 + .../897d0c70-6869-11ea-8d6a-292ef5d68366.json | 258 +++ .../8b033510-685a-11ea-8d6a-292ef5d68366.json | 214 +++ .../d43c95a0-6864-11ea-8d6a-292ef5d68366.json | 85 + x-pack/filebeat/module/o365/module.yml | 2 +- .../749203a0-67b1-11ea-a76f-bf44814e437d.json | 168 ++ ...49203a0-67b1-11ea-a76f-bf44814e437d.ndjson | 7 - .../281ca660-67b1-11ea-a76f-bf44814e437d.json | 27 + .../21028750-67ca-11ea-a76f-bf44814e437d.json | 101 ++ .../0a784b30-67c7-11ea-a76f-bf44814e437d.json | 107 ++ .../545d6a00-67ae-11ea-a76f-bf44814e437d.json | 107 ++ .../7c6ec080-67c6-11ea-a76f-bf44814e437d.json | 107 ++ .../cda883a0-67c6-11ea-a76f-bf44814e437d.json | 70 + x-pack/filebeat/module/okta/module.yml | 2 +- .../772964e0-7591-11e9-aacf-79a3704914a0.json | 172 ++ .../Filebeat-panw-network-overview.ndjson | 9 - .../Filebeat-panw-threat-overview.ndjson | 8 - .../e40ba240-7572-11e9-976e-65a8f47cc4c1.json | 187 +++ .../290685e0-7569-11e9-976e-65a8f47cc4c1.json | 44 + .../3cea1360-7569-11e9-976e-65a8f47cc4c1.json | 44 + .../0407a3e0-756f-11e9-976e-65a8f47cc4c1.json | 96 ++ .../091fe860-756a-11e9-976e-65a8f47cc4c1.json | 84 + .../0bd2a0c0-7574-11e9-976e-65a8f47cc4c1.json | 152 ++ .../135930b0-7570-11e9-976e-65a8f47cc4c1.json | 182 +++ .../3eca1070-7589-11e9-aacf-79a3704914a0.json | 73 + .../5bd32b20-7575-11e9-976e-65a8f47cc4c1.json | 73 + .../6dce7930-758c-11e9-aacf-79a3704914a0.json | 96 ++ .../78e7e820-756d-11e9-976e-65a8f47cc4c1.json | 183 +++ .../87f30f60-7569-11e9-976e-65a8f47cc4c1.json | 90 ++ .../90ce3300-758a-11e9-aacf-79a3704914a0.json | 114 ++ .../a95aaf20-758a-11e9-aacf-79a3704914a0.json | 114 ++ .../d9cab170-756f-11e9-976e-65a8f47cc4c1.json | 182 +++ .../e46331c0-756a-11e9-976e-65a8f47cc4c1.json | 112 ++ x-pack/filebeat/module/panw/module.yml | 4 +- ...68ee0-86d1-11e8-b59d-21efb914e65c-ecs.json | 215 +++ ...89c40-86da-11e8-b59d-21efb914e65c-ecs.json | 269 ++++ .../filebeat-suricata-alert-overview.ndjson | 9 - .../filebeat-suricata-event-overview.ndjson | 12 - ...d22f0-86cc-11e8-b59d-21efb914e65c-ecs.json | 108 ++ ...bcec0-86d1-11e8-b59d-21efb914e65c-ecs.json | 107 ++ ...a2db0-86ca-11e8-b59d-21efb914e65c-ecs.json | 106 ++ ...aa630-86db-11e8-b59d-21efb914e65c-ecs.json | 98 ++ ...63820-86dd-11e8-b59d-21efb914e65c-ecs.json | 80 + ...33310-86d3-11e8-b59d-21efb914e65c-ecs.json | 102 ++ .../169c0600-d297-11ea-90e3-8767fe7ccf14.json | 76 + ...dc1a0-86d8-11e8-b59d-21efb914e65c-ecs.json | 85 + ...fa290-86d2-11e8-b59d-21efb914e65c-ecs.json | 166 ++ ...9eb50-86dc-11e8-b59d-21efb914e65c-ecs.json | 74 + ...f64c0-86db-11e8-b59d-21efb914e65c-ecs.json | 80 + ...ed080-86d7-11e8-b59d-21efb914e65c-ecs.json | 98 ++ ...f88d0-86dc-11e8-b59d-21efb914e65c-ecs.json | 74 + .../908e8c90-d296-11ea-90e3-8767fe7ccf14.json | 36 + ...b5b50-86db-11e8-b59d-21efb914e65c-ecs.json | 166 ++ ...ca070-86d7-11e8-b59d-21efb914e65c-ecs.json | 98 ++ ...8b8f0-86d8-11e8-b59d-21efb914e65c-ecs.json | 85 + ...46c60-86da-11e8-b59d-21efb914e65c-ecs.json | 166 ++ x-pack/filebeat/module/suricata/module.yml | 4 +- .../47e6fdc0-76b9-11eb-a3e3-b3cc7c78a70f.json | 350 +++++ .../53e4e630-76cf-11eb-a3e3-b3cc7c78a70f.json | 289 ++++ .../5ba16340-72e6-11eb-a3e3-b3cc7c78a70f.json | 274 ++++ .../65fa6bc0-72f0-11eb-a3e3-b3cc7c78a70f.json | 289 ++++ .../68c48a30-739e-11eb-a3e3-b3cc7c78a70f.json | 635 ++++++++ .../894dd3e0-df57-11eb-8f2b-753caedf727d.json | 396 +++++ .../Filebeat-threatintel-abuse-url.ndjson | 14 - ...Filebeat-threatintel-alienvault-otx.ndjson | 14 - .../Filebeat-threatintel-anomali.ndjson | 24 - .../Filebeat-threatintel-aubse-malware.ndjson | 12 - .../Filebeat-threatintel-malwarebazaar.ndjson | 18 - .../Filebeat-threatintel-misp.ndjson | 15 - .../Filebeat-threatintel-overview.ndjson | 15 - ...Filebeat-threatintel-recordedfuture.ndjson | 19 - .../ad9c7430-72de-11eb-a3e3-b3cc7c78a70f.json | 291 ++++ .../dee7be00-82ab-11eb-ac13-d5ca87cb8fa2.json | 408 +++++ .../021ba940-de96-11eb-8f2b-753caedf727d.json | 99 ++ .../037e2af0-df50-11eb-8f2b-753caedf727d.json | 99 ++ .../06744e90-df52-11eb-8f2b-753caedf727d.json | 94 ++ .../0db62ee0-72e6-11eb-a3e3-b3cc7c78a70f.json | 171 ++ .../1136ceb0-de95-11eb-8f2b-753caedf727d.json | 94 ++ .../139c7da0-df51-11eb-8f2b-753caedf727d.json | 93 ++ .../176bf800-df58-11eb-8f2b-753caedf727d.json | 66 + .../1d7a18c0-df54-11eb-8f2b-753caedf727d.json | 131 ++ .../36f61650-de96-11eb-8f2b-753caedf727d.json | 97 ++ .../3c40f4d0-de97-11eb-8f2b-753caedf727d.json | 97 ++ .../3c996410-df52-11eb-8f2b-753caedf727d.json | 94 ++ .../4bcc4cb0-df50-11eb-8f2b-753caedf727d.json | 100 ++ .../5e76ef90-df51-11eb-8f2b-753caedf727d.json | 93 ++ .../5ef7b430-de94-11eb-8f2b-753caedf727d.json | 94 ++ .../790cd040-df51-11eb-8f2b-753caedf727d.json | 94 ++ .../7d9c70f0-de95-11eb-8f2b-753caedf727d.json | 94 ++ .../7ec83f60-de98-11eb-8f2b-753caedf727d.json | 94 ++ .../7ed4ce00-df52-11eb-8f2b-753caedf727d.json | 94 ++ .../82fa7420-df58-11eb-8f2b-753caedf727d.json | 95 ++ .../8a6f7b20-de94-11eb-8f2b-753caedf727d.json | 94 ++ .../8fb01a00-df51-11eb-8f2b-753caedf727d.json | 94 ++ .../9282afc0-72d9-11eb-a3e3-b3cc7c78a70f.json | 150 ++ .../949bc180-df52-11eb-8f2b-753caedf727d.json | 94 ++ .../976620a0-de98-11eb-8f2b-753caedf727d.json | 94 ++ .../9a61edc0-de93-11eb-8f2b-753caedf727d.json | 74 + .../9c78ade0-de95-11eb-8f2b-753caedf727d.json | 94 ++ .../a0a31740-df51-11eb-8f2b-753caedf727d.json | 94 ++ .../aac00bc0-de98-11eb-8f2b-753caedf727d.json | 94 ++ .../ae5934e0-de94-11eb-8f2b-753caedf727d.json | 94 ++ .../b0837690-df52-11eb-8f2b-753caedf727d.json | 97 ++ .../bd28cb00-de96-11eb-8f2b-753caedf727d.json | 101 ++ .../bfd2bfe0-de97-11eb-8f2b-753caedf727d.json | 97 ++ .../c2a5c180-df51-11eb-8f2b-753caedf727d.json | 94 ++ .../c91fcd10-de95-11eb-8f2b-753caedf727d.json | 94 ++ .../d991e510-de96-11eb-8f2b-753caedf727d.json | 115 ++ .../dd4a3da0-df50-11eb-8f2b-753caedf727d.json | 93 ++ .../e5f07800-de94-11eb-8f2b-753caedf727d.json | 94 ++ .../f37f8350-df50-11eb-8f2b-753caedf727d.json | 93 ++ .../f52a9720-de93-11eb-8f2b-753caedf727d.json | 94 ++ .../f5f18940-de96-11eb-8f2b-753caedf727d.json | 115 ++ .../63365b50-82aa-11eb-ac13-d5ca87cb8fa2.json | 32 + .../ec5aa090-df42-11eb-8f2b-753caedf727d.json | 32 + .../6acbb070-72d0-11eb-a3e3-b3cc7c78a70f.json | 144 ++ .../d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f.json | 13 + .../01c261b0-7aa9-11eb-ac13-d5ca87cb8fa2.json | 126 ++ .../02294f80-73c7-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../0ccdda50-76ce-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../142fb6c0-82a8-11eb-ac13-d5ca87cb8fa2.json | 137 ++ .../1a0d5250-72e5-11eb-a3e3-b3cc7c78a70f.json | 165 ++ .../1a1c60c0-72d5-11eb-a3e3-b3cc7c78a70f.json | 146 ++ .../1adff580-72ee-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../1c969990-73c7-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../1d8002d0-82a7-11eb-ac13-d5ca87cb8fa2.json | 137 ++ .../21ff17c0-82a6-11eb-ac13-d5ca87cb8fa2.json | 137 ++ .../302cd5b0-76cd-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../346136f0-76d5-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../40d61ab0-72e6-11eb-a3e3-b3cc7c78a70f.json | 85 + .../41100be0-72e5-11eb-a3e3-b3cc7c78a70f.json | 165 ++ .../418e5a30-73c2-11eb-a3e3-b3cc7c78a70f.json | 108 ++ .../44020830-7394-11eb-a3e3-b3cc7c78a70f.json | 108 ++ .../49f0c060-76cd-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../4e5d25c0-76ce-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../55b5c280-76b7-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../57faae10-73c5-11eb-a3e3-b3cc7c78a70f.json | 140 ++ .../5b4877b0-82a6-11eb-ac13-d5ca87cb8fa2.json | 137 ++ .../5f955bb0-7394-11eb-a3e3-b3cc7c78a70f.json | 108 ++ .../6077fd00-76d5-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../62f6daa0-72ee-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../6ce04320-72d1-11eb-a3e3-b3cc7c78a70f.json | 104 ++ .../737d4f30-82ac-11eb-ac13-d5ca87cb8fa2.json | 108 ++ .../7546ac40-82a6-11eb-ac13-d5ca87cb8fa2.json | 137 ++ .../7582b030-73c6-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../786546d0-82a5-11eb-ac13-d5ca87cb8fa2.json | 137 ++ .../79da77d0-72e5-11eb-a3e3-b3cc7c78a70f.json | 165 ++ .../7c7d3750-73c3-11eb-a3e3-b3cc7c78a70f.json | 134 ++ .../7cbe5900-82ab-11eb-ac13-d5ca87cb8fa2.json | 135 ++ .../81f16940-72d3-11eb-a3e3-b3cc7c78a70f.json | 108 ++ .../87980f70-72ec-11eb-a3e3-b3cc7c78a70f.json | 207 +++ .../8b2a64a0-82a8-11eb-ac13-d5ca87cb8fa2.json | 134 ++ .../9047e8b0-72de-11eb-a3e3-b3cc7c78a70f.json | 159 ++ .../9109e490-76cd-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../92961600-7621-11eb-a3e3-b3cc7c78a70f.json | 104 ++ .../95f384b0-76d8-11eb-a3e3-b3cc7c78a70f.json | 159 ++ .../98d42ee0-76b6-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../a09329d0-73c6-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../a1616dd0-72eb-11eb-a3e3-b3cc7c78a70f.json | 165 ++ .../a7b6e910-72ed-11eb-a3e3-b3cc7c78a70f.json | 223 +++ .../ad55b1e0-73c8-11eb-a3e3-b3cc7c78a70f.json | 174 +++ .../aebde030-72d2-11eb-a3e3-b3cc7c78a70f.json | 199 +++ .../b5bd3a70-76ce-11eb-a3e3-b3cc7c78a70f.json | 108 ++ .../b9533f50-72e5-11eb-a3e3-b3cc7c78a70f.json | 165 ++ .../b9aa1d70-72db-11eb-a3e3-b3cc7c78a70f.json | 195 +++ .../bc4790b0-82aa-11eb-ac13-d5ca87cb8fa2.json | 135 ++ .../bf3dfde0-73c3-11eb-a3e3-b3cc7c78a70f.json | 140 ++ .../c049e1c0-72d5-11eb-a3e3-b3cc7c78a70f.json | 105 ++ .../c102b0f0-73c6-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../c369c190-72e4-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../c7d5db50-82a8-11eb-ac13-d5ca87cb8fa2.json | 207 +++ .../c813c5d0-72dd-11eb-a3e3-b3cc7c78a70f.json | 195 +++ .../d22c1090-82a5-11eb-ac13-d5ca87cb8fa2.json | 137 ++ .../d5d76c60-72ee-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../dbd199d0-82aa-11eb-ac13-d5ca87cb8fa2.json | 135 ++ .../ea5879c0-72eb-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../eba4ec60-72ea-11eb-a3e3-b3cc7c78a70f.json | 141 ++ .../ec68c4a0-73c6-11eb-a3e3-b3cc7c78a70f.json | 126 ++ .../ecf74b10-72ec-11eb-a3e3-b3cc7c78a70f.json | 206 +++ .../f13f5650-df5b-11eb-8f2b-753caedf727d.json | 42 + .../f33125b0-76d8-11eb-a3e3-b3cc7c78a70f.json | 134 ++ .../f91e9620-82a8-11eb-ac13-d5ca87cb8fa2.json | 126 ++ .../f9c6ba80-72e5-11eb-a3e3-b3cc7c78a70f.json | 176 +++ .../f9f89660-72d9-11eb-a3e3-b3cc7c78a70f.json | 79 + .../7cbb5410-3700-11e9-aa6d-ff445a78330c.json | 194 +++ .../7/dashboard/Filebeat-Zeek-Overview.ndjson | 9 - .../1df7ea80-370d-11e9-aa6d-ff445a78330c.json | 90 ++ .../466e5850-370d-11e9-aa6d-ff445a78330c.json | 90 ++ .../649acd40-370d-11e9-aa6d-ff445a78330c.json | 90 ++ .../9436c270-370d-11e9-aa6d-ff445a78330c.json | 90 ++ .../bec2f0e0-370d-11e9-aa6d-ff445a78330c.json | 105 ++ .../e042fda0-370d-11e9-aa6d-ff445a78330c.json | 90 ++ .../f469f230-370c-11e9-aa6d-ff445a78330c.json | 96 ++ .../f8c40810-370d-11e9-aa6d-ff445a78330c.json | 60 + x-pack/filebeat/module/zeek/module.yml | 2 +- .../a8160560-0bd0-11ea-81bb-cf244189d349.json | 202 +++ .../d97b7520-0bbe-11ea-81bb-cf244189d349.json | 202 +++ .../fc27a270-0b95-11ea-81bb-cf244189d349.json | 160 ++ ...metricbeat-activemq-broker-overview.ndjson | 7 - ...metricbeat-activemq-queues-overview.ndjson | 9 - ...metricbeat-activemq-topics-overview.ndjson | 9 - .../00e33010-0bd5-11ea-81bb-cf244189d349.json | 73 + .../21fb23a0-0bbe-11ea-81bb-cf244189d349.json | 73 + .../33cbfa60-0b95-11ea-81bb-cf244189d349.json | 106 ++ .../3db29790-0bd7-11ea-81bb-cf244189d349.json | 73 + .../4a93ef10-0bd5-11ea-81bb-cf244189d349.json | 73 + .../55cacee0-0ba7-11ea-81bb-cf244189d349.json | 135 ++ .../55cc9840-0bd6-11ea-81bb-cf244189d349.json | 67 + .../594db510-0b9c-11ea-81bb-cf244189d349.json | 134 ++ .../8599cea0-0c2e-11ea-81bb-cf244189d349.json | 67 + .../89de30b0-0bce-11ea-81bb-cf244189d349.json | 67 + .../8ae8aa90-0bc8-11ea-81bb-cf244189d349.json | 67 + .../99f41030-0bd5-11ea-81bb-cf244189d349.json | 73 + .../a85c09b0-0bbd-11ea-81bb-cf244189d349.json | 73 + .../a8ac8950-0c2e-11ea-81bb-cf244189d349.json | 67 + .../ad2d4960-0bd4-11ea-81bb-cf244189d349.json | 73 + .../bfad8290-0d22-11ea-ba76-7fb26815d86c.json | 134 ++ .../cb475400-0d22-11ea-ba76-7fb26815d86c.json | 134 ++ .../ce456e60-0b99-11ea-81bb-cf244189d349.json | 101 ++ .../d22e5e00-0bbd-11ea-81bb-cf244189d349.json | 73 + .../e73c2af0-0bce-11ea-81bb-cf244189d349.json | 67 + .../e91f2b80-0bbd-11ea-81bb-cf244189d349.json | 73 + .../fab93e30-0bbd-11ea-81bb-cf244189d349.json | 73 + .../07d67a60-d872-11eb-8220-c9141cc1b15c.json | 264 ++++ .../0eb5a6a0-694f-11ea-b0ac-95d4ecb1fecd.json | 232 +++ .../234aeda0-43b7-11e9-8697-530f39afc6eb.json | 210 +++ .../3367c170-921f-11e9-aa19-159bf182e06f.json | 883 +++++++++++ .../44ce4680-b7ba-11e9-8349-f15f850c5cd0.json | 253 +++ .../67c9f900-693e-11ea-b0ac-95d4ecb1fecd.json | 188 +++ .../68ba7bd0-20b6-11ea-8f72-2f8d21e50b0c.json | 254 +++ .../7ac8e1d0-28d2-11ea-ba6c-49a884eb104f.json | 166 ++ .../917a07b0-178e-11ea-8650-fb606deb5be4.json | 188 +++ .../Metricbeat-aws-billing-overview.ndjson | 9 - .../Metricbeat-aws-dynamodb-overview.ndjson | 11 - .../Metricbeat-aws-ebs-overview.ndjson | 11 - .../Metricbeat-aws-ec2-overview.ndjson | 9 - .../Metricbeat-aws-elb-overview.ndjson | 10 - .../Metricbeat-aws-kinesis-overview.ndjson | 10 - .../Metricbeat-aws-lambda-overview.ndjson | 7 - .../Metricbeat-aws-natgateway-overview.ndjson | 14 - .../dashboard/Metricbeat-aws-overview.ndjson | 16 - .../Metricbeat-aws-rds-overview.ndjson | 13 - .../Metricbeat-aws-s3-overview.ndjson | 8 - .../Metricbeat-aws-sns-overview.ndjson | 12 - .../Metricbeat-aws-sqs-overview.ndjson | 9 - ...tricbeat-aws-trasitgateway-overview.ndjson | 10 - .../Metricbeat-aws-usage-overview.ndjson | 8 - .../Metricbeat-aws-vpn-overview.ndjson | 8 - .../a096b830-4762-11e9-8062-c98a86cb6f94.json | 194 +++ .../c2b1cbc0-6891-11ea-b0ac-95d4ecb1fecd.json | 320 ++++ ...46400-f7fb-11e8-af03-c999c9dea608-ecs.json | 211 +++ .../d17b1000-17a4-11ea-8e91-03c7047cbb9d.json | 305 ++++ .../e6776b10-1534-11ea-841c-01bf20a6c8ba.json | 210 +++ .../e74bf320-b3ce-11e9-87a4-078dbbae220d.json | 231 +++ .../fac28650-7349-11e9-816b-07687310a99a.json | 349 +++++ .../2a711450-d871-11eb-8220-c9141cc1b15c.json | 125 ++ .../30fd4e40-f0a1-11eb-b61f-a53cb4913361.json | 147 ++ .../41e37710-f09d-11eb-b61f-a53cb4913361.json | 147 ++ .../56ac2b40-d871-11eb-8220-c9141cc1b15c.json | 125 ++ .../63aa5990-d86f-11eb-8220-c9141cc1b15c.json | 125 ++ .../68f36fb0-f0a0-11eb-b61f-a53cb4913361.json | 105 ++ .../6d631980-d870-11eb-8220-c9141cc1b15c.json | 125 ++ .../79d713c0-d86f-11eb-8220-c9141cc1b15c.json | 125 ++ .../8560b400-f096-11eb-b61f-a53cb4913361.json | 147 ++ .../9deb6a80-d870-11eb-8220-c9141cc1b15c.json | 125 ++ .../b0077d10-f09b-11eb-b61f-a53cb4913361.json | 131 ++ .../b3da5ac0-e6f1-11ea-a5b5-d5a0accaec95.json | 109 ++ .../bbc80900-f09e-11eb-b61f-a53cb4913361.json | 147 ++ .../c4419a90-f091-11eb-b61f-a53cb4913361.json | 147 ++ .../c68d7c30-d870-11eb-8220-c9141cc1b15c.json | 125 ++ .../cde34840-e6f2-11ea-a5b5-d5a0accaec95.json | 106 ++ .../d1468000-d86f-11eb-8220-c9141cc1b15c.json | 125 ++ .../d7b399c0-e6f1-11ea-a5b5-d5a0accaec95.json | 91 ++ .../f757eba0-f0a0-11eb-b61f-a53cb4913361.json | 131 ++ .../f9ff3450-f094-11eb-b61f-a53cb4913361.json | 147 ++ .../007ceec0-694c-11ea-b0ac-95d4ecb1fecd.json | 67 + .../00b29040-921d-11e9-aa19-159bf182e06f.json | 103 ++ .../01ed5990-694a-11ea-b0ac-95d4ecb1fecd.json | 67 + .../08645080-6891-11ea-b0ac-95d4ecb1fecd.json | 87 ++ .../09857a20-180f-11ea-8e91-03c7047cbb9d.json | 68 + .../09db13f0-2bdd-11e9-9fe1-cde861544141.json | 94 ++ .../0a36b590-694c-11ea-b0ac-95d4ecb1fecd.json | 67 + .../10e0f270-694c-11ea-b0ac-95d4ecb1fecd.json | 67 + .../1235fe50-41e7-11e9-b7a0-c99d9d127b61.json | 77 + .../128fd450-734e-11e9-816b-07687310a99a.json | 76 + .../12eff7e0-b7b9-11e9-8349-f15f850c5cd0.json | 66 + .../13e624c0-180e-11ea-8e91-03c7047cbb9d.json | 118 ++ .../142ad600-693b-11ea-b0ac-95d4ecb1fecd.json | 78 + ...18fd0-f7f9-11e8-af03-c999c9dea608-ecs.json | 81 + .../1731c440-e649-11ea-a838-3f4a45f85600.json | 86 + .../17fcda50-921b-11e9-aa19-159bf182e06f.json | 77 + .../1f3f00c0-28d1-11ea-ba6c-49a884eb104f.json | 87 ++ .../1f528f50-b3ce-11e9-87a4-078dbbae220d.json | 86 + .../21f30090-b3ca-11e9-87a4-078dbbae220d.json | 86 + ...b3400-f7f9-11e8-af03-c999c9dea608-ecs.json | 81 + .../25384bf0-b7b9-11e9-8349-f15f850c5cd0.json | 66 + .../26b73e50-6943-11ea-b0ac-95d4ecb1fecd.json | 67 + .../2929edb0-178e-11ea-8650-fb606deb5be4.json | 59 + .../2b2d58b0-4762-11e9-8062-c98a86cb6f94.json | 92 ++ .../2dbb8f90-4760-11e9-8062-c98a86cb6f94.json | 87 ++ .../2ee7f420-6943-11ea-b0ac-95d4ecb1fecd.json | 67 + .../31ad4090-2003-11ea-8f72-2f8d21e50b0c.json | 229 +++ .../398d12d0-7352-11e9-816b-07687310a99a.json | 76 + .../39dfc8d0-28cf-11ea-ba6c-49a884eb104f.json | 76 + .../3a3914d0-4761-11e9-8062-c98a86cb6f94.json | 79 + .../3c5d7860-d903-11eb-8220-c9141cc1b15c.json | 79 + .../3dee68c0-7b0c-11ea-9bb4-e958b64b5685.json | 65 + .../3e091620-e64b-11ea-a838-3f4a45f85600.json | 75 + .../415fed40-694f-11ea-b0ac-95d4ecb1fecd.json | 99 ++ .../42016bf0-728f-11e9-9a7b-4d62d5bcf4fc.json | 79 + .../4658f540-734a-11e9-816b-07687310a99a.json | 71 + .../49379b70-7b07-11ea-9bb4-e958b64b5685.json | 90 ++ .../4bf0a740-28d1-11ea-ba6c-49a884eb104f.json | 94 ++ .../4bf62a10-8310-11e9-ac83-47df3568ff90.json | 97 ++ .../53730d20-437e-11e9-8697-530f39afc6eb.json | 73 + .../54e88a40-734e-11e9-816b-07687310a99a.json | 76 + .../572d40e0-b3ca-11e9-87a4-078dbbae220d.json | 87 ++ .../58e17c10-7349-11e9-816b-07687310a99a.json | 73 + .../58f5a3c0-6943-11ea-b0ac-95d4ecb1fecd.json | 78 + .../59defc90-17a5-11ea-8e91-03c7047cbb9d.json | 59 + .../59e2e110-178d-11ea-8650-fb606deb5be4.json | 70 + .../6392bc30-b3c9-11e9-87a4-078dbbae220d.json | 90 ++ .../67f43080-b7b9-11e9-8349-f15f850c5cd0.json | 67 + .../681aab60-178c-11ea-8650-fb606deb5be4.json | 162 ++ .../68970b10-6890-11ea-b0ac-95d4ecb1fecd.json | 87 ++ .../6e3285d0-4763-11e9-8062-c98a86cb6f94.json | 68 + .../6f7f7680-180c-11ea-8e91-03c7047cbb9d.json | 68 + .../6fc1efd0-b3c9-11e9-87a4-078dbbae220d.json | 90 ++ .../75ebfda0-1789-11ea-8650-fb606deb5be4.json | 70 + .../7b93bab0-7b0a-11ea-9bb4-e958b64b5685.json | 65 + .../7d1e0870-7a3f-11ea-bfa4-dfea8c457654.json | 249 +++ .../81d83c70-4762-11e9-8062-c98a86cb6f94.json | 73 + .../8345d580-6891-11ea-b0ac-95d4ecb1fecd.json | 99 ++ .../83f08eb0-1532-11ea-841c-01bf20a6c8ba.json | 100 ++ .../8b34a100-4762-11e9-8062-c98a86cb6f94.json | 73 + .../8cf5fbe0-7b07-11ea-9bb4-e958b64b5685.json | 90 ++ .../9121ac90-734d-11e9-816b-07687310a99a.json | 76 + .../915bcd50-28d1-11ea-ba6c-49a884eb104f.json | 95 ++ .../9202d1a0-178c-11ea-8650-fb606deb5be4.json | 162 ++ .../95b322f0-734a-11e9-816b-07687310a99a.json | 71 + .../9bf8e1e0-6890-11ea-b0ac-95d4ecb1fecd.json | 87 ++ .../9d284bc0-7b08-11ea-9bb4-e958b64b5685.json | 90 ++ ...c6030-f7f8-11e8-af03-c999c9dea608-ecs.json | 83 + .../9f0425c0-7b0a-11ea-9bb4-e958b64b5685.json | 65 + .../a5670a20-e65a-11ea-a838-3f4a45f85600.json | 81 + .../abdc7480-180b-11ea-8e91-03c7047cbb9d.json | 68 + .../b00c4390-b7b8-11e9-8349-f15f850c5cd0.json | 66 + .../b0afd3e0-43b7-11e9-8697-530f39afc6eb.json | 79 + .../b2191dd0-734c-11e9-816b-07687310a99a.json | 70 + .../b2ea15a0-b3c7-11e9-87a4-078dbbae220d.json | 86 + .../b36532e0-688e-11ea-b0ac-95d4ecb1fecd.json | 82 + .../b403f7b0-7b15-11ea-9bb4-e958b64b5685.json | 65 + .../b5308940-7347-11e9-816b-07687310a99a.json | 59 + .../b7f8bf90-180f-11ea-8e91-03c7047cbb9d.json | 68 + .../b9703dd0-b3c9-11e9-87a4-078dbbae220d.json | 86 + .../bb3a6cd0-b7b6-11e9-8349-f15f850c5cd0.json | 66 + .../bb82c4d0-6c25-11e9-81bc-7f4cd8b3d892.json | 94 ++ .../bc5dcc90-688e-11ea-b0ac-95d4ecb1fecd.json | 82 + .../bc8bd8f0-31fd-11ea-bcbf-59cb7eefc1f0.json | 79 + .../bdb8ddd0-6890-11ea-b0ac-95d4ecb1fecd.json | 87 ++ .../be6c4180-41e6-11e9-b7a0-c99d9d127b61.json | 66 + ...828d0-f7f6-11e8-af03-c999c9dea608-ecs.json | 79 + .../bf81e030-180e-11ea-8e91-03c7047cbb9d.json | 68 + .../c0e32d50-b7b8-11e9-8349-f15f850c5cd0.json | 66 + .../c186b610-688d-11ea-b0ac-95d4ecb1fecd.json | 79 + .../c1db9b80-694b-11ea-b0ac-95d4ecb1fecd.json | 67 + .../c7d6cf90-688e-11ea-b0ac-95d4ecb1fecd.json | 82 + .../c84ed3d0-6890-11ea-b0ac-95d4ecb1fecd.json | 87 ++ .../cd6419c0-6949-11ea-b0ac-95d4ecb1fecd.json | 67 + .../ce7445c0-688f-11ea-b0ac-95d4ecb1fecd.json | 88 ++ .../d045d120-b7b9-11e9-8349-f15f850c5cd0.json | 59 + .../d186fd50-4763-11e9-8062-c98a86cb6f94.json | 78 + .../d19a71b0-180e-11ea-8e91-03c7047cbb9d.json | 68 + .../d2f46190-830f-11e9-ac83-47df3568ff90.json | 98 ++ .../d560de70-b3c7-11e9-87a4-078dbbae220d.json | 87 ++ .../dc5f65b0-6949-11ea-b0ac-95d4ecb1fecd.json | 67 + .../dcd31cd0-41e5-11e9-b7a0-c99d9d127b61.json | 66 + .../dd2f2a10-41e6-11e9-b7a0-c99d9d127b61.json | 71 + .../deab0260-2981-11e9-86eb-a3a07a77f530.json | 59 + .../dffa19e0-180e-11ea-8e91-03c7047cbb9d.json | 68 + .../e0e65e60-688e-11ea-b0ac-95d4ecb1fecd.json | 82 + .../ea9e3d40-693a-11ea-b0ac-95d4ecb1fecd.json | 67 + ...b6ec0-f7f8-11e8-af03-c999c9dea608-ecs.json | 84 + .../f58f99b0-693a-11ea-b0ac-95d4ecb1fecd.json | 67 + .../f6831f30-b7b6-11e9-8349-f15f850c5cd0.json | 66 + .../f74eb760-41e8-11e9-b7a0-c99d9d127b61.json | 86 + .../f7c17000-6949-11ea-b0ac-95d4ecb1fecd.json | 67 + .../fc0869c0-180e-11ea-8e91-03c7047cbb9d.json | 68 + .../fcfc8d80-693e-11ea-b0ac-95d4ecb1fecd.json | 119 ++ .../fd915180-6890-11ea-b0ac-95d4ecb1fecd.json | 87 ++ .../fe0581b0-b7b8-11e9-8349-f15f850c5cd0.json | 66 + ...59380-f7f8-11e8-af03-c999c9dea608-ecs.json | 81 + .../20dc7c50-2e89-11eb-991c-c5fd3b7f5a63.json | 218 +++ .../Metricbeat-awsfargate-overview.ndjson | 9 - .../60941700-2e88-11eb-991c-c5fd3b7f5a63.json | 115 ++ .../86720980-3966-11eb-a417-f961313c14f6.json | 102 ++ .../8cf592f0-2e8e-11eb-a417-f961313c14f6.json | 187 +++ .../a7970500-2e91-11eb-a417-f961313c14f6.json | 129 ++ .../b1837e70-396f-11eb-a417-f961313c14f6.json | 115 ++ .../c3952840-2e91-11eb-a417-f961313c14f6.json | 129 ++ .../d3f3aa80-2e8d-11eb-a417-f961313c14f6.json | 130 ++ .../38eee240-2e90-11eb-a417-f961313c14f6.json | 99 ++ .../10efa340-32f8-11ea-a83e-25b8612d00cc.json | 303 ++++ .../1a151f80-32db-11ea-a83e-25b8612d00cc.json | 298 ++++ .../6f2393f0-6d08-11ea-8fe8-71add5fd7c38.json | 166 ++ .../91afcc50-eaad-11e9-90ec-112a988266d5.json | 232 +++ .../9c11ac60-6cf6-11ea-8fe8-71add5fd7c38.json | 166 ++ ...Metricbeat-azure-app-state-overview.ndjson | 12 - .../Metricbeat-azure-billing-overview.ndjson | 7 - ...ricbeat-azure-blob-storage-overview.ndjson | 12 - ...t-azure-container-instance-overview.ndjson | 7 - ...t-azure-container-registry-overview.ndjson | 7 - ...at-azure-container-service-overview.ndjson | 8 - ...eat-azure-database-account-overview.ndjson | 9 - ...ricbeat-azure-file-storage-overview.ndjson | 14 - ...icbeat-azure-queue-storage-overview.ndjson | 12 - .../Metricbeat-azure-storage-overview.ndjson | 13 - ...icbeat-azure-table-storage-overview.ndjson | 12 - ...beat-azure-vm-guestmetrics-overview.ndjson | 9 - .../Metricbeat-azure-vm-overview.ndjson | 10 - .../Metricbeat-azure-vmss-overview.ndjson | 10 - .../a6f5d430-eaa6-11e9-90ec-112a988266d5.json | 210 +++ .../b165ef60-32f7-11ea-a83e-25b8612d00cc.json | 303 ++++ .../b232c220-8481-11ea-b181-4b1a9e0110f9.json | 210 +++ .../d3efeb30-c1c7-11ea-b7e7-0f48178cdb3c.json | 166 ++ .../d5fbd610-03d9-11eb-8034-63f2039e9d3f.json | 304 ++++ .../dae20ed0-6d0a-11ea-8fe8-71add5fd7c38.json | 188 +++ .../dff7a080-32f7-11ea-a83e-25b8612d00cc.json | 347 +++++ .../eb3f05f0-ea9a-11e9-90ec-112a988266d5.json | 231 +++ .../ff2fe020-32f7-11ea-a83e-25b8612d00cc.json | 303 ++++ .../0df175c0-03ee-11eb-8034-63f2039e9d3f.json | 59 + .../0e74dee0-04a4-11eb-8034-63f2039e9d3f.json | 116 ++ .../1064f9a0-04a5-11eb-8034-63f2039e9d3f.json | 128 ++ .../2b54b2c0-04a8-11eb-8034-63f2039e9d3f.json | 114 ++ .../76cc1d70-04a7-11eb-8034-63f2039e9d3f.json | 114 ++ .../a89c8fd0-03ec-11eb-8034-63f2039e9d3f.json | 59 + .../cb5ec410-03ed-11eb-8034-63f2039e9d3f.json | 59 + .../cfa361a0-04a8-11eb-8034-63f2039e9d3f.json | 133 ++ .../e2704140-04a3-11eb-8034-63f2039e9d3f.json | 129 ++ .../f0678020-04a2-11eb-8034-63f2039e9d3f.json | 117 ++ .../0241cc10-339d-11ea-a83e-25b8612d00cc.json | 98 ++ .../037382e0-856e-11ea-91bc-ab084c7ec0e7.json | 225 +++ .../04f8eec0-6ab1-11ea-af5c-73e8f396b3e9.json | 69 + .../05d5b3e0-c1c9-11ea-b7e7-0f48178cdb3c.json | 91 ++ .../0892eaa0-ea9a-11e9-90ec-112a988266d5.json | 71 + .../097bc300-eaa5-11e9-90ec-112a988266d5.json | 138 ++ .../09a6f150-3399-11ea-a83e-25b8612d00cc.json | 102 ++ .../09f05e00-32f7-11ea-a83e-25b8612d00cc.json | 36 + .../0aacc190-eaa8-11e9-90ec-112a988266d5.json | 69 + .../0d03a670-eb43-11e9-90ec-112a988266d5.json | 71 + .../0fa31060-6aae-11ea-af5c-73e8f396b3e9.json | 93 ++ .../109ec950-32e6-11ea-a83e-25b8612d00cc.json | 102 ++ .../17ee2920-3391-11ea-a83e-25b8612d00cc.json | 102 ++ .../1e70dc50-6d22-11ea-8fe8-71add5fd7c38.json | 30 + .../1f5c1cd0-eaa3-11e9-90ec-112a988266d5.json | 88 ++ .../2219de20-32ed-11ea-a83e-25b8612d00cc.json | 98 ++ .../241a55e0-3399-11ea-a83e-25b8612d00cc.json | 102 ++ .../2bedaca0-339d-11ea-a83e-25b8612d00cc.json | 98 ++ .../2e5183a0-03da-11eb-8034-63f2039e9d3f.json | 146 ++ .../33500790-eaaf-11e9-90ec-112a988266d5.json | 70 + .../33d645e0-32ed-11ea-a83e-25b8612d00cc.json | 98 ++ .../3630b9a0-6d22-11ea-8fe8-71add5fd7c38.json | 30 + .../3a50e950-eb46-11e9-90ec-112a988266d5.json | 71 + .../40dbc0d0-32e3-11ea-a83e-25b8612d00cc.json | 101 ++ .../4177aab0-83cc-11ea-be84-f5d4d6b9a792.json | 30 + .../42cc28d0-ea9a-11e9-90ec-112a988266d5.json | 71 + .../43b31a20-339b-11ea-a83e-25b8612d00cc.json | 98 ++ .../453965a0-3393-11ea-a83e-25b8612d00cc.json | 102 ++ .../4eaef260-32e1-11ea-a83e-25b8612d00cc.json | 105 ++ .../5031b220-eb61-11e9-90ec-112a988266d5.json | 99 ++ .../553f9320-32e9-11ea-a83e-25b8612d00cc.json | 72 + .../55936920-3391-11ea-a83e-25b8612d00cc.json | 98 ++ .../5720b830-6aad-11ea-af5c-73e8f396b3e9.json | 30 + .../599c62c0-32d7-11ea-a83e-25b8612d00cc.json | 105 ++ .../5c016810-ea9a-11e9-90ec-112a988266d5.json | 71 + .../5cbf5820-339c-11ea-a83e-25b8612d00cc.json | 98 ++ .../634b83c0-32ee-11ea-a83e-25b8612d00cc.json | 102 ++ .../64266ec0-eb42-11e9-90ec-112a988266d5.json | 71 + .../674c1d70-83cc-11ea-be84-f5d4d6b9a792.json | 113 ++ .../685fbeb0-32eb-11ea-a83e-25b8612d00cc.json | 72 + .../686bc990-ea92-11e9-90ec-112a988266d5.json | 99 ++ .../6d52a660-eaa4-11e9-90ec-112a988266d5.json | 73 + .../6e2d9930-6d1e-11ea-8fe8-71add5fd7c38.json | 69 + .../6ffa7e20-c1da-11ea-b7e7-0f48178cdb3c.json | 83 + .../7205a4f0-ea95-11e9-90ec-112a988266d5.json | 70 + .../722ef2f0-3393-11ea-a83e-25b8612d00cc.json | 98 ++ .../74a8e130-6cfa-11ea-8fe8-71add5fd7c38.json | 74 + .../787a0a20-eaa8-11e9-90ec-112a988266d5.json | 92 ++ .../7972b260-6d07-11ea-8fe8-71add5fd7c38.json | 69 + .../81f16b40-32ea-11ea-a83e-25b8612d00cc.json | 72 + .../82a51dd0-c1d7-11ea-b7e7-0f48178cdb3c.json | 139 ++ .../8b6b9450-ea99-11e9-90ec-112a988266d5.json | 70 + .../9142aca0-c1c7-11ea-b7e7-0f48178cdb3c.json | 123 ++ .../942844b0-6ac5-11ea-af5c-73e8f396b3e9.json | 74 + .../9c1a1910-ea9a-11e9-90ec-112a988266d5.json | 71 + .../9e991b10-3391-11ea-a83e-25b8612d00cc.json | 98 ++ .../a16b5900-8492-11ea-b181-4b1a9e0110f9.json | 77 + .../a49b4e20-8490-11ea-b181-4b1a9e0110f9.json | 77 + .../a4bf9710-3393-11ea-a83e-25b8612d00cc.json | 98 ++ .../abd32c30-ea99-11e9-90ec-112a988266d5.json | 71 + .../acced050-32d1-11ea-a83e-25b8612d00cc.json | 99 ++ .../b18053b0-c1da-11ea-b7e7-0f48178cdb3c.json | 84 + .../b45fd8e0-eb42-11e9-90ec-112a988266d5.json | 71 + .../b88b7f90-6d07-11ea-8fe8-71add5fd7c38.json | 69 + .../b9aa9b20-eaa5-11e9-90ec-112a988266d5.json | 138 ++ .../bd1c93b0-6cf7-11ea-8fe8-71add5fd7c38.json | 74 + .../bda7b580-6d1f-11ea-8fe8-71add5fd7c38.json | 81 + .../c19586f0-6d1e-11ea-8fe8-71add5fd7c38.json | 69 + .../c8016f70-c1da-11ea-b7e7-0f48178cdb3c.json | 84 + .../cecd6680-eb41-11e9-90ec-112a988266d5.json | 70 + .../cfaedaf0-eb43-11e9-90ec-112a988266d5.json | 71 + .../d2801d70-8490-11ea-b181-4b1a9e0110f9.json | 77 + .../d3ac7d90-8492-11ea-b181-4b1a9e0110f9.json | 77 + .../d7ea4290-eaa8-11e9-90ec-112a988266d5.json | 69 + .../db9a3490-ea8f-11e9-90ec-112a988266d5.json | 74 + .../ddea7430-6d07-11ea-8fe8-71add5fd7c38.json | 69 + .../e159b990-339c-11ea-a83e-25b8612d00cc.json | 102 ++ .../e4b25ee0-32f6-11ea-a83e-25b8612d00cc.json | 36 + .../e79211c0-6d37-11ea-8fe8-71add5fd7c38.json | 234 +++ .../e8ca65c0-eb45-11e9-90ec-112a988266d5.json | 71 + .../eda368d0-6d1d-11ea-8fe8-71add5fd7c38.json | 69 + .../f18a7cb0-32f6-11ea-a83e-25b8612d00cc.json | 36 + .../f528e6a0-339a-11ea-a83e-25b8612d00cc.json | 102 ++ .../fcc24d70-32f5-11ea-a83e-25b8612d00cc.json | 36 + .../fdef3f40-32f6-11ea-a83e-25b8612d00cc.json | 36 + .../ff303710-6d07-11ea-8fe8-71add5fd7c38.json | 69 + .../94364424-f851-11ea-8206-7b08cd60917a.json | 700 +++++++++ .../9c81cf34-f84e-11ea-a49d-f3f94f5e4fac.json | 612 ++++++++ .../Metricbeat-cloudfoundry-overview.ndjson | 27 - ...icbeat-cloudfoundry-platform-health.ndjson | 30 - .../435133e4-f8d2-11ea-a49e-d36460a01dbe.json | 36 + .../9379c90c-f851-11ea-8313-f3c659aaac21.json | 127 ++ .../937d5f4a-f851-11ea-9321-07e4098558b1.json | 133 ++ .../938e9490-f851-11ea-9fc4-93d53dd1c7c1.json | 133 ++ .../93911f12-f851-11ea-9a0a-bb5ff28cf81a.json | 36 + .../9398519c-f851-11ea-9d16-0345f5e91a95.json | 127 ++ .../939a9380-f851-11ea-9a72-a3f185bef2c4.json | 120 ++ .../93a42468-f851-11ea-8393-7791ef366bdd.json | 127 ++ .../93acc294-f851-11ea-a97a-53f837470423.json | 116 ++ .../93c03f18-f851-11ea-8da1-eb649369fefa.json | 214 +++ .../93c2c184-f851-11ea-93fb-fb88ecfdafdb.json | 127 ++ .../93d1bce8-f851-11ea-9e6c-e3a6ffa65309.json | 125 ++ .../93d3c40c-f851-11ea-ab6c-2b7686d129ce.json | 133 ++ .../93d9d39c-f851-11ea-b957-3f002cacae67.json | 128 ++ .../93dcb238-f851-11ea-8c49-fb9deba7fc48.json | 132 ++ .../93deea94-f851-11ea-8186-777cfa34f466.json | 133 ++ .../93e0d7d2-f851-11ea-a8ea-ab5761cc3b1c.json | 133 ++ .../93edb394-f851-11ea-af40-bbda53487783.json | 133 ++ .../93f27abe-f851-11ea-90c1-670adf08e026.json | 125 ++ .../93f59bb8-f851-11ea-ab86-6757c64f8446.json | 148 ++ .../93f86eec-f851-11ea-9ae8-ff70f6c28f02.json | 125 ++ .../93fd890e-f851-11ea-96db-8342eb689011.json | 102 ++ .../9410e9ea-f851-11ea-b70d-9bda9c286e02.json | 36 + .../9417ef10-f851-11ea-bc5c-cbb3bfb4dc2a.json | 133 ++ .../94200db2-f851-11ea-a8fa-9bfadc17852f.json | 127 ++ .../9430406a-f851-11ea-a96e-efef958606c3.json | 111 ++ .../943b6bf2-f851-11ea-99e0-b300881da4b1.json | 133 ++ .../943dcad2-f851-11ea-8923-93b64d3cea46.json | 128 ++ .../94402c0a-f851-11ea-b3d4-f3815d5ef910.json | 133 ++ .../9c58b248-f84e-11ea-87a9-67d346210280.json | 121 ++ .../9c5e5c7a-f84e-11ea-9c79-3f5f46484ce3.json | 142 ++ .../9c635824-f84e-11ea-9b02-735b8407166a.json | 135 ++ .../9c69684a-f84e-11ea-bf59-4bba486da283.json | 135 ++ .../9c7328ee-f84e-11ea-9259-772ddb1805fb.json | 135 ++ .../9c77cf84-f84e-11ea-a3ff-7f7f73eabd57.json | 121 ++ .../9c7b602c-f84e-11ea-8762-e7aef60b5522.json | 127 ++ .../9c89336e-f84e-11ea-bbcd-23e329286ac7.json | 120 ++ .../9c8ed8fa-f84e-11ea-b20d-bb82d7a8e05d.json | 121 ++ .../9c93270c-f84e-11ea-8b23-c7a1cc31369e.json | 135 ++ .../9c948fb6-f84e-11ea-96f5-dff115716ba4.json | 131 ++ .../9c975020-f84e-11ea-9d35-0ba5b289cee7.json | 143 ++ .../9c99314c-f84e-11ea-92d5-9bcd6abdce0f.json | 135 ++ .../9c9d9c14-f84e-11ea-a575-a30e017a09e9.json | 132 ++ .../9c9f12b0-f84e-11ea-bfe0-8f64de3dbbbd.json | 142 ++ .../9ca39c36-f84e-11ea-9b0e-af32e8072a87.json | 36 + .../9ca526aa-f84e-11ea-aad5-ef2777854f3d.json | 127 ++ .../9ca805fa-f84e-11ea-ab90-2b00dd50450c.json | 121 ++ .../9ca9737c-f84e-11ea-b8a5-9f245d6f7121.json | 132 ++ .../9caafdaa-f84e-11ea-8c78-43aac4b09aa5.json | 128 ++ .../9cac69e2-f84e-11ea-b8d4-4b40313a5eb0.json | 135 ++ .../9caddb24-f84e-11ea-b008-df9bd2aed7cc.json | 135 ++ .../9caf798e-f84e-11ea-ac4b-4795663aee6b.json | 136 ++ .../9cb33038-f84e-11ea-8929-07701f2b1c26.json | 127 ++ .../9cbb8cd8-f84e-11ea-9a20-af708256c3a9.json | 121 ++ .../f771b65c-f8d0-11ea-bf74-8bbda818957f.json | 36 + .../04b595b0-c1fc-11ea-8a94-61b423d19ae7.json | 308 ++++ .../3975ad70-c761-11ea-8a94-61b423d19ae7.json | 187 +++ .../Metricbeat-cockroachdb-overview.ndjson | 14 - .../Metricbeat-cockroachdb-sql.ndjson | 8 - .../020f6a20-ec68-11ea-b088-6f3c0066a551.json | 136 ++ .../2af19b90-976c-11e9-9eea-6f554992ec1f.json | 134 ++ .../5073ed20-9760-11e9-9eea-6f554992ec1f.json | 190 +++ .../57939a70-ec63-11ea-b088-6f3c0066a551.json | 155 ++ .../61999c30-c766-11ea-8a94-61b423d19ae7.json | 169 ++ .../643353f0-c202-11ea-8a94-61b423d19ae7.json | 90 ++ .../6fdbdbe0-c767-11ea-8a94-61b423d19ae7.json | 72 + .../74cf44b0-9771-11e9-9eea-6f554992ec1f.json | 105 ++ .../79691920-9766-11e9-9eea-6f554992ec1f.json | 65 + .../7d13f0d0-c763-11ea-8a94-61b423d19ae7.json | 124 ++ .../89e96120-fe7a-11ea-a589-8d7d9f58c8fd.json | 112 ++ .../8add0960-976a-11e9-9eea-6f554992ec1f.json | 65 + .../b5ab45b0-9771-11e9-9eea-6f554992ec1f.json | 105 ++ .../bad285b0-9769-11e9-9eea-6f554992ec1f.json | 67 + .../bbd18b20-ccf4-11ea-8a94-61b423d19ae7.json | 73 + .../d4177d60-75e2-11eb-b955-29bfd5c9e2dd.json | 36 + .../f2d065e0-ee11-11ea-b088-6f3c0066a551.json | 75 + .../Metricbeat-CoreDNS-Dashboard-ecs.json | 215 +++ .../Metricbeat-coredns-overview.ndjson | 9 - .../277fc650-67a9-11e9-a534-715561d0bf42.json | 214 +++ ...a53f0-53d5-11e9-b466-9be470bbd327-ecs.json | 195 +++ ...08510-53c4-11e9-b466-9be470bbd327-ecs.json | 102 ++ .../4804eaa0-7315-11e9-b0d0-414c3011ddbb.json | 86 + .../57c74300-7308-11e9-b0d0-414c3011ddbb.json | 108 ++ .../86177430-728d-11e9-b0d0-414c3011ddbb.json | 200 +++ ...df590-53c4-11e9-b466-9be470bbd327-ecs.json | 103 ++ .../a58345f0-7298-11e9-b0d0-414c3011ddbb.json | 194 +++ .../2b0fd7b0-feac-11ea-b032-d59f894a5072.json | 254 +++ .../6041d970-a6ae-11ea-950e-d57608e3aa51.json | 166 ++ .../76c9e920-e890-11ea-bf8c-d13ebf358a78.json | 166 ++ .../8f9c6cc0-909d-11ea-8180-7b0dacd9df87.json | 144 ++ .../Metricbeat-gcp-billing-overview.ndjson | 7 - .../Metricbeat-gcp-compute-overview.ndjson | 10 - ...t-gcp-load-balancing-https-overview.ndjson | 8 - ...cbeat-gcp-loadbalancing-l3-overview.ndjson | 6 - ...oadbalancing-tcp-ssl-proxy-overview.ndjson | 7 - .../Metricbeat-gcp-pubsub-overview.ndjson | 11 - .../Metricbeat-gcp-storage-overview.ndjson | 7 - .../aa5b8bd0-9157-11ea-8180-7b0dacd9df87.json | 188 +++ .../ca401040-8e52-11ea-9fa6-4d675d5290dc.json | 166 ++ .../f40ee870-5e4a-11ea-a4f6-717338406083.json | 232 +++ .../057de170-e88d-11ea-bf8c-d13ebf358a78.json | 88 ++ .../0776dbf0-019f-11eb-b032-d59f894a5072.json | 113 ++ .../11d06fc0-01a0-11eb-b032-d59f894a5072.json | 113 ++ .../25b76dc0-01a2-11eb-b032-d59f894a5072.json | 103 ++ .../403d81e0-01a0-11eb-b032-d59f894a5072.json | 105 ++ .../520c6f10-ec8a-11ea-a0ed-7fe6b565d158.json | 84 + .../5f97d300-01a1-11eb-b032-d59f894a5072.json | 121 ++ .../6de1f430-019d-11eb-b032-d59f894a5072.json | 104 ++ .../73346db0-e88d-11ea-bf8c-d13ebf358a78.json | 154 ++ .../79d80f10-01a0-11eb-b032-d59f894a5072.json | 113 ++ .../bd399790-01a2-11eb-b032-d59f894a5072.json | 103 ++ .../dd835300-e88f-11ea-bf8c-d13ebf358a78.json | 59 + .../e6933020-e88d-11ea-bf8c-d13ebf358a78.json | 109 ++ .../f3e92c10-019d-11eb-b032-d59f894a5072.json | 105 ++ .../02b3c620-8e52-11ea-9fa6-4d675d5290dc.json | 84 + .../0bd0a6e0-9156-11ea-8180-7b0dacd9df87.json | 70 + .../239e2290-8e52-11ea-9fa6-4d675d5290dc.json | 84 + .../2f6b6740-909b-11ea-8180-7b0dacd9df87.json | 71 + .../3aa96470-5fc4-11ea-a4f6-717338406083.json | 99 ++ .../3f472ea0-5e47-11ea-a4f6-717338406083.json | 67 + .../3f4e9040-909d-11ea-8180-7b0dacd9df87.json | 113 ++ .../434f69f0-909b-11ea-8180-7b0dacd9df87.json | 71 + .../43f45ba0-5e4a-11ea-a4f6-717338406083.json | 66 + .../4b44b2b0-8e51-11ea-9fa6-4d675d5290dc.json | 93 ++ .../543dac40-909b-11ea-8180-7b0dacd9df87.json | 71 + .../5d2f9160-e88e-11ea-bf8c-d13ebf358a78.json | 99 ++ .../6958ed10-a6ad-11ea-950e-d57608e3aa51.json | 99 ++ .../6f795e70-5e49-11ea-a4f6-717338406083.json | 66 + .../6f933ef0-9155-11ea-8180-7b0dacd9df87.json | 74 + .../89513bc0-5e48-11ea-a4f6-717338406083.json | 66 + .../8d4ddf40-9155-11ea-8180-7b0dacd9df87.json | 70 + .../91eb8d10-8e51-11ea-9fa6-4d675d5290dc.json | 66 + .../95e1f050-5e48-11ea-a4f6-717338406083.json | 66 + .../9d919d00-5e4d-11ea-a4f6-717338406083.json | 85 + .../afeb98a0-a6ac-11ea-950e-d57608e3aa51.json | 76 + .../be27b340-a6ac-11ea-950e-d57608e3aa51.json | 76 + .../c4e1e090-a6aa-11ea-950e-d57608e3aa51.json | 77 + .../d4cc5ec0-8e51-11ea-9fa6-4d675d5290dc.json | 66 + .../d5418f80-9156-11ea-8180-7b0dacd9df87.json | 93 ++ .../d63465e0-9154-11ea-8180-7b0dacd9df87.json | 74 + .../da5bc460-63e1-11ea-b0ac-95d4ecb1fecd.json | 116 ++ .../dff87070-9155-11ea-8180-7b0dacd9df87.json | 70 + .../e562eb50-909a-11ea-8180-7b0dacd9df87.json | 71 + .../e9e44d90-8e51-11ea-9fa6-4d675d5290dc.json | 66 + .../eb891a20-9155-11ea-8180-7b0dacd9df87.json | 70 + .../eed05d80-a6ac-11ea-950e-d57608e3aa51.json | 77 + .../ef1508c0-5e4c-11ea-a4f6-717338406083.json | 87 ++ .../f6e33a00-feaf-11ea-b032-d59f894a5072.json | 119 ++ .../f86c26f0-a6aa-11ea-950e-d57608e3aa51.json | 77 + .../8f788c70-36c9-11ea-9f7a-097fe7ab3ddd.json | 181 +++ .../Metricbeat-ibmmq-calls-overview.ndjson | 11 - .../Metricbeat-ibmmq-messages-overview.ndjson | 13 - ...icbeat-ibmmq-subscriptions-overview.ndjson | 8 - .../d2112e90-36ea-11ea-9f7a-097fe7ab3ddd.json | 286 ++++ .../fc5512c0-36d1-11ea-9f7a-097fe7ab3ddd.json | 265 ++++ .../07262080-36d3-11ea-9f7a-097fe7ab3ddd.json | 103 ++ .../0abb72e0-36ec-11ea-9f7a-097fe7ab3ddd.json | 78 + .../195b5860-36ec-11ea-9f7a-097fe7ab3ddd.json | 78 + .../1dba2700-36de-11ea-9f7a-097fe7ab3ddd.json | 103 ++ .../23c5f140-36ef-11ea-9f7a-097fe7ab3ddd.json | 78 + .../2fcbdab0-36de-11ea-9f7a-097fe7ab3ddd.json | 103 ++ .../3901ed30-36cb-11ea-9f7a-097fe7ab3ddd.json | 78 + .../3ed28890-36ef-11ea-9f7a-097fe7ab3ddd.json | 78 + .../49abed00-36eb-11ea-9f7a-097fe7ab3ddd.json | 78 + .../56b63f60-36e0-11ea-9f7a-097fe7ab3ddd.json | 103 ++ .../58abd000-36ef-11ea-9f7a-097fe7ab3ddd.json | 78 + .../60b5a440-36ec-11ea-9f7a-097fe7ab3ddd.json | 78 + .../67eeac40-36ef-11ea-9f7a-097fe7ab3ddd.json | 78 + .../74874de0-36e0-11ea-9f7a-097fe7ab3ddd.json | 103 ++ .../855debb0-36ef-11ea-9f7a-097fe7ab3ddd.json | 78 + .../89984460-36cb-11ea-9f7a-097fe7ab3ddd.json | 85 + .../908afbf0-36cb-11ea-9f7a-097fe7ab3ddd.json | 78 + .../92bf3480-36e0-11ea-9f7a-097fe7ab3ddd.json | 103 ++ .../96d27500-36ef-11ea-9f7a-097fe7ab3ddd.json | 78 + .../9939e270-36cb-11ea-9f7a-097fe7ab3ddd.json | 78 + .../aa90ec20-36e0-11ea-9f7a-097fe7ab3ddd.json | 73 + .../b455bc00-36cb-11ea-9f7a-097fe7ab3ddd.json | 78 + .../bdf17380-36cb-11ea-9f7a-097fe7ab3ddd.json | 78 + .../c4be1ff0-36e0-11ea-9f7a-097fe7ab3ddd.json | 103 ++ .../d781db00-36df-11ea-9f7a-097fe7ab3ddd.json | 73 + .../d82919b0-36ee-11ea-9f7a-097fe7ab3ddd.json | 78 + .../d8dbdcd0-36cb-11ea-9f7a-097fe7ab3ddd.json | 78 + .../e98d7660-36ee-11ea-9f7a-097fe7ab3ddd.json | 78 + .../fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd.json | 73 + .../2c171500-858b-11ea-91bc-ab084c7ec0e7.json | 298 ++++ .../4b975820-85a1-11ea-91bc-ab084c7ec0e7.json | 386 +++++ ...cbeat-iis-application-pool-overview.ndjson | 11 - .../Metricbeat-iis-webserver-overview.ndjson | 13 - ...beat-iis-webserver-process-overview.ndjson | 13 - .../Metricbeat-iis-website-overview.ndjson | 17 - .../b4108810-861c-11ea-91bc-ab084c7ec0e7.json | 254 +++ .../ebc23240-8572-11ea-91bc-ab084c7ec0e7.json | 298 ++++ .../1084a0e0-8d57-11ea-817c-a9b6d42fd8a0.json | 107 ++ .../14300bf0-8620-11ea-91bc-ab084c7ec0e7.json | 71 + .../14e77b40-8d56-11ea-817c-a9b6d42fd8a0.json | 107 ++ .../1b4f8790-861a-11ea-91bc-ab084c7ec0e7.json | 71 + .../29a23aa0-861e-11ea-91bc-ab084c7ec0e7.json | 71 + .../2d802c60-8d56-11ea-817c-a9b6d42fd8a0.json | 107 ++ .../2dd099f0-858d-11ea-91bc-ab084c7ec0e7.json | 71 + .../31ed84b0-861b-11ea-91bc-ab084c7ec0e7.json | 71 + .../348c4fe0-8575-11ea-91bc-ab084c7ec0e7.json | 107 ++ .../34bfec50-8620-11ea-91bc-ab084c7ec0e7.json | 71 + .../40614070-8573-11ea-91bc-ab084c7ec0e7.json | 36 + .../41324ad0-861d-11ea-91bc-ab084c7ec0e7.json | 107 ++ .../442a86c0-861e-11ea-91bc-ab084c7ec0e7.json | 71 + .../4557d670-860e-11ea-91bc-ab084c7ec0e7.json | 108 ++ .../461a8640-8576-11ea-91bc-ab084c7ec0e7.json | 107 ++ .../4921d5c0-8619-11ea-91bc-ab084c7ec0e7.json | 71 + .../54038fe0-861b-11ea-91bc-ab084c7ec0e7.json | 71 + .../55755550-858c-11ea-91bc-ab084c7ec0e7.json | 107 ++ .../57d914d0-860e-11ea-91bc-ab084c7ec0e7.json | 107 ++ .../68a9df20-8581-11ea-91bc-ab084c7ec0e7.json | 129 ++ .../6c1272a0-858e-11ea-91bc-ab084c7ec0e7.json | 107 ++ .../6db58c20-860e-11ea-91bc-ab084c7ec0e7.json | 107 ++ .../7453b910-8624-11ea-91bc-ab084c7ec0e7.json | 71 + .../75812480-857f-11ea-91bc-ab084c7ec0e7.json | 117 ++ .../7d9e1f40-8d56-11ea-817c-a9b6d42fd8a0.json | 107 ++ .../7dabd8e0-8619-11ea-91bc-ab084c7ec0e7.json | 71 + .../82f1d7d0-858a-11ea-91bc-ab084c7ec0e7.json | 107 ++ .../8ee988d0-861b-11ea-91bc-ab084c7ec0e7.json | 71 + .../90fe3b30-861f-11ea-91bc-ab084c7ec0e7.json | 71 + .../92acc3e0-8582-11ea-91bc-ab084c7ec0e7.json | 130 ++ .../92dcde20-858e-11ea-91bc-ab084c7ec0e7.json | 107 ++ .../945f7850-8d56-11ea-817c-a9b6d42fd8a0.json | 107 ++ .../96fe7d70-8614-11ea-91bc-ab084c7ec0e7.json | 71 + .../98b90fa0-861d-11ea-91bc-ab084c7ec0e7.json | 107 ++ .../a9427270-8619-11ea-91bc-ab084c7ec0e7.json | 71 + .../b5c6f400-8d56-11ea-817c-a9b6d42fd8a0.json | 107 ++ .../b7230190-8603-11ea-91bc-ab084c7ec0e7.json | 59 + .../c784f9b0-8614-11ea-91bc-ab084c7ec0e7.json | 71 + .../c8e467d0-8d55-11ea-817c-a9b6d42fd8a0.json | 107 ++ .../c92e0b80-8574-11ea-91bc-ab084c7ec0e7.json | 107 ++ .../d9dc78b0-8d56-11ea-817c-a9b6d42fd8a0.json | 107 ++ .../dc97bec0-861c-11ea-91bc-ab084c7ec0e7.json | 36 + .../dd419de0-861d-11ea-91bc-ab084c7ec0e7.json | 59 + .../df9d0e50-8d55-11ea-817c-a9b6d42fd8a0.json | 107 ++ .../e26479e0-858d-11ea-91bc-ab084c7ec0e7.json | 95 ++ .../e3ee4990-860e-11ea-91bc-ab084c7ec0e7.json | 107 ++ .../e4d91170-858f-11ea-91bc-ab084c7ec0e7.json | 117 ++ .../e6fab5c0-858b-11ea-91bc-ab084c7ec0e7.json | 36 + .../f7194cc0-861f-11ea-91bc-ab084c7ec0e7.json | 71 + .../f9723710-8602-11ea-91bc-ab084c7ec0e7.json | 36 + .../3b88a120-0c7c-11eb-a3fd-1b45ec532bb3.json | 285 ++++ .../Metricbeat-istio-overview.ndjson | 15 - .../dashboard/Metricbeat-istio-traffic.ndjson | 12 - .../d899d3f0-0883-11eb-a3fd-1b45ec532bb3.json | 347 +++++ .../09404610-0c7b-11eb-a3fd-1b45ec532bb3.json | 108 ++ .../0ed17c80-0883-11eb-a3fd-1b45ec532bb3.json | 106 ++ .../12cdcce0-0882-11eb-a3fd-1b45ec532bb3.json | 102 ++ .../19a8b9c0-0c7f-11eb-a3fd-1b45ec532bb3.json | 36 + .../1d076a90-0c7e-11eb-a3fd-1b45ec532bb3.json | 75 + .../3ae9b3f0-0c7a-11eb-a3fd-1b45ec532bb3.json | 81 + .../4275f710-0882-11eb-a3fd-1b45ec532bb3.json | 102 ++ .../506c8490-087f-11eb-a3fd-1b45ec532bb3.json | 114 ++ .../5fd462f0-0c7a-11eb-a3fd-1b45ec532bb3.json | 81 + .../60dacbe0-0c79-11eb-a3fd-1b45ec532bb3.json | 84 + .../6cfbe3f0-0882-11eb-a3fd-1b45ec532bb3.json | 102 ++ .../78375380-0c79-11eb-a3fd-1b45ec532bb3.json | 84 + .../8d818070-0c7a-11eb-a3fd-1b45ec532bb3.json | 84 + .../96bfe060-0882-11eb-a3fd-1b45ec532bb3.json | 102 ++ .../96c4a5c0-0c7c-11eb-a3fd-1b45ec532bb3.json | 36 + .../98b01f00-087f-11eb-a3fd-1b45ec532bb3.json | 114 ++ .../aa997510-087d-11eb-a3fd-1b45ec532bb3.json | 114 ++ .../b4235550-0c7a-11eb-a3fd-1b45ec532bb3.json | 84 + .../b5b3abb0-087c-11eb-a3fd-1b45ec532bb3.json | 113 ++ .../c7468af0-0c78-11eb-a3fd-1b45ec532bb3.json | 107 ++ .../d62a1e60-0881-11eb-a3fd-1b45ec532bb3.json | 102 ++ .../dd1392f0-07d8-11eb-a3fd-1b45ec532bb3.json | 114 ++ .../e14e3560-0c78-11eb-a3fd-1b45ec532bb3.json | 107 ++ .../e5f3e870-0882-11eb-a3fd-1b45ec532bb3.json | 106 ++ .../f858c200-087e-11eb-a3fd-1b45ec532bb3.json | 114 ++ ...66970-1fb4-11e9-8a4d-eb34d2834f6b-ecs.json | 202 +++ .../Metricbeat-mssql-performance.ndjson | 6 - .../Metricbeat-mssql-transaction_log.ndjson | 9 - ...ad240-18bb-11e9-9836-f37dedd3b411-ecs.json | 152 ++ ...7d530-1fb3-11e9-8a4d-eb34d2834f6b-ecs.json | 63 + ...95230-1b2a-11e9-8b36-136038bb307a-ecs.json | 148 ++ ...5c230-18ba-11e9-9836-f37dedd3b411-ecs.json | 145 ++ ...0ff20-1f2c-11e9-8a4d-eb34d2834f6b-ecs.json | 63 + ...a61b0-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json | 63 + ...4db10-18ba-11e9-9836-f37dedd3b411-ecs.json | 145 ++ ...f9480-260b-11e9-a46a-471d2a76b305-ecs.json | 53 + ...f3f30-18ba-11e9-9836-f37dedd3b411-ecs.json | 145 ++ ...bb000-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json | 63 + ...a2160-18ba-11e9-9836-f37dedd3b411-ecs.json | 150 ++ ...ad180-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json | 63 + ...54a40-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json | 69 + ...7a0c0-1f2b-11e9-8a4d-eb34d2834f6b-ecs.json | 63 + .../3f018af0-ec08-11e9-a4bb-7b5324058fcc.json | 342 ++++ .../862e2c20-9bf0-11e9-a61b-f742ed613c57.json | 144 ++ .../Metricbeat-Oracle-overview.ndjson | 15 - .../Metricbeat-Oracle-tablespaces.ndjson | 6 - .../05acae50-9bf0-11e9-a61b-f742ed613c57.json | 64 + .../072de430-9bfd-11e9-a61b-f742ed613c57.json | 93 ++ .../0b1da750-ec12-11e9-a4bb-7b5324058fcc.json | 159 ++ .../234013d0-ec0e-11e9-a4bb-7b5324058fcc.json | 63 + .../3ae419d0-ec10-11e9-a4bb-7b5324058fcc.json | 63 + .../43369a60-ec0e-11e9-a4bb-7b5324058fcc.json | 62 + .../4c051a90-9bf0-11e9-a61b-f742ed613c57.json | 65 + .../4f569650-ec0f-11e9-a4bb-7b5324058fcc.json | 63 + .../5a422660-ec0f-11e9-a4bb-7b5324058fcc.json | 73 + .../62fb9430-ec0f-11e9-a4bb-7b5324058fcc.json | 64 + .../68ce1940-ec10-11e9-a4bb-7b5324058fcc.json | 63 + .../981779d0-9bfc-11e9-a61b-f742ed613c57.json | 95 ++ .../bc977600-ec12-11e9-a4bb-7b5324058fcc.json | 123 ++ .../c46de8c0-ec10-11e9-a4bb-7b5324058fcc.json | 84 + .../c92efe60-9bef-11e9-a61b-f742ed613c57.json | 68 + .../ec2b2010-ec0d-11e9-a4bb-7b5324058fcc.json | 124 ++ .../8da53a40-5a2f-11ea-bc69-cdcc68092a57.json | 286 ++++ ...Metricbeat-redisenterprise-overview.ndjson | 13 - .../14f6de30-5c7a-11ea-b0b5-8133f1152545.json | 99 ++ .../2d7ec670-5c7a-11ea-b0b5-8133f1152545.json | 99 ++ .../3c776b90-5c80-11ea-b0b5-8133f1152545.json | 123 ++ .../49c7dbf0-5a36-11ea-bc69-cdcc68092a57.json | 99 ++ .../6c861200-5c7b-11ea-b0b5-8133f1152545.json | 98 ++ .../837f9fd0-5c80-11ea-b0b5-8133f1152545.json | 149 ++ .../8cba84c0-5a32-11ea-bc69-cdcc68092a57.json | 94 ++ .../9ddea420-5a32-11ea-bc69-cdcc68092a57.json | 94 ++ .../a452c8c0-5c96-11ea-b0b5-8133f1152545.json | 125 ++ .../b5621150-5c7a-11ea-b0b5-8133f1152545.json | 98 ++ .../b96c3b00-5c92-11ea-b0b5-8133f1152545.json | 79 + .../f6c6d0e0-5a36-11ea-bc69-cdcc68092a57.json | 118 ++ .../dashboard/Metricbeat-STAN-overview.ndjson | 3 - .../b6a60340-4371-11ea-b0c6-cb14c0977bd1.json | 76 + .../0e412fe0-4371-11ea-b0c6-cb14c0977bd1.json | 65 + .../46a07ac0-436d-11ea-b0c6-cb14c0977bd1.json | 65 + x-pack/metricbeat/module/stan/module.yml | 2 +- .../Metricbeat-Tomcat-overview.ndjson | 9 - .../b7675d90-ec34-11e9-a4bb-7b5324058fcc.json | 210 +++ .../17ec8fd0-ec32-11e9-a4bb-7b5324058fcc.json | 88 ++ .../38f55440-ec33-11e9-a4bb-7b5324058fcc.json | 62 + .../618130c0-ec31-11e9-a4bb-7b5324058fcc.json | 134 ++ .../7bcc3ae0-ec33-11e9-a4bb-7b5324058fcc.json | 112 ++ .../9343a810-ec34-11e9-a4bb-7b5324058fcc.json | 76 + .../9d0616e0-ec33-11e9-a4bb-7b5324058fcc.json | 115 ++ .../b3e833d0-ec32-11e9-a4bb-7b5324058fcc.json | 87 ++ .../e037f620-ec30-11e9-a4bb-7b5324058fcc.json | 132 ++ .../Powershell-Overview-Dashboard.ndjson | 19 - .../c77e06c0-9e7c-11ea-af6f-cfdb1ee1d6c8.json | 412 +++++ .../11a61760-9f27-11ea-bef1-95118e62a7c1.json | 49 + .../1eeaaf70-9f23-11ea-bef1-95118e62a7c1.json | 92 ++ .../2dbabdf0-9f29-11ea-bef1-95118e62a7c1.json | 90 ++ .../3e55daa0-9e8e-11ea-af6f-cfdb1ee1d6c8.json | 138 ++ .../52543ef0-9e95-11ea-af6f-cfdb1ee1d6c8.json | 112 ++ .../70751050-9f33-11ea-bef1-95118e62a7c1.json | 98 ++ .../78874900-9f30-11ea-bef1-95118e62a7c1.json | 112 ++ .../7adbce50-9e96-11ea-af6f-cfdb1ee1d6c8.json | 225 +++ .../7f3e7710-9e94-11ea-af6f-cfdb1ee1d6c8.json | 112 ++ .../92a2a6b0-9f29-11ea-bef1-95118e62a7c1.json | 90 ++ .../9ec52c30-9e91-11ea-af6f-cfdb1ee1d6c8.json | 138 ++ .../b0c5d570-9e7c-11ea-af6f-cfdb1ee1d6c8.json | 139 ++ .../c0945210-9e8b-11ea-af6f-cfdb1ee1d6c8.json | 112 ++ .../d27dea70-9f32-11ea-bef1-95118e62a7c1.json | 113 ++ .../e20b3940-9e9a-11ea-af6f-cfdb1ee1d6c8.json | 131 ++ .../e64ff750-9f28-11ea-bef1-95118e62a7c1.json | 90 ++ .../f9fa55f0-9f34-11ea-bef1-95118e62a7c1.json | 112 ++ .../fbb025e0-9e7c-11ea-af6f-cfdb1ee1d6c8.json | 112 ++ .../01c54730-fee6-11e9-8405-516218e3d268.json | 518 ++++++ .../035846a0-a249-11e9-a422-d144027429da.json | 314 ++++ .../71f720f0-ff18-11e9-8405-516218e3d268.json | 651 ++++++++ .../8223bed0-b9e9-11e9-b6a2-c9b4015c4baf.json | 651 ++++++++ .../bae11b00-9bfc-11ea-87e4-49f31ec44891.json | 347 +++++ .../bb858830-f412-11e9-8405-516218e3d268.json | 520 +++++++ .../d401ef40-a7d5-11e9-a422-d144027429da.json | 335 ++++ .../f49f3170-9ffc-11ea-87e4-49f31ec44891.json | 335 ++++ ...curity-failed-blocked-accounts-tsvb.ndjson | 13 - ...at-security-failed-blocked-accounts.ndjson | 13 - ...beat-security-group-management-tsvb.ndjson | 22 - ...inlogbeat-security-group-management.ndjson | 22 - ...inlogbeat-security-user-logons-tsvb.ndjson | 15 - .../winlogbeat-security-user-logons.ndjson | 15 - ...gbeat-security-user-management-tsvb.ndjson | 28 - ...winlogbeat-security-user-management.ndjson | 28 - .../06b6b060-7a80-11ea-bc9a-0baf2ca323a3.json | 102 ++ .../324686c0-fefb-11e9-8405-516218e3d268.json | 145 ++ .../6f4071a0-7a78-11ea-bc9a-0baf2ca323a3.json | 89 ++ .../757510b0-a87f-11e9-a422-d144027429da.json | 117 ++ .../7e178c80-fee1-11e9-8405-516218e3d268.json | 83 + .../9066d5b0-fef2-11e9-8405-516218e3d268.json | 264 ++++ .../ce71c9a0-a25e-11e9-a422-d144027429da.json | 78 + .../006d75f0-9c03-11ea-87e4-49f31ec44891.json | 145 ++ .../0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf.json | 202 +++ .../0622da40-9bfd-11ea-87e4-49f31ec44891.json | 88 ++ .../0cb2d940-bcde-11e9-b6a2-c9b4015c4baf.json | 121 ++ .../0f2f5280-feeb-11e9-8405-516218e3d268.json | 132 ++ .../102efd20-bcdd-11e9-b6a2-c9b4015c4baf.json | 120 ++ .../117f5a30-9b71-11ea-87e4-49f31ec44891.json | 73 + .../162d7ab0-a7d6-11e9-a422-d144027429da.json | 246 +++ .../175a5760-a7d5-11e9-a422-d144027429da.json | 142 ++ .../18348f30-a24d-11e9-a422-d144027429da.json | 36 + .../1b5f17d0-feea-11e9-8405-516218e3d268.json | 186 +++ .../1b6725f0-ff1d-11e9-8405-516218e3d268.json | 89 ++ .../1f271bc0-231a-11ea-8405-516218e3d268.json | 89 ++ .../2084e300-a884-11e9-a422-d144027429da.json | 154 ++ .../21aadac0-9c0b-11ea-87e4-49f31ec44891.json | 73 + .../25f31ee0-9c23-11ea-87e4-49f31ec44891.json | 164 ++ .../26877510-9b72-11ea-87e4-49f31ec44891.json | 80 + .../2c71e0f0-9c0d-11ea-87e4-49f31ec44891.json | 115 ++ .../2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf.json | 36 + .../33462600-9b47-11ea-87e4-49f31ec44891.json | 102 ++ .../400b63e0-f49a-11e9-8405-516218e3d268.json | 89 ++ .../421f0610-af98-11e9-a422-d144027429da.json | 325 ++++ .../4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf.json | 202 +++ .../4b683ac0-a7d7-11e9-a422-d144027429da.json | 229 +++ .../4bedf650-9ffd-11ea-87e4-49f31ec44891.json | 129 ++ .../546febc0-f49b-11e9-8405-516218e3d268.json | 90 ++ .../568a8130-bcde-11e9-b6a2-c9b4015c4baf.json | 130 ++ .../58fb9480-9b46-11ea-87e4-49f31ec44891.json | 73 + .../5bb93ed0-a249-11e9-a422-d144027429da.json | 118 ++ .../5c9ee410-9b74-11ea-87e4-49f31ec44891.json | 102 ++ .../5d117970-9ffd-11ea-87e4-49f31ec44891.json | 104 ++ .../5d92b100-bce8-11e9-b6a2-c9b4015c4baf.json | 124 ++ .../5e19ff80-231c-11ea-8405-516218e3d268.json | 124 ++ .../5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf.json | 202 +++ .../5eeaafd0-fee7-11e9-8405-516218e3d268.json | 186 +++ .../60301890-ff1d-11e9-8405-516218e3d268.json | 89 ++ .../6f0f2ea0-f414-11e9-8405-516218e3d268.json | 36 + .../729443b0-a7d6-11e9-a422-d144027429da.json | 139 ++ .../7322f9f0-ff1c-11e9-8405-516218e3d268.json | 89 ++ .../7a329a00-a7d5-11e9-a422-d144027429da.json | 128 ++ .../7de2e3f0-9b4d-11ea-87e4-49f31ec44891.json | 165 ++ .../804dd400-a248-11e9-a422-d144027429da.json | 260 ++++ .../84502430-bce8-11e9-b6a2-c9b4015c4baf.json | 124 ++ .../855957d0-bcdd-11e9-b6a2-c9b4015c4baf.json | 121 ++ .../860706a0-9bfd-11ea-87e4-49f31ec44891.json | 88 ++ .../8ef59f90-6ab8-11ea-896f-0d70f7ec3956.json | 89 ++ .../8f20c950-bcd4-11e9-b6a2-c9b4015c4baf.json | 202 +++ .../97c70300-ff1c-11e9-8405-516218e3d268.json | 89 ++ .../98884120-f49d-11e9-8405-516218e3d268.json | 279 ++++ .../9dd22440-ff1d-11e9-8405-516218e3d268.json | 89 ++ .../9e534190-f49d-11e9-8405-516218e3d268.json | 285 ++++ .../a13bf640-fee8-11e9-8405-516218e3d268.json | 186 +++ .../a3c3f350-9b6d-11ea-87e4-49f31ec44891.json | 36 + .../a5f664c0-f49a-11e9-8405-516218e3d268.json | 89 ++ .../a79395f0-6aba-11ea-896f-0d70f7ec3956.json | 92 ++ .../a909b930-685f-11ea-896f-0d70f7ec3956.json | 87 ++ .../aa31c9d0-9b75-11ea-87e4-49f31ec44891.json | 110 ++ .../ab6f8d80-bce8-11e9-b6a2-c9b4015c4baf.json | 124 ++ .../abd44840-9c0f-11ea-87e4-49f31ec44891.json | 220 +++ .../abf96c10-bcea-11e9-b6a2-c9b4015c4baf.json | 202 +++ .../b5f38780-fee6-11e9-8405-516218e3d268.json | 192 +++ .../b89b0c90-9b41-11ea-87e4-49f31ec44891.json | 80 + .../bb9cf7a0-f49d-11e9-8405-516218e3d268.json | 279 ++++ .../bc165210-f4b8-11e9-8405-516218e3d268.json | 236 +++ .../bf45dc50-ff1a-11e9-8405-516218e3d268.json | 89 ++ .../c2ea73f0-a4bd-11e9-a422-d144027429da.json | 36 + .../c359b020-bcdd-11e9-b6a2-c9b4015c4baf.json | 120 ++ .../c9d959f0-ff1d-11e9-8405-516218e3d268.json | 89 ++ .../caf4d2b0-9b76-11ea-87e4-49f31ec44891.json | 164 ++ .../ce867840-f49e-11e9-8405-516218e3d268.json | 309 ++++ .../d3a5fec0-ff18-11e9-8405-516218e3d268.json | 89 ++ .../d770b040-9b35-11ea-87e4-49f31ec44891.json | 36 + .../da2110c0-bcea-11e9-b6a2-c9b4015c4baf.json | 202 +++ .../da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf.json | 212 +++ .../e20c02d0-9b48-11ea-87e4-49f31ec44891.json | 111 ++ .../e22c6f40-f498-11e9-8405-516218e3d268.json | 89 ++ .../e2516c10-a249-11e9-a422-d144027429da.json | 148 ++ .../ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf.json | 202 +++ .../ee292bc0-f499-11e9-8405-516218e3d268.json | 89 ++ .../f42f3b20-fee6-11e9-8405-516218e3d268.json | 178 +++ .../fa876300-231a-11ea-8405-516218e3d268.json | 202 +++ .../fee83900-f49f-11e9-8405-516218e3d268.json | 309 ++++ .../ffebe440-f419-11e9-8405-516218e3d268.json | 89 ++ 2191 files changed, 214208 insertions(+), 2319 deletions(-) create mode 100644 auditbeat/module/auditd/_meta/kibana/7/dashboard/693a5f40-c243-11e7-8692-232bd1143e8a-ecs.json create mode 100644 auditbeat/module/auditd/_meta/kibana/7/dashboard/7de391b0-c1ca-11e7-8995-936807a28b16-ecs.json delete mode 100644 auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-executions.ndjson delete mode 100644 auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-overview.ndjson delete mode 100644 auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-sockets.ndjson create mode 100644 auditbeat/module/auditd/_meta/kibana/7/dashboard/c0ac2c00-c1c0-11e7-8995-936807a28b16-ecs.json create mode 100644 auditbeat/module/auditd/_meta/kibana/7/search/0f10c430-c1c3-11e7-8995-936807a28b16-ecs.json create mode 100644 auditbeat/module/auditd/_meta/kibana/7/search/5438b030-c246-11e7-8692-232bd1143e8a-ecs.json create mode 100644 auditbeat/module/auditd/_meta/kibana/7/search/b4c93470-c240-11e7-8692-232bd1143e8a-ecs.json create mode 100644 auditbeat/module/auditd/_meta/kibana/7/search/d382f5b0-c1c6-11e7-8995-936807a28b16-ecs.json create mode 100644 auditbeat/module/auditd/_meta/kibana/7/search/e8734160-c24c-11e7-8692-232bd1143e8a-ecs.json create mode 100644 auditbeat/module/auditd/_meta/kibana/7/visualization/08679220-c25a-11e7-8692-232bd1143e8a-ecs.json create mode 100644 auditbeat/module/auditd/_meta/kibana/7/visualization/20a8e8d0-c1c8-11e7-8995-936807a28b16-ecs.json create mode 100644 auditbeat/module/auditd/_meta/kibana/7/visualization/2efac370-c1ca-11e7-8995-936807a28b16-ecs.json create mode 100644 auditbeat/module/auditd/_meta/kibana/7/visualization/97680df0-c1c0-11e7-8995-936807a28b16-ecs.json create mode 100644 auditbeat/module/auditd/_meta/kibana/7/visualization/a8e20450-c256-11e7-8692-232bd1143e8a-ecs.json create mode 100644 auditbeat/module/auditd/_meta/kibana/7/visualization/b21e0c70-c252-11e7-8692-232bd1143e8a-ecs.json create mode 100644 auditbeat/module/auditd/_meta/kibana/7/visualization/ceb91de0-c250-11e7-8692-232bd1143e8a-ecs.json create mode 100644 auditbeat/module/auditd/_meta/kibana/7/visualization/ea483730-c246-11e7-8692-232bd1143e8a-ecs.json create mode 100644 auditbeat/module/auditd/_meta/kibana/7/visualization/f81a6de0-c1c1-11e7-8995-936807a28b16-ecs.json create mode 100644 auditbeat/module/auditd/_meta/kibana/7/visualization/faf882f0-c242-11e7-8692-232bd1143e8a-ecs.json create mode 100644 auditbeat/module/file_integrity/_meta/kibana/7/dashboard/AV0tXkjYg1PYniApZbKP-ecs.json delete mode 100644 auditbeat/module/file_integrity/_meta/kibana/7/dashboard/auditbeat-file-integrity.ndjson create mode 100644 auditbeat/module/file_integrity/_meta/kibana/7/search/a380a060-cb44-11e7-9835-2f31fe08873b-ecs.json create mode 100644 auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tV05vg1PYniApZbA2-ecs.json create mode 100644 auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tVcg6g1PYniApZa-v-ecs.json create mode 100644 auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tW0djg1PYniApZbGL-ecs.json create mode 100644 auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tWL-Yg1PYniApZbCs-ecs.json create mode 100644 auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tWSdXg1PYniApZbDU-ecs.json create mode 100644 auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tY6jwg1PYniApZbRY-ecs.json create mode 100644 auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tav8Ag1PYniApZbbK-ecs.json create mode 100644 auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tbcUdg1PYniApZbe1-ecs.json create mode 100644 auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tc_xZg1PYniApZbnL-ecs.json create mode 100644 auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0te0TCg1PYniApZbw9-ecs.json create mode 100644 auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tes4Eg1PYniApZbwV-ecs.json create mode 100644 filebeat/module/apache/_meta/kibana/7/dashboard/Filebeat-Apache-Dashboard-ecs.json delete mode 100644 filebeat/module/apache/_meta/kibana/7/dashboard/Filebeat-apache.ndjson create mode 100644 filebeat/module/apache/_meta/kibana/7/search/Apache-access-logs-ecs.json create mode 100644 filebeat/module/apache/_meta/kibana/7/search/Apache-errors-log-ecs.json create mode 100644 filebeat/module/apache/_meta/kibana/7/visualization/Apache-access-unique-IPs-map-ecs.json create mode 100644 filebeat/module/apache/_meta/kibana/7/visualization/Apache-browsers-ecs.json create mode 100644 filebeat/module/apache/_meta/kibana/7/visualization/Apache-error-logs-over-time-ecs.json create mode 100644 filebeat/module/apache/_meta/kibana/7/visualization/Apache-operating-systems-ecs.json create mode 100644 filebeat/module/apache/_meta/kibana/7/visualization/Apache-response-codes-of-top-URLs-ecs.json create mode 100644 filebeat/module/apache/_meta/kibana/7/visualization/Apache-response-codes-over-time-ecs.json delete mode 100644 filebeat/module/auditd/_meta/kibana/7/dashboard/Filebeat-auditd.ndjson create mode 100644 filebeat/module/auditd/_meta/kibana/7/dashboard/dfbb49f0-0a0f-11e7-8a62-2d05eaaac5cb-ecs.json create mode 100644 filebeat/module/auditd/_meta/kibana/7/search/4ac0a370-0a11-11e7-8b04-eb22a5669f27-ecs.json create mode 100644 filebeat/module/auditd/_meta/kibana/7/visualization/2bb0fa70-0a11-11e7-9e84-43da493ad0c7-ecs.json create mode 100644 filebeat/module/auditd/_meta/kibana/7/visualization/5ebdbe50-0a0f-11e7-825f-6748cda7d858-ecs.json create mode 100644 filebeat/module/auditd/_meta/kibana/7/visualization/6295bdd0-0a0e-11e7-825f-6748cda7d858-ecs.json create mode 100644 filebeat/module/auditd/_meta/kibana/7/visualization/c5411910-0a87-11e7-8b04-eb22a5669f27-ecs.json create mode 100644 filebeat/module/auditd/_meta/kibana/7/visualization/d1726930-0a7f-11e7-8b04-eb22a5669f27-ecs.json create mode 100644 filebeat/module/haproxy/_meta/kibana/7/dashboard/3560d580-aa34-11e8-9c06-877f0445e3e0-ecs.json delete mode 100644 filebeat/module/haproxy/_meta/kibana/7/dashboard/Filebeat-haproxy-overview.ndjson create mode 100644 filebeat/module/haproxy/_meta/kibana/7/visualization/11f8b9c0-aa32-11e8-9c06-877f0445e3e0-ecs.json create mode 100644 filebeat/module/haproxy/_meta/kibana/7/visualization/55251360-aa32-11e8-9c06-877f0445e3e0-ecs.json create mode 100644 filebeat/module/haproxy/_meta/kibana/7/visualization/68af8ef0-aa33-11e8-9c06-877f0445e3e0-ecs.json create mode 100644 filebeat/module/haproxy/_meta/kibana/7/visualization/7fb671f0-aa32-11e8-9c06-877f0445e3e0-ecs.json create mode 100644 filebeat/module/icinga/_meta/kibana/7/dashboard/26309570-2419-11e7-a83b-d5f4cebac9ff-ecs.json delete mode 100644 filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-debug-log.ndjson delete mode 100644 filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-main-log.ndjson delete mode 100644 filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-startup-errors.ndjson create mode 100644 filebeat/module/icinga/_meta/kibana/7/dashboard/b9163ea0-2417-11e7-a83b-d5f4cebac9ff-ecs.json create mode 100644 filebeat/module/icinga/_meta/kibana/7/dashboard/f693d260-2417-11e7-a83b-d5f4cebac9ff-ecs.json create mode 100644 filebeat/module/icinga/_meta/kibana/7/search/710043e0-2417-11e7-a83b-d5f4cebac9ff-ecs.json create mode 100644 filebeat/module/icinga/_meta/kibana/7/search/c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs.json create mode 100644 filebeat/module/icinga/_meta/kibana/7/search/ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs.json create mode 100644 filebeat/module/icinga/_meta/kibana/7/visualization/0bc34b60-2419-11e7-a83b-d5f4cebac9ff-ecs.json create mode 100644 filebeat/module/icinga/_meta/kibana/7/visualization/2cf77780-2418-11e7-a83b-d5f4cebac9ff-ecs.json create mode 100644 filebeat/module/icinga/_meta/kibana/7/visualization/a59b5e00-2417-11e7-a83b-d5f4cebac9ff-ecs.json create mode 100644 filebeat/module/icinga/_meta/kibana/7/visualization/d8e5dc40-2417-11e7-a83b-d5f4cebac9ff-ecs.json create mode 100644 filebeat/module/icinga/_meta/kibana/7/visualization/fb09d4b0-2418-11e7-a83b-d5f4cebac9ff-ecs.json create mode 100644 filebeat/module/iis/_meta/kibana/7/dashboard/4278ad30-fe16-11e7-a3b0-d13028918f9f-ecs.json delete mode 100644 filebeat/module/iis/_meta/kibana/7/dashboard/Filebeat-iis.ndjson create mode 100644 filebeat/module/iis/_meta/kibana/7/visualization/41f38230-fe17-11e7-a3b0-d13028918f9f-ecs.json create mode 100644 filebeat/module/iis/_meta/kibana/7/visualization/63129c80-fe12-11e7-a3b0-d13028918f9f-ecs.json create mode 100644 filebeat/module/iis/_meta/kibana/7/visualization/c0d02cd0-fe1b-11e7-a3b0-d13028918f9f-ecs.json create mode 100644 filebeat/module/iis/_meta/kibana/7/visualization/ccd3f9c0-fe12-11e7-a3b0-d13028918f9f-ecs.json create mode 100644 filebeat/module/iis/_meta/kibana/7/visualization/eb2db5b0-fe11-11e7-a3b0-d13028918f9f-ecs.json create mode 100644 filebeat/module/iis/_meta/kibana/7/visualization/f31414b0-fe14-11e7-a3b0-d13028918f9f-ecs.json create mode 100644 filebeat/module/kafka/_meta/kibana/7/dashboard/943caca0-87ee-11e7-ad9c-db80de0bf8d3-ecs.json delete mode 100644 filebeat/module/kafka/_meta/kibana/7/dashboard/Filebeat-Kafka-overview.ndjson create mode 100644 filebeat/module/kafka/_meta/kibana/7/search/All Kafka logs-ecs.json create mode 100644 filebeat/module/kafka/_meta/kibana/7/search/Kafka stacktraces-ecs.json create mode 100644 filebeat/module/kafka/_meta/kibana/7/visualization/3f7c33c0-87ee-11e7-ad9c-db80de0bf8d3-ecs.json create mode 100644 filebeat/module/kafka/_meta/kibana/7/visualization/number-of-kafka-stracktraces-by-class-ecs.json create mode 100644 filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-Logstash-Log-Dashboard-ecs.json create mode 100644 filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-Logstash-Slowlog-Dashboard-ecs.json delete mode 100644 filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-log.ndjson delete mode 100644 filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-slowlog.ndjson create mode 100644 filebeat/module/logstash/_meta/kibana/7/search/742e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs.json create mode 100644 filebeat/module/logstash/_meta/kibana/7/search/cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs.json create mode 100644 filebeat/module/logstash/_meta/kibana/7/visualization/0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs.json create mode 100644 filebeat/module/logstash/_meta/kibana/7/visualization/b3315630-cbdf-11e7-9852-73e0a9df1bb6-ecs.json create mode 100644 filebeat/module/logstash/_meta/kibana/7/visualization/e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs.json delete mode 100644 filebeat/module/mongodb/_meta/kibana/7/dashboard/Filebeat-Mongodb-overview.ndjson create mode 100644 filebeat/module/mongodb/_meta/kibana/7/dashboard/abcf35b0-0a82-11e8-bffe-ff7d4f68cf94-ecs.json create mode 100644 filebeat/module/mongodb/_meta/kibana/7/search/bfc96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs.json create mode 100644 filebeat/module/mongodb/_meta/kibana/7/search/e49fe000-0a7e-11e8-bffe-ff7d4f68cf94-ecs.json create mode 100644 filebeat/module/mongodb/_meta/kibana/7/visualization/0fef5710-0a82-11e8-bffe-ff7d4f68cf94-ecs.json create mode 100644 filebeat/module/mysql/_meta/kibana/7/dashboard/Filebeat-MySQL-Dashboard-ecs.json delete mode 100644 filebeat/module/mysql/_meta/kibana/7/dashboard/Filebeat-mysql.ndjson create mode 100644 filebeat/module/mysql/_meta/kibana/7/search/Filebeat-MySQL-Slow-log-ecs.json create mode 100644 filebeat/module/mysql/_meta/kibana/7/search/Filebeat-MySQL-error-log-ecs.json create mode 100644 filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-Error-logs-levels-ecs.json create mode 100644 filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-Slow-logs-by-count-ecs.json create mode 100644 filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-Slow-queries-over-time-ecs.json create mode 100644 filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-error-logs-ecs.json create mode 100644 filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-slowest-queries-ecs.json create mode 100644 filebeat/module/nats/_meta/kibana/7/dashboard/Filebeat-nats-overview-ecs.json delete mode 100644 filebeat/module/nats/_meta/kibana/7/dashboard/Filebeat-nats-overview.ndjson create mode 100644 filebeat/module/nats/_meta/kibana/7/visualization/04083600-41af-11e9-a4da-b1df688edbcd-ecs.json create mode 100644 filebeat/module/nats/_meta/kibana/7/visualization/0b2061d0-41ad-11e9-a4da-b1df688edbcd-ecs.json create mode 100644 filebeat/module/nats/_meta/kibana/7/visualization/3f6cca40-41ae-11e9-a4da-b1df688edbcd-ecs.json create mode 100644 filebeat/module/nats/_meta/kibana/7/visualization/4a6d9ec0-41a8-11e9-a4da-b1df688edbcd-ecs.json create mode 100644 filebeat/module/nats/_meta/kibana/7/visualization/6987a800-41a8-11e9-a4da-b1df688edbcd-ecs.json create mode 100644 filebeat/module/nats/_meta/kibana/7/visualization/7716c780-41ad-11e9-a4da-b1df688edbcd-ecs.json create mode 100644 filebeat/module/nats/_meta/kibana/7/visualization/7ed62870-41ae-11e9-a4da-b1df688edbcd-ecs.json create mode 100644 filebeat/module/nats/_meta/kibana/7/visualization/c3d1ab80-41a8-11e9-a4da-b1df688edbcd-ecs.json create mode 100644 filebeat/module/nats/_meta/kibana/7/visualization/c669ae20-41ed-11e9-ac5c-71ffa38a62e3-ecs.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/dashboard/046212a0-a2a1-11e7-928f-5dbe6f6f5519-ecs.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/dashboard/0b3dba40-f341-11ea-a3fd-1b45ec532bb3.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/dashboard/55a9e6e0-a29e-11e7-928f-5dbe6f6f5519-ecs.json delete mode 100644 filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-logs.ndjson delete mode 100644 filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-overview.ndjson delete mode 100644 filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-logs.ndjson delete mode 100644 filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-overview.ndjson create mode 100644 filebeat/module/nginx/_meta/kibana/7/dashboard/dfbc0840-f340-11ea-a3fd-1b45ec532bb3.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/search/6d9e66d0-a1f0-11e7-928f-5dbe6f6f5519-ecs.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/search/9eb25600-a1f0-11e7-928f-5dbe6f6f5519-ecs.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/search/Filebeat-Nginx-module-ecs.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/search/a832bcf0-f342-11ea-a3fd-1b45ec532bb3.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/search/d20d4ea0-f342-11ea-a3fd-1b45ec532bb3.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/0dd6f320-a29f-11e7-928f-5dbe6f6f5519-ecs.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/1aa782a0-f345-11ea-a3fd-1b45ec532bb3.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/1cfb1a80-a1f4-11e7-928f-5dbe6f6f5519-ecs.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/46322e50-a1f6-11e7-928f-5dbe6f6f5519-ecs.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/78738850-f342-11ea-a3fd-1b45ec532bb3.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/9184fa00-a1f5-11e7-928f-5dbe6f6f5519-ecs.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/Nginx-Access-Browsers-ecs.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/Nginx-Access-Map-ecs.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/Nginx-Access-OSes-ecs.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/a3bf1ce0-f347-11ea-a3fd-1b45ec532bb3.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/afd506b0-f348-11ea-a3fd-1b45ec532bb3.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/b70b1b20-a1f4-11e7-928f-5dbe6f6f5519-ecs.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/ba138ab0-f344-11ea-a3fd-1b45ec532bb3.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/c37e2770-f341-11ea-a3fd-1b45ec532bb3.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/ee250270-f344-11ea-a3fd-1b45ec532bb3.json create mode 100644 filebeat/module/nginx/_meta/kibana/7/visualization/f137cb40-f345-11ea-a3fd-1b45ec532bb3.json create mode 100644 filebeat/module/osquery/_meta/kibana/7/dashboard/69f5ae20-eb02-11e7-8f04-51231daa5b05-ecs.json create mode 100644 filebeat/module/osquery/_meta/kibana/7/dashboard/c0a7ce90-f4aa-11e7-8647-534bb4c21040-ecs.json delete mode 100644 filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-compliance.ndjson delete mode 100644 filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-rootkit.ndjson create mode 100644 filebeat/module/osquery/_meta/kibana/7/search/0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs.json create mode 100644 filebeat/module/osquery/_meta/kibana/7/search/3824b080-eb02-11e7-8f04-51231daa5b05-ecs.json create mode 100644 filebeat/module/osquery/_meta/kibana/7/search/7a9482d0-eb00-11e7-8f04-51231daa5b05-ecs.json create mode 100644 filebeat/module/osquery/_meta/kibana/7/search/b5d6baa0-eb02-11e7-8f04-51231daa5b05-ecs.json create mode 100644 filebeat/module/osquery/_meta/kibana/7/search/f59e21e0-eb03-11e7-8f04-51231daa5b05-ecs.json create mode 100644 filebeat/module/osquery/_meta/kibana/7/visualization/1da1ed30-eb03-11e7-8f04-51231daa5b05-ecs.json create mode 100644 filebeat/module/osquery/_meta/kibana/7/visualization/240f3630-eb05-11e7-8f04-51231daa5b05-ecs.json create mode 100644 filebeat/module/osquery/_meta/kibana/7/visualization/2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs.json create mode 100644 filebeat/module/osquery/_meta/kibana/7/visualization/6ec10290-f4aa-11e7-8647-534bb4c21040-ecs.json create mode 100644 filebeat/module/osquery/_meta/kibana/7/visualization/a9fd8bb0-eb01-11e7-8f04-51231daa5b05-ecs.json create mode 100644 filebeat/module/osquery/_meta/kibana/7/visualization/ab587180-f4a9-11e7-8647-534bb4c21040-ecs.json create mode 100644 filebeat/module/osquery/_meta/kibana/7/visualization/ffdbba50-f4a9-11e7-8647-534bb4c21040-ecs.json create mode 100644 filebeat/module/pensando/_meta/kibana/7/dashboard/2713ee40-f3b1-11ea-ba07-c1efedbf0bf9.json delete mode 100644 filebeat/module/pensando/_meta/kibana/7/dashboard/pensando-dfw-overview.ndjson create mode 100644 filebeat/module/pensando/_meta/kibana/7/visualization/0583e120-cc8f-11ea-918e-c778f7abe5d7.json create mode 100644 filebeat/module/pensando/_meta/kibana/7/visualization/07983660-cd38-11ea-a0ef-8f5241e594be.json create mode 100644 filebeat/module/pensando/_meta/kibana/7/visualization/1d2d5f00-cc89-11ea-918e-c778f7abe5d7.json create mode 100644 filebeat/module/pensando/_meta/kibana/7/visualization/2aa5d850-cc85-11ea-918e-c778f7abe5d7.json create mode 100644 filebeat/module/pensando/_meta/kibana/7/visualization/39e26d70-cc4d-11ea-918e-c778f7abe5d7.json create mode 100644 filebeat/module/pensando/_meta/kibana/7/visualization/a73c8dc0-cc8d-11ea-918e-c778f7abe5d7.json create mode 100644 filebeat/module/pensando/_meta/kibana/7/visualization/b8bfd3e0-e8b7-11ea-ba07-c1efedbf0bf9.json create mode 100644 filebeat/module/pensando/_meta/kibana/7/visualization/bc6a36b0-cdba-11ea-a0ef-8f5241e594be.json create mode 100644 filebeat/module/pensando/_meta/kibana/7/visualization/bf9d4650-cc8a-11ea-918e-c778f7abe5d7.json create mode 100644 filebeat/module/pensando/_meta/kibana/7/visualization/c6188140-cdb9-11ea-a0ef-8f5241e594be.json create mode 100644 filebeat/module/pensando/_meta/kibana/7/visualization/fa745d10-cc88-11ea-918e-c778f7abe5d7.json create mode 100644 filebeat/module/pensando/_meta/kibana/7/visualization/fd2202d0-cc86-11ea-918e-c778f7abe5d7.json create mode 100644 filebeat/module/postgresql/_meta/kibana/7/dashboard/158be870-87f4-11e7-ad9c-db80de0bf8d3-ecs.json delete mode 100644 filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-overview.ndjson delete mode 100644 filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-slowlogs.ndjson create mode 100644 filebeat/module/postgresql/_meta/kibana/7/dashboard/e4c5f230-87f3-11e7-ad9c-db80de0bf8d3-ecs.json create mode 100644 filebeat/module/postgresql/_meta/kibana/7/search/PostgreSQL All Logs-ecs.json create mode 100644 filebeat/module/postgresql/_meta/kibana/7/search/PostgreSQL Query Durations-ecs.json create mode 100644 filebeat/module/postgresql/_meta/kibana/7/search/Slow PostgreSQL Queries-ecs.json create mode 100644 filebeat/module/postgresql/_meta/kibana/7/visualization/3dbd5370-87f3-11e7-ad9c-db80de0bf8d3-ecs.json create mode 100644 filebeat/module/postgresql/_meta/kibana/7/visualization/PostgreSQL Log Level Count-ecs.json create mode 100644 filebeat/module/postgresql/_meta/kibana/7/visualization/PostgreSQL Query Count and Duration-ecs.json create mode 100644 filebeat/module/redis/_meta/kibana/7/dashboard/7fea2930-478e-11e7-b1f0-cb29bac6bf8b-ecs.json delete mode 100644 filebeat/module/redis/_meta/kibana/7/dashboard/Filebeat-redis.ndjson create mode 100644 filebeat/module/redis/_meta/kibana/7/search/0ab87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs.json create mode 100644 filebeat/module/redis/_meta/kibana/7/search/73613570-4791-11e7-be88-2ddb32f3df97-ecs.json create mode 100644 filebeat/module/redis/_meta/kibana/7/visualization/78b9afe0-478f-11e7-b1f0-cb29bac6bf8b-ecs.json create mode 100644 filebeat/module/redis/_meta/kibana/7/visualization/d2864600-478f-11e7-be88-2ddb32f3df97-ecs.json create mode 100644 filebeat/module/redis/_meta/kibana/7/visualization/dcccaa80-4791-11e7-be88-2ddb32f3df97-ecs.json create mode 100644 filebeat/module/santa/_meta/kibana/7/dashboard/161855f0-ff6a-11e8-93c5-d5ecd1b3e307-ecs.json delete mode 100644 filebeat/module/santa/_meta/kibana/7/dashboard/filebeat-santa-log-overview.ndjson create mode 100644 filebeat/module/santa/_meta/kibana/7/search/6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs.json create mode 100644 filebeat/module/santa/_meta/kibana/7/visualization/11858000-ff6d-11e8-93c5-d5ecd1b3e307-ecs.json create mode 100644 filebeat/module/santa/_meta/kibana/7/visualization/1579d690-ff6b-11e8-93c5-d5ecd1b3e307-ecs.json create mode 100644 filebeat/module/santa/_meta/kibana/7/visualization/30962fe0-ff6c-11e8-93c5-d5ecd1b3e307-ecs.json create mode 100644 filebeat/module/santa/_meta/kibana/7/visualization/51677b80-ff6b-11e8-93c5-d5ecd1b3e307-ecs.json create mode 100644 filebeat/module/santa/_meta/kibana/7/visualization/b06c0460-ff6c-11e8-93c5-d5ecd1b3e307-ecs.json create mode 100644 filebeat/module/santa/_meta/kibana/7/visualization/dad521d0-ff69-11e8-93c5-d5ecd1b3e307-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs.json delete mode 100644 filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-auth-sudo-commands.ndjson delete mode 100644 filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-new-users-and-groups.ndjson delete mode 100644 filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-ssh-login-attempts.ndjson create mode 100644 filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-syslog-dashboard-ecs.json delete mode 100644 filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-syslog.ndjson create mode 100644 filebeat/module/system/_meta/kibana/7/search/62439dc0-f9c9-11e6-a747-6121780e0414-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/search/8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/search/Syslog-system-logs-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/search/b6f321e0-fa25-11e6-bbd3-29c986c96e5a-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/search/eb0039f0-fa7f-11e6-a1df-a78bd7504d38-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/visualization/12667040-fa80-11e6-a1df-a78bd7504d38-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/visualization/327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/visualization/341ffe70-f9ce-11e6-8115-a7c18106d86a-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/visualization/346bb290-fa80-11e6-a1df-a78bd7504d38-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/visualization/3cec3eb0-f9d3-11e6-8a3e-2b904044ea1d-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/visualization/51164310-fa2b-11e6-bbd3-29c986c96e5a-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/visualization/5c7af030-fa2a-11e6-bbd3-29c986c96e5a-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/visualization/5dd15c00-fa78-11e6-ae9b-81e5311e8cab-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/visualization/78b74f30-f9cd-11e6-8115-a7c18106d86a-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/visualization/Syslog-events-by-hostname-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/visualization/Syslog-hostnames-and-processes-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/visualization/d16bb400-f9cc-11e6-8115-a7c18106d86a-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/visualization/d56ee420-fa79-11e6-a1df-a78bd7504d38-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/visualization/dc589770-fa2b-11e6-bbd3-29c986c96e5a-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/visualization/e121b140-fa78-11e6-a1df-a78bd7504d38-ecs.json create mode 100644 filebeat/module/system/_meta/kibana/7/visualization/f398d2f0-fa77-11e6-ae9b-81e5311e8cab-ecs.json create mode 100644 filebeat/module/traefik/_meta/kibana/7/dashboard/Filebeat-Traefik-Dashboard-ecs.json delete mode 100644 filebeat/module/traefik/_meta/kibana/7/dashboard/Filebeat-traefik-overview.ndjson create mode 100644 filebeat/module/traefik/_meta/kibana/7/search/Filebeat-Traefik-module-ecs.json create mode 100644 filebeat/module/traefik/_meta/kibana/7/visualization/New-Visualization-ecs.json create mode 100644 filebeat/module/traefik/_meta/kibana/7/visualization/Sent-sizes-ecs.json create mode 100644 filebeat/module/traefik/_meta/kibana/7/visualization/Traefik-Access-Browsers-ecs.json create mode 100644 filebeat/module/traefik/_meta/kibana/7/visualization/Traefik-Access-Map-ecs.json create mode 100644 filebeat/module/traefik/_meta/kibana/7/visualization/Traefik-Access-OSes-ecs.json create mode 100644 filebeat/module/traefik/_meta/kibana/7/visualization/Traefik-Access-Response-codes-by-top-URLs-ecs.json delete mode 100644 metricbeat/module/aerospike/_meta/kibana/7/dashboard/Metricbeat-aerospike-overview.ndjson create mode 100644 metricbeat/module/aerospike/_meta/kibana/7/dashboard/b15668d0-bac3-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/aerospike/_meta/kibana/7/visualization/23758d10-bac9-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/aerospike/_meta/kibana/7/visualization/3586e810-bac8-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/aerospike/_meta/kibana/7/visualization/5b9bf0d0-bac9-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/aerospike/_meta/kibana/7/visualization/72523510-bac3-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/aerospike/_meta/kibana/7/visualization/8c173130-bac3-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/aerospike/_meta/kibana/7/visualization/9ce7ae20-baca-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/aerospike/_meta/kibana/7/visualization/b5121f00-bac8-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/aerospike/_meta/kibana/7/visualization/bd767280-bac9-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/aerospike/_meta/kibana/7/visualization/eae846a0-bac7-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/apache/_meta/kibana/7/dashboard/Metricbeat-Apache-HTTPD-server-status-ecs.json delete mode 100644 metricbeat/module/apache/_meta/kibana/7/dashboard/Metricbeat-apache-overview.ndjson create mode 100644 metricbeat/module/apache/_meta/kibana/7/search/Apache-HTTPD-ecs.json create mode 100644 metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-CPU-ecs.json create mode 100644 metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Hostname-list-ecs.json create mode 100644 metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Load1-slash-5-slash-15-ecs.json create mode 100644 metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Scoreboard-ecs.json create mode 100644 metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Total-accesses-and-kbytes-ecs.json create mode 100644 metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Uptime-ecs.json create mode 100644 metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Workers-ecs.json delete mode 100644 metricbeat/module/ceph/_meta/kibana/7/dashboard/Metricbeat-ceph-overview.ndjson create mode 100644 metricbeat/module/ceph/_meta/kibana/7/dashboard/c93f2c30-b473-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/ceph/_meta/kibana/7/visualization/054a0900-b467-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/ceph/_meta/kibana/7/visualization/13efa190-b46c-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/ceph/_meta/kibana/7/visualization/346d00d0-b46b-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/ceph/_meta/kibana/7/visualization/393df790-b470-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/ceph/_meta/kibana/7/visualization/88d48440-b46b-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/ceph/_meta/kibana/7/visualization/aa9c2f10-b470-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/consul/_meta/kibana/7/dashboard/6d0cf140-2deb-11e9-bf7e-f35bf5d2e71b.json delete mode 100644 metricbeat/module/consul/_meta/kibana/7/dashboard/Metricbeat-consul-overview.ndjson create mode 100644 metricbeat/module/consul/_meta/kibana/7/visualization/1e97c1d0-2dea-11e9-bf7e-f35bf5d2e71b.json create mode 100644 metricbeat/module/consul/_meta/kibana/7/visualization/37c75bc0-2dea-11e9-bf7e-f35bf5d2e71b.json create mode 100644 metricbeat/module/consul/_meta/kibana/7/visualization/69b29820-2dea-11e9-bf7e-f35bf5d2e71b.json create mode 100644 metricbeat/module/consul/_meta/kibana/7/visualization/6c39d4b0-2de9-11e9-bf7e-f35bf5d2e71b.json create mode 100644 metricbeat/module/consul/_meta/kibana/7/visualization/8ab67000-2dea-11e9-bf7e-f35bf5d2e71b.json create mode 100644 metricbeat/module/consul/_meta/kibana/7/visualization/d275dbc0-2de9-11e9-bf7e-f35bf5d2e71b.json create mode 100644 metricbeat/module/consul/_meta/kibana/7/visualization/dda0c950-2dea-11e9-bf7e-f35bf5d2e71b.json create mode 100644 metricbeat/module/consul/_meta/kibana/7/visualization/ea842730-2de9-11e9-bf7e-f35bf5d2e71b.json create mode 100644 metricbeat/module/couchbase/_meta/kibana/7/dashboard/46d21220-b9f1-11e9-a579-f5c0a5d81340.json delete mode 100644 metricbeat/module/couchbase/_meta/kibana/7/dashboard/Metricbeat-couchbase-overview.ndjson create mode 100644 metricbeat/module/couchbase/_meta/kibana/7/visualization/17a01210-b9e0-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchbase/_meta/kibana/7/visualization/19eed0e0-ba8c-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchbase/_meta/kibana/7/visualization/467c99c0-b9de-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchbase/_meta/kibana/7/visualization/63efced0-b9f4-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchbase/_meta/kibana/7/visualization/7cc8def0-b9e1-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchbase/_meta/kibana/7/visualization/97ee1ea0-b9f2-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchbase/_meta/kibana/7/visualization/99980c90-ba8b-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchbase/_meta/kibana/7/visualization/c4c81a30-b9dd-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchbase/_meta/kibana/7/visualization/e23a9fe0-b9db-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchbase/_meta/kibana/7/visualization/e781add0-b9dc-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchbase/_meta/kibana/7/visualization/f515f2e0-b9e0-11e9-a579-f5c0a5d81340.json delete mode 100644 metricbeat/module/couchdb/_meta/kibana/7/dashboard/Metricbeat-couchdb-overview.ndjson create mode 100644 metricbeat/module/couchdb/_meta/kibana/7/dashboard/a3ab9a60-b952-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchdb/_meta/kibana/7/visualization/06018310-b952-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchdb/_meta/kibana/7/visualization/1b60bb70-b94f-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchdb/_meta/kibana/7/visualization/496910f0-b952-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchdb/_meta/kibana/7/visualization/702584a0-b950-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchdb/_meta/kibana/7/visualization/8e15ece0-b94e-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchdb/_meta/kibana/7/visualization/abfaf130-b951-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/couchdb/_meta/kibana/7/visualization/f8c29f10-b94f-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/docker/_meta/kibana/7/dashboard/AV4REOpp5NkDleZmzKkE-ecs.json delete mode 100644 metricbeat/module/docker/_meta/kibana/7/dashboard/Metricbeat-docker-overview.ndjson create mode 100644 metricbeat/module/docker/_meta/kibana/7/search/Metricbeat-Docker-ecs.json create mode 100644 metricbeat/module/docker/_meta/kibana/7/visualization/Docker-CPU-usage-ecs.json create mode 100644 metricbeat/module/docker/_meta/kibana/7/visualization/Docker-Network-IO-ecs.json create mode 100644 metricbeat/module/docker/_meta/kibana/7/visualization/Docker-Number-of-Containers-ecs.json create mode 100644 metricbeat/module/docker/_meta/kibana/7/visualization/Docker-containers-ecs.json create mode 100644 metricbeat/module/docker/_meta/kibana/7/visualization/Docker-containers-per-host-ecs.json create mode 100644 metricbeat/module/docker/_meta/kibana/7/visualization/Docker-images-and-names-ecs.json create mode 100644 metricbeat/module/docker/_meta/kibana/7/visualization/Docker-memory-usage-ecs.json delete mode 100644 metricbeat/module/golang/_meta/kibana/7/dashboard/Metricbeat-golang-overview.ndjson create mode 100644 metricbeat/module/golang/_meta/kibana/7/dashboard/f2dc7320-f519-11e6-a3c9-9d1f7c42b045-ecs.json create mode 100644 metricbeat/module/golang/_meta/kibana/7/visualization/58000780-f529-11e6-844d-b170e2f0a07e-ecs.json create mode 100644 metricbeat/module/golang/_meta/kibana/7/visualization/95388680-f52a-11e6-969c-518c48c913e4-ecs.json create mode 100644 metricbeat/module/golang/_meta/kibana/7/visualization/9a9a8bf0-f52a-11e6-969c-518c48c913e4-ecs.json create mode 100644 metricbeat/module/golang/_meta/kibana/7/visualization/ab226b50-f52a-11e6-969c-518c48c913e4-ecs.json create mode 100644 metricbeat/module/golang/_meta/kibana/7/visualization/b046cb80-f52a-11e6-969c-518c48c913e4-ecs.json create mode 100644 metricbeat/module/golang/_meta/kibana/7/visualization/b59a5200-f52a-11e6-969c-518c48c913e4-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/dashboard/0836a4b0-47bd-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/dashboard/4b555c30-47dd-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/dashboard/8cc50a50-47e0-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/dashboard/9151c900-471d-11e8-bc13-1397384faad3-ecs.json delete mode 100644 metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-backend.ndjson delete mode 100644 metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-frontend.ndjson delete mode 100644 metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-backend.ndjson delete mode 100644 metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-frontend.ndjson delete mode 100644 metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-server.ndjson delete mode 100644 metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-overview.ndjson create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/dashboard/d5878d00-47c5-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/dashboard/e9057ae0-47c5-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/visualization/0751ed00-479c-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/visualization/30956d00-47d7-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/visualization/40bed190-473b-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/visualization/72e84b00-47e1-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/visualization/79350d50-47db-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/visualization/794b6cd0-471d-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/visualization/86159190-47c5-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/visualization/8c8f0300-47dc-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/visualization/976b0910-47e4-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/visualization/981d1040-47be-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/visualization/a64b4fd0-471c-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/visualization/b3463670-47a1-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/visualization/bb0ab500-4735-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/visualization/f1e27ed0-47dc-11e8-bc13-1397384faad3-ecs.json create mode 100644 metricbeat/module/haproxy/_meta/kibana/7/visualization/fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs.json delete mode 100644 metricbeat/module/kafka/_meta/kibana/7/dashboard/Metricbeat-kafka-overview.ndjson create mode 100644 metricbeat/module/kafka/_meta/kibana/7/dashboard/ea488d90-8e63-11e8-8fa2-3d5f811fbd0f-ecs.json create mode 100644 metricbeat/module/kafka/_meta/kibana/7/visualization/1681f1a0-90e7-11e8-8fa2-3d5f811fbd0f-ecs.json create mode 100644 metricbeat/module/kafka/_meta/kibana/7/visualization/27dd5960-d2ed-11e8-8766-dbbdc39e7ba9-ecs.json create mode 100644 metricbeat/module/kafka/_meta/kibana/7/visualization/491fee50-d2f5-11e8-8766-dbbdc39e7ba9-ecs.json create mode 100644 metricbeat/module/kafka/_meta/kibana/7/visualization/587f2360-8f21-11e8-8fa2-3d5f811fbd0f-ecs.json create mode 100644 metricbeat/module/kafka/_meta/kibana/7/visualization/8d2f79a0-8e65-11e8-8fa2-3d5f811fbd0f-ecs.json create mode 100644 metricbeat/module/kafka/_meta/kibana/7/visualization/944188f0-8e79-11e8-8fa2-3d5f811fbd0f-ecs.json create mode 100644 metricbeat/module/kafka/_meta/kibana/7/visualization/9a7576e0-d231-11e8-8766-dbbdc39e7ba9-ecs.json create mode 100644 metricbeat/module/kafka/_meta/kibana/7/visualization/b9d12c80-8e63-11e8-8fa2-3d5f811fbd0f-ecs.json create mode 100644 metricbeat/module/kafka/_meta/kibana/7/visualization/dc89f8d0-8e8e-11e8-8fa2-3d5f811fbd0f-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/dashboard/5e649d60-9901-11e9-ba57-b7ab4e2d4b58.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/dashboard/97312060-9c1b-11e9-9dc8-fd27291d427f.json delete mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-apiserver.ndjson delete mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-controller-manager.ndjson delete mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-overview.ndjson delete mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-proxy.ndjson delete mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-scheduler.ndjson create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/dashboard/af7225b0-5794-11e8-afa2-e9067ea62228-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/dashboard/e0381d10-e4a6-11eb-9d53-3b3d1d47c519.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/dashboard/f5ab5510-9c94-11e9-94fd-c91206cd5249.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/022a54c0-2bf5-11e7-859b-f78b612cde28-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/09b404f0-99af-11e9-ba57-b7ab4e2d4b58.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/0ca95350-9c24-11e9-9dc8-fd27291d427f.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/15bd4420-9c9b-11e9-94fd-c91206cd5249.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/16fa4470-2bfd-11e7-859b-f78b612cde28-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/174a6ad0-30e0-11e7-8df8-6d3604a72912-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/294546b0-30d6-11e7-8df8-6d3604a72912-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/2ba628e0-9c2a-11e9-9dc8-fd27291d427f.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/382ace30-9d98-11e9-b2ae-49acc4cbcea9.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/3dbf6230-9c20-11e9-9dc8-fd27291d427f.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/3e1e1fd0-9c27-11e9-9dc8-fd27291d427f.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/408fccf0-30d6-11e7-8df8-6d3604a72912-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/44f12b40-2bf4-11e7-859b-f78b612cde28-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/485c8550-9c3a-11e9-9dc8-fd27291d427f.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/58e644f0-30d6-11e7-8df8-6d3604a72912-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/7aac4fd0-30e0-11e7-8df8-6d3604a72912-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/7cbeb750-5794-11e8-afa2-e9067ea62228-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/7d80f790-9d96-11e9-b2ae-49acc4cbcea9.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/826d80c0-9c97-11e9-94fd-c91206cd5249.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/84d9b200-9d98-11e9-b2ae-49acc4cbcea9.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/8a95de50-9c38-11e9-9dc8-fd27291d427f.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/8c6c2690-9bd8-11e9-9dc8-fd27291d427f.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/95595810-9ca8-11e9-94fd-c91206cd5249.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/95a7f110-57a2-11e8-afa2-e9067ea62228-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/a4c9d360-30df-11e7-8df8-6d3604a72912-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/b8a24790-9bf0-11e9-9dc8-fd27291d427f.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/ba7bf750-9bf5-11e9-9dc8-fd27291d427f.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/bcb194a0-9bf8-11e9-9dc8-fd27291d427f.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/cac89fb0-9906-11e9-ba57-b7ab4e2d4b58.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/cd059410-2bfb-11e7-859b-f78b612cde28-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/d54c65f0-e4a6-11eb-9d53-3b3d1d47c519.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/d6564360-2bfc-11e7-859b-f78b612cde28-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/d86b2da0-9c20-11e9-9dc8-fd27291d427f.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/d9fc1b80-9c9c-11e9-94fd-c91206cd5249.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/da1ff7c0-30ed-11e7-b9e5-2b5b07213ab3-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/e0ddd3e0-98fe-11e9-ba57-b7ab4e2d4b58.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/e1018b90-2bfb-11e7-859b-f78b612cde28-ecs.json create mode 100644 metricbeat/module/kubernetes/_meta/kibana/7/visualization/ec360ff0-57a0-11e8-afa2-e9067ea62228-ecs.json create mode 100644 metricbeat/module/mongodb/_meta/kibana/7/dashboard/Metricbeat-MongoDB-ecs.json delete mode 100644 metricbeat/module/mongodb/_meta/kibana/7/dashboard/Metricbeat-mongodb-overview.ndjson create mode 100644 metricbeat/module/mongodb/_meta/kibana/7/search/MongoDB-search-ecs.json create mode 100644 metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-Concurrent-transactions-Read-ecs.json create mode 100644 metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-Concurrent-transactions-Write-ecs.json create mode 100644 metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-Engine-ampersand-Version-ecs.json create mode 100644 metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-WiredTiger-Cache-ecs.json create mode 100644 metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-asserts-ecs.json create mode 100644 metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-hosts-ecs.json create mode 100644 metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-memory-stats-ecs.json create mode 100644 metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-operation-counters-ecs.json create mode 100644 metricbeat/module/mysql/_meta/kibana/7/dashboard/57b3fb50-6309-11ea-a83e-25b8612d00cc.json delete mode 100644 metricbeat/module/mysql/_meta/kibana/7/dashboard/Metricbeat-mysql-overview.ndjson create mode 100644 metricbeat/module/mysql/_meta/kibana/7/visualization/0774bbb0-c69c-11ea-a106-5be590f42b74.json create mode 100644 metricbeat/module/mysql/_meta/kibana/7/visualization/3e5c4490-c6a1-11ea-a106-5be590f42b74.json create mode 100644 metricbeat/module/mysql/_meta/kibana/7/visualization/493e8460-630d-11ea-a83e-25b8612d00cc.json create mode 100644 metricbeat/module/mysql/_meta/kibana/7/visualization/4fa69a10-630b-11ea-a83e-25b8612d00cc.json create mode 100644 metricbeat/module/mysql/_meta/kibana/7/visualization/779ee920-6309-11ea-a83e-25b8612d00cc.json create mode 100644 metricbeat/module/mysql/_meta/kibana/7/visualization/7ea77d30-630a-11ea-a83e-25b8612d00cc.json create mode 100644 metricbeat/module/mysql/_meta/kibana/7/visualization/822df290-630f-11ea-a83e-25b8612d00cc.json create mode 100644 metricbeat/module/mysql/_meta/kibana/7/visualization/8b276c80-c6ad-11ea-a106-5be590f42b74.json create mode 100644 metricbeat/module/mysql/_meta/kibana/7/visualization/96d46630-63a4-11ea-a83e-25b8612d00cc.json create mode 100644 metricbeat/module/mysql/_meta/kibana/7/visualization/98c7bca0-63a2-11ea-a83e-25b8612d00cc.json create mode 100644 metricbeat/module/mysql/_meta/kibana/7/visualization/a1e00160-63a4-11ea-a83e-25b8612d00cc.json create mode 100644 metricbeat/module/mysql/_meta/kibana/7/visualization/aaa326b0-f1f5-11e7-85ab-594b1652e0d1-ecs.json create mode 100644 metricbeat/module/mysql/_meta/kibana/7/visualization/bf60bc10-639b-11ea-a83e-25b8612d00cc.json create mode 100644 metricbeat/module/mysql/_meta/kibana/7/visualization/c8661020-6310-11ea-a83e-25b8612d00cc.json create mode 100644 metricbeat/module/mysql/_meta/kibana/7/visualization/cd72e030-c6a6-11ea-a106-5be590f42b74.json create mode 100644 metricbeat/module/mysql/_meta/kibana/7/visualization/fc6b5a40-630d-11ea-a83e-25b8612d00cc.json create mode 100644 metricbeat/module/nats/_meta/kibana/7/dashboard/Metricbeat-Nats-Dashboard-ecs.json delete mode 100644 metricbeat/module/nats/_meta/kibana/7/dashboard/Metricbeat-nats-overview.ndjson create mode 100644 metricbeat/module/nats/_meta/kibana/7/visualization/206f1bc0-1e45-11e9-a1b4-79a7ae42ab61-ecs.json create mode 100644 metricbeat/module/nats/_meta/kibana/7/visualization/3a670a80-2986-11eb-8245-71f739a9f622.json create mode 100644 metricbeat/module/nats/_meta/kibana/7/visualization/431edfc0-2988-11eb-8245-71f739a9f622.json create mode 100644 metricbeat/module/nats/_meta/kibana/7/visualization/5146f2a0-2987-11eb-8245-71f739a9f622.json create mode 100644 metricbeat/module/nats/_meta/kibana/7/visualization/55c2d340-2986-11eb-8245-71f739a9f622.json create mode 100644 metricbeat/module/nats/_meta/kibana/7/visualization/68d40020-2987-11eb-8245-71f739a9f622.json create mode 100644 metricbeat/module/nats/_meta/kibana/7/visualization/754215c0-1e46-11e9-a1b4-79a7ae42ab61-ecs.json create mode 100644 metricbeat/module/nats/_meta/kibana/7/visualization/84e60a90-2a79-11eb-952d-594e5c56d011.json create mode 100644 metricbeat/module/nats/_meta/kibana/7/visualization/898d2fe0-2986-11eb-8245-71f739a9f622.json create mode 100644 metricbeat/module/nats/_meta/kibana/7/visualization/b129b220-1e44-11e9-a1b4-79a7ae42ab61-ecs.json create mode 100644 metricbeat/module/nats/_meta/kibana/7/visualization/b877eb90-2988-11eb-8245-71f739a9f622.json create mode 100644 metricbeat/module/nats/_meta/kibana/7/visualization/d3142a50-2987-11eb-8245-71f739a9f622.json create mode 100644 metricbeat/module/nats/_meta/kibana/7/visualization/d80d4c30-2a81-11eb-9625-31ed579c09b3.json create mode 100644 metricbeat/module/nats/_meta/kibana/7/visualization/dff743a0-1f1c-11e9-a673-d9577e5e50eb-ecs.json create mode 100644 metricbeat/module/nats/_meta/kibana/7/visualization/eeb33da0-2987-11eb-8245-71f739a9f622.json create mode 100644 metricbeat/module/nginx/_meta/kibana/7/dashboard/023d2930-f1a5-11e7-a9ef-93c69af7b129-ecs.json delete mode 100644 metricbeat/module/nginx/_meta/kibana/7/dashboard/metricbeat-nginx-overview.ndjson create mode 100644 metricbeat/module/nginx/_meta/kibana/7/visualization/47a8e0f0-f1a4-11e7-a9ef-93c69af7b129-ecs.json create mode 100644 metricbeat/module/nginx/_meta/kibana/7/visualization/555df8a0-f1a1-11e7-a9ef-93c69af7b129-ecs.json create mode 100644 metricbeat/module/nginx/_meta/kibana/7/visualization/a1d92240-f1a1-11e7-a9ef-93c69af7b129-ecs.json create mode 100644 metricbeat/module/nginx/_meta/kibana/7/visualization/d763a570-f1a1-11e7-a9ef-93c69af7b129-ecs.json create mode 100644 metricbeat/module/nginx/_meta/kibana/7/visualization/dcbffe30-f1a4-11e7-a9ef-93c69af7b129-ecs.json create mode 100644 metricbeat/module/postgresql/_meta/kibana/7/dashboard/4288b790-b79f-11e9-a579-f5c0a5d81340.json delete mode 100644 metricbeat/module/postgresql/_meta/kibana/7/dashboard/Metricbeat-postgresql-overview.ndjson create mode 100644 metricbeat/module/postgresql/_meta/kibana/7/visualization/0cb65170-b909-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/postgresql/_meta/kibana/7/visualization/147875b0-b903-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/postgresql/_meta/kibana/7/visualization/20931ef0-b79a-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/postgresql/_meta/kibana/7/visualization/570973a0-b798-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/postgresql/_meta/kibana/7/visualization/66d67200-b799-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/postgresql/_meta/kibana/7/visualization/960ecdf0-b79a-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/postgresql/_meta/kibana/7/visualization/98e6b0a0-b79b-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/postgresql/_meta/kibana/7/visualization/d733c630-b797-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/postgresql/_meta/kibana/7/visualization/e2b28ce0-b908-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/postgresql/_meta/kibana/7/visualization/fbfa67e0-b796-11e9-a579-f5c0a5d81340.json create mode 100644 metricbeat/module/prometheus/_meta/kibana/7/dashboard/6a9b80c0-b2ed-11e9-9a23-67ee28886a4b.json delete mode 100644 metricbeat/module/prometheus/_meta/kibana/7/dashboard/Metricbeat-prometheus-overview.ndjson create mode 100644 metricbeat/module/prometheus/_meta/kibana/7/visualization/0b356630-b308-11e9-9a23-67ee28886a4b.json create mode 100644 metricbeat/module/prometheus/_meta/kibana/7/visualization/138704c0-b2f8-11e9-9a23-67ee28886a4b.json create mode 100644 metricbeat/module/prometheus/_meta/kibana/7/visualization/19886730-b2e7-11e9-9a23-67ee28886a4b.json create mode 100644 metricbeat/module/prometheus/_meta/kibana/7/visualization/79345b00-b2e5-11e9-9a23-67ee28886a4b.json create mode 100644 metricbeat/module/prometheus/_meta/kibana/7/visualization/d7740b40-b2fc-11e9-9a23-67ee28886a4b.json create mode 100644 metricbeat/module/prometheus/_meta/kibana/7/visualization/edd33100-b305-11e9-9a23-67ee28886a4b.json create mode 100644 metricbeat/module/prometheus/_meta/kibana/7/visualization/f77c5900-b2e4-11e9-9a23-67ee28886a4b.json create mode 100644 metricbeat/module/prometheus/_meta/kibana/7/visualization/ffb70040-b2ec-11e9-9a23-67ee28886a4b.json create mode 100644 metricbeat/module/rabbitmq/_meta/kibana/7/dashboard/AV4YobKIge1VCbKU_qVo-ecs.json delete mode 100644 metricbeat/module/rabbitmq/_meta/kibana/7/dashboard/Metricbeat-rabbitmq-overview.ndjson create mode 100644 metricbeat/module/rabbitmq/_meta/kibana/7/search/Metricbeat-Rabbitmq-ecs.json create mode 100644 metricbeat/module/rabbitmq/_meta/kibana/7/visualization/RabbitMQ-Erlang-Process-Usage-ecs.json create mode 100644 metricbeat/module/rabbitmq/_meta/kibana/7/visualization/RabbitMQ-Memory-Usage-ecs.json create mode 100644 metricbeat/module/rabbitmq/_meta/kibana/7/visualization/RabbitMQ-Queue-Index-Operations-ecs.json create mode 100644 metricbeat/module/rabbitmq/_meta/kibana/7/visualization/Rabbitmq-Number-of-Nodes-ecs.json create mode 100644 metricbeat/module/redis/_meta/kibana/7/dashboard/28969190-0511-11e9-9c60-d582a238e2c5-ecs.json create mode 100644 metricbeat/module/redis/_meta/kibana/7/dashboard/AV4YjZ5pux-M-tCAunxK-ecs.json delete mode 100644 metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-keys.ndjson delete mode 100644 metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-overview.ndjson create mode 100644 metricbeat/module/redis/_meta/kibana/7/search/Metricbeat-Redis-ecs.json create mode 100644 metricbeat/module/redis/_meta/kibana/7/visualization/00d39210-050d-11e9-9c60-d582a238e2c5-ecs.json create mode 100644 metricbeat/module/redis/_meta/kibana/7/visualization/4435ac40-050e-11e9-9c60-d582a238e2c5-ecs.json create mode 100644 metricbeat/module/redis/_meta/kibana/7/visualization/517a5fd0-0514-11e9-9c60-d582a238e2c5-ecs.json create mode 100644 metricbeat/module/redis/_meta/kibana/7/visualization/7f4bc7d0-050c-11e9-9c60-d582a238e2c5-ecs.json create mode 100644 metricbeat/module/redis/_meta/kibana/7/visualization/8541a4a0-0513-11e9-9c60-d582a238e2c5-ecs.json create mode 100644 metricbeat/module/redis/_meta/kibana/7/visualization/Redis-Clients-Metrics-ecs.json create mode 100644 metricbeat/module/redis/_meta/kibana/7/visualization/Redis-Connected-clients-ecs.json create mode 100644 metricbeat/module/redis/_meta/kibana/7/visualization/Redis-Keyspaces-ecs.json create mode 100644 metricbeat/module/redis/_meta/kibana/7/visualization/Redis-Server-Versions-ecs.json create mode 100644 metricbeat/module/redis/_meta/kibana/7/visualization/Redis-hosts-ecs.json create mode 100644 metricbeat/module/redis/_meta/kibana/7/visualization/Redis-multiplexing-API-ecs.json create mode 100644 metricbeat/module/redis/_meta/kibana/7/visualization/Redis-server-mode-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/dashboard/CPU-slash-Memory-per-container-ecs.json delete mode 100644 metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-Host-Services-overview.ndjson delete mode 100644 metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-containers-overview.ndjson delete mode 100644 metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-host-overview.ndjson create mode 100644 metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-system-overview-ecs.json delete mode 100644 metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-system-overview.ndjson create mode 100644 metricbeat/module/system/_meta/kibana/7/dashboard/c431f410-f9ac-11e9-90e8-1fb18e796788.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/089b85d0-1b16-11e7-b09e-037021c4f8df-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/19e123b0-4d5a-11e7-aee5-fdc812cc3bec-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/1aae9140-1b93-11e7-8ada-3df93aab833e-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/26732e20-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/2e224660-1b19-11e7-b09e-037021c4f8df-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/34f97ee0-1b96-11e7-8ada-3df93aab833e-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/3d65d450-a9c3-11e7-af20-67db8aecb295-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/4b254630-f998-11e9-90e8-1fb18e796788.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/4d546850-1b15-11e7-b09e-037021c4f8df-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/4e4bb1e0-1b1b-11e7-b09e-037021c4f8df-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/590a60f0-5d87-11e7-8884-1bb4c3b890e4-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/6b7b9a40-faa1-11e6-86b1-cd7735ff7e23-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/7cdb1330-4d1a-11e7-a196-69b9a7a020a9-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/855899e0-1b1c-11e7-b09e-037021c4f8df-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/8c071e20-f999-11e9-90e8-1fb18e796788.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/96976150-4d5d-11e7-aa29-87a97a796de6-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/99381c80-4d60-11e7-9a4c-ed99bbcaa42b-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/9c69cad0-f9b0-11e9-90e8-1fb18e796788.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/Container-Block-IO-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/Container-CPU-usage-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/Container-Memory-stats-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/System-Navigation-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/a30871f0-f98f-11e9-90e8-1fb18e796788.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/ab2d1e90-1b1a-11e7-b09e-037021c4f8df-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/bb3a8720-f991-11e9-90e8-1fb18e796788.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/bfa5e400-1b16-11e7-b09e-037021c4f8df-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/c5e3cf90-4d60-11e7-9a4c-ed99bbcaa42b-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/c6f2ffd0-4d17-11e7-a196-69b9a7a020a9-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/d2e80340-4d5c-11e7-aa29-87a97a796de6-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/d3f51850-f9b6-11e9-90e8-1fb18e796788.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/e0f001c0-1b18-11e7-b09e-037021c4f8df-ecs.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/e6e639e0-f992-11e9-90e8-1fb18e796788.json create mode 100644 metricbeat/module/system/_meta/kibana/7/visualization/fe064790-1b1f-11e7-bec4-a5e9ec5cab8b-ecs.json create mode 100644 metricbeat/module/uwsgi/_meta/kibana/7/dashboard/32fca290-f0af-11e7-b9ff-9f96241065de-ecs.json delete mode 100644 metricbeat/module/uwsgi/_meta/kibana/7/dashboard/Metricbeat-uwsgi-overview.ndjson create mode 100644 metricbeat/module/uwsgi/_meta/kibana/7/visualization/8c5f96e0-f0ae-11e7-b9ff-9f96241065de-ecs.json create mode 100644 metricbeat/module/uwsgi/_meta/kibana/7/visualization/a5058e70-f0ae-11e7-b9ff-9f96241065de-ecs.json create mode 100644 metricbeat/module/uwsgi/_meta/kibana/7/visualization/ac7194b0-f0ae-11e7-b9ff-9f96241065de-ecs.json create mode 100644 metricbeat/module/uwsgi/_meta/kibana/7/visualization/ba4a80b0-f0ae-11e7-b9ff-9f96241065de-ecs.json create mode 100644 metricbeat/module/vsphere/_meta/kibana/7/dashboard/0ebd0be0-f049-11e9-aaf3-15199b632da7.json create mode 100644 metricbeat/module/vsphere/_meta/kibana/7/dashboard/8a2d1540-f049-11e9-aaf3-15199b632da7.json delete mode 100644 metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-host.ndjson delete mode 100644 metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-vm.ndjson create mode 100644 metricbeat/module/vsphere/_meta/kibana/7/search/1411b690-f017-11e9-aaf3-15199b632da7.json create mode 100644 metricbeat/module/vsphere/_meta/kibana/7/visualization/47125df0-f040-11e9-aaf3-15199b632da7.json create mode 100644 metricbeat/module/vsphere/_meta/kibana/7/visualization/5c6a93a0-f04c-11e9-aaf3-15199b632da7.json create mode 100644 metricbeat/module/vsphere/_meta/kibana/7/visualization/5f74c330-f048-11e9-aaf3-15199b632da7.json create mode 100644 metricbeat/module/vsphere/_meta/kibana/7/visualization/783f2c50-f040-11e9-aaf3-15199b632da7.json create mode 100644 metricbeat/module/vsphere/_meta/kibana/7/visualization/79dcd290-f047-11e9-aaf3-15199b632da7.json create mode 100644 metricbeat/module/vsphere/_meta/kibana/7/visualization/867e0c70-f048-11e9-aaf3-15199b632da7.json create mode 100644 metricbeat/module/vsphere/_meta/kibana/7/visualization/9afddd20-f04c-11e9-aaf3-15199b632da7.json create mode 100644 metricbeat/module/vsphere/_meta/kibana/7/visualization/a6026680-f017-11e9-aaf3-15199b632da7.json create mode 100644 metricbeat/module/vsphere/_meta/kibana/7/visualization/ab07c5d0-f03f-11e9-aaf3-15199b632da7.json create mode 100644 metricbeat/module/vsphere/_meta/kibana/7/visualization/d6370680-f049-11e9-aaf3-15199b632da7.json create mode 100644 metricbeat/module/vsphere/_meta/kibana/7/visualization/dae93d90-f041-11e9-aaf3-15199b632da7.json create mode 100644 metricbeat/module/vsphere/_meta/kibana/7/visualization/e3a3e080-f018-11e9-aaf3-15199b632da7.json create mode 100644 metricbeat/module/windows/_meta/kibana/7/dashboard/d9eba730-c991-11e7-9835-2f31fe08873b-ecs.json delete mode 100644 metricbeat/module/windows/_meta/kibana/7/dashboard/metricbeat-windows-service.ndjson create mode 100644 metricbeat/module/windows/_meta/kibana/7/search/b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs.json create mode 100644 metricbeat/module/windows/_meta/kibana/7/visualization/23a5fff0-c98e-11e7-9835-2f31fe08873b-ecs.json create mode 100644 metricbeat/module/windows/_meta/kibana/7/visualization/35f5ad60-c996-11e7-9835-2f31fe08873b-ecs.json create mode 100644 metricbeat/module/windows/_meta/kibana/7/visualization/830c45f0-c991-11e7-9835-2f31fe08873b-ecs.json create mode 100644 metricbeat/module/windows/_meta/kibana/7/visualization/c36b2ba0-ca29-11e7-9835-2f31fe08873b-ecs.json create mode 100644 metricbeat/module/windows/_meta/kibana/7/visualization/eb8277d0-c98c-11e7-9835-2f31fe08873b-ecs.json create mode 100644 metricbeat/module/zookeeper/_meta/kibana/7/dashboard/467207a0-231e-11e9-bb66-8baac426dfd4-ecs.json delete mode 100644 metricbeat/module/zookeeper/_meta/kibana/7/dashboard/Metricbeat-zookeeper-overview.ndjson create mode 100644 metricbeat/module/zookeeper/_meta/kibana/7/visualization/1c2f8930-231a-11e9-bb66-8baac426dfd4-ecs.json create mode 100644 metricbeat/module/zookeeper/_meta/kibana/7/visualization/8d3b7770-2319-11e9-bb66-8baac426dfd4-ecs.json create mode 100644 metricbeat/module/zookeeper/_meta/kibana/7/visualization/c0be43c0-2319-11e9-bb66-8baac426dfd4-ecs.json create mode 100644 metricbeat/module/zookeeper/_meta/kibana/7/visualization/d2f52b50-231c-11e9-bb66-8baac426dfd4-ecs.json create mode 100644 metricbeat/module/zookeeper/_meta/kibana/7/visualization/ddb13c60-231b-11e9-bb66-8baac426dfd4-ecs.json create mode 100644 packetbeat/_meta/kibana/7/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs.json create mode 100644 packetbeat/_meta/kibana/7/dashboard/DNS-Unique-Domains-ecs.json create mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-Cassandra-ecs.json create mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-Dashboard-ecs.json create mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-Flows-ecs.json create mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-HTTP-ecs.json create mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-MongoDB-performance-ecs.json create mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-MySQL-performance-ecs.json create mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-NFS-ecs.json create mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-PgSQL-performance-ecs.json create mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-Thrift-performance-ecs.json delete mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-cassandra.ndjson delete mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-dhcpv4.ndjson delete mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-overview.ndjson delete mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-tunneling.ndjson delete mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-flows.ndjson delete mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-http.ndjson delete mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-mongodb.ndjson delete mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-mysql.ndjson delete mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-nfs.ndjson delete mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-overview.ndjson delete mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-pgsql.ndjson delete mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-thrift.ndjson delete mode 100644 packetbeat/_meta/kibana/7/dashboard/Packetbeat-tls.ndjson create mode 100644 packetbeat/_meta/kibana/7/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs.json create mode 100644 packetbeat/_meta/kibana/7/dashboard/tls-sessions-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/651fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/6b1b1360-d49d-11e7-996f-bd7c1ca4591b-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/8e2af860-d520-11e7-9fff-7b1ebf397ba9-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/8f0ff590-d37d-11e7-9914-4982455b3063-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/94908e80-d2d8-11e7-9914-4982455b3063-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/Cassandra-QueryView-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/MongoDB-transactions-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/MongoDB-transactions-with-write-concern-0-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/MySQL-Transactions-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/MySQL-errors-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/NFS-errors-search-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/Packetbeat-Flows-Search-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/Packetbeat-Search-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/PgSQL-errors-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/PgSQL-transactions-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/Thrift-errors-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/Thrift-transactions-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/Transactions-errors-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/b8992150-8ba8-11e8-9676-ef67484126fb-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/bf3d23b0-d37c-11e7-9914-4982455b3063-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/eaa83e60-190b-11e9-be0d-adde5066235e-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs.json create mode 100644 packetbeat/_meta/kibana/7/search/nfs-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/059fe5e0-d2dd-11e7-9914-4982455b3063-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/061de380-d361-11e7-9914-4982455b3063-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/0958a910-d396-11e7-8fa0-232aa9259081-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/0af0b790-d37d-11e7-9914-4982455b3063-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/11d33ea0-8bad-11e8-9676-ef67484126fb-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/2c467370-d392-11e7-8fa0-232aa9259081-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/418dfbe0-8bac-11e8-9676-ef67484126fb-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/463d2bf0-d3a8-11e7-9081-ab2af08e9961-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/4ad9db20-8bab-11e8-9676-ef67484126fb-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/735d25c0-1459-11e9-9de0-f98d1808db8e-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/8460fcd0-8baa-11e8-9676-ef67484126fb-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/86743f90-d396-11e7-8fa0-232aa9259081-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Bytes-Transferred-per-Domain-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Cassandra-Ops-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Cassandra-RequestCount-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Cassandra-RequestCountByType-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Cassandra-RequestCountStackByType-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseCountByType-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseCountStackByType-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseKeyspace-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseTime-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseType-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Client-locations-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Connections-over-time-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/DB-transactions-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/DNS-Query-Summary-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/DNS-Question-Types-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/DNS-Request-Status-Over-Time-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/DNS-Response-Codes-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/DNS-Top-10-Questions-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Errors-count-over-time-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Errors-vs-successful-transactions-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/HTTP-codes-for-the-top-queries-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/HTTP-error-codes-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/HTTP-error-codes-evolution-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Latency-histogram-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/MongoDB-commands-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/MongoDB-errors-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/MongoDB-errors-per-collection-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/MongoDB-in-slash-out-throughput-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/MongoDB-response-times-by-collection-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Most-frequent-MySQL-queries-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Most-frequent-PgSQL-queries-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/MySQL-Errors-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/MySQL-Methods-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/MySQL-Reads-vs-Writes-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/MySQL-throughput-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Mysql-response-times-percentiles-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/NFS-bytes-in-slash-out-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/NFS-clients-pie-chart-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/NFS-errors-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/NFS-operation-table-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/NFS-operations-area-chart-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/NFS-response-times-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/NFS-top-group-pie-chart-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/NFS-top-users-pie-chart-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Navigation-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Network-traffic-between-your-hosts-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Number-of-MongoDB-transactions-with-writeConcern-w-equal-0-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/PgSQL-Errors-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/PgSQL-Methods-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/PgSQL-Reads-vs-Writes-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/PgSQL-response-times-percentiles-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/PgSQL-throughput-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Response-times-percentiles-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Response-times-repartition-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Slowest-MySQL-queries-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Slowest-PgSQL-queries-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Slowest-Thrift-RPC-methods-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Thrift-RPC-Errors-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Thrift-requests-per-minute-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Thrift-response-times-percentiles-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Top-10-HTTP-requests-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Top-Thrift-RPC-calls-with-errors-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Top-Thrift-RPC-methods-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Top-hosts-creating-traffic-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Top-hosts-receiving-traffic-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Top-slowest-MongoDB-queries-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Total-number-of-HTTP-transactions-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Unique-FQDNs-per-eTLD 1-Table-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Unique-FQDNs-per-eTLD 1-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/Web-transactions-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/a28d09d0-d361-11e7-9914-4982455b3063-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/ad2a8b50-d49d-11e7-996f-bd7c1ca4591b-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/ae6e33c0-d37d-11e7-9914-4982455b3063-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/bacb6ed0-1459-11e9-9de0-f98d1808db8e-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/c14377a0-d353-11e7-9914-4982455b3063-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/d0120dc0-8bac-11e8-9676-ef67484126fb-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/d2e15950-d560-11e7-9fff-7b1ebf397ba9-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/dc743240-1665-11e7-a6de-cbac1a3d0a7d-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/e3f09730-1b80-11e9-83df-75eebb35951e-ecs.json create mode 100644 packetbeat/_meta/kibana/7/visualization/f43a8f20-8bb5-11e8-9676-ef67484126fb-ecs.json create mode 100644 winlogbeat/_meta/kibana/7/dashboard/Winlogbeat-Dashboard-ecs.json delete mode 100644 winlogbeat/_meta/kibana/7/dashboard/Winlogbeat-overview.ndjson create mode 100644 winlogbeat/_meta/kibana/7/visualization/Event-Levels-ecs.json create mode 100644 winlogbeat/_meta/kibana/7/visualization/Number-of-Events-Over-Time-By-Event-Log-ecs.json create mode 100644 winlogbeat/_meta/kibana/7/visualization/Number-of-Events-ecs.json create mode 100644 winlogbeat/_meta/kibana/7/visualization/Sources-ecs.json create mode 100644 winlogbeat/_meta/kibana/7/visualization/Top-Event-IDs-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs.json delete mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-host-dashboard.ndjson delete mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-login-dashboard.ndjson delete mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-overview-dashboard.ndjson delete mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-package-dashboard.ndjson delete mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-process-dashboard.ndjson delete mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-socket-dashboard.ndjson delete mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-user-dashboard.ndjson create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/search/0f9611b0-2862-11e9-97cb-474beda9f119-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/search/2e04c720-285f-11e9-805f-43bf57dfa519-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/search/391ef230-2868-11e9-9d21-0be348776e6c-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/search/3bfed610-2867-11e9-9d21-0be348776e6c-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/search/658a3db0-2864-11e9-97cb-474beda9f119-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/search/abe78cd0-18ca-11e9-9094-c50574723088-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/search/d08ebd30-27ff-11e9-805f-43bf57dfa519-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/0bf8b4c0-2864-11e9-97cb-474beda9f119-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/0db90830-27fd-11e9-89af-fd12d59dac90-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/1771daa0-286b-11e9-9d21-0be348776e6c-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/295905e0-27fd-11e9-89af-fd12d59dac90-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/30936470-2863-11e9-97cb-474beda9f119-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/30f4eff0-2864-11e9-97cb-474beda9f119-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/4d0485f0-18da-11e9-9094-c50574723088-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/4e7701d0-2869-11e9-9d21-0be348776e6c-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/536fa900-2867-11e9-9d21-0be348776e6c-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/54135e50-27ff-11e9-805f-43bf57dfa519-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/593df9b0-27f7-11e9-89af-fd12d59dac90-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/5eb5f250-285e-11e9-805f-43bf57dfa519-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/6ed51940-2868-11e9-9d21-0be348776e6c-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/7323dd90-27f2-11e9-89af-fd12d59dac90-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/78391460-2867-11e9-9d21-0be348776e6c-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/7f480de0-2864-11e9-97cb-474beda9f119-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/8d63c420-27f4-11e9-89af-fd12d59dac90-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/8dc55df0-2869-11e9-9d21-0be348776e6c-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/91708fd0-2862-11e9-97cb-474beda9f119-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/91962a30-1901-11e9-9094-c50574723088-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/9dd991a0-18cb-11e9-9094-c50574723088-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/a1951650-285e-11e9-805f-43bf57dfa519-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/b1e2af00-2862-11e9-97cb-474beda9f119-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/b885dae0-27fd-11e9-89af-fd12d59dac90-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/b899a700-286b-11e9-9d21-0be348776e6c-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/cf8aa0a0-18ca-11e9-9094-c50574723088-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/d32c0540-286b-11e9-9d21-0be348776e6c-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/dc514de0-2863-11e9-97cb-474beda9f119-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/e4d25fe0-285e-11e9-805f-43bf57dfa519-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/e8eb58a0-2860-11e9-805f-43bf57dfa519-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/e9225120-27f2-11e9-89af-fd12d59dac90-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/eb2dbfd0-2866-11e9-9d21-0be348776e6c-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/eea92ad0-18d7-11e9-9094-c50574723088-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/f1d365a0-2862-11e9-97cb-474beda9f119-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/f664fb20-27f3-11e9-89af-fd12d59dac90-ecs.json create mode 100644 x-pack/auditbeat/module/system/_meta/kibana/7/visualization/fe23f530-2868-11e9-9d21-0be348776e6c-ecs.json create mode 100644 x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/26434790-1464-11ea-8fd8-030a13064883.json delete mode 100644 x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-application-events.ndjson delete mode 100644 x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-audit-events.ndjson create mode 100644 x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/ffe86390-145f-11ea-8fd8-030a13064883.json create mode 100644 x-pack/filebeat/module/activemq/_meta/kibana/7/search/896ef3a0-145f-11ea-8fd8-030a13064883.json create mode 100644 x-pack/filebeat/module/activemq/_meta/kibana/7/search/d784ec10-1460-11ea-8fd8-030a13064883.json create mode 100644 x-pack/filebeat/module/activemq/_meta/kibana/7/visualization/026da780-1463-11ea-8fd8-030a13064883.json create mode 100644 x-pack/filebeat/module/activemq/_meta/kibana/7/visualization/38011a70-145a-11ea-8fd8-030a13064883.json create mode 100644 x-pack/filebeat/module/activemq/_meta/kibana/7/visualization/38874920-1454-11ea-8fd8-030a13064883.json create mode 100644 x-pack/filebeat/module/activemq/_meta/kibana/7/visualization/a0f15d50-1460-11ea-8fd8-030a13064883.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/15503340-4488-11ea-ad63-791a5dc86f10.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/3af47420-3e7b-11ea-bb0a-69c3ca1d410f.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/4746e000-bacd-11e9-9f70-1f7bda85a5eb.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/9c09cd20-7399-11ea-a345-f985c61fe654.json delete mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-elb-overview.ndjson delete mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-s3access-overview.ndjson delete mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-vpcflow-overview.ndjson delete mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/filebeat-aws-cloudtrail.ndjson create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/map/0edf0640-3e7e-11ea-bb0a-69c3ca1d410f.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/map/513a3d70-4482-11ea-ad63-791a5dc86f10.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/map/dae24080-739a-11ea-a345-f985c61fe654.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/search/30ccde50-7397-11ea-a345-f985c61fe654.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/search/5e5a3c90-bac0-11e9-9f70-1f7bda85a5eb.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/search/c1aee600-4487-11ea-ad63-791a5dc86f10.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/0f056420-739e-11ea-a345-f985c61fe654.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/219c1850-3e82-11ea-bb0a-69c3ca1d410f.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/247e2990-4699-11ea-ad63-791a5dc86f10.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/396089c0-7399-11ea-a345-f985c61fe654.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/4c23e4c0-739a-11ea-a345-f985c61fe654.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/5c93cd10-bac3-11e9-9f70-1f7bda85a5eb.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/73970bc0-3e86-11ea-bb0a-69c3ca1d410f.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/75853f20-4484-11ea-ad63-791a5dc86f10.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/76af8140-3e84-11ea-bb0a-69c3ca1d410f.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/7bca4f50-739c-11ea-a345-f985c61fe654.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/8ec43590-739b-11ea-a345-f985c61fe654.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/99ffdb00-bacb-11e9-9f70-1f7bda85a5eb.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/b6a308f0-3e82-11ea-bb0a-69c3ca1d410f.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/bad8c910-4485-11ea-ad63-791a5dc86f10.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/bd37d720-3e84-11ea-bb0a-69c3ca1d410f.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/ceb7c030-3e86-11ea-bb0a-69c3ca1d410f.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/d8b1e830-3e82-11ea-bb0a-69c3ca1d410f.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/e50c51e0-3e7f-11ea-bb0a-69c3ca1d410f.json create mode 100644 x-pack/filebeat/module/aws/_meta/kibana/7/visualization/f8b63860-739e-11ea-a345-f985c61fe654.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/0f559cc0-f0d5-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/41e84340-ec20-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/87095750-f05a-11e9-90ec-112a988266d5.json delete mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-alerts-overview.ndjson delete mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-overview.ndjson delete mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-user-activity.ndjson create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/097d74d0-f044-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/0dd135c0-f0cc-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/46544960-f0d5-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/52c2a4e0-ec1f-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/52da1700-f05d-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/6db84660-53e9-11ea-b1b7-7de801e1c297.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/6ece76d0-f0cc-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/709995e0-ec16-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/71b62ca0-ec1a-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/9ed46680-f0ce-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/b0471750-f05b-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/bc65e840-ec1e-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/c43855e0-f05a-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/c704b050-f0de-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/d91ce8d0-53e8-11ea-b1b7-7de801e1c297.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/da67d650-ec14-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/e0203fc0-f05f-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/e37cd3d0-ec23-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/e4c7f4b0-f045-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/f684a750-ec23-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/fe24ac90-f05a-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/azure/_meta/kibana/7/visualization/ffe22180-ec1c-11e9-90ec-112a988266d5.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71.json delete mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-os-activity.ndjson delete mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-overview.ndjson delete mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-microsoft-dns.ndjson delete mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-overview.ndjson delete mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-suspicious-activity.ndjson create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/search/5cede2d3-20fe-4140-add4-4c4f841b71a2.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/search/68202a5c-c8f2-432f-8c08-04fbfacb95c8.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/search/e6cf2383-71f4-4db1-a791-1a7d4f110194.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/search/f85a3444-8a43-4e46-b872-4e44bc25d0f3.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/013ff153-7b80-490b-8fec-6e56cba785ed.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/01c3618c-9962-4fe9-b9c5-f73dfecc6eba.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/0abfc226-535b-45a2-b534-e9bc87e5584f.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/0f4028b2-3dc2-4cb6-80d8-285c847a02a1.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/118af639-1f37-4541-a960-5a3ff0613e0e.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/1204cf27-05e0-4905-bfa1-688aaaaaa840.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/158d809a-89db-4ffa-88a1-eb5c4bf58d50.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/16aef3e9-e33b-4bab-b32f-d8c5b1263ac0.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/1b521f56-8089-433f-88f7-56aba867e07d.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/1b9cc5b7-7747-49de-96b1-a4bc7f675716.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/249e2737-b41f-4115-b303-88bc9d279655.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/26a65f68-d7a6-4b47-befc-c5a6819bb91b.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/2726382e-638a-4dcc-94fc-0ffdc0f92048.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/295986d4-d2ea-4541-8e82-7dc95c0cd830.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/316fdc75-7215-4c6b-8e1b-70a097b34e28.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/33747d52-ec4c-4d91-86d8-fbdf9b9c82db.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/3c19f138-2ab3-4ecb-bb1b-86fb90158042.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/499f50ba-2f84-4f7c-9021-73a4efc47921.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/4a7c10c7-4abd-47b4-b4c3-dee33377fbdf.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/4e25b5ce-53c3-46fc-b5e5-71d3c52f1956.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/4fccee0c-7193-4aa8-919f-0b0b0a16d013.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/566d8b4e-ec5c-4b8b-bd68-3cc9cb236110.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/581a296e-e34a-48f1-93e4-fc4bdadfc68d.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/589fec8c-336e-4122-8fef-a450bddf84f6.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/59ad829b-12b8-4256-95a5-e7078eda628b.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/5bf6e4dc-4273-4e1e-a803-04347eebeb53.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/5f187dc8-aa7e-4f91-a2d8-1186ce254d00.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/6437e9bb-9ed1-4e2d-bb10-e63ccd35c409.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/677891a1-90c4-4273-b126-f0e54689bd76.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/718b074e-3dd1-4d03-ba11-7f869cdcd703.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/7454c034-c5f3-48fe-8fce-ef4385c80350.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/74d2c072-6dfd-4249-8e63-dc7b0cf3c960.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/759e8dc3-0fdb-4cb6-ba47-87a2e2ff8df3.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/76c088c3-486e-4420-8840-5ede667edffe.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/77ee0e91-010b-4897-b483-7e9a907d2afe.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/7e2b0659-0760-4182-8b29-3ee69f26bc6f.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/82f3fae3-1189-4f04-8ea5-47fde1d2e7b1.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/86bd5f13-ca6b-43fa-b209-54e7460344bb.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/89998099-9a39-44cf-beba-5b97f0524cf9.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/8b31af8b-522e-41fe-b9d6-9a3451b54108.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/8cd00d20-957d-4663-be4d-ea80b1609586.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/8f6075c5-f525-4173-92a4-3a56e96e362d.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/92aecea0-a632-4a55-bb56-50e4cdaca036.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/9457ee67-895f-4b78-a543-268f9687a745.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/9bef4db9-a8b2-4be8-b2b0-6ea02fab424d.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/a729c249-8d34-4eb1-bbb0-5d25cf224114.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/a97e3628-022b-46cf-8f29-a73cf9bb4e26.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/aaa80503-6d96-4a33-806f-b8a10aefe696.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/acc915fe-b971-4795-9040-3fbfdf62abe1.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/b1002b5c-08fc-4bbe-b9a0-6243a8637e60.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/c394e650-b16c-407c-b305-bd409d69d433.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/c5120e27-1f8c-41e3-83ee-78ec4d470c2f.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/d02dd523-ce91-40e9-9209-83797f80ed45.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/d061c7a9-7f92-4bf4-b35c-499b9f4b987a.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/df056709-2deb-4363-ae7a-b0148ea456c6.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/e06d85f2-2da4-41e2-b2ab-f685b64bb3f9.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/e513c269-350c-40c3-ac20-16c5782103b8.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/e89a64e8-928c-41fc-8745-3c8157b21cdb.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f03d734b-b85c-4e99-9c0e-9c89716a81f3.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f0e60404-ddf4-4b46-8e45-e28c4fb6d60d.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f3c573ad-2c16-4de5-9ec3-0a47141d4fa0.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f5258de9-71f7-410f-b713-201007f77470.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f57734dd-0f32-42b4-94dd-5d597f6735e1.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/fa8b26c1-6973-4381-adb3-bcde0d03a520.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/fcf798a8-db8f-4492-827b-8fa7581108a9.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/fe7b63d1-dbc7-4376-af7f-ace97a9f2e60.json create mode 100644 x-pack/filebeat/module/cef/_meta/kibana/7/visualization/fff249b2-18b6-4b48-bcf7-dd4595d111e7.json delete mode 100644 x-pack/filebeat/module/cisco/_meta/kibana/7/dashboard/Filebeat-Cisco-ASA.ndjson create mode 100644 x-pack/filebeat/module/cisco/_meta/kibana/7/dashboard/a555b160-4987-11e9-b8ce-ed898b5ef295.json create mode 100644 x-pack/filebeat/module/cisco/_meta/kibana/7/search/14fce5e0-498f-11e9-b8ce-ed898b5ef295.json create mode 100644 x-pack/filebeat/module/cisco/_meta/kibana/7/search/753406e0-4986-11e9-b8ce-ed898b5ef295.json create mode 100644 x-pack/filebeat/module/cisco/_meta/kibana/7/search/96c6ff60-4986-11e9-b8ce-ed898b5ef295.json create mode 100644 x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/08ef4d90-499b-11e9-b8ce-ed898b5ef295.json create mode 100644 x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/118da960-4987-11e9-b8ce-ed898b5ef295.json create mode 100644 x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/5d0322d0-4987-11e9-b8ce-ed898b5ef295.json create mode 100644 x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/80d0c1b0-498a-11e9-b8ce-ed898b5ef295.json create mode 100644 x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/a3b5ab10-4989-11e9-b8ce-ed898b5ef295.json create mode 100644 x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/d05cdf60-498b-11e9-b8ce-ed898b5ef295.json create mode 100644 x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/fd89b1e0-49a2-11e9-b8ce-ed898b5ef295.json create mode 100644 x-pack/filebeat/module/coredns/_meta/kibana/7/dashboard/53aa1f70-443e-11e9-8548-ab7fbe04f038.json delete mode 100644 x-pack/filebeat/module/coredns/_meta/kibana/7/dashboard/Coredns-Overview-Dashboard.ndjson create mode 100644 x-pack/filebeat/module/coredns/_meta/kibana/7/visualization/3ad75810-4429-11e9-8548-ab7fbe04f038.json create mode 100644 x-pack/filebeat/module/coredns/_meta/kibana/7/visualization/75743f70-443c-11e9-8548-ab7fbe04f038.json create mode 100644 x-pack/filebeat/module/coredns/_meta/kibana/7/visualization/9dc640e0-4432-11e9-8548-ab7fbe04f038.json create mode 100644 x-pack/filebeat/module/coredns/_meta/kibana/7/visualization/cfde7fb0-443d-11e9-8548-ab7fbe04f038.json delete mode 100644 x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/dashboard/Filebeat-cyberarkpas-audit.ndjson create mode 100644 x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/dashboard/eb12ef60-96f6-11eb-bbf8-d77aef8ad7a6.json create mode 100644 x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/search/a9b82df0-97a5-11eb-bbf8-d77aef8ad7a6.json create mode 100644 x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/search/fec0d170-96f7-11eb-bbf8-d77aef8ad7a6.json create mode 100644 x-pack/filebeat/module/envoyproxy/_meta/kibana/7/dashboard/0c610510-5cbd-11e9-8477-077ec9664dbd.json delete mode 100644 x-pack/filebeat/module/envoyproxy/_meta/kibana/7/dashboard/Filebeat-Envoyproxy-Overview.ndjson create mode 100644 x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/0a994af0-5c9d-11e9-8477-077ec9664dbd.json create mode 100644 x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/36f872a0-5c03-11e9-85b4-19d0072eb4f2.json create mode 100644 x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/38f96190-5c99-11e9-8477-077ec9664dbd.json create mode 100644 x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/7e4084e0-5c99-11e9-8477-077ec9664dbd.json create mode 100644 x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/80844540-5c97-11e9-8477-077ec9664dbd.json create mode 100644 x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/ab48c3f0-5ca6-11e9-8477-077ec9664dbd.json create mode 100644 x-pack/filebeat/module/gcp/_meta/kibana/7/dashboard/6576c480-73a2-11ea-a345-f985c61fe654.json delete mode 100644 x-pack/filebeat/module/gcp/_meta/kibana/7/dashboard/filebeat-gcp-audit.ndjson create mode 100644 x-pack/filebeat/module/gcp/_meta/kibana/7/map/a97de660-73a5-11ea-a345-f985c61fe654.json create mode 100644 x-pack/filebeat/module/gcp/_meta/kibana/7/search/d88364c0-73a1-11ea-a345-f985c61fe654.json create mode 100644 x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/33ee1320-73a5-11ea-a345-f985c61fe654.json create mode 100644 x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/4627efa0-73a2-11ea-a345-f985c61fe654.json create mode 100644 x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/6d90d320-73a4-11ea-a345-f985c61fe654.json create mode 100644 x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/a8e40240-73a3-11ea-a345-f985c61fe654.json create mode 100644 x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/eb5bf570-73a2-11ea-a345-f985c61fe654.json delete mode 100644 x-pack/filebeat/module/ibmmq/_meta/kibana/7/dashboard/Filebeat-IBMMQ-Overview.ndjson create mode 100644 x-pack/filebeat/module/ibmmq/_meta/kibana/7/dashboard/ba1d8830-7c7b-11e9-9645-e37efaf5baff.json create mode 100644 x-pack/filebeat/module/ibmmq/_meta/kibana/7/search/82db7ba0-adec-11e9-8358-1517661d7c84.json create mode 100644 x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/3ff778d0-adf0-11e9-8358-1517661d7c84.json create mode 100644 x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/4b2794c0-d901-11e8-aa1c-3fc8e6195a8e.json create mode 100644 x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/57eae940-adf0-11e9-8358-1517661d7c84.json create mode 100644 x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/845fca50-adef-11e9-8358-1517661d7c84.json create mode 100644 x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/b6308f30-7c7e-11e9-9645-e37efaf5baff.json create mode 100644 x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/bf8e5de0-7c7f-11e9-9645-e37efaf5baff.json create mode 100644 x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/df35c4b0-adf0-11e9-8358-1517661d7c84.json delete mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Overview.ndjson delete mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Ubiquiti-Firewall-Overview.ndjson create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/ceefb9e0-1f51-11e9-93ed-f7e068f4aebb-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/d39f0980-1ff3-11e9-ae2a-939083c6a64e-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/search/7862cab0-1fdb-11e9-ae2a-939083c6a64e-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/search/9f7d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/search/b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/search/c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/190bcb50-1ff6-11e9-ae2a-939083c6a64e-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/1ba82fd0-1ff0-11e9-ae2a-939083c6a64e-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/2599f5e0-1e98-11e9-8ec4-cf5d91a864b3-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/35fe0910-1f26-11e9-8ec4-cf5d91a864b3-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/4c913eb0-1f51-11e9-93ed-f7e068f4aebb-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/5bd53050-1fe9-11e9-ae2a-939083c6a64e-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/683402b0-1f29-11e9-8ec4-cf5d91a864b3-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/758b3620-1fda-11e9-ae2a-939083c6a64e-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/8853aa20-1fef-11e9-ae2a-939083c6a64e-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/b57b7370-1f1d-11e9-8ec4-cf5d91a864b3-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/c4394ec0-1efd-11e9-8ec4-cf5d91a864b3-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/d8cea010-1efd-11e9-8ec4-cf5d91a864b3-ecs.json create mode 100644 x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/fdea1ad0-1ff4-11e9-ae2a-939083c6a64e-ecs.json create mode 100644 x-pack/filebeat/module/microsoft/_meta/kibana/7/dashboard/65402c30-ca6a-11ea-9d4d-9737a63aaa55.json delete mode 100644 x-pack/filebeat/module/microsoft/_meta/kibana/7/dashboard/Filebeat-microsoft-atp-overview.ndjson create mode 100644 x-pack/filebeat/module/microsoft/_meta/kibana/7/lens/14d367f0-ca68-11ea-9d4d-9737a63aaa55.json create mode 100644 x-pack/filebeat/module/microsoft/_meta/kibana/7/lens/e415af10-ca67-11ea-9d4d-9737a63aaa55.json create mode 100644 x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/00e8fca0-ca68-11ea-9d4d-9737a63aaa55.json create mode 100644 x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/3c64f400-ca68-11ea-9d4d-9737a63aaa55.json create mode 100644 x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/62f081c0-ca68-11ea-9d4d-9737a63aaa55.json create mode 100644 x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/9e902dc0-ca68-11ea-9d4d-9737a63aaa55.json create mode 100644 x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/b9fcbf60-ca68-11ea-9d4d-9737a63aaa55.json delete mode 100644 x-pack/filebeat/module/misp/_meta/kibana/7/dashboard/Filebeat-MISP-Overview.ndjson create mode 100644 x-pack/filebeat/module/misp/_meta/kibana/7/dashboard/c6cac9e0-f105-11e9-9a88-690b10c8ee99.json create mode 100644 x-pack/filebeat/module/misp/_meta/kibana/7/visualization/73287f70-f1fb-11e9-9a88-690b10c8ee99.json create mode 100644 x-pack/filebeat/module/misp/_meta/kibana/7/visualization/7d369390-f105-11e9-9a88-690b10c8ee99.json create mode 100644 x-pack/filebeat/module/misp/_meta/kibana/7/visualization/8fc4b140-ed36-11e9-9a88-690b10c8ee99.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/38012abe-c611-4124-8497-381fcd85acc8.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/94972700-de4a-4272-9143-2fa8d4981365.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425.json delete mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-autonomous-systems.ndjson delete mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-conversation-partners.ndjson delete mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-exporters.ndjson delete mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-records.ndjson delete mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-geo-location.ndjson delete mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-overview.ndjson delete mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-top-n.ndjson delete mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-traffic-analysis.ndjson create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/search/a34c6611-79d8-4b50-ae3f-8b328d28e24a.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/0177bf1a-cba8-4ba6-a1d7-73caed86ffc2.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/036aef95-ec90-468d-ad7c-3cc4405e9e81.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/0528bc66-6981-400a-a02d-c1d221b38890.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/0b2818fd-aecc-4bef-b566-9466eb702ae4.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/12aad647-c45d-4667-a029-152c1a97cbbc.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/14c7136d-b4aa-4367-9461-52bf8b5c4796.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/15295ea6-ba84-47db-8ced-9312abbf495c.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/1558508d-591c-49be-bef4-85fdac18a960.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/15e2a267-2495-4df2-a121-abe410d2f18c.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/16262df9-a979-4136-935e-d883c7d373d7.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/1cd36f5d-d9c7-4098-acdb-14d312ecfb72.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/1cf30eac-aae8-47fa-a156-37f6346d2d5a.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/1e74d5cb-556d-42ee-8042-88f6c1af47f0.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/201d7dd1-a880-4a64-b631-db5629340db9.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/2316bb53-d98a-4f0f-8cd8-51e9fb317823.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/248e00b4-8fc2-406f-8907-729d5380aaa7.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/2b3d4e86-2254-4033-8fe3-ce4753fafd03.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/2dca3025-692c-4876-8bcc-e0b248dc9819.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/30cd1009-2925-4c9b-820d-d689f5d1efda.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/31708a70-4957-4a8a-8065-5c88a344ad02.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/31b5f6fd-eb9d-4e97-90fd-367062ef217f.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/32e712ed-fa15-4db7-8575-8476e8d65b03.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/3a4209e2-281c-467e-b5cb-315bf4a2661f.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/3dec20c0-0d4f-43ef-8864-3779e1a1b33f.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/3e27fb83-b3e3-4c15-b999-ed6da49b7a86.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/441c6c50-fa1a-489c-96c6-76f7925dea24.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/4ac97841-c89f-4d50-b3c6-6253f7e1dd1a.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/4bb0255e-18ed-45e4-bfb9-de8e35b12094.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5292a65b-c532-422a-9008-1251a8073a3a.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5303e99b-389c-47b7-ae7a-945c5a92ba49.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/57e13a20-e94f-4465-a942-42148634a1d2.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5ccac452-e90a-4dde-ae9b-1be36ce3f761.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5cfb2c9a-4815-4a25-9d7e-ab0ef55ffe63.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5d868836-c7b2-4812-bf47-4838aac281d9.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/63ef5338-fdf2-488e-b78a-f0e98daccc95.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/67fdca65-a9df-47f0-a8a4-1e8b056325de.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/681f0ce4-d828-4a99-b643-0c0715530050.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/6bbd6712-494a-4fd9-b3d3-757304681f0f.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/717cd7c7-bfca-435d-8ee7-38259927aade.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/751ecb6f-11c3-458d-b039-f6d57a6379fa.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/7d447b22-89dc-4f32-b549-4b8620af4d76.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/7fa6cb0a-518d-46e9-a228-15cd4253a957.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/85ebf558-402b-45d2-a186-e15f8673ec07.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/8f83cf97-4a48-421f-8db5-690297d1f4fb.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/a14c3248-952d-42aa-bd7d-9b39157a776f.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/a1704d46-15fc-41c2-851d-796ceb49877f.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/a5efa3dd-f53a-4d14-9d3f-ee73345fd93d.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/a685420e-c45f-4b62-932b-5b76ac8b8ca2.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/abfa0b19-60cd-4984-9c3d-02ebf0aa1dfb.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/ae334aec-31fa-4df7-a064-40b18831d819.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/aed09724-0a69-4331-84f5-3d2067c43930.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/af707b01-29f1-462b-b279-6d2e803f3645.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/b02c2713-17f0-41dd-88a3-ce33b446f19d.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/b677cd82-b33e-49b3-8b6e-0e110177b163.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/c27c6a3b-93ee-44d5-8d0c-9b097e575f52.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/c54f5529-e6d7-4c26-8e8e-3b35de132035.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/cccff92f-cb71-49a9-9caf-84867751d31e.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/cf399a85-e348-4ac1-a399-e8f5a44114c4.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d27b5d74-b3b4-4311-a0e6-08ff8f4345df.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d3df8d28-65f8-4ea1-8b33-f479380a0600.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d41a9663-e5ad-47a7-955e-3803ae4e23c0.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d5568704-e30b-4108-bb49-06a9b8dce6a6.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d59a031c-70d6-47d7-966d-7fcb805be9be.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/ddd27657-c3c8-4f82-8059-6d7763dd599b.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/e822f94c-5f65-4963-a540-74ca9c25bd2d.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/e99dc327-03de-4561-9e0c-f550710125c2.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/e9ad835b-b2f2-42d3-a3e7-555a593deacf.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/ebea013f-9b5b-4f61-a9c8-c62bebf62ae9.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f27c1479-0625-4cdc-92de-672e47db0f87.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f4c8cb5a-7336-449e-ab99-6e867b435b85.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f531f957-e8c0-497a-ad41-ef39c2d29671.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f668ecdb-eec7-44c6-9060-26aaf9fc8404.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f75063c7-48b7-4de4-b8cb-d07eb2cea0e9.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f772028b-d5a6-4d55-b441-493871981a60.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f7808e70-df2a-4532-a350-966704567c24.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f86a7769-8ef6-408d-bbe3-985d0ea0a3f7.json create mode 100644 x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/fd6c1144-5026-4795-b7af-a9aa3fc28c56.json create mode 100644 x-pack/filebeat/module/o365/_meta/kibana/7/dashboard/712e2c00-685d-11ea-8d6a-292ef5d68366.json delete mode 100644 x-pack/filebeat/module/o365/_meta/kibana/7/dashboard/Filebeat-O365-Audit.ndjson create mode 100644 x-pack/filebeat/module/o365/_meta/kibana/7/map/dbae13c0-685c-11ea-8d6a-292ef5d68366.json create mode 100644 x-pack/filebeat/module/o365/_meta/kibana/7/search/8b8e5a10-6886-11ea-8d6a-292ef5d68366.json create mode 100644 x-pack/filebeat/module/o365/_meta/kibana/7/search/fdc14020-6859-11ea-8d6a-292ef5d68366.json create mode 100644 x-pack/filebeat/module/o365/_meta/kibana/7/visualization/0be1adb0-6860-11ea-8d6a-292ef5d68366.json create mode 100644 x-pack/filebeat/module/o365/_meta/kibana/7/visualization/897d0c70-6869-11ea-8d6a-292ef5d68366.json create mode 100644 x-pack/filebeat/module/o365/_meta/kibana/7/visualization/8b033510-685a-11ea-8d6a-292ef5d68366.json create mode 100644 x-pack/filebeat/module/o365/_meta/kibana/7/visualization/d43c95a0-6864-11ea-8d6a-292ef5d68366.json create mode 100644 x-pack/filebeat/module/okta/_meta/kibana/7/dashboard/749203a0-67b1-11ea-a76f-bf44814e437d.json delete mode 100644 x-pack/filebeat/module/okta/_meta/kibana/7/dashboard/749203a0-67b1-11ea-a76f-bf44814e437d.ndjson create mode 100644 x-pack/filebeat/module/okta/_meta/kibana/7/map/281ca660-67b1-11ea-a76f-bf44814e437d.json create mode 100644 x-pack/filebeat/module/okta/_meta/kibana/7/search/21028750-67ca-11ea-a76f-bf44814e437d.json create mode 100644 x-pack/filebeat/module/okta/_meta/kibana/7/visualization/0a784b30-67c7-11ea-a76f-bf44814e437d.json create mode 100644 x-pack/filebeat/module/okta/_meta/kibana/7/visualization/545d6a00-67ae-11ea-a76f-bf44814e437d.json create mode 100644 x-pack/filebeat/module/okta/_meta/kibana/7/visualization/7c6ec080-67c6-11ea-a76f-bf44814e437d.json create mode 100644 x-pack/filebeat/module/okta/_meta/kibana/7/visualization/cda883a0-67c6-11ea-a76f-bf44814e437d.json create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/772964e0-7591-11e9-aacf-79a3704914a0.json delete mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-network-overview.ndjson delete mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-threat-overview.ndjson create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/e40ba240-7572-11e9-976e-65a8f47cc4c1.json create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/search/290685e0-7569-11e9-976e-65a8f47cc4c1.json create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/search/3cea1360-7569-11e9-976e-65a8f47cc4c1.json create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/visualization/0407a3e0-756f-11e9-976e-65a8f47cc4c1.json create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/visualization/091fe860-756a-11e9-976e-65a8f47cc4c1.json create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/visualization/0bd2a0c0-7574-11e9-976e-65a8f47cc4c1.json create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/visualization/135930b0-7570-11e9-976e-65a8f47cc4c1.json create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/visualization/3eca1070-7589-11e9-aacf-79a3704914a0.json create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/visualization/5bd32b20-7575-11e9-976e-65a8f47cc4c1.json create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/visualization/6dce7930-758c-11e9-aacf-79a3704914a0.json create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/visualization/78e7e820-756d-11e9-976e-65a8f47cc4c1.json create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/visualization/87f30f60-7569-11e9-976e-65a8f47cc4c1.json create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/visualization/90ce3300-758a-11e9-aacf-79a3704914a0.json create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/visualization/a95aaf20-758a-11e9-aacf-79a3704914a0.json create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/visualization/d9cab170-756f-11e9-976e-65a8f47cc4c1.json create mode 100644 x-pack/filebeat/module/panw/_meta/kibana/7/visualization/e46331c0-756a-11e9-976e-65a8f47cc4c1.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/05268ee0-86d1-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/78289c40-86da-11e8-b59d-21efb914e65c-ecs.json delete mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-alert-overview.ndjson delete mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-event-overview.ndjson create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/search/13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/search/1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/search/d57a2db0-86ca-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/0a0aa630-86db-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/0a363820-86dd-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/16033310-86d3-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/169c0600-d297-11ea-90e3-8767fe7ccf14.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/2ccdc1a0-86d8-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/494fa290-86d2-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/5f99eb50-86dc-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/728f64c0-86db-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/85fed080-86d7-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/8e7f88d0-86dc-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/908e8c90-d296-11ea-90e3-8767fe7ccf14.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/9d5b5b50-86db-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/a09ca070-86d7-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/c7b8b8f0-86d8-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/c7d46c60-86da-11e8-b59d-21efb914e65c-ecs.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/47e6fdc0-76b9-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/53e4e630-76cf-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/5ba16340-72e6-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/65fa6bc0-72f0-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/68c48a30-739e-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/894dd3e0-df57-11eb-8f2b-753caedf727d.json delete mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-abuse-url.ndjson delete mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-alienvault-otx.ndjson delete mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-anomali.ndjson delete mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-aubse-malware.ndjson delete mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-malwarebazaar.ndjson delete mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-misp.ndjson delete mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-overview.ndjson delete mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-recordedfuture.ndjson create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/ad9c7430-72de-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/dee7be00-82ab-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/021ba940-de96-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/037e2af0-df50-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/06744e90-df52-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/0db62ee0-72e6-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/1136ceb0-de95-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/139c7da0-df51-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/176bf800-df58-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/1d7a18c0-df54-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/36f61650-de96-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/3c40f4d0-de97-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/3c996410-df52-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/4bcc4cb0-df50-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/5e76ef90-df51-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/5ef7b430-de94-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/790cd040-df51-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/7d9c70f0-de95-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/7ec83f60-de98-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/7ed4ce00-df52-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/82fa7420-df58-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/8a6f7b20-de94-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/8fb01a00-df51-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/9282afc0-72d9-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/949bc180-df52-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/976620a0-de98-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/9a61edc0-de93-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/9c78ade0-de95-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/a0a31740-df51-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/aac00bc0-de98-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/ae5934e0-de94-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/b0837690-df52-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/bd28cb00-de96-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/bfd2bfe0-de97-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/c2a5c180-df51-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/c91fcd10-de95-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/d991e510-de96-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/dd4a3da0-df50-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/e5f07800-de94-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/f37f8350-df50-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/f52a9720-de93-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/f5f18940-de96-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/map/63365b50-82aa-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/map/ec5aa090-df42-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/search/6acbb070-72d0-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/tag/d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/01c261b0-7aa9-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/02294f80-73c7-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/0ccdda50-76ce-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/142fb6c0-82a8-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1a0d5250-72e5-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1a1c60c0-72d5-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1adff580-72ee-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1c969990-73c7-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1d8002d0-82a7-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/21ff17c0-82a6-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/302cd5b0-76cd-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/346136f0-76d5-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/40d61ab0-72e6-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/41100be0-72e5-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/418e5a30-73c2-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/44020830-7394-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/49f0c060-76cd-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/4e5d25c0-76ce-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/55b5c280-76b7-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/57faae10-73c5-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/5b4877b0-82a6-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/5f955bb0-7394-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/6077fd00-76d5-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/62f6daa0-72ee-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/6ce04320-72d1-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/737d4f30-82ac-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/7546ac40-82a6-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/7582b030-73c6-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/786546d0-82a5-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/79da77d0-72e5-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/7c7d3750-73c3-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/7cbe5900-82ab-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/81f16940-72d3-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/87980f70-72ec-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/8b2a64a0-82a8-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/9047e8b0-72de-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/9109e490-76cd-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/92961600-7621-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/95f384b0-76d8-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/98d42ee0-76b6-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/a09329d0-73c6-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/a1616dd0-72eb-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/a7b6e910-72ed-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/ad55b1e0-73c8-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/aebde030-72d2-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/b5bd3a70-76ce-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/b9533f50-72e5-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/b9aa1d70-72db-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/bc4790b0-82aa-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/bf3dfde0-73c3-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c049e1c0-72d5-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c102b0f0-73c6-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c369c190-72e4-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c7d5db50-82a8-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c813c5d0-72dd-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/d22c1090-82a5-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/d5d76c60-72ee-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/dbd199d0-82aa-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/ea5879c0-72eb-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/eba4ec60-72ea-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/ec68c4a0-73c6-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/ecf74b10-72ec-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f13f5650-df5b-11eb-8f2b-753caedf727d.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f33125b0-76d8-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f91e9620-82a8-11eb-ac13-d5ca87cb8fa2.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f9c6ba80-72e5-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f9f89660-72d9-11eb-a3e3-b3cc7c78a70f.json create mode 100644 x-pack/filebeat/module/zeek/_meta/kibana/7/dashboard/7cbb5410-3700-11e9-aa6d-ff445a78330c.json delete mode 100644 x-pack/filebeat/module/zeek/_meta/kibana/7/dashboard/Filebeat-Zeek-Overview.ndjson create mode 100644 x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/1df7ea80-370d-11e9-aa6d-ff445a78330c.json create mode 100644 x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/466e5850-370d-11e9-aa6d-ff445a78330c.json create mode 100644 x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/649acd40-370d-11e9-aa6d-ff445a78330c.json create mode 100644 x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/9436c270-370d-11e9-aa6d-ff445a78330c.json create mode 100644 x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/bec2f0e0-370d-11e9-aa6d-ff445a78330c.json create mode 100644 x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/e042fda0-370d-11e9-aa6d-ff445a78330c.json create mode 100644 x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/f469f230-370c-11e9-aa6d-ff445a78330c.json create mode 100644 x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/f8c40810-370d-11e9-aa6d-ff445a78330c.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/a8160560-0bd0-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/d97b7520-0bbe-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/fc27a270-0b95-11ea-81bb-cf244189d349.json delete mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-broker-overview.ndjson delete mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-queues-overview.ndjson delete mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-topics-overview.ndjson create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/00e33010-0bd5-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/21fb23a0-0bbe-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/33cbfa60-0b95-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/3db29790-0bd7-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/4a93ef10-0bd5-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/55cacee0-0ba7-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/55cc9840-0bd6-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/594db510-0b9c-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/8599cea0-0c2e-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/89de30b0-0bce-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/8ae8aa90-0bc8-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/99f41030-0bd5-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/a85c09b0-0bbd-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/a8ac8950-0c2e-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/ad2d4960-0bd4-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/bfad8290-0d22-11ea-ba76-7fb26815d86c.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/cb475400-0d22-11ea-ba76-7fb26815d86c.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/ce456e60-0b99-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/d22e5e00-0bbd-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/e73c2af0-0bce-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/e91f2b80-0bbd-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/fab93e30-0bbd-11ea-81bb-cf244189d349.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/07d67a60-d872-11eb-8220-c9141cc1b15c.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/0eb5a6a0-694f-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/234aeda0-43b7-11e9-8697-530f39afc6eb.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/3367c170-921f-11e9-aa19-159bf182e06f.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/44ce4680-b7ba-11e9-8349-f15f850c5cd0.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/67c9f900-693e-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/68ba7bd0-20b6-11ea-8f72-2f8d21e50b0c.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/7ac8e1d0-28d2-11ea-ba6c-49a884eb104f.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/917a07b0-178e-11ea-8650-fb606deb5be4.json delete mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-billing-overview.ndjson delete mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-dynamodb-overview.ndjson delete mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ebs-overview.ndjson delete mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ec2-overview.ndjson delete mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-elb-overview.ndjson delete mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-kinesis-overview.ndjson delete mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-lambda-overview.ndjson delete mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-natgateway-overview.ndjson delete mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-overview.ndjson delete mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-rds-overview.ndjson delete mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-s3-overview.ndjson delete mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sns-overview.ndjson delete mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sqs-overview.ndjson delete mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-trasitgateway-overview.ndjson delete mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-usage-overview.ndjson delete mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-vpn-overview.ndjson create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/a096b830-4762-11e9-8062-c98a86cb6f94.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/c2b1cbc0-6891-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/c5846400-f7fb-11e8-af03-c999c9dea608-ecs.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/d17b1000-17a4-11ea-8e91-03c7047cbb9d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/e6776b10-1534-11ea-841c-01bf20a6c8ba.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/e74bf320-b3ce-11e9-87a4-078dbbae220d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/fac28650-7349-11e9-816b-07687310a99a.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/2a711450-d871-11eb-8220-c9141cc1b15c.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/30fd4e40-f0a1-11eb-b61f-a53cb4913361.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/41e37710-f09d-11eb-b61f-a53cb4913361.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/56ac2b40-d871-11eb-8220-c9141cc1b15c.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/63aa5990-d86f-11eb-8220-c9141cc1b15c.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/68f36fb0-f0a0-11eb-b61f-a53cb4913361.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/6d631980-d870-11eb-8220-c9141cc1b15c.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/79d713c0-d86f-11eb-8220-c9141cc1b15c.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/8560b400-f096-11eb-b61f-a53cb4913361.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/9deb6a80-d870-11eb-8220-c9141cc1b15c.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/b0077d10-f09b-11eb-b61f-a53cb4913361.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/b3da5ac0-e6f1-11ea-a5b5-d5a0accaec95.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/bbc80900-f09e-11eb-b61f-a53cb4913361.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/c4419a90-f091-11eb-b61f-a53cb4913361.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/c68d7c30-d870-11eb-8220-c9141cc1b15c.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/cde34840-e6f2-11ea-a5b5-d5a0accaec95.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/d1468000-d86f-11eb-8220-c9141cc1b15c.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/d7b399c0-e6f1-11ea-a5b5-d5a0accaec95.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/f757eba0-f0a0-11eb-b61f-a53cb4913361.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/lens/f9ff3450-f094-11eb-b61f-a53cb4913361.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/007ceec0-694c-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/00b29040-921d-11e9-aa19-159bf182e06f.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/01ed5990-694a-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/08645080-6891-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/09857a20-180f-11ea-8e91-03c7047cbb9d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/09db13f0-2bdd-11e9-9fe1-cde861544141.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/0a36b590-694c-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/10e0f270-694c-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/1235fe50-41e7-11e9-b7a0-c99d9d127b61.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/128fd450-734e-11e9-816b-07687310a99a.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/12eff7e0-b7b9-11e9-8349-f15f850c5cd0.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/13e624c0-180e-11ea-8e91-03c7047cbb9d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/142ad600-693b-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/15818fd0-f7f9-11e8-af03-c999c9dea608-ecs.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/1731c440-e649-11ea-a838-3f4a45f85600.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/17fcda50-921b-11e9-aa19-159bf182e06f.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/1f3f00c0-28d1-11ea-ba6c-49a884eb104f.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/1f528f50-b3ce-11e9-87a4-078dbbae220d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/21f30090-b3ca-11e9-87a4-078dbbae220d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/233b3400-f7f9-11e8-af03-c999c9dea608-ecs.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/25384bf0-b7b9-11e9-8349-f15f850c5cd0.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/26b73e50-6943-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/2929edb0-178e-11ea-8650-fb606deb5be4.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/2b2d58b0-4762-11e9-8062-c98a86cb6f94.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/2dbb8f90-4760-11e9-8062-c98a86cb6f94.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/2ee7f420-6943-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/31ad4090-2003-11ea-8f72-2f8d21e50b0c.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/398d12d0-7352-11e9-816b-07687310a99a.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/39dfc8d0-28cf-11ea-ba6c-49a884eb104f.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/3a3914d0-4761-11e9-8062-c98a86cb6f94.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/3c5d7860-d903-11eb-8220-c9141cc1b15c.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/3dee68c0-7b0c-11ea-9bb4-e958b64b5685.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/3e091620-e64b-11ea-a838-3f4a45f85600.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/415fed40-694f-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/42016bf0-728f-11e9-9a7b-4d62d5bcf4fc.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/4658f540-734a-11e9-816b-07687310a99a.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/49379b70-7b07-11ea-9bb4-e958b64b5685.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/4bf0a740-28d1-11ea-ba6c-49a884eb104f.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/4bf62a10-8310-11e9-ac83-47df3568ff90.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/53730d20-437e-11e9-8697-530f39afc6eb.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/54e88a40-734e-11e9-816b-07687310a99a.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/572d40e0-b3ca-11e9-87a4-078dbbae220d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/58e17c10-7349-11e9-816b-07687310a99a.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/58f5a3c0-6943-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/59defc90-17a5-11ea-8e91-03c7047cbb9d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/59e2e110-178d-11ea-8650-fb606deb5be4.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/6392bc30-b3c9-11e9-87a4-078dbbae220d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/67f43080-b7b9-11e9-8349-f15f850c5cd0.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/681aab60-178c-11ea-8650-fb606deb5be4.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/68970b10-6890-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/6e3285d0-4763-11e9-8062-c98a86cb6f94.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/6f7f7680-180c-11ea-8e91-03c7047cbb9d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/6fc1efd0-b3c9-11e9-87a4-078dbbae220d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/75ebfda0-1789-11ea-8650-fb606deb5be4.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/7b93bab0-7b0a-11ea-9bb4-e958b64b5685.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/7d1e0870-7a3f-11ea-bfa4-dfea8c457654.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/81d83c70-4762-11e9-8062-c98a86cb6f94.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/8345d580-6891-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/83f08eb0-1532-11ea-841c-01bf20a6c8ba.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/8b34a100-4762-11e9-8062-c98a86cb6f94.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/8cf5fbe0-7b07-11ea-9bb4-e958b64b5685.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9121ac90-734d-11e9-816b-07687310a99a.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/915bcd50-28d1-11ea-ba6c-49a884eb104f.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9202d1a0-178c-11ea-8650-fb606deb5be4.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/95b322f0-734a-11e9-816b-07687310a99a.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9bf8e1e0-6890-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9d284bc0-7b08-11ea-9bb4-e958b64b5685.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9e8c6030-f7f8-11e8-af03-c999c9dea608-ecs.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9f0425c0-7b0a-11ea-9bb4-e958b64b5685.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/a5670a20-e65a-11ea-a838-3f4a45f85600.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/abdc7480-180b-11ea-8e91-03c7047cbb9d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b00c4390-b7b8-11e9-8349-f15f850c5cd0.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b0afd3e0-43b7-11e9-8697-530f39afc6eb.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b2191dd0-734c-11e9-816b-07687310a99a.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b2ea15a0-b3c7-11e9-87a4-078dbbae220d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b36532e0-688e-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b403f7b0-7b15-11ea-9bb4-e958b64b5685.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b5308940-7347-11e9-816b-07687310a99a.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b7f8bf90-180f-11ea-8e91-03c7047cbb9d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b9703dd0-b3c9-11e9-87a4-078dbbae220d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bb3a6cd0-b7b6-11e9-8349-f15f850c5cd0.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bb82c4d0-6c25-11e9-81bc-7f4cd8b3d892.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bc5dcc90-688e-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bc8bd8f0-31fd-11ea-bcbf-59cb7eefc1f0.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bdb8ddd0-6890-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/be6c4180-41e6-11e9-b7a0-c99d9d127b61.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/be8828d0-f7f6-11e8-af03-c999c9dea608-ecs.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bf81e030-180e-11ea-8e91-03c7047cbb9d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c0e32d50-b7b8-11e9-8349-f15f850c5cd0.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c186b610-688d-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c1db9b80-694b-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c7d6cf90-688e-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c84ed3d0-6890-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/cd6419c0-6949-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/ce7445c0-688f-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d045d120-b7b9-11e9-8349-f15f850c5cd0.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d186fd50-4763-11e9-8062-c98a86cb6f94.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d19a71b0-180e-11ea-8e91-03c7047cbb9d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d2f46190-830f-11e9-ac83-47df3568ff90.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d560de70-b3c7-11e9-87a4-078dbbae220d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/dc5f65b0-6949-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/dcd31cd0-41e5-11e9-b7a0-c99d9d127b61.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/dd2f2a10-41e6-11e9-b7a0-c99d9d127b61.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/deab0260-2981-11e9-86eb-a3a07a77f530.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/dffa19e0-180e-11ea-8e91-03c7047cbb9d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/e0e65e60-688e-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/ea9e3d40-693a-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f1db6ec0-f7f8-11e8-af03-c999c9dea608-ecs.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f58f99b0-693a-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f6831f30-b7b6-11e9-8349-f15f850c5cd0.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f74eb760-41e8-11e9-b7a0-c99d9d127b61.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f7c17000-6949-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fc0869c0-180e-11ea-8e91-03c7047cbb9d.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fcfc8d80-693e-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fd915180-6890-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fe0581b0-b7b8-11e9-8349-f15f850c5cd0.json create mode 100644 x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fed59380-f7f8-11e8-af03-c999c9dea608-ecs.json create mode 100644 x-pack/metricbeat/module/awsfargate/_meta/kibana/7/dashboard/20dc7c50-2e89-11eb-991c-c5fd3b7f5a63.json delete mode 100644 x-pack/metricbeat/module/awsfargate/_meta/kibana/7/dashboard/Metricbeat-awsfargate-overview.ndjson create mode 100644 x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/60941700-2e88-11eb-991c-c5fd3b7f5a63.json create mode 100644 x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/86720980-3966-11eb-a417-f961313c14f6.json create mode 100644 x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/8cf592f0-2e8e-11eb-a417-f961313c14f6.json create mode 100644 x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/a7970500-2e91-11eb-a417-f961313c14f6.json create mode 100644 x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/b1837e70-396f-11eb-a417-f961313c14f6.json create mode 100644 x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/c3952840-2e91-11eb-a417-f961313c14f6.json create mode 100644 x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/d3f3aa80-2e8d-11eb-a417-f961313c14f6.json create mode 100644 x-pack/metricbeat/module/awsfargate/_meta/kibana/7/visualization/38eee240-2e90-11eb-a417-f961313c14f6.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/6f2393f0-6d08-11ea-8fe8-71add5fd7c38.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/91afcc50-eaad-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/9c11ac60-6cf6-11ea-8fe8-71add5fd7c38.json delete mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-app-state-overview.ndjson delete mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-billing-overview.ndjson delete mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-blob-storage-overview.ndjson delete mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-instance-overview.ndjson delete mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-registry-overview.ndjson delete mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-service-overview.ndjson delete mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-database-account-overview.ndjson delete mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-file-storage-overview.ndjson delete mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-queue-storage-overview.ndjson delete mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-storage-overview.ndjson delete mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-table-storage-overview.ndjson delete mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-guestmetrics-overview.ndjson delete mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-overview.ndjson delete mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vmss-overview.ndjson create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/a6f5d430-eaa6-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/b232c220-8481-11ea-b181-4b1a9e0110f9.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/d3efeb30-c1c7-11ea-b7e7-0f48178cdb3c.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/d5fbd610-03d9-11eb-8034-63f2039e9d3f.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/dae20ed0-6d0a-11ea-8fe8-71add5fd7c38.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/eb3f05f0-ea9a-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/lens/0df175c0-03ee-11eb-8034-63f2039e9d3f.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/lens/0e74dee0-04a4-11eb-8034-63f2039e9d3f.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/lens/1064f9a0-04a5-11eb-8034-63f2039e9d3f.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/lens/2b54b2c0-04a8-11eb-8034-63f2039e9d3f.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/lens/76cc1d70-04a7-11eb-8034-63f2039e9d3f.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/lens/a89c8fd0-03ec-11eb-8034-63f2039e9d3f.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/lens/cb5ec410-03ed-11eb-8034-63f2039e9d3f.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/lens/cfa361a0-04a8-11eb-8034-63f2039e9d3f.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/lens/e2704140-04a3-11eb-8034-63f2039e9d3f.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/lens/f0678020-04a2-11eb-8034-63f2039e9d3f.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0241cc10-339d-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/037382e0-856e-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/04f8eec0-6ab1-11ea-af5c-73e8f396b3e9.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/05d5b3e0-c1c9-11ea-b7e7-0f48178cdb3c.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0892eaa0-ea9a-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/097bc300-eaa5-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/09a6f150-3399-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/09f05e00-32f7-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0aacc190-eaa8-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0d03a670-eb43-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0fa31060-6aae-11ea-af5c-73e8f396b3e9.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/109ec950-32e6-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/17ee2920-3391-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/1e70dc50-6d22-11ea-8fe8-71add5fd7c38.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/1f5c1cd0-eaa3-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/2219de20-32ed-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/241a55e0-3399-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/2bedaca0-339d-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/2e5183a0-03da-11eb-8034-63f2039e9d3f.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/33500790-eaaf-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/33d645e0-32ed-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/3630b9a0-6d22-11ea-8fe8-71add5fd7c38.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/3a50e950-eb46-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/40dbc0d0-32e3-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/4177aab0-83cc-11ea-be84-f5d4d6b9a792.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/42cc28d0-ea9a-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/43b31a20-339b-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/453965a0-3393-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/4eaef260-32e1-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/5031b220-eb61-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/553f9320-32e9-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/55936920-3391-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/5720b830-6aad-11ea-af5c-73e8f396b3e9.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/599c62c0-32d7-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/5c016810-ea9a-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/5cbf5820-339c-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/634b83c0-32ee-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/64266ec0-eb42-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/674c1d70-83cc-11ea-be84-f5d4d6b9a792.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/685fbeb0-32eb-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/686bc990-ea92-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/6d52a660-eaa4-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/6e2d9930-6d1e-11ea-8fe8-71add5fd7c38.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/6ffa7e20-c1da-11ea-b7e7-0f48178cdb3c.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/7205a4f0-ea95-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/722ef2f0-3393-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/74a8e130-6cfa-11ea-8fe8-71add5fd7c38.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/787a0a20-eaa8-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/7972b260-6d07-11ea-8fe8-71add5fd7c38.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/81f16b40-32ea-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/82a51dd0-c1d7-11ea-b7e7-0f48178cdb3c.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/8b6b9450-ea99-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/9142aca0-c1c7-11ea-b7e7-0f48178cdb3c.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/942844b0-6ac5-11ea-af5c-73e8f396b3e9.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/9c1a1910-ea9a-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/9e991b10-3391-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/a16b5900-8492-11ea-b181-4b1a9e0110f9.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/a49b4e20-8490-11ea-b181-4b1a9e0110f9.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/a4bf9710-3393-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/abd32c30-ea99-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/acced050-32d1-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/b18053b0-c1da-11ea-b7e7-0f48178cdb3c.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/b45fd8e0-eb42-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/b88b7f90-6d07-11ea-8fe8-71add5fd7c38.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/b9aa9b20-eaa5-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/bd1c93b0-6cf7-11ea-8fe8-71add5fd7c38.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/bda7b580-6d1f-11ea-8fe8-71add5fd7c38.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/c19586f0-6d1e-11ea-8fe8-71add5fd7c38.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/c8016f70-c1da-11ea-b7e7-0f48178cdb3c.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/cecd6680-eb41-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/cfaedaf0-eb43-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/d2801d70-8490-11ea-b181-4b1a9e0110f9.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/d3ac7d90-8492-11ea-b181-4b1a9e0110f9.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/d7ea4290-eaa8-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/db9a3490-ea8f-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/ddea7430-6d07-11ea-8fe8-71add5fd7c38.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/e159b990-339c-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/e4b25ee0-32f6-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/e79211c0-6d37-11ea-8fe8-71add5fd7c38.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/e8ca65c0-eb45-11e9-90ec-112a988266d5.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/eda368d0-6d1d-11ea-8fe8-71add5fd7c38.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/f18a7cb0-32f6-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/f528e6a0-339a-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/fcc24d70-32f5-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/fdef3f40-32f6-11ea-a83e-25b8612d00cc.json create mode 100644 x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/ff303710-6d07-11ea-8fe8-71add5fd7c38.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/94364424-f851-11ea-8206-7b08cd60917a.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/9c81cf34-f84e-11ea-a49d-f3f94f5e4fac.json delete mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-overview.ndjson delete mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-platform-health.ndjson create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/435133e4-f8d2-11ea-a49e-d36460a01dbe.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9379c90c-f851-11ea-8313-f3c659aaac21.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/937d5f4a-f851-11ea-9321-07e4098558b1.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/938e9490-f851-11ea-9fc4-93d53dd1c7c1.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93911f12-f851-11ea-9a0a-bb5ff28cf81a.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9398519c-f851-11ea-9d16-0345f5e91a95.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/939a9380-f851-11ea-9a72-a3f185bef2c4.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93a42468-f851-11ea-8393-7791ef366bdd.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93acc294-f851-11ea-a97a-53f837470423.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93c03f18-f851-11ea-8da1-eb649369fefa.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93c2c184-f851-11ea-93fb-fb88ecfdafdb.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93d1bce8-f851-11ea-9e6c-e3a6ffa65309.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93d3c40c-f851-11ea-ab6c-2b7686d129ce.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93d9d39c-f851-11ea-b957-3f002cacae67.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93dcb238-f851-11ea-8c49-fb9deba7fc48.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93deea94-f851-11ea-8186-777cfa34f466.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93e0d7d2-f851-11ea-a8ea-ab5761cc3b1c.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93edb394-f851-11ea-af40-bbda53487783.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93f27abe-f851-11ea-90c1-670adf08e026.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93f59bb8-f851-11ea-ab86-6757c64f8446.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93f86eec-f851-11ea-9ae8-ff70f6c28f02.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93fd890e-f851-11ea-96db-8342eb689011.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9410e9ea-f851-11ea-b70d-9bda9c286e02.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9417ef10-f851-11ea-bc5c-cbb3bfb4dc2a.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/94200db2-f851-11ea-a8fa-9bfadc17852f.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9430406a-f851-11ea-a96e-efef958606c3.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/943b6bf2-f851-11ea-99e0-b300881da4b1.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/943dcad2-f851-11ea-8923-93b64d3cea46.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/94402c0a-f851-11ea-b3d4-f3815d5ef910.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c58b248-f84e-11ea-87a9-67d346210280.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c5e5c7a-f84e-11ea-9c79-3f5f46484ce3.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c635824-f84e-11ea-9b02-735b8407166a.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c69684a-f84e-11ea-bf59-4bba486da283.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c7328ee-f84e-11ea-9259-772ddb1805fb.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c77cf84-f84e-11ea-a3ff-7f7f73eabd57.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c7b602c-f84e-11ea-8762-e7aef60b5522.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c89336e-f84e-11ea-bbcd-23e329286ac7.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c8ed8fa-f84e-11ea-b20d-bb82d7a8e05d.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c93270c-f84e-11ea-8b23-c7a1cc31369e.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c948fb6-f84e-11ea-96f5-dff115716ba4.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c975020-f84e-11ea-9d35-0ba5b289cee7.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c99314c-f84e-11ea-92d5-9bcd6abdce0f.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c9d9c14-f84e-11ea-a575-a30e017a09e9.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c9f12b0-f84e-11ea-bfe0-8f64de3dbbbd.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9ca39c36-f84e-11ea-9b0e-af32e8072a87.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9ca526aa-f84e-11ea-aad5-ef2777854f3d.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9ca805fa-f84e-11ea-ab90-2b00dd50450c.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9ca9737c-f84e-11ea-b8a5-9f245d6f7121.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9caafdaa-f84e-11ea-8c78-43aac4b09aa5.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9cac69e2-f84e-11ea-b8d4-4b40313a5eb0.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9caddb24-f84e-11ea-b008-df9bd2aed7cc.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9caf798e-f84e-11ea-ac4b-4795663aee6b.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9cb33038-f84e-11ea-8929-07701f2b1c26.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9cbb8cd8-f84e-11ea-9a20-af708256c3a9.json create mode 100644 x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/f771b65c-f8d0-11ea-bf74-8bbda818957f.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/04b595b0-c1fc-11ea-8a94-61b423d19ae7.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/3975ad70-c761-11ea-8a94-61b423d19ae7.json delete mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-overview.ndjson delete mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-sql.ndjson create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/020f6a20-ec68-11ea-b088-6f3c0066a551.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/2af19b90-976c-11e9-9eea-6f554992ec1f.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/5073ed20-9760-11e9-9eea-6f554992ec1f.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/57939a70-ec63-11ea-b088-6f3c0066a551.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/61999c30-c766-11ea-8a94-61b423d19ae7.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/643353f0-c202-11ea-8a94-61b423d19ae7.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/6fdbdbe0-c767-11ea-8a94-61b423d19ae7.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/74cf44b0-9771-11e9-9eea-6f554992ec1f.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/79691920-9766-11e9-9eea-6f554992ec1f.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/7d13f0d0-c763-11ea-8a94-61b423d19ae7.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/89e96120-fe7a-11ea-a589-8d7d9f58c8fd.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/8add0960-976a-11e9-9eea-6f554992ec1f.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/b5ab45b0-9771-11e9-9eea-6f554992ec1f.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/bad285b0-9769-11e9-9eea-6f554992ec1f.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/bbd18b20-ccf4-11ea-8a94-61b423d19ae7.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/d4177d60-75e2-11eb-b955-29bfd5c9e2dd.json create mode 100644 x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/f2d065e0-ee11-11ea-b088-6f3c0066a551.json create mode 100644 x-pack/metricbeat/module/coredns/_meta/kibana/7/dashboard/Metricbeat-CoreDNS-Dashboard-ecs.json delete mode 100644 x-pack/metricbeat/module/coredns/_meta/kibana/7/dashboard/Metricbeat-coredns-overview.ndjson create mode 100644 x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/277fc650-67a9-11e9-a534-715561d0bf42.json create mode 100644 x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/27da53f0-53d5-11e9-b466-9be470bbd327-ecs.json create mode 100644 x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/36e08510-53c4-11e9-b466-9be470bbd327-ecs.json create mode 100644 x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/4804eaa0-7315-11e9-b0d0-414c3011ddbb.json create mode 100644 x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/57c74300-7308-11e9-b0d0-414c3011ddbb.json create mode 100644 x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/86177430-728d-11e9-b0d0-414c3011ddbb.json create mode 100644 x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/a19df590-53c4-11e9-b466-9be470bbd327-ecs.json create mode 100644 x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/a58345f0-7298-11e9-b0d0-414c3011ddbb.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/2b0fd7b0-feac-11ea-b032-d59f894a5072.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/6041d970-a6ae-11ea-950e-d57608e3aa51.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/76c9e920-e890-11ea-bf8c-d13ebf358a78.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/8f9c6cc0-909d-11ea-8180-7b0dacd9df87.json delete mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-billing-overview.ndjson delete mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-compute-overview.ndjson delete mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-load-balancing-https-overview.ndjson delete mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-l3-overview.ndjson delete mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-tcp-ssl-proxy-overview.ndjson delete mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-pubsub-overview.ndjson delete mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-storage-overview.ndjson create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/aa5b8bd0-9157-11ea-8180-7b0dacd9df87.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/ca401040-8e52-11ea-9fa6-4d675d5290dc.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/f40ee870-5e4a-11ea-a4f6-717338406083.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/057de170-e88d-11ea-bf8c-d13ebf358a78.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/0776dbf0-019f-11eb-b032-d59f894a5072.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/11d06fc0-01a0-11eb-b032-d59f894a5072.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/25b76dc0-01a2-11eb-b032-d59f894a5072.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/403d81e0-01a0-11eb-b032-d59f894a5072.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/520c6f10-ec8a-11ea-a0ed-7fe6b565d158.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/5f97d300-01a1-11eb-b032-d59f894a5072.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/6de1f430-019d-11eb-b032-d59f894a5072.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/73346db0-e88d-11ea-bf8c-d13ebf358a78.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/79d80f10-01a0-11eb-b032-d59f894a5072.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/bd399790-01a2-11eb-b032-d59f894a5072.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/dd835300-e88f-11ea-bf8c-d13ebf358a78.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/e6933020-e88d-11ea-bf8c-d13ebf358a78.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/f3e92c10-019d-11eb-b032-d59f894a5072.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/02b3c620-8e52-11ea-9fa6-4d675d5290dc.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/0bd0a6e0-9156-11ea-8180-7b0dacd9df87.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/239e2290-8e52-11ea-9fa6-4d675d5290dc.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/2f6b6740-909b-11ea-8180-7b0dacd9df87.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/3aa96470-5fc4-11ea-a4f6-717338406083.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/3f472ea0-5e47-11ea-a4f6-717338406083.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/3f4e9040-909d-11ea-8180-7b0dacd9df87.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/434f69f0-909b-11ea-8180-7b0dacd9df87.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/43f45ba0-5e4a-11ea-a4f6-717338406083.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/4b44b2b0-8e51-11ea-9fa6-4d675d5290dc.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/543dac40-909b-11ea-8180-7b0dacd9df87.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/5d2f9160-e88e-11ea-bf8c-d13ebf358a78.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/6958ed10-a6ad-11ea-950e-d57608e3aa51.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/6f795e70-5e49-11ea-a4f6-717338406083.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/6f933ef0-9155-11ea-8180-7b0dacd9df87.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/89513bc0-5e48-11ea-a4f6-717338406083.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/8d4ddf40-9155-11ea-8180-7b0dacd9df87.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/91eb8d10-8e51-11ea-9fa6-4d675d5290dc.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/95e1f050-5e48-11ea-a4f6-717338406083.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/9d919d00-5e4d-11ea-a4f6-717338406083.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/afeb98a0-a6ac-11ea-950e-d57608e3aa51.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/be27b340-a6ac-11ea-950e-d57608e3aa51.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/c4e1e090-a6aa-11ea-950e-d57608e3aa51.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/d4cc5ec0-8e51-11ea-9fa6-4d675d5290dc.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/d5418f80-9156-11ea-8180-7b0dacd9df87.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/d63465e0-9154-11ea-8180-7b0dacd9df87.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/da5bc460-63e1-11ea-b0ac-95d4ecb1fecd.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/dff87070-9155-11ea-8180-7b0dacd9df87.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/e562eb50-909a-11ea-8180-7b0dacd9df87.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/e9e44d90-8e51-11ea-9fa6-4d675d5290dc.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/eb891a20-9155-11ea-8180-7b0dacd9df87.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/eed05d80-a6ac-11ea-950e-d57608e3aa51.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/ef1508c0-5e4c-11ea-a4f6-717338406083.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/f6e33a00-feaf-11ea-b032-d59f894a5072.json create mode 100644 x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/f86c26f0-a6aa-11ea-950e-d57608e3aa51.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/8f788c70-36c9-11ea-9f7a-097fe7ab3ddd.json delete mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-calls-overview.ndjson delete mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-messages-overview.ndjson delete mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-subscriptions-overview.ndjson create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/d2112e90-36ea-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/fc5512c0-36d1-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/07262080-36d3-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/0abb72e0-36ec-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/195b5860-36ec-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/1dba2700-36de-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/23c5f140-36ef-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/2fcbdab0-36de-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/3901ed30-36cb-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/3ed28890-36ef-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/49abed00-36eb-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/56b63f60-36e0-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/58abd000-36ef-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/60b5a440-36ec-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/67eeac40-36ef-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/74874de0-36e0-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/855debb0-36ef-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/89984460-36cb-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/908afbf0-36cb-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/92bf3480-36e0-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/96d27500-36ef-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/9939e270-36cb-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/aa90ec20-36e0-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/b455bc00-36cb-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/bdf17380-36cb-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/c4be1ff0-36e0-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/d781db00-36df-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/d82919b0-36ee-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/d8dbdcd0-36cb-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/e98d7660-36ee-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7.json delete mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-application-pool-overview.ndjson delete mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-overview.ndjson delete mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-process-overview.ndjson delete mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-website-overview.ndjson create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/1084a0e0-8d57-11ea-817c-a9b6d42fd8a0.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/14300bf0-8620-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/14e77b40-8d56-11ea-817c-a9b6d42fd8a0.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/1b4f8790-861a-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/29a23aa0-861e-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/2d802c60-8d56-11ea-817c-a9b6d42fd8a0.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/2dd099f0-858d-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/31ed84b0-861b-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/348c4fe0-8575-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/34bfec50-8620-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/40614070-8573-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/41324ad0-861d-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/442a86c0-861e-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/4557d670-860e-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/461a8640-8576-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/4921d5c0-8619-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/54038fe0-861b-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/55755550-858c-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/57d914d0-860e-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/68a9df20-8581-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/6c1272a0-858e-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/6db58c20-860e-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/7453b910-8624-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/75812480-857f-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/7d9e1f40-8d56-11ea-817c-a9b6d42fd8a0.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/7dabd8e0-8619-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/82f1d7d0-858a-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/8ee988d0-861b-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/90fe3b30-861f-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/92acc3e0-8582-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/92dcde20-858e-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/945f7850-8d56-11ea-817c-a9b6d42fd8a0.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/96fe7d70-8614-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/98b90fa0-861d-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/a9427270-8619-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/b5c6f400-8d56-11ea-817c-a9b6d42fd8a0.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/b7230190-8603-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/c784f9b0-8614-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/c8e467d0-8d55-11ea-817c-a9b6d42fd8a0.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/c92e0b80-8574-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/d9dc78b0-8d56-11ea-817c-a9b6d42fd8a0.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/dc97bec0-861c-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/dd419de0-861d-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/df9d0e50-8d55-11ea-817c-a9b6d42fd8a0.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/e26479e0-858d-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/e3ee4990-860e-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/e4d91170-858f-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/e6fab5c0-858b-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/f7194cc0-861f-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/f9723710-8602-11ea-91bc-ab084c7ec0e7.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/3b88a120-0c7c-11eb-a3fd-1b45ec532bb3.json delete mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-overview.ndjson delete mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-traffic.ndjson create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/d899d3f0-0883-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/09404610-0c7b-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/0ed17c80-0883-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/12cdcce0-0882-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/19a8b9c0-0c7f-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/1d076a90-0c7e-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/3ae9b3f0-0c7a-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/4275f710-0882-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/506c8490-087f-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/5fd462f0-0c7a-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/60dacbe0-0c79-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/6cfbe3f0-0882-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/78375380-0c79-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/8d818070-0c7a-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/96bfe060-0882-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/96c4a5c0-0c7c-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/98b01f00-087f-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/aa997510-087d-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/b4235550-0c7a-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/b5b3abb0-087c-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/c7468af0-0c78-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/d62a1e60-0881-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/dd1392f0-07d8-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/e14e3560-0c78-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/e5f3e870-0882-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/f858c200-087e-11eb-a3fd-1b45ec532bb3.json create mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/18d66970-1fb4-11e9-8a4d-eb34d2834f6b-ecs.json delete mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-performance.ndjson delete mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-transaction_log.ndjson create mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/a2ead240-18bb-11e9-9836-f37dedd3b411-ecs.json create mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/1757d530-1fb3-11e9-8a4d-eb34d2834f6b-ecs.json create mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/2e795230-1b2a-11e9-8b36-136038bb307a-ecs.json create mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/5bd5c230-18ba-11e9-9836-f37dedd3b411-ecs.json create mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/6710ff20-1f2c-11e9-8a4d-eb34d2834f6b-ecs.json create mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/68fa61b0-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json create mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/7784db10-18ba-11e9-9836-f37dedd3b411-ecs.json create mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/82bf9480-260b-11e9-a46a-471d2a76b305-ecs.json create mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/910f3f30-18ba-11e9-9836-f37dedd3b411-ecs.json create mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/a55bb000-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json create mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/b29a2160-18ba-11e9-9836-f37dedd3b411-ecs.json create mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/c9ead180-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json create mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/e9654a40-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json create mode 100644 x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/edb7a0c0-1f2b-11e9-8a4d-eb34d2834f6b-ecs.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/3f018af0-ec08-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/862e2c20-9bf0-11e9-a61b-f742ed613c57.json delete mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-overview.ndjson delete mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-tablespaces.ndjson create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/05acae50-9bf0-11e9-a61b-f742ed613c57.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/072de430-9bfd-11e9-a61b-f742ed613c57.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/0b1da750-ec12-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/234013d0-ec0e-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/3ae419d0-ec10-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/43369a60-ec0e-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/4c051a90-9bf0-11e9-a61b-f742ed613c57.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/4f569650-ec0f-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/5a422660-ec0f-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/62fb9430-ec0f-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/68ce1940-ec10-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/981779d0-9bfc-11e9-a61b-f742ed613c57.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/bc977600-ec12-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/c46de8c0-ec10-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/c92efe60-9bef-11e9-a61b-f742ed613c57.json create mode 100644 x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/ec2b2010-ec0d-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/dashboard/8da53a40-5a2f-11ea-bc69-cdcc68092a57.json delete mode 100644 x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/dashboard/Metricbeat-redisenterprise-overview.ndjson create mode 100644 x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/14f6de30-5c7a-11ea-b0b5-8133f1152545.json create mode 100644 x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/2d7ec670-5c7a-11ea-b0b5-8133f1152545.json create mode 100644 x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/3c776b90-5c80-11ea-b0b5-8133f1152545.json create mode 100644 x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/49c7dbf0-5a36-11ea-bc69-cdcc68092a57.json create mode 100644 x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/6c861200-5c7b-11ea-b0b5-8133f1152545.json create mode 100644 x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/837f9fd0-5c80-11ea-b0b5-8133f1152545.json create mode 100644 x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/8cba84c0-5a32-11ea-bc69-cdcc68092a57.json create mode 100644 x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/9ddea420-5a32-11ea-bc69-cdcc68092a57.json create mode 100644 x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/a452c8c0-5c96-11ea-b0b5-8133f1152545.json create mode 100644 x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/b5621150-5c7a-11ea-b0b5-8133f1152545.json create mode 100644 x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/b96c3b00-5c92-11ea-b0b5-8133f1152545.json create mode 100644 x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/f6c6d0e0-5a36-11ea-bc69-cdcc68092a57.json delete mode 100644 x-pack/metricbeat/module/stan/_meta/kibana/7/dashboard/Metricbeat-STAN-overview.ndjson create mode 100644 x-pack/metricbeat/module/stan/_meta/kibana/7/dashboard/b6a60340-4371-11ea-b0c6-cb14c0977bd1.json create mode 100644 x-pack/metricbeat/module/stan/_meta/kibana/7/visualization/0e412fe0-4371-11ea-b0c6-cb14c0977bd1.json create mode 100644 x-pack/metricbeat/module/stan/_meta/kibana/7/visualization/46a07ac0-436d-11ea-b0c6-cb14c0977bd1.json delete mode 100644 x-pack/metricbeat/module/tomcat/_meta/kibana/7/dashboard/Metricbeat-Tomcat-overview.ndjson create mode 100644 x-pack/metricbeat/module/tomcat/_meta/kibana/7/dashboard/b7675d90-ec34-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/17ec8fd0-ec32-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/38f55440-ec33-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/618130c0-ec31-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/7bcc3ae0-ec33-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/9343a810-ec34-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/9d0616e0-ec33-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/b3e833d0-ec32-11e9-a4bb-7b5324058fcc.json create mode 100644 x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/e037f620-ec30-11e9-a4bb-7b5324058fcc.json delete mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/dashboard/Powershell-Overview-Dashboard.ndjson create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/dashboard/c77e06c0-9e7c-11ea-af6f-cfdb1ee1d6c8.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/search/11a61760-9f27-11ea-bef1-95118e62a7c1.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/1eeaaf70-9f23-11ea-bef1-95118e62a7c1.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/2dbabdf0-9f29-11ea-bef1-95118e62a7c1.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/3e55daa0-9e8e-11ea-af6f-cfdb1ee1d6c8.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/52543ef0-9e95-11ea-af6f-cfdb1ee1d6c8.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/70751050-9f33-11ea-bef1-95118e62a7c1.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/78874900-9f30-11ea-bef1-95118e62a7c1.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/7adbce50-9e96-11ea-af6f-cfdb1ee1d6c8.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/7f3e7710-9e94-11ea-af6f-cfdb1ee1d6c8.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/92a2a6b0-9f29-11ea-bef1-95118e62a7c1.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/9ec52c30-9e91-11ea-af6f-cfdb1ee1d6c8.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/b0c5d570-9e7c-11ea-af6f-cfdb1ee1d6c8.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/c0945210-9e8b-11ea-af6f-cfdb1ee1d6c8.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/d27dea70-9f32-11ea-bef1-95118e62a7c1.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/e20b3940-9e9a-11ea-af6f-cfdb1ee1d6c8.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/e64ff750-9f28-11ea-bef1-95118e62a7c1.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/f9fa55f0-9f34-11ea-bef1-95118e62a7c1.json create mode 100644 x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/fbb025e0-9e7c-11ea-af6f-cfdb1ee1d6c8.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/01c54730-fee6-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/035846a0-a249-11e9-a422-d144027429da.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/71f720f0-ff18-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/bb858830-f412-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/d401ef40-a7d5-11e9-a422-d144027429da.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891.json delete mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts-tsvb.ndjson delete mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts.ndjson delete mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management-tsvb.ndjson delete mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management.ndjson delete mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons-tsvb.ndjson delete mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons.ndjson delete mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management-tsvb.ndjson delete mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management.ndjson create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/search/06b6b060-7a80-11ea-bc9a-0baf2ca323a3.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/search/324686c0-fefb-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/search/6f4071a0-7a78-11ea-bc9a-0baf2ca323a3.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/search/757510b0-a87f-11e9-a422-d144027429da.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/search/7e178c80-fee1-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/search/9066d5b0-fef2-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/search/ce71c9a0-a25e-11e9-a422-d144027429da.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/006d75f0-9c03-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/0622da40-9bfd-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/0cb2d940-bcde-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/0f2f5280-feeb-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/102efd20-bcdd-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/117f5a30-9b71-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/162d7ab0-a7d6-11e9-a422-d144027429da.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/175a5760-a7d5-11e9-a422-d144027429da.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/18348f30-a24d-11e9-a422-d144027429da.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/1b5f17d0-feea-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/1b6725f0-ff1d-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/1f271bc0-231a-11ea-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/2084e300-a884-11e9-a422-d144027429da.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/21aadac0-9c0b-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/25f31ee0-9c23-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/26877510-9b72-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/2c71e0f0-9c0d-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/33462600-9b47-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/400b63e0-f49a-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/421f0610-af98-11e9-a422-d144027429da.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/4b683ac0-a7d7-11e9-a422-d144027429da.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/4bedf650-9ffd-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/546febc0-f49b-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/568a8130-bcde-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/58fb9480-9b46-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5bb93ed0-a249-11e9-a422-d144027429da.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5c9ee410-9b74-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5d117970-9ffd-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5d92b100-bce8-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5e19ff80-231c-11ea-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5eeaafd0-fee7-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/60301890-ff1d-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/6f0f2ea0-f414-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/729443b0-a7d6-11e9-a422-d144027429da.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/7322f9f0-ff1c-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/7a329a00-a7d5-11e9-a422-d144027429da.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/7de2e3f0-9b4d-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/804dd400-a248-11e9-a422-d144027429da.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/84502430-bce8-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/855957d0-bcdd-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/860706a0-9bfd-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/8ef59f90-6ab8-11ea-896f-0d70f7ec3956.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/8f20c950-bcd4-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/97c70300-ff1c-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/98884120-f49d-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/9dd22440-ff1d-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/9e534190-f49d-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a13bf640-fee8-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a3c3f350-9b6d-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a5f664c0-f49a-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a79395f0-6aba-11ea-896f-0d70f7ec3956.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a909b930-685f-11ea-896f-0d70f7ec3956.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/aa31c9d0-9b75-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ab6f8d80-bce8-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/abd44840-9c0f-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/abf96c10-bcea-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/b5f38780-fee6-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/b89b0c90-9b41-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/bb9cf7a0-f49d-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/bc165210-f4b8-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/bf45dc50-ff1a-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/c2ea73f0-a4bd-11e9-a422-d144027429da.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/c359b020-bcdd-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/c9d959f0-ff1d-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/caf4d2b0-9b76-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ce867840-f49e-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/d3a5fec0-ff18-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/d770b040-9b35-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/da2110c0-bcea-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/e20c02d0-9b48-11ea-87e4-49f31ec44891.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/e22c6f40-f498-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/e2516c10-a249-11e9-a422-d144027429da.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ee292bc0-f499-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/f42f3b20-fee6-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/fa876300-231a-11ea-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/fee83900-f49f-11e9-8405-516218e3d268.json create mode 100644 x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ffebe440-f419-11e9-8405-516218e3d268.json diff --git a/auditbeat/module/auditd/_meta/kibana/7/dashboard/693a5f40-c243-11e7-8692-232bd1143e8a-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/dashboard/693a5f40-c243-11e7-8692-232bd1143e8a-ecs.json new file mode 100644 index 000000000000..2195fc2c541f --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/dashboard/693a5f40-c243-11e7-8692-232bd1143e8a-ecs.json @@ -0,0 +1,165 @@ +{ + "attributes": { + "description": "Summary of socket related syscall events.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "useMargins": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 16, + "i": "1", + "w": 24, + "x": 24, + "y": 12 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 20, + "i": "2", + "w": 24, + "x": 0, + "y": 28 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 20, + "i": "3", + "w": 24, + "x": 24, + "y": 28 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "5", + "w": 24, + "x": 0, + "y": 12 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Auditbeat Auditd] Sockets ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "693a5f40-c243-11e7-8692-232bd1143e8a-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "faf882f0-c242-11e7-8692-232bd1143e8a-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "ea483730-c246-11e7-8692-232bd1143e8a-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "ceb91de0-c250-11e7-8692-232bd1143e8a-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "b21e0c70-c252-11e7-8692-232bd1143e8a-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "a8e20450-c256-11e7-8692-232bd1143e8a-ecs", + "name": "5:panel_5", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:35:59.895Z", + "version": "WzQ5ODMsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/dashboard/7de391b0-c1ca-11e7-8995-936807a28b16-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/dashboard/7de391b0-c1ca-11e7-8995-936807a28b16-ecs.json new file mode 100644 index 000000000000..60f69ec9b3a8 --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/dashboard/7de391b0-c1ca-11e7-8995-936807a28b16-ecs.json @@ -0,0 +1,120 @@ +{ + "attributes": { + "description": "Overview of kernel executions", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "useMargins": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 16, + "x": 16, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 16, + "x": 32, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "5", + "w": 16, + "x": 0, + "y": 0 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "6", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "search", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Auditbeat Auditd] Executions ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "7de391b0-c1ca-11e7-8995-936807a28b16-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "20a8e8d0-c1c8-11e7-8995-936807a28b16-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "f81a6de0-c1c1-11e7-8995-936807a28b16-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "2efac370-c1ca-11e7-8995-936807a28b16-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "d382f5b0-c1c6-11e7-8995-936807a28b16-ecs", + "name": "6:panel_6", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:35:57.797Z", + "version": "WzQ5NzAsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-executions.ndjson b/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-executions.ndjson deleted file mode 100644 index 6bf402fe0271..000000000000 --- a/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-executions.ndjson +++ /dev/null @@ -1,5 +0,0 @@ -{"attributes":{"columns":["agent.name","process.args","auditd.summary.actor.primary","auditd.summary.actor.secondary","process.executable"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"auditd\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"auditd\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"auditd\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"executed\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"executed\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"executed\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Process Executions [Auditbeat Auditd] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"d382f5b0-c1c6-11e7-8995-936807a28b16-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:35:57.797Z","version":"WzQ5NjksMV0="} -{"attributes":{"description":"Command executions","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Error Codes [Auditbeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"exclude\":\"0\",\"field\":\"auditd.data.exit\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Error Codes [Auditbeat Auditd] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"20a8e8d0-c1c8-11e7-8995-936807a28b16-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d382f5b0-c1c6-11e7-8995-936807a28b16-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:57.797Z","version":"WzQ5NjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Primary Username Tag Cloud [Auditbeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"auditd.summary.actor.primary\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":45,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Primary Username Tag Cloud [Auditbeat Auditd] ECS\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"f81a6de0-c1c1-11e7-8995-936807a28b16-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:35:57.797Z","version":"WzQ5NjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Exe Name Tag Cloud [Auditbeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"process.executable\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":45,\"minFontSize\":14,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Exe Name Tag Cloud [Auditbeat Auditd] ECS\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"2efac370-c1ca-11e7-8995-936807a28b16-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d382f5b0-c1c6-11e7-8995-936807a28b16-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:57.797Z","version":"WzQ5NjgsMV0="} -{"attributes":{"description":"Overview of kernel executions","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":12,\"x\":16,\"y\":0,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":12,\"x\":32,\"y\":0,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":12,\"x\":0,\"y\":0,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"w\":48,\"h\":20,\"x\":0,\"y\":12,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Auditbeat Auditd] Executions ECS","version":1},"coreMigrationVersion":"8.0.0","id":"7de391b0-c1ca-11e7-8995-936807a28b16-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"20a8e8d0-c1c8-11e7-8995-936807a28b16-ecs","name":"1:panel_1","type":"visualization"},{"id":"f81a6de0-c1c1-11e7-8995-936807a28b16-ecs","name":"3:panel_3","type":"visualization"},{"id":"2efac370-c1ca-11e7-8995-936807a28b16-ecs","name":"5:panel_5","type":"visualization"},{"id":"d382f5b0-c1c6-11e7-8995-936807a28b16-ecs","name":"6:panel_6","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:35:57.797Z","version":"WzQ5NzAsMV0="} diff --git a/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-overview.ndjson b/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-overview.ndjson deleted file mode 100644 index 01dc258378dc..000000000000 --- a/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-overview.ndjson +++ /dev/null @@ -1,4 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Event Actions [Auditbeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"58c95a20-c1bd-11e7-938f-ab0645b6c431\"}],\"bar_color_rules\":[{\"id\":\"5bfc71a0-c1bd-11e7-938f-ab0645b6c431\"}],\"filter\":{\"query\":\"event.module:auditd\",\"language\":\"lucene\"},\"gauge_color_rules\":[{\"id\":\"5d20a650-c1bd-11e7-938f-ab0645b6c431\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"auditbeat-*\",\"interval\":\"auto\",\"legend_position\":\"left\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Actions\",\"line_width\":1,\"metrics\":[{\"id\":\"6b9fb2d0-c1bc-11e7-938f-ab0645b6c431\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"event.action\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Event Actions [Auditbeat Auditd] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"97680df0-c1c0-11e7-8995-936807a28b16-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:35:58.815Z","version":"WzQ5NzEsMV0="} -{"attributes":{"columns":["agent.name","auditd.summary.actor.primary","auditd.summary.actor.secondary","event.action","auditd.summary.object.type","auditd.summary.object.primary","auditd.summary.object.secondary","auditd.summary.how","auditd.result"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"auditd\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"auditd\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"auditd\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Audit Event Table [Auditbeat Auditd] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"0f10c430-c1c3-11e7-8995-936807a28b16-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:35:58.815Z","version":"WzQ5NzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Event Categories [Auditbeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Category\",\"field\":\"event.category\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Action\",\"field\":\"event.action\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Event Categories [Auditbeat Auditd] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"08679220-c25a-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"0f10c430-c1c3-11e7-8995-936807a28b16-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:58.815Z","version":"WzQ5NzIsMV0="} -{"attributes":{"description":"Summary of Linux kernel audit events.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":28,\"h\":12,\"x\":0,\"y\":0,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":20,\"h\":12,\"x\":28,\"y\":0,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"w\":48,\"h\":20,\"x\":0,\"y\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Auditbeat Auditd] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"c0ac2c00-c1c0-11e7-8995-936807a28b16-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"97680df0-c1c0-11e7-8995-936807a28b16-ecs","name":"1:panel_1","type":"visualization"},{"id":"08679220-c25a-11e7-8692-232bd1143e8a-ecs","name":"4:panel_4","type":"visualization"},{"id":"0f10c430-c1c3-11e7-8995-936807a28b16-ecs","name":"5:panel_5","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:35:58.815Z","version":"WzQ5NzQsMV0="} diff --git a/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-sockets.ndjson b/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-sockets.ndjson deleted file mode 100644 index 34d5336ede86..000000000000 --- a/auditbeat/module/auditd/_meta/kibana/7/dashboard/auditbeat-kernel-sockets.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"columns":["agent.name","auditd.summary.how","auditd.summary.object.primary","auditd.summary.object.secondary","auditd.data.socket.family","auditd.result"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"auditd\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"auditd\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"auditd\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"auditd.data.syscall\",\"negate\":false,\"params\":{\"query\":\"bind\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"bind\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"auditd.data.syscall\":{\"query\":\"bind\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"auditd.data.socket.family\",\"negate\":true,\"params\":{\"query\":\"netlink\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"netlink\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\"},\"query\":{\"match\":{\"auditd.data.socket.family\":{\"query\":\"netlink\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Socket Binds [Auditbeat Auditd] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"b4c93470-c240-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5ODAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"apply\":true,\"disabled\":false,\"key\":\"auditd.summary.object.secondary\",\"negate\":true,\"params\":{\"query\":\"0\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"0\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"auditd.summary.object.secondary\":{\"query\":\"0\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Bind (non-ephemeral) [Auditbeat Auditd] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Exe\",\"field\":\"auditd.summary.how\",\"order\":\"desc\",\"orderBy\":\"_term\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Address\",\"field\":\"auditd.summary.object.primary\",\"order\":\"desc\",\"orderBy\":\"_term\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Port\",\"field\":\"auditd.summary.object.secondary\",\"order\":\"desc\",\"orderBy\":\"_term\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Bind (non-ephemeral) [Auditbeat Auditd] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"faf882f0-c242-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"b4c93470-c240-11e7-8692-232bd1143e8a-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5NzUsMV0="} -{"attributes":{"columns":["agent.name","auditd.summary.how","auditd.summary.object.primary","auditd.summary.object.secondary","auditd.data.socket.family","auditd.result","auditd.data.exit"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"auditd\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"auditd\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"auditd\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"connected-to\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"connected-to\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"connected-to\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"auditd.summary.object.primary\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"auditd.summary.object.primary\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Socket Connects [Auditbeat Auditd] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"5438b030-c246-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5ODEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Connect [Auditbeat Auditd] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Exe\",\"field\":\"process.executable\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Address\",\"field\":\"auditd.summary.object.primary\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Port\",\"field\":\"auditd.summary.object.secondary\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Connect [Auditbeat Auditd] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"ea483730-c246-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5438b030-c246-11e7-8692-232bd1143e8a-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5NzYsMV0="} -{"attributes":{"columns":["agent.name","auditd.summary.how","auditd.summary.object.primary","auditd.summary.object.secondary","auditd.data.socket.family","event.action"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"auditd\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"auditd\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"auditd\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"auditd.summary.object.type\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"auditd.summary.object.type\":{\"query\":\"socket\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"auditd.summary.object.primary\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"auditd.summary.object.primary\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\"}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"query\",\"negate\":false,\"type\":\"custom\",\"value\":\"{\\\"terms\\\":{\\\"auditd.data.syscall\\\":[\\\"accept\\\",\\\"accept4\\\",\\\"recvfrom\\\",\\\"recvmsg\\\"]}}\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index\"},\"query\":{\"terms\":{\"auditd.data.syscall\":[\"accept\",\"accept4\",\"recvfrom\",\"recvmsg\"]}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Socket Accept / Recvfrom [Auditbeat Auditd] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"e8734160-c24c-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5ODIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Accept / Recvfrom Unique Address Table [Auditbeat Auditd] ECS","uiStateJSON":"{\"spy\": {\"mode\": {\"fill\": false, \"name\": null}}, \"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique Addresses\",\"field\":\"auditd.summary.object.primary\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Exe\",\"field\":\"process.executable\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Syscall\",\"field\":\"auditd.data.syscall\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Accept / Recvfrom Unique Address Table [Auditbeat Auditd] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"ceb91de0-c250-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e8734160-c24c-11e7-8692-232bd1143e8a-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5NzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Socket Syscalls Time Series [Auditbeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"95b603d0-c252-11e7-8a68-93ffe9ec5950\"}],\"bar_color_rules\":[{\"id\":\"2cebb0c0-c252-11e7-8a68-93ffe9ec5950\"}],\"filter\":{\"query\":\"auditd.summary.object.type:socket\",\"language\":\"lucene\"},\"gauge_color_rules\":[{\"id\":\"6c891740-c252-11e7-8a68-93ffe9ec5950\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"auditbeat-*\",\"interval\":\"auto\",\"legend_position\":\"left\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"syscall\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"auditd.data.syscall\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Socket Syscalls Time Series [Auditbeat Auditd] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b21e0c70-c252-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5NzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Socket Families [Auditbeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Socket Family\",\"field\":\"auditd.data.socket.family\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Syscall\",\"field\":\"auditd.data.syscall\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"left\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Socket Families [Auditbeat Auditd] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"a8e20450-c256-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5NzksMV0="} -{"attributes":{"description":"Summary of socket related syscall events.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":16,\"x\":24,\"y\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":20,\"x\":0,\"y\":28,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":20,\"x\":24,\"y\":28,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":48,\"h\":12,\"x\":0,\"y\":0,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":16,\"x\":0,\"y\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Auditbeat Auditd] Sockets ECS","version":1},"coreMigrationVersion":"8.0.0","id":"693a5f40-c243-11e7-8692-232bd1143e8a-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"faf882f0-c242-11e7-8692-232bd1143e8a-ecs","name":"1:panel_1","type":"visualization"},{"id":"ea483730-c246-11e7-8692-232bd1143e8a-ecs","name":"2:panel_2","type":"visualization"},{"id":"ceb91de0-c250-11e7-8692-232bd1143e8a-ecs","name":"3:panel_3","type":"visualization"},{"id":"b21e0c70-c252-11e7-8692-232bd1143e8a-ecs","name":"4:panel_4","type":"visualization"},{"id":"a8e20450-c256-11e7-8692-232bd1143e8a-ecs","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:35:59.895Z","version":"WzQ5ODMsMV0="} diff --git a/auditbeat/module/auditd/_meta/kibana/7/dashboard/c0ac2c00-c1c0-11e7-8995-936807a28b16-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/dashboard/c0ac2c00-c1c0-11e7-8995-936807a28b16-ecs.json new file mode 100644 index 000000000000..8ddcb6a9c2e4 --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/dashboard/c0ac2c00-c1c0-11e7-8995-936807a28b16-ecs.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "Summary of Linux kernel audit events.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "useMargins": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 28, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4", + "w": 20, + "x": 28, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "5", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "search", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Auditbeat Auditd] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "c0ac2c00-c1c0-11e7-8995-936807a28b16-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "97680df0-c1c0-11e7-8995-936807a28b16-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "08679220-c25a-11e7-8692-232bd1143e8a-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "0f10c430-c1c3-11e7-8995-936807a28b16-ecs", + "name": "5:panel_5", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:35:58.815Z", + "version": "WzQ5NzQsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/search/0f10c430-c1c3-11e7-8995-936807a28b16-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/search/0f10c430-c1c3-11e7-8995-936807a28b16-ecs.json new file mode 100644 index 000000000000..ce2bdbab133b --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/search/0f10c430-c1c3-11e7-8995-936807a28b16-ecs.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "columns": [ + "agent.name", + "auditd.summary.actor.primary", + "auditd.summary.actor.secondary", + "event.action", + "auditd.summary.object.type", + "auditd.summary.object.primary", + "auditd.summary.object.secondary", + "auditd.summary.how", + "auditd.result" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "auditd", + "type": "phrase" + }, + "type": "phrase", + "value": "auditd" + }, + "query": { + "match": { + "event.module": { + "query": "auditd", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Audit Event Table [Auditbeat Auditd] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "0f10c430-c1c3-11e7-8995-936807a28b16-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:35:58.815Z", + "version": "WzQ5NzMsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/search/5438b030-c246-11e7-8692-232bd1143e8a-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/search/5438b030-c246-11e7-8692-232bd1143e8a-ecs.json new file mode 100644 index 000000000000..ce7d880feee2 --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/search/5438b030-c246-11e7-8692-232bd1143e8a-ecs.json @@ -0,0 +1,135 @@ +{ + "attributes": { + "columns": [ + "agent.name", + "auditd.summary.how", + "auditd.summary.object.primary", + "auditd.summary.object.secondary", + "auditd.data.socket.family", + "auditd.result", + "auditd.data.exit" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "auditd", + "type": "phrase" + }, + "type": "phrase", + "value": "auditd" + }, + "query": { + "match": { + "event.module": { + "query": "auditd", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.action", + "negate": false, + "params": { + "query": "connected-to", + "type": "phrase" + }, + "type": "phrase", + "value": "connected-to" + }, + "query": { + "match": { + "event.action": { + "query": "connected-to", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "auditd.summary.object.primary" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "key": "auditd.summary.object.primary", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Socket Connects [Auditbeat Auditd] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "5438b030-c246-11e7-8692-232bd1143e8a-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:35:59.895Z", + "version": "WzQ5ODEsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/search/b4c93470-c240-11e7-8692-232bd1143e8a-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/search/b4c93470-c240-11e7-8692-232bd1143e8a-ecs.json new file mode 100644 index 000000000000..70436e49954c --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/search/b4c93470-c240-11e7-8692-232bd1143e8a-ecs.json @@ -0,0 +1,143 @@ +{ + "attributes": { + "columns": [ + "agent.name", + "auditd.summary.how", + "auditd.summary.object.primary", + "auditd.summary.object.secondary", + "auditd.data.socket.family", + "auditd.result" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "auditd", + "type": "phrase" + }, + "type": "phrase", + "value": "auditd" + }, + "query": { + "match": { + "event.module": { + "query": "auditd", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "auditd.data.syscall", + "negate": false, + "params": { + "query": "bind", + "type": "phrase" + }, + "type": "phrase", + "value": "bind" + }, + "query": { + "match": { + "auditd.data.syscall": { + "query": "bind", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "key": "auditd.data.socket.family", + "negate": true, + "params": { + "query": "netlink", + "type": "phrase" + }, + "type": "phrase", + "value": "netlink" + }, + "query": { + "match": { + "auditd.data.socket.family": { + "query": "netlink", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Socket Binds [Auditbeat Auditd] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "b4c93470-c240-11e7-8692-232bd1143e8a-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:35:59.895Z", + "version": "WzQ5ODAsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/search/d382f5b0-c1c6-11e7-8995-936807a28b16-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/search/d382f5b0-c1c6-11e7-8995-936807a28b16-ecs.json new file mode 100644 index 000000000000..bb4553695453 --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/search/d382f5b0-c1c6-11e7-8995-936807a28b16-ecs.json @@ -0,0 +1,111 @@ +{ + "attributes": { + "columns": [ + "agent.name", + "process.args", + "auditd.summary.actor.primary", + "auditd.summary.actor.secondary", + "process.executable" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "auditd", + "type": "phrase" + }, + "type": "phrase", + "value": "auditd" + }, + "query": { + "match": { + "event.module": { + "query": "auditd", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.action", + "negate": false, + "params": { + "query": "executed", + "type": "phrase" + }, + "type": "phrase", + "value": "executed" + }, + "query": { + "match": { + "event.action": { + "query": "executed", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Process Executions [Auditbeat Auditd] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "d382f5b0-c1c6-11e7-8995-936807a28b16-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:35:57.797Z", + "version": "WzQ5NjksMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/search/e8734160-c24c-11e7-8692-232bd1143e8a-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/search/e8734160-c24c-11e7-8692-232bd1143e8a-ecs.json new file mode 100644 index 000000000000..7db10cb57602 --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/search/e8734160-c24c-11e7-8692-232bd1143e8a-ecs.json @@ -0,0 +1,163 @@ +{ + "attributes": { + "columns": [ + "agent.name", + "auditd.summary.how", + "auditd.summary.object.primary", + "auditd.summary.object.secondary", + "auditd.data.socket.family", + "event.action" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "auditd", + "type": "phrase" + }, + "type": "phrase", + "value": "auditd" + }, + "query": { + "match": { + "event.module": { + "query": "auditd", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "auditd.summary.object.type", + "negate": false, + "params": { + "query": "socket", + "type": "phrase" + }, + "type": "phrase", + "value": "socket" + }, + "query": { + "match": { + "auditd.summary.object.type": { + "query": "socket", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "auditd.summary.object.primary" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "key": "auditd.summary.object.primary", + "negate": false, + "type": "exists", + "value": "exists" + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", + "key": "query", + "negate": false, + "type": "custom", + "value": "{\"terms\":{\"auditd.data.syscall\":[\"accept\",\"accept4\",\"recvfrom\",\"recvmsg\"]}}" + }, + "query": { + "terms": { + "auditd.data.syscall": [ + "accept", + "accept4", + "recvfrom", + "recvmsg" + ] + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Socket Accept / Recvfrom [Auditbeat Auditd] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "e8734160-c24c-11e7-8692-232bd1143e8a-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:35:59.895Z", + "version": "WzQ5ODIsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/visualization/08679220-c25a-11e7-8692-232bd1143e8a-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/visualization/08679220-c25a-11e7-8692-232bd1143e8a-ecs.json new file mode 100644 index 000000000000..116469d3e99d --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/visualization/08679220-c25a-11e7-8692-232bd1143e8a-ecs.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Event Categories [Auditbeat Auditd] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Category", + "field": "event.category", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Action", + "field": "event.action", + "order": "desc", + "orderBy": "1", + "size": 20 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Event Categories [Auditbeat Auditd] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "08679220-c25a-11e7-8692-232bd1143e8a-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "0f10c430-c1c3-11e7-8995-936807a28b16-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:58.815Z", + "version": "WzQ5NzIsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/visualization/20a8e8d0-c1c8-11e7-8995-936807a28b16-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/visualization/20a8e8d0-c1c8-11e7-8995-936807a28b16-ecs.json new file mode 100644 index 000000000000..d6f63b32f297 --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/visualization/20a8e8d0-c1c8-11e7-8995-936807a28b16-ecs.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "Command executions", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Error Codes [Auditbeat Auditd] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "exclude": "0", + "field": "auditd.data.exit", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Error Codes [Auditbeat Auditd] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "20a8e8d0-c1c8-11e7-8995-936807a28b16-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "d382f5b0-c1c6-11e7-8995-936807a28b16-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:57.797Z", + "version": "WzQ5NjYsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/visualization/2efac370-c1ca-11e7-8995-936807a28b16-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/visualization/2efac370-c1ca-11e7-8995-936807a28b16-ecs.json new file mode 100644 index 000000000000..25d0438fe136 --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/visualization/2efac370-c1ca-11e7-8995-936807a28b16-ecs.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Exe Name Tag Cloud [Auditbeat Auditd] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "process.executable", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "maxFontSize": 45, + "minFontSize": 14, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear" + }, + "title": "Exe Name Tag Cloud [Auditbeat Auditd] ECS", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2efac370-c1ca-11e7-8995-936807a28b16-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "d382f5b0-c1c6-11e7-8995-936807a28b16-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:57.797Z", + "version": "WzQ5NjgsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/visualization/97680df0-c1c0-11e7-8995-936807a28b16-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/visualization/97680df0-c1c0-11e7-8995-936807a28b16-ecs.json new file mode 100644 index 000000000000..a29cfd03e2b9 --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/visualization/97680df0-c1c0-11e7-8995-936807a28b16-ecs.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Event Actions [Auditbeat Auditd] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "58c95a20-c1bd-11e7-938f-ab0645b6c431" + } + ], + "bar_color_rules": [ + { + "id": "5bfc71a0-c1bd-11e7-938f-ab0645b6c431" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:auditd" + }, + "gauge_color_rules": [ + { + "id": "5d20a650-c1bd-11e7-938f-ab0645b6c431" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "auditbeat-*", + "interval": "auto", + "legend_position": "left", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Actions", + "line_width": 1, + "metrics": [ + { + "id": "6b9fb2d0-c1bc-11e7-938f-ab0645b6c431", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "event.action" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Event Actions [Auditbeat Auditd] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "97680df0-c1c0-11e7-8995-936807a28b16-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:35:58.815Z", + "version": "WzQ5NzEsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/visualization/a8e20450-c256-11e7-8692-232bd1143e8a-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/visualization/a8e20450-c256-11e7-8692-232bd1143e8a-ecs.json new file mode 100644 index 000000000000..2d1015d3166d --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/visualization/a8e20450-c256-11e7-8692-232bd1143e8a-ecs.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Socket Families [Auditbeat Auditd] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Socket Family", + "field": "auditd.data.socket.family", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Syscall", + "field": "auditd.data.syscall", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "left", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Socket Families [Auditbeat Auditd] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a8e20450-c256-11e7-8692-232bd1143e8a-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:59.895Z", + "version": "WzQ5NzksMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/visualization/b21e0c70-c252-11e7-8692-232bd1143e8a-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/visualization/b21e0c70-c252-11e7-8692-232bd1143e8a-ecs.json new file mode 100644 index 000000000000..20dd4ced2e30 --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/visualization/b21e0c70-c252-11e7-8692-232bd1143e8a-ecs.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Socket Syscalls Time Series [Auditbeat Auditd] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "95b603d0-c252-11e7-8a68-93ffe9ec5950" + } + ], + "bar_color_rules": [ + { + "id": "2cebb0c0-c252-11e7-8a68-93ffe9ec5950" + } + ], + "filter": { + "language": "lucene", + "query": "auditd.summary.object.type:socket" + }, + "gauge_color_rules": [ + { + "id": "6c891740-c252-11e7-8a68-93ffe9ec5950" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "auditbeat-*", + "interval": "auto", + "legend_position": "left", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "syscall", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "auditd.data.syscall" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Socket Syscalls Time Series [Auditbeat Auditd] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b21e0c70-c252-11e7-8692-232bd1143e8a-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:35:59.895Z", + "version": "WzQ5NzgsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/visualization/ceb91de0-c250-11e7-8692-232bd1143e8a-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/visualization/ceb91de0-c250-11e7-8692-232bd1143e8a-ecs.json new file mode 100644 index 000000000000..c7a511ce0078 --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/visualization/ceb91de0-c250-11e7-8692-232bd1143e8a-ecs.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Accept / Recvfrom Unique Address Table [Auditbeat Auditd] ECS", + "uiStateJSON": { + "spy": { + "mode": { + "fill": false, + "name": null + } + }, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Unique Addresses", + "field": "auditd.summary.object.primary" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Exe", + "field": "process.executable", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Syscall", + "field": "auditd.data.syscall", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Accept / Recvfrom Unique Address Table [Auditbeat Auditd] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ceb91de0-c250-11e7-8692-232bd1143e8a-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "e8734160-c24c-11e7-8692-232bd1143e8a-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:59.895Z", + "version": "WzQ5NzcsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/visualization/ea483730-c246-11e7-8692-232bd1143e8a-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/visualization/ea483730-c246-11e7-8692-232bd1143e8a-ecs.json new file mode 100644 index 000000000000..e2ee7241c27b --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/visualization/ea483730-c246-11e7-8692-232bd1143e8a-ecs.json @@ -0,0 +1,106 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Connect [Auditbeat Auditd] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Exe", + "field": "process.executable", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Address", + "field": "auditd.summary.object.primary", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Port", + "field": "auditd.summary.object.secondary", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Connect [Auditbeat Auditd] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ea483730-c246-11e7-8692-232bd1143e8a-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "5438b030-c246-11e7-8692-232bd1143e8a-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:59.895Z", + "version": "WzQ5NzYsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/visualization/f81a6de0-c1c1-11e7-8995-936807a28b16-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/visualization/f81a6de0-c1c1-11e7-8995-936807a28b16-ecs.json new file mode 100644 index 000000000000..62cb54070269 --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/visualization/f81a6de0-c1c1-11e7-8995-936807a28b16-ecs.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Primary Username Tag Cloud [Auditbeat Auditd] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "auditd.summary.actor.primary", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "maxFontSize": 45, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear" + }, + "title": "Primary Username Tag Cloud [Auditbeat Auditd] ECS", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f81a6de0-c1c1-11e7-8995-936807a28b16-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:57.797Z", + "version": "WzQ5NjcsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/_meta/kibana/7/visualization/faf882f0-c242-11e7-8692-232bd1143e8a-ecs.json b/auditbeat/module/auditd/_meta/kibana/7/visualization/faf882f0-c242-11e7-8692-232bd1143e8a-ecs.json new file mode 100644 index 000000000000..79889d18aee2 --- /dev/null +++ b/auditbeat/module/auditd/_meta/kibana/7/visualization/faf882f0-c242-11e7-8692-232bd1143e8a-ecs.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "apply": true, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "auditd.summary.object.secondary", + "negate": true, + "params": { + "query": "0", + "type": "phrase" + }, + "type": "phrase", + "value": "0" + }, + "query": { + "match": { + "auditd.summary.object.secondary": { + "query": "0", + "type": "phrase" + } + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Bind (non-ephemeral) [Auditbeat Auditd] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Exe", + "field": "auditd.summary.how", + "order": "desc", + "orderBy": "_term", + "size": 50 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Address", + "field": "auditd.summary.object.primary", + "order": "desc", + "orderBy": "_term", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Port", + "field": "auditd.summary.object.secondary", + "order": "desc", + "orderBy": "_term", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Bind (non-ephemeral) [Auditbeat Auditd] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "faf882f0-c242-11e7-8692-232bd1143e8a-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "b4c93470-c240-11e7-8692-232bd1143e8a-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:59.895Z", + "version": "WzQ5NzUsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/auditd/module.yml b/auditbeat/module/auditd/module.yml index 82c22b4fef77..5f7374a36269 100644 --- a/auditbeat/module/auditd/module.yml +++ b/auditbeat/module/auditd/module.yml @@ -1,9 +1,9 @@ dashboards: - id: c0ac2c00-c1c0-11e7-8995-936807a28b16 - file: auditbeat-kernel-overview.ndjson + file: auditbeat-kernel-overview.json - id: 7de391b0-c1ca-11e7-8995-936807a28b16 - file: auditbeat-kernel-executions.ndjson + file: auditbeat-kernel-executions.json - id: 693a5f40-c243-11e7-8692-232bd1143e8a - file: auditbeat-kernel-sockets.ndjson + file: auditbeat-kernel-sockets.json diff --git a/auditbeat/module/file_integrity/_meta/kibana/7/dashboard/AV0tXkjYg1PYniApZbKP-ecs.json b/auditbeat/module/file_integrity/_meta/kibana/7/dashboard/AV0tXkjYg1PYniApZbKP-ecs.json new file mode 100644 index 000000000000..4354362f2d34 --- /dev/null +++ b/auditbeat/module/file_integrity/_meta/kibana/7/dashboard/AV0tXkjYg1PYniApZbKP-ecs.json @@ -0,0 +1,296 @@ +{ + "attributes": { + "description": "Monitor file integrity events.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "useMargins": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 24, + "i": "1", + "w": 8, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 24, + "i": "2", + "w": 28, + "x": 8, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 12, + "x": 36, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4", + "w": 12, + "x": 36, + "y": 12 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "5", + "w": 16, + "x": 16, + "y": 32 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "6", + "w": 16, + "x": 0, + "y": 24 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "7", + "w": 16, + "x": 16, + "y": 24 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "8", + "w": 16, + "x": 32, + "y": 24 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "9", + "w": 24, + "x": 0, + "y": 44 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "10", + "w": 16, + "x": 32, + "y": 32 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "11", + "w": 16, + "x": 0, + "y": 32 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "file.path", + "event.action" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 20, + "i": "12", + "w": 24, + "x": 24, + "y": 44 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "type": "search", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Auditbeat File Integrity] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "AV0tXkjYg1PYniApZbKP-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "AV0tVcg6g1PYniApZa-v-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "AV0tV05vg1PYniApZbA2-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "AV0tWL-Yg1PYniApZbCs-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "AV0tWSdXg1PYniApZbDU-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "AV0tW0djg1PYniApZbGL-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "AV0tY6jwg1PYniApZbRY-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "AV0tav8Ag1PYniApZbbK-ecs", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "AV0tbcUdg1PYniApZbe1-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "AV0tc_xZg1PYniApZbnL-ecs", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "AV0tes4Eg1PYniApZbwV-ecs", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "AV0te0TCg1PYniApZbw9-ecs", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", + "name": "12:panel_12", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:35:56.763Z", + "version": "WzQ5NjUsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/file_integrity/_meta/kibana/7/dashboard/auditbeat-file-integrity.ndjson b/auditbeat/module/file_integrity/_meta/kibana/7/dashboard/auditbeat-file-integrity.ndjson deleted file mode 100644 index b5b58f805173..000000000000 --- a/auditbeat/module/file_integrity/_meta/kibana/7/dashboard/auditbeat-file-integrity.ndjson +++ /dev/null @@ -1,13 +0,0 @@ -{"attributes":{"columns":["file.path","event.action"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"file_integrity\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"file_integrity\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"file_integrity\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"File Integrity Events [Auditbeat File Integrity] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Actions [Auditbeat File Integrity] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Action\",\"field\":\"event.action\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"extendRange\":false,\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":true,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"24\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":true},\"type\":\"gauge\"},\"title\":\"Actions [Auditbeat File Integrity] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tVcg6g1PYniApZa-v-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Events Over Time [Auditbeat File Integrity] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Action\",\"field\":\"event.action\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per 5 minutes\"},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"left\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":true,\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Events Over Time [Auditbeat File Integrity] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tV05vg1PYniApZbA2-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Top owners [Auditbeat File Integrity] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Owner\",\"field\":\"file.owner\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top owners [Auditbeat File Integrity] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tWL-Yg1PYniApZbCs-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Top groups [Auditbeat File Integrity] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"file.group\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top groups [Auditbeat File Integrity] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tWSdXg1PYniApZbDU-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"event.action:updated OR event.action:attributes_modified\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Top updated [Auditbeat File Integrity] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Path\",\"field\":\"file.path\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top updated [Auditbeat File Integrity] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tW0djg1PYniApZbGL-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"lucene\",\"query\":\"file.mode:/0..[2367]/ NOT file.type:symlink\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"World Writable File Count [Auditbeat File Integrity] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"World Writable Files\",\"field\":\"file.inode\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":false},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"23\",\"labelColor\":false,\"subText\":\"\"},\"useRange\":false},\"type\":\"metric\"},\"title\":\"World Writable File Count [Auditbeat File Integrity] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tY6jwg1PYniApZbRY-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"file.type\",\"negate\":false,\"params\":{\"query\":\"file\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"file\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"file.type\":{\"query\":\"file\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Most changed file by count [Auditbeat File Integrity] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Most changed file by count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"File\",\"field\":\"file.path\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":1},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"20\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"type\":\"gauge\"},\"title\":\"Most changed file by count [Auditbeat File Integrity] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tav8Ag1PYniApZbbK-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Most common mode by count [Auditbeat File Integrity] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Most common mode by count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Mode\",\"field\":\"file.mode\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":1},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"20\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"type\":\"gauge\"},\"title\":\"Most common mode by count [Auditbeat File Integrity] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tbcUdg1PYniApZbe1-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"File Event Summary By Host [Auditbeat File Integrity] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Events\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Host\",\"field\":\"host.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Last Report\",\"field\":\"@timestamp\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"File Event Summary By Host [Auditbeat File Integrity] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tc_xZg1PYniApZbnL-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"event.action:deleted\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Top deleted [Auditbeat File Integrity] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Path\",\"field\":\"file.path\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top deleted [Auditbeat File Integrity] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"AV0tes4Eg1PYniApZbwV-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"event.action:created\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Top created [Auditbeat File Integrity] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Path\",\"field\":\"file.path\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top created [Auditbeat File Integrity] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"AV0te0TCg1PYniApZbw9-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NjMsMV0="} -{"attributes":{"description":"Monitor file integrity events.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":8,\"h\":24,\"x\":0,\"y\":0,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":28,\"h\":24,\"x\":8,\"y\":0,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":36,\"y\":0,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":36,\"y\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":12,\"x\":16,\"y\":32,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":8,\"x\":0,\"y\":24,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":8,\"x\":16,\"y\":24,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":8,\"x\":32,\"y\":24,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":20,\"x\":0,\"y\":44,\"i\":\"9\"},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":12,\"x\":32,\"y\":32,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":12,\"x\":0,\"y\":32,\"i\":\"11\"},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"w\":24,\"h\":20,\"x\":24,\"y\":44,\"i\":\"12\"},\"panelIndex\":\"12\",\"embeddableConfig\":{\"columns\":[\"file.path\",\"event.action\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_12\"}]","timeRestore":false,"title":"[Auditbeat File Integrity] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"AV0tXkjYg1PYniApZbKP-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"AV0tVcg6g1PYniApZa-v-ecs","name":"1:panel_1","type":"visualization"},{"id":"AV0tV05vg1PYniApZbA2-ecs","name":"2:panel_2","type":"visualization"},{"id":"AV0tWL-Yg1PYniApZbCs-ecs","name":"3:panel_3","type":"visualization"},{"id":"AV0tWSdXg1PYniApZbDU-ecs","name":"4:panel_4","type":"visualization"},{"id":"AV0tW0djg1PYniApZbGL-ecs","name":"5:panel_5","type":"visualization"},{"id":"AV0tY6jwg1PYniApZbRY-ecs","name":"6:panel_6","type":"visualization"},{"id":"AV0tav8Ag1PYniApZbbK-ecs","name":"7:panel_7","type":"visualization"},{"id":"AV0tbcUdg1PYniApZbe1-ecs","name":"8:panel_8","type":"visualization"},{"id":"AV0tc_xZg1PYniApZbnL-ecs","name":"9:panel_9","type":"visualization"},{"id":"AV0tes4Eg1PYniApZbwV-ecs","name":"10:panel_10","type":"visualization"},{"id":"AV0te0TCg1PYniApZbw9-ecs","name":"11:panel_11","type":"visualization"},{"id":"a380a060-cb44-11e7-9835-2f31fe08873b-ecs","name":"12:panel_12","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:35:56.763Z","version":"WzQ5NjUsMV0="} diff --git a/auditbeat/module/file_integrity/_meta/kibana/7/search/a380a060-cb44-11e7-9835-2f31fe08873b-ecs.json b/auditbeat/module/file_integrity/_meta/kibana/7/search/a380a060-cb44-11e7-9835-2f31fe08873b-ecs.json new file mode 100644 index 000000000000..8e2b7b7fe6ca --- /dev/null +++ b/auditbeat/module/file_integrity/_meta/kibana/7/search/a380a060-cb44-11e7-9835-2f31fe08873b-ecs.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "columns": [ + "file.path", + "event.action" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "file_integrity", + "type": "phrase" + }, + "type": "phrase", + "value": "file_integrity" + }, + "query": { + "match": { + "event.module": { + "query": "file_integrity", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "File Integrity Events [Auditbeat File Integrity] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:35:56.763Z", + "version": "WzQ5NjQsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tV05vg1PYniApZbA2-ecs.json b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tV05vg1PYniApZbA2-ecs.json new file mode 100644 index 000000000000..ca3088fe6d6c --- /dev/null +++ b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tV05vg1PYniApZbA2-ecs.json @@ -0,0 +1,155 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Events Over Time [Auditbeat File Integrity] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Action", + "field": "event.action", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "@timestamp per 5 minutes" + }, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "left", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "defaultYExtents": true, + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Events Over Time [Auditbeat File Integrity] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "AV0tV05vg1PYniApZbA2-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:56.763Z", + "version": "WzQ5NTQsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tVcg6g1PYniApZa-v-ecs.json b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tVcg6g1PYniApZa-v-ecs.json new file mode 100644 index 000000000000..7bc346359453 --- /dev/null +++ b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tVcg6g1PYniApZa-v-ecs.json @@ -0,0 +1,116 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Actions [Auditbeat File Integrity] ECS", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Action", + "field": "event.action", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "extendRange": false, + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": true, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "24", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": true + }, + "type": "gauge" + }, + "title": "Actions [Auditbeat File Integrity] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "AV0tVcg6g1PYniApZa-v-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:56.763Z", + "version": "WzQ5NTMsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tW0djg1PYniApZbGL-ecs.json b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tW0djg1PYniApZbGL-ecs.json new file mode 100644 index 000000000000..8e5270e7ef7d --- /dev/null +++ b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tW0djg1PYniApZbGL-ecs.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.action:updated OR event.action:attributes_modified" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top updated [Auditbeat File Integrity] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Path", + "field": "file.path", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Top updated [Auditbeat File Integrity] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "AV0tW0djg1PYniApZbGL-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:56.763Z", + "version": "WzQ5NTcsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tWL-Yg1PYniApZbCs-ecs.json b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tWL-Yg1PYniApZbCs-ecs.json new file mode 100644 index 000000000000..2d22e680386f --- /dev/null +++ b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tWL-Yg1PYniApZbCs-ecs.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top owners [Auditbeat File Integrity] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Owner", + "field": "file.owner", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Top owners [Auditbeat File Integrity] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "AV0tWL-Yg1PYniApZbCs-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:56.763Z", + "version": "WzQ5NTUsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tWSdXg1PYniApZbDU-ecs.json b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tWSdXg1PYniApZbDU-ecs.json new file mode 100644 index 000000000000..609765d5e51e --- /dev/null +++ b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tWSdXg1PYniApZbDU-ecs.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top groups [Auditbeat File Integrity] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Group", + "field": "file.group", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Top groups [Auditbeat File Integrity] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "AV0tWSdXg1PYniApZbDU-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:56.763Z", + "version": "WzQ5NTYsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tY6jwg1PYniApZbRY-ecs.json b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tY6jwg1PYniApZbRY-ecs.json new file mode 100644 index 000000000000..33815b4f0f2b --- /dev/null +++ b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tY6jwg1PYniApZbRY-ecs.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "file.mode:/0..[2367]/ NOT file.type:symlink" + } + } + }, + "savedSearchRefName": "search_0", + "title": "World Writable File Count [Auditbeat File Integrity] ECS", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "World Writable Files", + "field": "file.inode" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "invertColors": false, + "labels": { + "color": "black", + "show": false + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "23", + "labelColor": false, + "subText": "" + }, + "useRange": false + }, + "type": "metric" + }, + "title": "World Writable File Count [Auditbeat File Integrity] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "AV0tY6jwg1PYniApZbRY-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:56.763Z", + "version": "WzQ5NTgsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tav8Ag1PYniApZbbK-ecs.json b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tav8Ag1PYniApZbbK-ecs.json new file mode 100644 index 000000000000..fcc9e73543f8 --- /dev/null +++ b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tav8Ag1PYniApZbbK-ecs.json @@ -0,0 +1,147 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "file.type", + "negate": false, + "params": { + "query": "file", + "type": "phrase" + }, + "type": "phrase", + "value": "file" + }, + "query": { + "match": { + "file.type": { + "query": "file", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Most changed file by count [Auditbeat File Integrity] ECS", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Most changed file by count" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "File", + "field": "file.path", + "order": "desc", + "orderBy": "1", + "size": 1 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "20", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "type": "gauge" + }, + "title": "Most changed file by count [Auditbeat File Integrity] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "AV0tav8Ag1PYniApZbbK-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:56.763Z", + "version": "WzQ5NTksMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tbcUdg1PYniApZbe1-ecs.json b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tbcUdg1PYniApZbe1-ecs.json new file mode 100644 index 000000000000..61bfe68e79c3 --- /dev/null +++ b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tbcUdg1PYniApZbe1-ecs.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Most common mode by count [Auditbeat File Integrity] ECS", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Most common mode by count" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Mode", + "field": "file.mode", + "order": "desc", + "orderBy": "1", + "size": 1 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "20", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "type": "gauge" + }, + "title": "Most common mode by count [Auditbeat File Integrity] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "AV0tbcUdg1PYniApZbe1-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:56.763Z", + "version": "WzQ5NjAsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tc_xZg1PYniApZbnL-ecs.json b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tc_xZg1PYniApZbnL-ecs.json new file mode 100644 index 000000000000..7032f7ee57fa --- /dev/null +++ b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tc_xZg1PYniApZbnL-ecs.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "File Event Summary By Host [Auditbeat File Integrity] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Total Events" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Host", + "field": "host.name", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "aggregate": "concat", + "customLabel": "Last Report", + "field": "@timestamp", + "size": 1, + "sortField": "@timestamp", + "sortOrder": "desc" + }, + "schema": "metric", + "type": "top_hits" + } + ], + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": true, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "File Event Summary By Host [Auditbeat File Integrity] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "AV0tc_xZg1PYniApZbnL-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:56.763Z", + "version": "WzQ5NjEsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0te0TCg1PYniApZbw9-ecs.json b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0te0TCg1PYniApZbw9-ecs.json new file mode 100644 index 000000000000..6d821b8ebb25 --- /dev/null +++ b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0te0TCg1PYniApZbw9-ecs.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.action:created" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top created [Auditbeat File Integrity] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Path", + "field": "file.path", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Top created [Auditbeat File Integrity] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "AV0te0TCg1PYniApZbw9-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:56.763Z", + "version": "WzQ5NjMsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tes4Eg1PYniApZbwV-ecs.json b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tes4Eg1PYniApZbwV-ecs.json new file mode 100644 index 000000000000..c45fa7693548 --- /dev/null +++ b/auditbeat/module/file_integrity/_meta/kibana/7/visualization/AV0tes4Eg1PYniApZbwV-ecs.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.action:deleted" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top deleted [Auditbeat File Integrity] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Path", + "field": "file.path", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Top deleted [Auditbeat File Integrity] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "AV0tes4Eg1PYniApZbwV-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "a380a060-cb44-11e7-9835-2f31fe08873b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:35:56.763Z", + "version": "WzQ5NjIsMV0=" +} \ No newline at end of file diff --git a/auditbeat/module/file_integrity/module.yml b/auditbeat/module/file_integrity/module.yml index adb7f3a62c7b..bc9bb6fb5430 100644 --- a/auditbeat/module/file_integrity/module.yml +++ b/auditbeat/module/file_integrity/module.yml @@ -1,3 +1,3 @@ dashboards: - id: AV0tXkjYg1PYniApZbKP - file: auditbeat-file-integrity.ndjson + file: auditbeat-file-integrity.json diff --git a/dev-tools/cmd/dashboards/export_dashboards.go b/dev-tools/cmd/dashboards/export_dashboards.go index b13351678f26..fb375436ebb8 100644 --- a/dev-tools/cmd/dashboards/export_dashboards.go +++ b/dev-tools/cmd/dashboards/export_dashboards.go @@ -20,15 +20,11 @@ package main import ( "flag" "fmt" - "io/ioutil" "log" "net/url" - "os" "path/filepath" "time" - "github.com/pkg/errors" - "github.com/elastic/beats/v7/libbeat/common/transport/httpcommon" "github.com/elastic/beats/v7/libbeat/dashboards" "github.com/elastic/beats/v7/libbeat/kibana" @@ -47,7 +43,8 @@ func main() { kibanaURL := flag.String("kibana", "http://localhost:5601", "Kibana URL") spaceID := flag.String("space-id", "", "Space ID") dashboard := flag.String("dashboard", "", "Dashboard ID") - fileOutput := flag.String("output", "output.ndjson", "Output file") + fileOutput := flag.String("output", "", "Output NDJSON file, when exporting dashboards for Beats, please use -folder instead") + folderOutput := flag.String("folder", "", "Output folder to save all assets to more human friendly JSON format") ymlFile := flag.String("yml", "", "Path to the module.yml file containing the dashboards") flag.BoolVar(&indexPattern, "indexPattern", false, "include index-pattern in output") flag.BoolVar(&quiet, "quiet", false, "be quiet") @@ -55,6 +52,10 @@ func main() { flag.Parse() log.SetFlags(0) + if len(*fileOutput) > 0 { + log.Fatalf("-output is configured, please use -folder flag instead to get the expected formatting of assets") + } + u, err := url.Parse(*kibanaURL) if err != nil { log.Fatalf("Error parsing Kibana URL: %v", err) @@ -86,6 +87,9 @@ func main() { flag.Usage() log.Fatalf("Please specify a dashboard ID (-dashboard) or a manifest file (-yml)") } + if len(*folderOutput) == 0 { + log.Fatalf("Please specify a target folder using -folder flag") + } if len(*ymlFile) > 0 { err = exportDashboardsFromYML(client, *ymlFile) @@ -97,12 +101,12 @@ func main() { } if len(*dashboard) > 0 { - err = exportSingleDashboard(client, *dashboard, *fileOutput) + err = exportSingleDashboard(client, *dashboard, *folderOutput) if err != nil { log.Fatalf("Failed to export the dashboard: %v", err) } if !quiet { - log.Printf("The dashboard %s was exported under '%s'\n", *dashboard, *fileOutput) + log.Printf("The dashboard %s was exported to '%s'\n", *dashboard, *folderOutput) } return } @@ -124,19 +128,11 @@ func exportDashboardsFromYML(client *kibana.Client, ymlFile string) error { return nil } -func exportSingleDashboard(client *kibana.Client, dashboard, output string) error { +func exportSingleDashboard(client *kibana.Client, dashboard, folder string) error { result, err := dashboards.Export(client, dashboard) if err != nil { return fmt.Errorf("failed to export the dashboard: %+v", err) } - if err = os.MkdirAll(filepath.Dir(output), 0755); err != nil { - return errors.Wrap(err, "failed to create directory for dashboard") - } - - err = ioutil.WriteFile(output, result, dashboards.OutputPermission) - if err != nil { - return fmt.Errorf("failed to save the dashboard: %+v", err) - } - return nil + return dashboards.SaveToFolder(result, folder, client.GetVersion()) } diff --git a/dev-tools/mage/check.go b/dev-tools/mage/check.go index 2a195a41c7dd..4e311f1a49bd 100644 --- a/dev-tools/mage/check.go +++ b/dev-tools/mage/check.go @@ -228,20 +228,9 @@ func CheckDashboardsFormat() error { if err != nil { return errors.Wrapf(err, "failed to read dashboard file %s", file) } - var dashboard Dashboard - err = json.Unmarshal(d, &dashboard) - if err != nil { - return errors.Wrapf(err, "failed to parse dashboard from %s", file) - } - module := moduleNameFromDashboard(file) - errs := dashboard.CheckFormat(module) - if len(errs) > 0 { + if checkDashboardForErrors(file, d) { hasErrors = true - fmt.Printf(">> Dashboard format - %s:\n", file) - for _, err := range errs { - fmt.Println(" ", err) - } } } @@ -251,18 +240,37 @@ func CheckDashboardsFormat() error { return nil } +func checkDashboardForErrors(file string, d []byte) bool { + if len(bytes.TrimRight(d, "\n")) == 0 { + return false + } + var hasErrors bool + var dashboard DashboardObject + err := json.Unmarshal(d, &dashboard) + if err != nil { + fmt.Println(errors.Wrapf(err, "failed to parse dashboard from %s", file).Error()) + return true + } + + module := moduleNameFromDashboard(file) + err = dashboard.CheckFormat(module) + if err != nil { + hasErrors = true + fmt.Printf(">> Dashboard format - %s:\n", file) + fmt.Println(" ", err) + } + + return hasErrors +} + func moduleNameFromDashboard(path string) string { moduleDir := filepath.Clean(filepath.Join(filepath.Dir(path), "../../../..")) return filepath.Base(moduleDir) } -// Dashboard is a dashboard -type Dashboard struct { - Version string `json:"version"` - Objects []dashboardObject `json:"objects"` -} - -type dashboardObject struct { +// DashboardObject is a dashboard +type DashboardObject struct { + Version string `json:"version"` Type string `json:"type"` Attributes struct { Description string `json:"description"` @@ -293,35 +301,26 @@ var ( ) // CheckFormat checks the format of a dashboard -func (d *Dashboard) CheckFormat(module string) []error { - checkObject := func(o *dashboardObject) error { - switch o.Type { - case "dashboard": - if o.Attributes.Description == "" { - return errors.Errorf("empty description on dashboard '%s'", o.Attributes.Title) - } - if err := checkTitle(dashboardTitleRegexp, o.Attributes.Title, module); err != nil { - return errors.Wrapf(err, "expected title with format '[%s Module] Some title', found '%s'", strings.Title(BeatName), o.Attributes.Title) - } - case "visualization": - if err := checkTitle(visualizationTitleRegexp, o.Attributes.Title, module); err != nil { - return errors.Wrapf(err, "expected title with format 'Some title [%s Module]', found '%s'", strings.Title(BeatName), o.Attributes.Title) - } +func (d *DashboardObject) CheckFormat(module string) error { + switch d.Type { + case "dashboard": + if d.Attributes.Description == "" { + return errors.Errorf("empty description on dashboard '%s'", d.Attributes.Title) } - - expectedIndexPattern := strings.ToLower(BeatName) + "-*" - if err := checkDashboardIndexPattern(expectedIndexPattern, o); err != nil { - return errors.Wrapf(err, "expected index pattern reference '%s'", expectedIndexPattern) + if err := checkTitle(dashboardTitleRegexp, d.Attributes.Title, module); err != nil { + return errors.Wrapf(err, "expected title with format '[%s Module] Some title', found '%s'", strings.Title(BeatName), d.Attributes.Title) } - return nil - } - var errs []error - for _, o := range d.Objects { - if err := checkObject(&o); err != nil { - errs = append(errs, err) + case "visualization": + if err := checkTitle(visualizationTitleRegexp, d.Attributes.Title, module); err != nil { + return errors.Wrapf(err, "expected title with format 'Some title [%s Module]', found '%s'", strings.Title(BeatName), d.Attributes.Title) } } - return errs + + expectedIndexPattern := strings.ToLower(BeatName) + "-*" + if err := checkDashboardIndexPattern(expectedIndexPattern, d); err != nil { + return errors.Wrapf(err, "expected index pattern reference '%s'", expectedIndexPattern) + } + return nil } func checkTitle(re *regexp.Regexp, title string, module string) error { @@ -344,7 +343,7 @@ func checkTitle(re *regexp.Regexp, title string, module string) error { return nil } -func checkDashboardIndexPattern(expectedIndex string, o *dashboardObject) error { +func checkDashboardIndexPattern(expectedIndex string, o *DashboardObject) error { if objectMeta := o.Attributes.KibanaSavedObjectMeta; objectMeta != nil { if index := objectMeta.SearchSourceJSON.Index; index != nil && *index != expectedIndex { return errors.Errorf("unexpected index pattern reference found in object meta: `%s` in visualization `%s`", *index, o.Attributes.Title) diff --git a/dev-tools/mage/dashboard.go b/dev-tools/mage/dashboard.go index 103a2f381867..3a71568c1113 100644 --- a/dev-tools/mage/dashboard.go +++ b/dev-tools/mage/dashboard.go @@ -46,11 +46,10 @@ func ExportDashboard() error { dashboardCmd := sh.RunCmd("go", "run", filepath.Join(beatsDir, "dev-tools/cmd/dashboards/export_dashboards.go")) - // TODO: This is currently hardcoded for KB 7, we need to figure out what we do for KB 8 if applicable - file := CWD("module", module, "_meta/kibana/7/dashboard", id+".ndjson") + folder := CWD("module", module) args := []string{ - "-output", file, + "-folder", folder, "-dashboard", id, } if kibanaURL := EnvOr("KIBANA_URL", ""); kibanaURL != "" { diff --git a/dev-tools/mage/kibana.go b/dev-tools/mage/kibana.go index 108593a3c509..4a087ac4982d 100644 --- a/dev-tools/mage/kibana.go +++ b/dev-tools/mage/kibana.go @@ -69,7 +69,7 @@ func KibanaDashboards(moduleDirs ...string) error { // Convert 7.x dashboards to strings. err = sh.Run(pythonExe, filepath.Join(esBeatsDir, "libbeat/scripts/unpack_dashboards.py"), - "--glob="+filepath.Join(kibanaBuildDir, "7/dashboard/*.json")) + "--glob="+filepath.Join(kibanaBuildDir, "7/*/*.json")) if err != nil { return err } diff --git a/filebeat/module/apache/_meta/kibana/7/dashboard/Filebeat-Apache-Dashboard-ecs.json b/filebeat/module/apache/_meta/kibana/7/dashboard/Filebeat-Apache-Dashboard-ecs.json new file mode 100644 index 000000000000..95f047fc5c03 --- /dev/null +++ b/filebeat/module/apache/_meta/kibana/7/dashboard/Filebeat-Apache-Dashboard-ecs.json @@ -0,0 +1,218 @@ +{ + "attributes": { + "description": "Filebeat Apache module dashboard", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "mapBounds": { + "bottom_right": { + "lat": -3.864254615721396, + "lon": 205.3125 + }, + "top_left": { + "lat": 67.7427590666639, + "lon": -205.6640625 + } + }, + "mapCenter": [ + 40.713955826286046, + -0.17578125 + ], + "mapCollar": { + "bottom_right": { + "lat": -39.667755, + "lon": 180 + }, + "top_left": { + "lat": 90, + "lon": -180 + }, + "zoom": 2 + }, + "mapZoom": 2 + }, + "gridData": { + "h": 12, + "i": "1", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 32, + "x": 0, + "y": 20 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 16, + "x": 32, + "y": 20 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "4", + "w": 8, + "x": 40, + "y": 12 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "5", + "w": 48, + "x": 0, + "y": 32 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "6", + "w": 40, + "x": 0, + "y": 12 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "source.address", + "log.level", + "apache2.error.module", + "message" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 12, + "i": "7", + "w": 48, + "x": 0, + "y": 40 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "search", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Apache] Access and error logs ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Filebeat-Apache-Dashboard-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Apache-access-unique-IPs-map-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "Apache-response-codes-of-top-URLs-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "Apache-browsers-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "Apache-operating-systems-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "Apache-error-logs-over-time-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "Apache-response-codes-over-time-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "Apache-errors-log-ecs", + "name": "7:panel_7", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:55.372Z", + "version": "WzQzNDUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/apache/_meta/kibana/7/dashboard/Filebeat-apache.ndjson b/filebeat/module/apache/_meta/kibana/7/dashboard/Filebeat-apache.ndjson deleted file mode 100644 index d58ed2d90276..000000000000 --- a/filebeat/module/apache/_meta/kibana/7/dashboard/Filebeat-apache.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"columns":["source.address","http.request.method","url.original","http.response.status_code"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:apache.access\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Apache access logs [Filebeat Apache] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Apache-access-logs-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzNDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Unique IPs map [Filebeat Apache] ECS","uiStateJSON":"{\"mapCenter\": [14.944784875088372, 5.09765625]}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"source.address\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\"},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Apache access unique IPs map ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-access-unique-IPs-map-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-access-logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzMzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Top URLs by response code [Filebeat Apache] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"200\": \"#7EB26D\", \"404\": \"#EF843C\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"URL\",\"field\":\"url.original\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"http.response.status_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"shareYAxis\":true,\"row\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Apache response codes of top URLs ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-response-codes-of-top-URLs-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-access-logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzMzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Browsers breakdown [Filebeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"source.address\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Apache browsers ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-browsers-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-access-logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzMzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Operating systems breakdown [Filebeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"source.address\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.os.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.os.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Apache operating systems ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-operating-systems-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-access-logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzNDAsMV0="} -{"attributes":{"columns":["source.address","log.level","apache2.error.module","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:apache.error\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Apache errors log [Filebeat Apache] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Apache-errors-log-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzNDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Error logs over time [Filebeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Apache error logs over time ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-error-logs-over-time-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-errors-log-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzNDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Response codes over time [Filebeat Apache] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"200\": \"#629E51\", \"404\": \"#EF843C\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"http.response.status_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Apache response codes over time ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-response-codes-over-time-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-access-logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzNDIsMV0="} -{"attributes":{"description":"Filebeat Apache module dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"mapBounds\":{\"bottom_right\":{\"lat\":-3.864254615721396,\"lon\":205.3125},\"top_left\":{\"lat\":67.7427590666639,\"lon\":-205.6640625}},\"mapCenter\":[40.713955826286046,-0.17578125],\"mapCollar\":{\"bottom_right\":{\"lat\":-39.667755,\"lon\":180},\"top_left\":{\"lat\":90,\"lon\":-180},\"zoom\":2},\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":32,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":20,\"w\":16,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":40,\"y\":12,\"w\":8,\"h\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":32,\"w\":48,\"h\":8,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":40,\"h\":8,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":40,\"w\":48,\"h\":12,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"columns\":[\"source.address\",\"log.level\",\"apache2.error.module\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Filebeat Apache] Access and error logs ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-Apache-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Apache-access-unique-IPs-map-ecs","name":"1:panel_1","type":"visualization"},{"id":"Apache-response-codes-of-top-URLs-ecs","name":"2:panel_2","type":"visualization"},{"id":"Apache-browsers-ecs","name":"3:panel_3","type":"visualization"},{"id":"Apache-operating-systems-ecs","name":"4:panel_4","type":"visualization"},{"id":"Apache-error-logs-over-time-ecs","name":"5:panel_5","type":"visualization"},{"id":"Apache-response-codes-over-time-ecs","name":"6:panel_6","type":"visualization"},{"id":"Apache-errors-log-ecs","name":"7:panel_7","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:55.372Z","version":"WzQzNDUsMV0="} diff --git a/filebeat/module/apache/_meta/kibana/7/search/Apache-access-logs-ecs.json b/filebeat/module/apache/_meta/kibana/7/search/Apache-access-logs-ecs.json new file mode 100644 index 000000000000..71934729261c --- /dev/null +++ b/filebeat/module/apache/_meta/kibana/7/search/Apache-access-logs-ecs.json @@ -0,0 +1,58 @@ +{ + "attributes": { + "columns": [ + "source.address", + "http.request.method", + "url.original", + "http.response.status_code" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:apache.access" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Apache access logs [Filebeat Apache] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Apache-access-logs-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:55.372Z", + "version": "WzQzNDQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/apache/_meta/kibana/7/search/Apache-errors-log-ecs.json b/filebeat/module/apache/_meta/kibana/7/search/Apache-errors-log-ecs.json new file mode 100644 index 000000000000..57e34e236f16 --- /dev/null +++ b/filebeat/module/apache/_meta/kibana/7/search/Apache-errors-log-ecs.json @@ -0,0 +1,58 @@ +{ + "attributes": { + "columns": [ + "source.address", + "log.level", + "apache2.error.module", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:apache.error" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Apache errors log [Filebeat Apache] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Apache-errors-log-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:55.372Z", + "version": "WzQzNDMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/apache/_meta/kibana/7/visualization/Apache-access-unique-IPs-map-ecs.json b/filebeat/module/apache/_meta/kibana/7/visualization/Apache-access-unique-IPs-map-ecs.json new file mode 100644 index 000000000000..4bf327c75db8 --- /dev/null +++ b/filebeat/module/apache/_meta/kibana/7/visualization/Apache-access-unique-IPs-map-ecs.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Unique IPs map [Filebeat Apache] ECS", + "uiStateJSON": { + "mapCenter": [ + 14.944784875088372, + 5.09765625 + ] + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "source.address" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "source.geo.location" + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "listeners": {}, + "params": { + "addTooltip": true, + "heatBlur": 15, + "heatMaxZoom": 16, + "heatMinOpacity": 0.1, + "heatNormalizeData": true, + "heatRadius": 25, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 15, + 5 + ], + "mapType": "Scaled Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "attribution": "Maps provided by USGS", + "format": "image/png", + "layers": "0", + "styles": "", + "transparent": true, + "version": "1.3.0" + }, + "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" + } + }, + "title": "Apache access unique IPs map ECS", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Apache-access-unique-IPs-map-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Apache-access-logs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:55.372Z", + "version": "WzQzMzcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/apache/_meta/kibana/7/visualization/Apache-browsers-ecs.json b/filebeat/module/apache/_meta/kibana/7/visualization/Apache-browsers-ecs.json new file mode 100644 index 000000000000..4bd7335fc45d --- /dev/null +++ b/filebeat/module/apache/_meta/kibana/7/visualization/Apache-browsers-ecs.json @@ -0,0 +1,81 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Browsers breakdown [Filebeat Apache] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "source.address" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user_agent.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "user_agent.version", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "shareYAxis": true + }, + "title": "Apache browsers ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Apache-browsers-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Apache-access-logs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:55.372Z", + "version": "WzQzMzksMV0=" +} \ No newline at end of file diff --git a/filebeat/module/apache/_meta/kibana/7/visualization/Apache-error-logs-over-time-ecs.json b/filebeat/module/apache/_meta/kibana/7/visualization/Apache-error-logs-over-time-ecs.json new file mode 100644 index 000000000000..aa8a3a9e25bd --- /dev/null +++ b/filebeat/module/apache/_meta/kibana/7/visualization/Apache-error-logs-over-time-ecs.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Error logs over time [Filebeat Apache] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "log.level", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "legendPosition": "right", + "mode": "stacked", + "scale": "linear", + "setYExtents": false, + "shareYAxis": true, + "times": [], + "yAxis": {} + }, + "title": "Apache error logs over time ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Apache-error-logs-over-time-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Apache-errors-log-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:55.372Z", + "version": "WzQzNDEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/apache/_meta/kibana/7/visualization/Apache-operating-systems-ecs.json b/filebeat/module/apache/_meta/kibana/7/visualization/Apache-operating-systems-ecs.json new file mode 100644 index 000000000000..5cc34e5bc71a --- /dev/null +++ b/filebeat/module/apache/_meta/kibana/7/visualization/Apache-operating-systems-ecs.json @@ -0,0 +1,81 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Operating systems breakdown [Filebeat Apache] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "source.address" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user_agent.os.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "user_agent.os.version", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "shareYAxis": true + }, + "title": "Apache operating systems ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Apache-operating-systems-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Apache-access-logs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:55.372Z", + "version": "WzQzNDAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/apache/_meta/kibana/7/visualization/Apache-response-codes-of-top-URLs-ecs.json b/filebeat/module/apache/_meta/kibana/7/visualization/Apache-response-codes-of-top-URLs-ecs.json new file mode 100644 index 000000000000..1827260889b3 --- /dev/null +++ b/filebeat/module/apache/_meta/kibana/7/visualization/Apache-response-codes-of-top-URLs-ecs.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top URLs by response code [Filebeat Apache] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "200": "#7EB26D", + "404": "#EF843C" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "URL", + "field": "url.original", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "split", + "type": "terms" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "http.response.status_code", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "row": false, + "shareYAxis": true + }, + "title": "Apache response codes of top URLs ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Apache-response-codes-of-top-URLs-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Apache-access-logs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:55.372Z", + "version": "WzQzMzgsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/apache/_meta/kibana/7/visualization/Apache-response-codes-over-time-ecs.json b/filebeat/module/apache/_meta/kibana/7/visualization/Apache-response-codes-over-time-ecs.json new file mode 100644 index 000000000000..6baa780a33b6 --- /dev/null +++ b/filebeat/module/apache/_meta/kibana/7/visualization/Apache-response-codes-over-time-ecs.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Response codes over time [Filebeat Apache] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "200": "#629E51", + "404": "#EF843C" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "http.response.status_code", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "legendPosition": "right", + "mode": "stacked", + "scale": "linear", + "setYExtents": false, + "shareYAxis": true, + "times": [], + "yAxis": {} + }, + "title": "Apache response codes over time ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Apache-response-codes-over-time-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Apache-access-logs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:55.372Z", + "version": "WzQzNDIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/apache/module.yml b/filebeat/module/apache/module.yml index 83a8378a75b0..1d553ef8fc2b 100644 --- a/filebeat/module/apache/module.yml +++ b/filebeat/module/apache/module.yml @@ -1,4 +1,4 @@ dashboards: - id: Filebeat-Apache-Dashboard - file: Filebeat-apache.ndjson + file: Filebeat-apache.json diff --git a/filebeat/module/auditd/_meta/kibana/7/dashboard/Filebeat-auditd.ndjson b/filebeat/module/auditd/_meta/kibana/7/dashboard/Filebeat-auditd.ndjson deleted file mode 100644 index 8939e834f64a..000000000000 --- a/filebeat/module/auditd/_meta/kibana/7/dashboard/Filebeat-auditd.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Event types breakdown [Filebeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Audit Event Types ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"6295bdd0-0a0e-11e7-825f-6748cda7d858-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:56.442Z","version":"WzQzNDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"event.action:EXECVE\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Top Exec Commands [Filebeat Auditd] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Command (arg 0)\",\"field\":\"auditd.log.a0\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":30},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Audit Top Exec Commands ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"5ebdbe50-0a0f-11e7-825f-6748cda7d858-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:56.442Z","version":"WzQzNDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Event Results [Filebeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"expression\":\".es(q=\\\"event.dataset:auditd.log NOT event.outcome:failure\\\").label(\\\"Success\\\"), .es(q=\\\"event.outcome:failed\\\").label(\\\"Failure\\\").title(\\\"Audit Event Results\\\")\",\"interval\":\"auto\"},\"title\":\"Event Results [Filebeat Auditd] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"2bb0fa70-0a11-11e7-9e84-43da493ad0c7-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:56.442Z","version":"WzQzNDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Event Address Geo Location [Filebeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"precision\":2},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Audit Event Address Geo Location ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"d1726930-0a7f-11e7-8b04-eb22a5669f27-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:56.442Z","version":"WzQzNDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Event Account Tag Cloud [Filebeat Auditd] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"hideLabel\":false,\"maxFontSize\":42,\"minFontSize\":15,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Audit Event Account Tag Cloud ECS\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"c5411910-0a87-11e7-8b04-eb22a5669f27-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:56.442Z","version":"WzQzNTAsMV0="} -{"attributes":{"columns":["event.action","auditd.log.sequence","user.name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:auditd.log\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Audit Events [Filebeat Auditd] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"4ac0a370-0a11-11e7-8b04-eb22a5669f27-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:56.442Z","version":"WzQzNTEsMV0="} -{"attributes":{"description":"Dashboard for the Auditd Filebeat module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":16,\"h\":16,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":0,\"w\":16,\"h\":16,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":16,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":16,\"w\":24,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"mapBounds\":{\"bottom_right\":{\"lat\":-43.580390855607845,\"lon\":102.65625},\"top_left\":{\"lat\":43.58039085560784,\"lon\":-102.3046875}},\"mapCollar\":{\"bottom_right\":{\"lat\":-87.16078,\"lon\":180},\"top_left\":{\"lat\":87.16078,\"lon\":-180},\"zoom\":2},\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":0,\"w\":16,\"h\":16,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":28,\"w\":48,\"h\":12,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"columns\":[\"event.action\",\"auditd.log.sequence\",\"user.name\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Filebeat Auditd] Audit Events ECS","version":1},"coreMigrationVersion":"8.0.0","id":"dfbb49f0-0a0f-11e7-8a62-2d05eaaac5cb-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"6295bdd0-0a0e-11e7-825f-6748cda7d858-ecs","name":"1:panel_1","type":"visualization"},{"id":"5ebdbe50-0a0f-11e7-825f-6748cda7d858-ecs","name":"2:panel_2","type":"visualization"},{"id":"2bb0fa70-0a11-11e7-9e84-43da493ad0c7-ecs","name":"3:panel_3","type":"visualization"},{"id":"d1726930-0a7f-11e7-8b04-eb22a5669f27-ecs","name":"5:panel_5","type":"visualization"},{"id":"c5411910-0a87-11e7-8b04-eb22a5669f27-ecs","name":"6:panel_6","type":"visualization"},{"id":"4ac0a370-0a11-11e7-8b04-eb22a5669f27-ecs","name":"7:panel_7","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:56.442Z","version":"WzQzNTIsMV0="} diff --git a/filebeat/module/auditd/_meta/kibana/7/dashboard/dfbb49f0-0a0f-11e7-8a62-2d05eaaac5cb-ecs.json b/filebeat/module/auditd/_meta/kibana/7/dashboard/dfbb49f0-0a0f-11e7-8a62-2d05eaaac5cb-ecs.json new file mode 100644 index 000000000000..c54269ee7162 --- /dev/null +++ b/filebeat/module/auditd/_meta/kibana/7/dashboard/dfbb49f0-0a0f-11e7-8a62-2d05eaaac5cb-ecs.json @@ -0,0 +1,200 @@ +{ + "attributes": { + "description": "Dashboard for the Auditd Filebeat module", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "1", + "w": 16, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 16, + "i": "2", + "w": 16, + "x": 32, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 24, + "x": 0, + "y": 16 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapBounds": { + "bottom_right": { + "lat": -43.580390855607845, + "lon": 102.65625 + }, + "top_left": { + "lat": 43.58039085560784, + "lon": -102.3046875 + } + }, + "mapCollar": { + "bottom_right": { + "lat": -87.16078, + "lon": 180 + }, + "top_left": { + "lat": 87.16078, + "lon": -180 + }, + "zoom": 2 + }, + "mapZoom": 2 + }, + "gridData": { + "h": 12, + "i": "5", + "w": 24, + "x": 24, + "y": 16 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "6", + "w": 16, + "x": 16, + "y": 0 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "event.action", + "auditd.log.sequence", + "user.name" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 12, + "i": "7", + "w": 48, + "x": 0, + "y": 28 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "search", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Auditd] Audit Events ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "dfbb49f0-0a0f-11e7-8a62-2d05eaaac5cb-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "6295bdd0-0a0e-11e7-825f-6748cda7d858-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "5ebdbe50-0a0f-11e7-825f-6748cda7d858-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "2bb0fa70-0a11-11e7-9e84-43da493ad0c7-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "d1726930-0a7f-11e7-8b04-eb22a5669f27-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "c5411910-0a87-11e7-8b04-eb22a5669f27-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "4ac0a370-0a11-11e7-8b04-eb22a5669f27-ecs", + "name": "7:panel_7", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:56.442Z", + "version": "WzQzNTIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/auditd/_meta/kibana/7/search/4ac0a370-0a11-11e7-8b04-eb22a5669f27-ecs.json b/filebeat/module/auditd/_meta/kibana/7/search/4ac0a370-0a11-11e7-8b04-eb22a5669f27-ecs.json new file mode 100644 index 000000000000..6b8a0806735f --- /dev/null +++ b/filebeat/module/auditd/_meta/kibana/7/search/4ac0a370-0a11-11e7-8b04-eb22a5669f27-ecs.json @@ -0,0 +1,46 @@ +{ + "attributes": { + "columns": [ + "event.action", + "auditd.log.sequence", + "user.name" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:auditd.log" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Audit Events [Filebeat Auditd] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "4ac0a370-0a11-11e7-8b04-eb22a5669f27-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:56.442Z", + "version": "WzQzNTEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/auditd/_meta/kibana/7/visualization/2bb0fa70-0a11-11e7-9e84-43da493ad0c7-ecs.json b/filebeat/module/auditd/_meta/kibana/7/visualization/2bb0fa70-0a11-11e7-9e84-43da493ad0c7-ecs.json new file mode 100644 index 000000000000..5d6557f26c7e --- /dev/null +++ b/filebeat/module/auditd/_meta/kibana/7/visualization/2bb0fa70-0a11-11e7-9e84-43da493ad0c7-ecs.json @@ -0,0 +1,29 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Event Results [Filebeat Auditd] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "expression": ".es(q=\"event.dataset:auditd.log NOT event.outcome:failure\").label(\"Success\"), .es(q=\"event.outcome:failed\").label(\"Failure\").title(\"Audit Event Results\")", + "interval": "auto" + }, + "title": "Event Results [Filebeat Auditd] ECS", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2bb0fa70-0a11-11e7-9e84-43da493ad0c7-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:33:56.442Z", + "version": "WzQzNDgsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/auditd/_meta/kibana/7/visualization/5ebdbe50-0a0f-11e7-825f-6748cda7d858-ecs.json b/filebeat/module/auditd/_meta/kibana/7/visualization/5ebdbe50-0a0f-11e7-825f-6748cda7d858-ecs.json new file mode 100644 index 000000000000..3b93a15c4ad4 --- /dev/null +++ b/filebeat/module/auditd/_meta/kibana/7/visualization/5ebdbe50-0a0f-11e7-825f-6748cda7d858-ecs.json @@ -0,0 +1,81 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.action:EXECVE" + } + } + }, + "title": "Top Exec Commands [Filebeat Auditd] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Command (arg 0)", + "field": "auditd.log.a0", + "order": "desc", + "orderBy": "1", + "size": 30 + }, + "schema": "bucket", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Audit Top Exec Commands ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5ebdbe50-0a0f-11e7-825f-6748cda7d858-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:56.442Z", + "version": "WzQzNDcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/auditd/_meta/kibana/7/visualization/6295bdd0-0a0e-11e7-825f-6748cda7d858-ecs.json b/filebeat/module/auditd/_meta/kibana/7/visualization/6295bdd0-0a0e-11e7-825f-6748cda7d858-ecs.json new file mode 100644 index 000000000000..cd1a8b0e0c56 --- /dev/null +++ b/filebeat/module/auditd/_meta/kibana/7/visualization/6295bdd0-0a0e-11e7-825f-6748cda7d858-ecs.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Event types breakdown [Filebeat Auditd] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.action", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Audit Event Types ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6295bdd0-0a0e-11e7-825f-6748cda7d858-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:56.442Z", + "version": "WzQzNDYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/auditd/_meta/kibana/7/visualization/c5411910-0a87-11e7-8b04-eb22a5669f27-ecs.json b/filebeat/module/auditd/_meta/kibana/7/visualization/c5411910-0a87-11e7-8b04-eb22a5669f27-ecs.json new file mode 100644 index 000000000000..441fffc282df --- /dev/null +++ b/filebeat/module/auditd/_meta/kibana/7/visualization/c5411910-0a87-11e7-8b04-eb22a5669f27-ecs.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Event Account Tag Cloud [Filebeat Auditd] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user.name", + "order": "desc", + "orderBy": "1", + "size": 15 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "hideLabel": false, + "maxFontSize": 42, + "minFontSize": 15, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear" + }, + "title": "Audit Event Account Tag Cloud ECS", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c5411910-0a87-11e7-8b04-eb22a5669f27-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:56.442Z", + "version": "WzQzNTAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/auditd/_meta/kibana/7/visualization/d1726930-0a7f-11e7-8b04-eb22a5669f27-ecs.json b/filebeat/module/auditd/_meta/kibana/7/visualization/d1726930-0a7f-11e7-8b04-eb22a5669f27-ecs.json new file mode 100644 index 000000000000..b18dd9d7ea10 --- /dev/null +++ b/filebeat/module/auditd/_meta/kibana/7/visualization/d1726930-0a7f-11e7-8b04-eb22a5669f27-ecs.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Event Address Geo Location [Filebeat Auditd] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "source.geo.location", + "precision": 2 + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "listeners": {}, + "params": { + "addTooltip": true, + "heatBlur": 15, + "heatMaxZoom": 16, + "heatMinOpacity": 0.1, + "heatNormalizeData": true, + "heatRadius": 25, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 15, + 5 + ], + "mapType": "Scaled Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "attribution": "Maps provided by USGS", + "format": "image/png", + "layers": "0", + "styles": "", + "transparent": true, + "version": "1.3.0" + }, + "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" + } + }, + "title": "Audit Event Address Geo Location ECS", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d1726930-0a7f-11e7-8b04-eb22a5669f27-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:56.442Z", + "version": "WzQzNDksMV0=" +} \ No newline at end of file diff --git a/filebeat/module/auditd/module.yml b/filebeat/module/auditd/module.yml index c647c58e5b10..d7f9dd13eb62 100644 --- a/filebeat/module/auditd/module.yml +++ b/filebeat/module/auditd/module.yml @@ -1,3 +1,3 @@ dashboards: - id: dfbb49f0-0a0f-11e7-8a62-2d05eaaac5cb - file: Filebeat-auditd.ndjson + file: Filebeat-auditd.json diff --git a/filebeat/module/haproxy/_meta/kibana/7/dashboard/3560d580-aa34-11e8-9c06-877f0445e3e0-ecs.json b/filebeat/module/haproxy/_meta/kibana/7/dashboard/3560d580-aa34-11e8-9c06-877f0445e3e0-ecs.json new file mode 100644 index 000000000000..4edb5d0eb43d --- /dev/null +++ b/filebeat/module/haproxy/_meta/kibana/7/dashboard/3560d580-aa34-11e8-9c06-877f0445e3e0-ecs.json @@ -0,0 +1,119 @@ +{ + "attributes": { + "description": "Filebeat HAProxy module dashboard", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "1", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "2", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "3", + "w": 24, + "x": 0, + "y": 15 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "4", + "w": 24, + "x": 24, + "y": 15 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat HAProxy] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "3560d580-aa34-11e8-9c06-877f0445e3e0-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "55251360-aa32-11e8-9c06-877f0445e3e0-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "7fb671f0-aa32-11e8-9c06-877f0445e3e0-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "11f8b9c0-aa32-11e8-9c06-877f0445e3e0-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "68af8ef0-aa33-11e8-9c06-877f0445e3e0-ecs", + "name": "4:panel_4", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:05.531Z", + "version": "WzQ0MTcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/haproxy/_meta/kibana/7/dashboard/Filebeat-haproxy-overview.ndjson b/filebeat/module/haproxy/_meta/kibana/7/dashboard/Filebeat-haproxy-overview.ndjson deleted file mode 100644 index 964efd6b6871..000000000000 --- a/filebeat/module/haproxy/_meta/kibana/7/dashboard/Filebeat-haproxy-overview.ndjson +++ /dev/null @@ -1,5 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Backend breakdown [Filebeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"haproxy.backend_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Backend breakdown [Filebeat HAProxy] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"55251360-aa32-11e8-9c06-877f0445e3e0-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:05.531Z","version":"WzQ0MTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Frontend breakdown [Filebeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"haproxy.frontend_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Frontend breakdown [Filebeat HAProxy] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7fb671f0-aa32-11e8-9c06-877f0445e3e0-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:05.531Z","version":"WzQ0MTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"IP Geohashes [Filebeat HAProxy] ECS","uiStateJSON":"{\"mapCenter\": [14.944784875088372, 5.09765625]}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"source.address\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"isFilteredByCollar\":true,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"IP Geohashes [Filebeat HAProxy] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"11f8b9c0-aa32-11e8-9c06-877f0445e3e0-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:05.531Z","version":"WzQ0MTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Response codes over time [Filebeat HAProxy] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"200\": \"#508642\", \"204\": \"#629E51\", \"302\": \"#6ED0E0\", \"404\": \"#EAB839\", \"503\": \"#705DA0\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"http.response.status_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_term\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Response codes over time [Filebeat HAProxy] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"68af8ef0-aa33-11e8-9c06-877f0445e3e0-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:05.531Z","version":"WzQ0MTYsMV0="} -{"attributes":{"description":"Filebeat HAProxy module dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Filebeat HAProxy] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"3560d580-aa34-11e8-9c06-877f0445e3e0-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"55251360-aa32-11e8-9c06-877f0445e3e0-ecs","name":"1:panel_1","type":"visualization"},{"id":"7fb671f0-aa32-11e8-9c06-877f0445e3e0-ecs","name":"2:panel_2","type":"visualization"},{"id":"11f8b9c0-aa32-11e8-9c06-877f0445e3e0-ecs","name":"3:panel_3","type":"visualization"},{"id":"68af8ef0-aa33-11e8-9c06-877f0445e3e0-ecs","name":"4:panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:05.531Z","version":"WzQ0MTcsMV0="} diff --git a/filebeat/module/haproxy/_meta/kibana/7/visualization/11f8b9c0-aa32-11e8-9c06-877f0445e3e0-ecs.json b/filebeat/module/haproxy/_meta/kibana/7/visualization/11f8b9c0-aa32-11e8-9c06-877f0445e3e0-ecs.json new file mode 100644 index 000000000000..b6a65c88f55c --- /dev/null +++ b/filebeat/module/haproxy/_meta/kibana/7/visualization/11f8b9c0-aa32-11e8-9c06-877f0445e3e0-ecs.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "IP Geohashes [Filebeat HAProxy] ECS", + "uiStateJSON": { + "mapCenter": [ + 14.944784875088372, + 5.09765625 + ] + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "source.address" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "source.geo.location", + "isFilteredByCollar": true, + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "params": { + "addTooltip": true, + "heatBlur": 15, + "heatMaxZoom": 16, + "heatMinOpacity": 0.1, + "heatNormalizeData": true, + "heatRadius": 25, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 15, + 5 + ], + "mapType": "Scaled Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "attribution": "Maps provided by USGS", + "format": "image/png", + "layers": "0", + "styles": "", + "transparent": true, + "version": "1.3.0" + }, + "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" + } + }, + "title": "IP Geohashes [Filebeat HAProxy] ECS", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "11f8b9c0-aa32-11e8-9c06-877f0445e3e0-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:05.531Z", + "version": "WzQ0MTUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/haproxy/_meta/kibana/7/visualization/55251360-aa32-11e8-9c06-877f0445e3e0-ecs.json b/filebeat/module/haproxy/_meta/kibana/7/visualization/55251360-aa32-11e8-9c06-877f0445e3e0-ecs.json new file mode 100644 index 000000000000..857cc8ae4ccd --- /dev/null +++ b/filebeat/module/haproxy/_meta/kibana/7/visualization/55251360-aa32-11e8-9c06-877f0445e3e0-ecs.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Backend breakdown [Filebeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "haproxy.backend_name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Backend breakdown [Filebeat HAProxy] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "55251360-aa32-11e8-9c06-877f0445e3e0-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:05.531Z", + "version": "WzQ0MTMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/haproxy/_meta/kibana/7/visualization/68af8ef0-aa33-11e8-9c06-877f0445e3e0-ecs.json b/filebeat/module/haproxy/_meta/kibana/7/visualization/68af8ef0-aa33-11e8-9c06-877f0445e3e0-ecs.json new file mode 100644 index 000000000000..b7958f393352 --- /dev/null +++ b/filebeat/module/haproxy/_meta/kibana/7/visualization/68af8ef0-aa33-11e8-9c06-877f0445e3e0-ecs.json @@ -0,0 +1,159 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Response codes over time [Filebeat HAProxy] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "200": "#508642", + "204": "#629E51", + "302": "#6ED0E0", + "404": "#EAB839", + "503": "#705DA0" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "http.response.status_code", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_term", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Response codes over time [Filebeat HAProxy] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "68af8ef0-aa33-11e8-9c06-877f0445e3e0-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:05.531Z", + "version": "WzQ0MTYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/haproxy/_meta/kibana/7/visualization/7fb671f0-aa32-11e8-9c06-877f0445e3e0-ecs.json b/filebeat/module/haproxy/_meta/kibana/7/visualization/7fb671f0-aa32-11e8-9c06-877f0445e3e0-ecs.json new file mode 100644 index 000000000000..eeedc738606c --- /dev/null +++ b/filebeat/module/haproxy/_meta/kibana/7/visualization/7fb671f0-aa32-11e8-9c06-877f0445e3e0-ecs.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Frontend breakdown [Filebeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "haproxy.frontend_name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Frontend breakdown [Filebeat HAProxy] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7fb671f0-aa32-11e8-9c06-877f0445e3e0-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:05.531Z", + "version": "WzQ0MTQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/haproxy/module.yml b/filebeat/module/haproxy/module.yml index 92de4d39037c..c8023c7d1e22 100644 --- a/filebeat/module/haproxy/module.yml +++ b/filebeat/module/haproxy/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Filebeat-haproxy-overview-dashboard - file: Filebeat-haproxy-overview.ndjson + file: Filebeat-haproxy-overview.json diff --git a/filebeat/module/icinga/_meta/kibana/7/dashboard/26309570-2419-11e7-a83b-d5f4cebac9ff-ecs.json b/filebeat/module/icinga/_meta/kibana/7/dashboard/26309570-2419-11e7-a83b-d5f4cebac9ff-ecs.json new file mode 100644 index 000000000000..6c03a845509a --- /dev/null +++ b/filebeat/module/icinga/_meta/kibana/7/dashboard/26309570-2419-11e7-a83b-d5f4cebac9ff-ecs.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "Filebeat Icinga module dashboard for the debug logs", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "icinga.debug.facility", + "log.level", + "message" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 116, + "i": "3", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "search", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Icinga] Debug Log ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "26309570-2419-11e7-a83b-d5f4cebac9ff-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "0bc34b60-2419-11e7-a83b-d5f4cebac9ff-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "fb09d4b0-2418-11e7-a83b-d5f4cebac9ff-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs", + "name": "3:panel_3", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:06.551Z", + "version": "WzQ0MjEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-debug-log.ndjson b/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-debug-log.ndjson deleted file mode 100644 index b1422b853f98..000000000000 --- a/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-debug-log.ndjson +++ /dev/null @@ -1,4 +0,0 @@ -{"attributes":{"columns":["icinga.debug.facility","log.level","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"icinga\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"icinga\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"icinga\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"debug\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"debug\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"debug\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Debug Log [Filebeat Icinga] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:06.551Z","version":"WzQ0MjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Debuglog Facility [Filebeat Icinga] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"icinga.debug.facility\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"Icinga Debuglog Facility ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"0bc34b60-2419-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:06.551Z","version":"WzQ0MTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Debuglog Severity [Filebeat Icinga] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"debug\": \"#BA43A9\", \"information\": \"#629E51\", \"notice\": \"#6ED0E0\", \"warning\": \"#E5AC0E\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"Icinga Debuglog Severity ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"fb09d4b0-2418-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:06.551Z","version":"WzQ0MTksMV0="} -{"attributes":{"description":"Filebeat Icinga module dashboard for the debug logs","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":116,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"columns\":[\"icinga.debug.facility\",\"log.level\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Filebeat Icinga] Debug Log ECS","version":1},"coreMigrationVersion":"8.0.0","id":"26309570-2419-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"0bc34b60-2419-11e7-a83b-d5f4cebac9ff-ecs","name":"1:panel_1","type":"visualization"},{"id":"fb09d4b0-2418-11e7-a83b-d5f4cebac9ff-ecs","name":"2:panel_2","type":"visualization"},{"id":"c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs","name":"3:panel_3","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:06.551Z","version":"WzQ0MjEsMV0="} diff --git a/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-main-log.ndjson b/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-main-log.ndjson deleted file mode 100644 index 337dd0024d12..000000000000 --- a/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-main-log.ndjson +++ /dev/null @@ -1,4 +0,0 @@ -{"attributes":{"columns":["icinga.main.facility","log.level","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"icinga\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"icinga\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"icinga\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"main\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"main\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"main\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Main Log [Filebeat Icinga] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:07.620Z","version":"WzQ0MjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Mainlog Severity [Filebeat Icinga] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"critical\": \"#BF1B00\", \"warning\": \"#E5AC0E\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"Icinga Mainlog Severity ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"d8e5dc40-2417-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:07.620Z","version":"WzQ0MjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Mainlog Facility [Filebeat Icinga] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"icinga.main.facility\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"Icinga Mainlog Facility ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"2cf77780-2418-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:07.620Z","version":"WzQ0MjQsMV0="} -{"attributes":{"description":"Filebeat Icinga module dashboard for the main log files","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":100,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"columns\":[\"icinga.main.facility\",\"log.level\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Filebeat Icinga] Main Log ECS","version":1},"coreMigrationVersion":"8.0.0","id":"f693d260-2417-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"d8e5dc40-2417-11e7-a83b-d5f4cebac9ff-ecs","name":"1:panel_1","type":"visualization"},{"id":"ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs","name":"2:panel_2","type":"search"},{"id":"2cf77780-2418-11e7-a83b-d5f4cebac9ff-ecs","name":"3:panel_3","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:07.620Z","version":"WzQ0MjUsMV0="} diff --git a/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-startup-errors.ndjson b/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-startup-errors.ndjson deleted file mode 100644 index 1ad592f014c0..000000000000 --- a/filebeat/module/icinga/_meta/kibana/7/dashboard/Filebeat-icinga-startup-errors.ndjson +++ /dev/null @@ -1,3 +0,0 @@ -{"attributes":{"columns":["icinga.startup.facility","log.level","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"log.level:critical\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Startup Errors [Filebeat Icinga] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"710043e0-2417-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:08.576Z","version":"WzQ0MjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Startup Errors [Filebeat Icinga] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Count\": \"#BF1B00\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"Icinga Startup Errors ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"a59b5e00-2417-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"710043e0-2417-11e7-a83b-d5f4cebac9ff-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:08.576Z","version":"WzQ0MjYsMV0="} -{"attributes":{"description":"Filebeat Icinga module dashboard for startup errors","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":8,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":8,\"w\":48,\"h\":52,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"columns\":[\"icinga.startup.facility\",\"log.level\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_2\"}]","timeRestore":false,"title":"[Filebeat Icinga] Startup Errors ECS","version":1},"coreMigrationVersion":"8.0.0","id":"b9163ea0-2417-11e7-a83b-d5f4cebac9ff-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a59b5e00-2417-11e7-a83b-d5f4cebac9ff-ecs","name":"1:panel_1","type":"visualization"},{"id":"710043e0-2417-11e7-a83b-d5f4cebac9ff-ecs","name":"2:panel_2","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:08.576Z","version":"WzQ0MjgsMV0="} diff --git a/filebeat/module/icinga/_meta/kibana/7/dashboard/b9163ea0-2417-11e7-a83b-d5f4cebac9ff-ecs.json b/filebeat/module/icinga/_meta/kibana/7/dashboard/b9163ea0-2417-11e7-a83b-d5f4cebac9ff-ecs.json new file mode 100644 index 000000000000..8cd6462b82f8 --- /dev/null +++ b/filebeat/module/icinga/_meta/kibana/7/dashboard/b9163ea0-2417-11e7-a83b-d5f4cebac9ff-ecs.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "description": "Filebeat Icinga module dashboard for startup errors", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "1", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "icinga.startup.facility", + "log.level", + "message" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 52, + "i": "2", + "w": 48, + "x": 0, + "y": 8 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "search", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Icinga] Startup Errors ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "b9163ea0-2417-11e7-a83b-d5f4cebac9ff-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "a59b5e00-2417-11e7-a83b-d5f4cebac9ff-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "710043e0-2417-11e7-a83b-d5f4cebac9ff-ecs", + "name": "2:panel_2", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:08.576Z", + "version": "WzQ0MjgsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/icinga/_meta/kibana/7/dashboard/f693d260-2417-11e7-a83b-d5f4cebac9ff-ecs.json b/filebeat/module/icinga/_meta/kibana/7/dashboard/f693d260-2417-11e7-a83b-d5f4cebac9ff-ecs.json new file mode 100644 index 000000000000..ce5870e97b2e --- /dev/null +++ b/filebeat/module/icinga/_meta/kibana/7/dashboard/f693d260-2417-11e7-a83b-d5f4cebac9ff-ecs.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "Filebeat Icinga module dashboard for the main log files", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "icinga.main.facility", + "log.level", + "message" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 100, + "i": "2", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Icinga] Main Log ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "f693d260-2417-11e7-a83b-d5f4cebac9ff-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "d8e5dc40-2417-11e7-a83b-d5f4cebac9ff-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs", + "name": "2:panel_2", + "type": "search" + }, + { + "id": "2cf77780-2418-11e7-a83b-d5f4cebac9ff-ecs", + "name": "3:panel_3", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:07.620Z", + "version": "WzQ0MjUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/icinga/_meta/kibana/7/search/710043e0-2417-11e7-a83b-d5f4cebac9ff-ecs.json b/filebeat/module/icinga/_meta/kibana/7/search/710043e0-2417-11e7-a83b-d5f4cebac9ff-ecs.json new file mode 100644 index 000000000000..fb47cae1553b --- /dev/null +++ b/filebeat/module/icinga/_meta/kibana/7/search/710043e0-2417-11e7-a83b-d5f4cebac9ff-ecs.json @@ -0,0 +1,46 @@ +{ + "attributes": { + "columns": [ + "icinga.startup.facility", + "log.level", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "log.level:critical" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Startup Errors [Filebeat Icinga] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "710043e0-2417-11e7-a83b-d5f4cebac9ff-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:08.576Z", + "version": "WzQ0MjcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/icinga/_meta/kibana/7/search/c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs.json b/filebeat/module/icinga/_meta/kibana/7/search/c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs.json new file mode 100644 index 000000000000..c33af67ab024 --- /dev/null +++ b/filebeat/module/icinga/_meta/kibana/7/search/c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "columns": [ + "icinga.debug.facility", + "log.level", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "icinga", + "type": "phrase" + }, + "type": "phrase", + "value": "icinga" + }, + "query": { + "match": { + "event.module": { + "query": "icinga", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "fileset.name", + "negate": false, + "params": { + "query": "debug", + "type": "phrase" + }, + "type": "phrase", + "value": "debug" + }, + "query": { + "match": { + "fileset.name": { + "query": "debug", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Debug Log [Filebeat Icinga] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:06.551Z", + "version": "WzQ0MjAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/icinga/_meta/kibana/7/search/ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs.json b/filebeat/module/icinga/_meta/kibana/7/search/ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs.json new file mode 100644 index 000000000000..4ac514aae1bf --- /dev/null +++ b/filebeat/module/icinga/_meta/kibana/7/search/ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "columns": [ + "icinga.main.facility", + "log.level", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "icinga", + "type": "phrase" + }, + "type": "phrase", + "value": "icinga" + }, + "query": { + "match": { + "event.module": { + "query": "icinga", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "fileset.name", + "negate": false, + "params": { + "query": "main", + "type": "phrase" + }, + "type": "phrase", + "value": "main" + }, + "query": { + "match": { + "fileset.name": { + "query": "main", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Main Log [Filebeat Icinga] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:07.620Z", + "version": "WzQ0MjMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/icinga/_meta/kibana/7/visualization/0bc34b60-2419-11e7-a83b-d5f4cebac9ff-ecs.json b/filebeat/module/icinga/_meta/kibana/7/visualization/0bc34b60-2419-11e7-a83b-d5f4cebac9ff-ecs.json new file mode 100644 index 000000000000..2c184da6cdc4 --- /dev/null +++ b/filebeat/module/icinga/_meta/kibana/7/visualization/0bc34b60-2419-11e7-a83b-d5f4cebac9ff-ecs.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Debuglog Facility [Filebeat Icinga] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "icinga.debug.facility", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "legendPosition": "right", + "mode": "stacked", + "scale": "linear", + "setYExtents": false, + "times": [] + }, + "title": "Icinga Debuglog Facility ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0bc34b60-2419-11e7-a83b-d5f4cebac9ff-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:06.551Z", + "version": "WzQ0MTgsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/icinga/_meta/kibana/7/visualization/2cf77780-2418-11e7-a83b-d5f4cebac9ff-ecs.json b/filebeat/module/icinga/_meta/kibana/7/visualization/2cf77780-2418-11e7-a83b-d5f4cebac9ff-ecs.json new file mode 100644 index 000000000000..ed385169f7b2 --- /dev/null +++ b/filebeat/module/icinga/_meta/kibana/7/visualization/2cf77780-2418-11e7-a83b-d5f4cebac9ff-ecs.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Mainlog Facility [Filebeat Icinga] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "icinga.main.facility", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "legendPosition": "right", + "mode": "stacked", + "scale": "linear", + "setYExtents": false, + "times": [] + }, + "title": "Icinga Mainlog Facility ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2cf77780-2418-11e7-a83b-d5f4cebac9ff-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:07.620Z", + "version": "WzQ0MjQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/icinga/_meta/kibana/7/visualization/a59b5e00-2417-11e7-a83b-d5f4cebac9ff-ecs.json b/filebeat/module/icinga/_meta/kibana/7/visualization/a59b5e00-2417-11e7-a83b-d5f4cebac9ff-ecs.json new file mode 100644 index 000000000000..e5e4a4aefe01 --- /dev/null +++ b/filebeat/module/icinga/_meta/kibana/7/visualization/a59b5e00-2417-11e7-a83b-d5f4cebac9ff-ecs.json @@ -0,0 +1,72 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Startup Errors [Filebeat Icinga] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "Count": "#BF1B00" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "legendPosition": "right", + "mode": "stacked", + "scale": "linear", + "setYExtents": false, + "times": [] + }, + "title": "Icinga Startup Errors ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a59b5e00-2417-11e7-a83b-d5f4cebac9ff-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "710043e0-2417-11e7-a83b-d5f4cebac9ff-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:08.576Z", + "version": "WzQ0MjYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/icinga/_meta/kibana/7/visualization/d8e5dc40-2417-11e7-a83b-d5f4cebac9ff-ecs.json b/filebeat/module/icinga/_meta/kibana/7/visualization/d8e5dc40-2417-11e7-a83b-d5f4cebac9ff-ecs.json new file mode 100644 index 000000000000..0337c0b2672b --- /dev/null +++ b/filebeat/module/icinga/_meta/kibana/7/visualization/d8e5dc40-2417-11e7-a83b-d5f4cebac9ff-ecs.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Mainlog Severity [Filebeat Icinga] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "critical": "#BF1B00", + "warning": "#E5AC0E" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "log.level", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "legendPosition": "right", + "mode": "stacked", + "scale": "linear", + "setYExtents": false, + "times": [] + }, + "title": "Icinga Mainlog Severity ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d8e5dc40-2417-11e7-a83b-d5f4cebac9ff-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "ffaf5a30-2413-11e7-a0d9-39604d45ca7f-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:07.620Z", + "version": "WzQ0MjIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/icinga/_meta/kibana/7/visualization/fb09d4b0-2418-11e7-a83b-d5f4cebac9ff-ecs.json b/filebeat/module/icinga/_meta/kibana/7/visualization/fb09d4b0-2418-11e7-a83b-d5f4cebac9ff-ecs.json new file mode 100644 index 000000000000..d7949078ac65 --- /dev/null +++ b/filebeat/module/icinga/_meta/kibana/7/visualization/fb09d4b0-2418-11e7-a83b-d5f4cebac9ff-ecs.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Debuglog Severity [Filebeat Icinga] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "debug": "#BA43A9", + "information": "#629E51", + "notice": "#6ED0E0", + "warning": "#E5AC0E" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "log.level", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "legendPosition": "right", + "mode": "stacked", + "scale": "linear", + "setYExtents": false, + "times": [] + }, + "title": "Icinga Debuglog Severity ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fb09d4b0-2418-11e7-a83b-d5f4cebac9ff-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "c876e6a0-2418-11e7-a83b-d5f4cebac9ff-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:06.551Z", + "version": "WzQ0MTksMV0=" +} \ No newline at end of file diff --git a/filebeat/module/icinga/module.yml b/filebeat/module/icinga/module.yml index 7b481ab5897d..c5b53d65b2b5 100644 --- a/filebeat/module/icinga/module.yml +++ b/filebeat/module/icinga/module.yml @@ -1,10 +1,10 @@ dashboards: - id: 26309570-2419-11e7-a83b-d5f4cebac9ff - file: Filebeat-icinga-debug-log.ndjson + file: Filebeat-icinga-debug-log.json - id: b9163ea0-2417-11e7-a83b-d5f4cebac9ff - file: Filebeat-icinga-startup-errors.ndjson + file: Filebeat-icinga-startup-errors.json - id: f693d260-2417-11e7-a83b-d5f4cebac9ff - file: Filebeat-icinga-main-log.ndjson + file: Filebeat-icinga-main-log.json diff --git a/filebeat/module/iis/_meta/kibana/7/dashboard/4278ad30-fe16-11e7-a3b0-d13028918f9f-ecs.json b/filebeat/module/iis/_meta/kibana/7/dashboard/4278ad30-fe16-11e7-a3b0-d13028918f9f-ecs.json new file mode 100644 index 000000000000..630da905928c --- /dev/null +++ b/filebeat/module/iis/_meta/kibana/7/dashboard/4278ad30-fe16-11e7-a3b0-d13028918f9f-ecs.json @@ -0,0 +1,163 @@ +{ + "attributes": { + "description": "Dashboard for the Filebeat IIS module", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 28, + "x": 0, + "y": 12 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4", + "w": 24, + "x": 0, + "y": 36 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "5", + "w": 24, + "x": 24, + "y": 36 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6", + "w": 20, + "x": 28, + "y": 12 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "7", + "w": 48, + "x": 0, + "y": 24 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat IIS] Access and error logs ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "4278ad30-fe16-11e7-a3b0-d13028918f9f-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "eb2db5b0-fe11-11e7-a3b0-d13028918f9f-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "f31414b0-fe14-11e7-a3b0-d13028918f9f-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "63129c80-fe12-11e7-a3b0-d13028918f9f-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "ccd3f9c0-fe12-11e7-a3b0-d13028918f9f-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "41f38230-fe17-11e7-a3b0-d13028918f9f-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "c0d02cd0-fe1b-11e7-a3b0-d13028918f9f-ecs", + "name": "7:panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:09.583Z", + "version": "WzQ0MzUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/iis/_meta/kibana/7/dashboard/Filebeat-iis.ndjson b/filebeat/module/iis/_meta/kibana/7/dashboard/Filebeat-iis.ndjson deleted file mode 100644 index 7b1bcadafbe4..000000000000 --- a/filebeat/module/iis/_meta/kibana/7/dashboard/Filebeat-iis.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Access map [Filebeat IIS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"isFilteredByCollar\":true,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true}}},\"title\":\"Access map [Filebeat IIS] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"eb2db5b0-fe11-11e7-a3b0-d13028918f9f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:09.583Z","version":"WzQ0MjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Response codes over time [Filebeat IIS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"http.response.status_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Response codes over time [Filebeat IIS] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"f31414b0-fe14-11e7-a3b0-d13028918f9f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:09.583Z","version":"WzQ0MzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Browsers breakdown [Filebeat IIS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Browsers breakdown [Filebeat IIS] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"63129c80-fe12-11e7-a3b0-d13028918f9f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:09.583Z","version":"WzQ0MzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Operating systems breakdown [Filebeat IIS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.os.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.os.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Operating systems breakdown [Filebeat IIS] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"ccd3f9c0-fe12-11e7-a3b0-d13028918f9f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:09.583Z","version":"WzQ0MzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Error logs over time [Filebeat IIS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"http.response.status_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Error logs over time [Filebeat IIS] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"41f38230-fe17-11e7-a3b0-d13028918f9f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:09.583Z","version":"WzQ0MzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Top URLs by response code [Filebeat IIS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"URL\",\"field\":\"url.path\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"http.response.status_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"row\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top URLs by response code [Filebeat IIS] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"c0d02cd0-fe1b-11e7-a3b0-d13028918f9f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:09.583Z","version":"WzQ0MzQsMV0="} -{"attributes":{"description":"Dashboard for the Filebeat IIS module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":48,\"h\":12,\"x\":0,\"y\":0,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":28,\"h\":12,\"x\":0,\"y\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":36,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":36,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":20,\"h\":12,\"x\":28,\"y\":12,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":48,\"h\":12,\"x\":0,\"y\":24,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Filebeat IIS] Access and error logs ECS","version":1},"coreMigrationVersion":"8.0.0","id":"4278ad30-fe16-11e7-a3b0-d13028918f9f-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"eb2db5b0-fe11-11e7-a3b0-d13028918f9f-ecs","name":"1:panel_1","type":"visualization"},{"id":"f31414b0-fe14-11e7-a3b0-d13028918f9f-ecs","name":"2:panel_2","type":"visualization"},{"id":"63129c80-fe12-11e7-a3b0-d13028918f9f-ecs","name":"4:panel_4","type":"visualization"},{"id":"ccd3f9c0-fe12-11e7-a3b0-d13028918f9f-ecs","name":"5:panel_5","type":"visualization"},{"id":"41f38230-fe17-11e7-a3b0-d13028918f9f-ecs","name":"6:panel_6","type":"visualization"},{"id":"c0d02cd0-fe1b-11e7-a3b0-d13028918f9f-ecs","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:09.583Z","version":"WzQ0MzUsMV0="} diff --git a/filebeat/module/iis/_meta/kibana/7/visualization/41f38230-fe17-11e7-a3b0-d13028918f9f-ecs.json b/filebeat/module/iis/_meta/kibana/7/visualization/41f38230-fe17-11e7-a3b0-d13028918f9f-ecs.json new file mode 100644 index 000000000000..43bd2dca0518 --- /dev/null +++ b/filebeat/module/iis/_meta/kibana/7/visualization/41f38230-fe17-11e7-a3b0-d13028918f9f-ecs.json @@ -0,0 +1,145 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Error logs over time [Filebeat IIS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "http.response.status_code", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Error logs over time [Filebeat IIS] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "41f38230-fe17-11e7-a3b0-d13028918f9f-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:09.583Z", + "version": "WzQ0MzMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/iis/_meta/kibana/7/visualization/63129c80-fe12-11e7-a3b0-d13028918f9f-ecs.json b/filebeat/module/iis/_meta/kibana/7/visualization/63129c80-fe12-11e7-a3b0-d13028918f9f-ecs.json new file mode 100644 index 000000000000..70774bce7566 --- /dev/null +++ b/filebeat/module/iis/_meta/kibana/7/visualization/63129c80-fe12-11e7-a3b0-d13028918f9f-ecs.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Browsers breakdown [Filebeat IIS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user_agent.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "user_agent.version", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Browsers breakdown [Filebeat IIS] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "63129c80-fe12-11e7-a3b0-d13028918f9f-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:09.583Z", + "version": "WzQ0MzEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/iis/_meta/kibana/7/visualization/c0d02cd0-fe1b-11e7-a3b0-d13028918f9f-ecs.json b/filebeat/module/iis/_meta/kibana/7/visualization/c0d02cd0-fe1b-11e7-a3b0-d13028918f9f-ecs.json new file mode 100644 index 000000000000..11aa488b5353 --- /dev/null +++ b/filebeat/module/iis/_meta/kibana/7/visualization/c0d02cd0-fe1b-11e7-a3b0-d13028918f9f-ecs.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Top URLs by response code [Filebeat IIS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "URL", + "field": "url.path", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "split", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "http.response.status_code", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "row": false, + "type": "pie" + }, + "title": "Top URLs by response code [Filebeat IIS] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c0d02cd0-fe1b-11e7-a3b0-d13028918f9f-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:09.583Z", + "version": "WzQ0MzQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/iis/_meta/kibana/7/visualization/ccd3f9c0-fe12-11e7-a3b0-d13028918f9f-ecs.json b/filebeat/module/iis/_meta/kibana/7/visualization/ccd3f9c0-fe12-11e7-a3b0-d13028918f9f-ecs.json new file mode 100644 index 000000000000..1edc9d230010 --- /dev/null +++ b/filebeat/module/iis/_meta/kibana/7/visualization/ccd3f9c0-fe12-11e7-a3b0-d13028918f9f-ecs.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Operating systems breakdown [Filebeat IIS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user_agent.os.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "user_agent.os.version", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Operating systems breakdown [Filebeat IIS] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ccd3f9c0-fe12-11e7-a3b0-d13028918f9f-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:09.583Z", + "version": "WzQ0MzIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/iis/_meta/kibana/7/visualization/eb2db5b0-fe11-11e7-a3b0-d13028918f9f-ecs.json b/filebeat/module/iis/_meta/kibana/7/visualization/eb2db5b0-fe11-11e7-a3b0-d13028918f9f-ecs.json new file mode 100644 index 000000000000..78aabc5b2a3d --- /dev/null +++ b/filebeat/module/iis/_meta/kibana/7/visualization/eb2db5b0-fe11-11e7-a3b0-d13028918f9f-ecs.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Access map [Filebeat IIS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "source.geo.location", + "isFilteredByCollar": true, + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "params": { + "addTooltip": true, + "heatClusterSize": 1.5, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 0, + 0 + ], + "mapType": "Scaled Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "format": "image/png", + "transparent": true + } + } + }, + "title": "Access map [Filebeat IIS] ECS", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "eb2db5b0-fe11-11e7-a3b0-d13028918f9f-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:09.583Z", + "version": "WzQ0MjksMV0=" +} \ No newline at end of file diff --git a/filebeat/module/iis/_meta/kibana/7/visualization/f31414b0-fe14-11e7-a3b0-d13028918f9f-ecs.json b/filebeat/module/iis/_meta/kibana/7/visualization/f31414b0-fe14-11e7-a3b0-d13028918f9f-ecs.json new file mode 100644 index 000000000000..8a1927c08867 --- /dev/null +++ b/filebeat/module/iis/_meta/kibana/7/visualization/f31414b0-fe14-11e7-a3b0-d13028918f9f-ecs.json @@ -0,0 +1,145 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Response codes over time [Filebeat IIS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "http.response.status_code", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Response codes over time [Filebeat IIS] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f31414b0-fe14-11e7-a3b0-d13028918f9f-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:09.583Z", + "version": "WzQ0MzAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/kafka/_meta/kibana/7/dashboard/943caca0-87ee-11e7-ad9c-db80de0bf8d3-ecs.json b/filebeat/module/kafka/_meta/kibana/7/dashboard/943caca0-87ee-11e7-ad9c-db80de0bf8d3-ecs.json new file mode 100644 index 000000000000..9b469edbeb02 --- /dev/null +++ b/filebeat/module/kafka/_meta/kibana/7/dashboard/943caca0-87ee-11e7-ad9c-db80de0bf8d3-ecs.json @@ -0,0 +1,137 @@ +{ + "attributes": { + "description": "Filebeat Kafka module dashboard", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "kafka.log.class", + "kafka.log.trace.class", + "kafka.log.trace.full" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 12, + "i": "2", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "log.level", + "kafka.log.component", + "message" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 20, + "i": "3", + "w": 48, + "x": 0, + "y": 20 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "4", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Kafka] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "943caca0-87ee-11e7-ad9c-db80de0bf8d3-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "number-of-kafka-stracktraces-by-class-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "Kafka stacktraces-ecs", + "name": "2:panel_2", + "type": "search" + }, + { + "id": "All Kafka logs-ecs", + "name": "3:panel_3", + "type": "search" + }, + { + "id": "3f7c33c0-87ee-11e7-ad9c-db80de0bf8d3-ecs", + "name": "4:panel_4", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:46.165Z", + "version": "WzQyOTUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/kafka/_meta/kibana/7/dashboard/Filebeat-Kafka-overview.ndjson b/filebeat/module/kafka/_meta/kibana/7/dashboard/Filebeat-Kafka-overview.ndjson deleted file mode 100644 index 3a4955e6858b..000000000000 --- a/filebeat/module/kafka/_meta/kibana/7/dashboard/Filebeat-Kafka-overview.ndjson +++ /dev/null @@ -1,5 +0,0 @@ -{"attributes":{"columns":["kafka.log.class","kafka.log.trace.class","kafka.log.trace.full"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"kafka.log.trace.class:*\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Stacktraces [Filebeat Kafka] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Kafka stacktraces-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:46.165Z","version":"WzQyOTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Number of stracktraces by class [Filebeat Kafka] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"kafka.log.trace.class\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per 30 minutes\"},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Number of Kafka stracktraces by class [Filebeat Kafka] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"number-of-kafka-stracktraces-by-class-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Kafka stacktraces-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:46.165Z","version":"WzQyOTEsMV0="} -{"attributes":{"columns":["log.level","kafka.log.component","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"kafka\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"kafka\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"kafka\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"log\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"log\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"log\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"All logs [Filebeat Kafka] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"All Kafka logs-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:46.165Z","version":"WzQyOTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Log levels over time [Filebeat Kafka] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Log Level\",\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per day\"},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Log levels over time [Filebeat Kafka] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"3f7c33c0-87ee-11e7-ad9c-db80de0bf8d3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"All Kafka logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:46.165Z","version":"WzQyOTQsMV0="} -{"attributes":{"description":"Filebeat Kafka module dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"columns\":[\"kafka.log.class\",\"kafka.log.trace.class\",\"kafka.log.trace.full\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":20,\"w\":48,\"h\":20,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"columns\":[\"log.level\",\"kafka.log.component\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Filebeat Kafka] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"943caca0-87ee-11e7-ad9c-db80de0bf8d3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"number-of-kafka-stracktraces-by-class-ecs","name":"1:panel_1","type":"visualization"},{"id":"Kafka stacktraces-ecs","name":"2:panel_2","type":"search"},{"id":"All Kafka logs-ecs","name":"3:panel_3","type":"search"},{"id":"3f7c33c0-87ee-11e7-ad9c-db80de0bf8d3-ecs","name":"4:panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:46.165Z","version":"WzQyOTUsMV0="} diff --git a/filebeat/module/kafka/_meta/kibana/7/search/All Kafka logs-ecs.json b/filebeat/module/kafka/_meta/kibana/7/search/All Kafka logs-ecs.json new file mode 100644 index 000000000000..821ef744c808 --- /dev/null +++ b/filebeat/module/kafka/_meta/kibana/7/search/All Kafka logs-ecs.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "columns": [ + "log.level", + "kafka.log.component", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "kafka", + "type": "phrase" + }, + "type": "phrase", + "value": "kafka" + }, + "query": { + "match": { + "event.module": { + "query": "kafka", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "fileset.name", + "negate": false, + "params": { + "query": "log", + "type": "phrase" + }, + "type": "phrase", + "value": "log" + }, + "query": { + "match": { + "fileset.name": { + "query": "log", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "All logs [Filebeat Kafka] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "All Kafka logs-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:46.165Z", + "version": "WzQyOTMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/kafka/_meta/kibana/7/search/Kafka stacktraces-ecs.json b/filebeat/module/kafka/_meta/kibana/7/search/Kafka stacktraces-ecs.json new file mode 100644 index 000000000000..50798fb078d7 --- /dev/null +++ b/filebeat/module/kafka/_meta/kibana/7/search/Kafka stacktraces-ecs.json @@ -0,0 +1,46 @@ +{ + "attributes": { + "columns": [ + "kafka.log.class", + "kafka.log.trace.class", + "kafka.log.trace.full" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "kafka.log.trace.class:*" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Stacktraces [Filebeat Kafka] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Kafka stacktraces-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:46.165Z", + "version": "WzQyOTIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/kafka/_meta/kibana/7/visualization/3f7c33c0-87ee-11e7-ad9c-db80de0bf8d3-ecs.json b/filebeat/module/kafka/_meta/kibana/7/visualization/3f7c33c0-87ee-11e7-ad9c-db80de0bf8d3-ecs.json new file mode 100644 index 000000000000..cccebac1cbec --- /dev/null +++ b/filebeat/module/kafka/_meta/kibana/7/visualization/3f7c33c0-87ee-11e7-ad9c-db80de0bf8d3-ecs.json @@ -0,0 +1,144 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Log levels over time [Filebeat Kafka] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Log Level", + "field": "log.level", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "@timestamp per day" + }, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Log levels over time [Filebeat Kafka] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3f7c33c0-87ee-11e7-ad9c-db80de0bf8d3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "All Kafka logs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:46.165Z", + "version": "WzQyOTQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/kafka/_meta/kibana/7/visualization/number-of-kafka-stracktraces-by-class-ecs.json b/filebeat/module/kafka/_meta/kibana/7/visualization/number-of-kafka-stracktraces-by-class-ecs.json new file mode 100644 index 000000000000..9fad47e492f8 --- /dev/null +++ b/filebeat/module/kafka/_meta/kibana/7/visualization/number-of-kafka-stracktraces-by-class-ecs.json @@ -0,0 +1,143 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Number of stracktraces by class [Filebeat Kafka] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "kafka.log.trace.class", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "@timestamp per 30 minutes" + }, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Number of Kafka stracktraces by class [Filebeat Kafka] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "number-of-kafka-stracktraces-by-class-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Kafka stacktraces-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:46.165Z", + "version": "WzQyOTEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/kafka/module.yml b/filebeat/module/kafka/module.yml index 943e4136fa46..1e307dc3bf51 100644 --- a/filebeat/module/kafka/module.yml +++ b/filebeat/module/kafka/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 943caca0-87ee-11e7-ad9c-db80de0bf8d3 - file: Filebeat-Kafka-overview.ndjson + file: Filebeat-Kafka-overview.json diff --git a/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-Logstash-Log-Dashboard-ecs.json b/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-Logstash-Log-Dashboard-ecs.json new file mode 100644 index 000000000000..01337df04800 --- /dev/null +++ b/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-Logstash-Log-Dashboard-ecs.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "description": "Overview of Logstash logs", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "log.level", + "logstash.log.module", + "message", + "source" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 40, + "i": "4", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "search", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Logstash] Logstash Logs ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Filebeat-Logstash-Log-Dashboard-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs", + "name": "4:panel_4", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:10.617Z", + "version": "WzQ0MzksMV0=" +} \ No newline at end of file diff --git a/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-Logstash-Slowlog-Dashboard-ecs.json b/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-Logstash-Slowlog-Dashboard-ecs.json new file mode 100644 index 000000000000..bb877171cc40 --- /dev/null +++ b/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-Logstash-Slowlog-Dashboard-ecs.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "description": "Overview of Logstash Slowlogs", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "columns": [ + "log.level", + "logstash.slowlog.plugin_type", + "logstash.slowlog.plugin_name", + "logstash.slowlog.message", + "logstash.slowlog.plugin_params", + "logstash.slowlog.execution_time_ns" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 36, + "i": "1", + "w": 48, + "x": 0, + "y": 24 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": 3, + "direction": null + } + } + } + }, + "gridData": { + "h": 12, + "i": "4", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Logstash] Slowlogs ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Filebeat-Logstash-Slowlog-Dashboard-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "742e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs", + "name": "1:panel_1", + "type": "search" + }, + { + "id": "0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "b3315630-cbdf-11e7-9852-73e0a9df1bb6-ecs", + "name": "4:panel_4", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:11.672Z", + "version": "WzQ0NDUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-log.ndjson b/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-log.ndjson deleted file mode 100644 index 89c89940aa80..000000000000 --- a/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-log.ndjson +++ /dev/null @@ -1,4 +0,0 @@ -{"attributes":{"columns":["log.level","logstash.log.module","message","source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"logstash\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"logstash\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"logstash\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"log\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"log\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"log\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"logs [Filebeat Logstash] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Logs Severity [Filebeat Logstash] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Logs Severity [Filebeat Logstash] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"logs over time [Filebeat Logstash] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"logs over time [Filebeat Logstash] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDIsMV0="} -{"attributes":{"description":"Overview of Logstash logs","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":40,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"columns\":[\"log.level\",\"logstash.log.module\",\"message\",\"source\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Filebeat Logstash] Logstash Logs ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-Logstash-Log-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs","name":"2:panel_2","type":"visualization"},{"id":"e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs","name":"3:panel_3","type":"visualization"},{"id":"cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs","name":"4:panel_4","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:10.617Z","version":"WzQ0MzksMV0="} diff --git a/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-slowlog.ndjson b/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-slowlog.ndjson deleted file mode 100644 index 8c1eeaeb8dab..000000000000 --- a/filebeat/module/logstash/_meta/kibana/7/dashboard/Filebeat-logstash-slowlog.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"columns":["log.level","logstash.slowlog.plugin_type","logstash.slowlog.plugin_name","logstash.slowlog.message","logstash.slowlog.plugin_params","logstash.slowlog.execution_time_ns"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"logstash\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"logstash\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"logstash\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"slowlog\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"slowlog\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"slowlog\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["log.level","asc"]],"title":"Slow logs [Filebeat Logstash] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"742e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDAsMV0="} -{"attributes":{"columns":["log.level","logstash.log.module","message","source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"logstash\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"logstash\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"logstash\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"log\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"log\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"log\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"logs [Filebeat Logstash] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Logs Severity [Filebeat Logstash] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Logs Severity [Filebeat Logstash] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"logs over time [Filebeat Logstash] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"logs over time [Filebeat Logstash] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Slowest plugins [Filebeat Logstash] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 3, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Average\",\"field\":\"logstash.slowlog.took_in_millis\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Min\",\"field\":\"logstash.slowlog.took_in_millis\"},\"schema\":\"metric\",\"type\":\"min\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"Plugin Name\",\"field\":\"logstash.slowlog.plugin_name\",\"order\":\"desc\",\"orderBy\":\"5\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"Max\",\"field\":\"logstash.slowlog.took_in_millis\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"9\",\"params\":{\"customLabel\":\"Plugin Type\",\"field\":\"logstash.slowlog.plugin_type\",\"order\":\"desc\",\"orderBy\":\"5\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Slowest plugins [Filebeat Logstash] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"b3315630-cbdf-11e7-9852-73e0a9df1bb6-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"742e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDMsMV0="} -{"attributes":{"description":"Overview of Logstash Slowlogs","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":24,\"w\":48,\"h\":36,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"columns\":[\"log.level\",\"logstash.slowlog.plugin_type\",\"logstash.slowlog.plugin_name\",\"logstash.slowlog.message\",\"logstash.slowlog.plugin_params\",\"logstash.slowlog.execution_time_ns\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":3,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Filebeat Logstash] Slowlogs ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-Logstash-Slowlog-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"742e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs","name":"1:panel_1","type":"search"},{"id":"0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs","name":"2:panel_2","type":"visualization"},{"id":"e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs","name":"3:panel_3","type":"visualization"},{"id":"b3315630-cbdf-11e7-9852-73e0a9df1bb6-ecs","name":"4:panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:11.672Z","version":"WzQ0NDUsMV0="} diff --git a/filebeat/module/logstash/_meta/kibana/7/search/742e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs.json b/filebeat/module/logstash/_meta/kibana/7/search/742e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs.json new file mode 100644 index 000000000000..6b3aed62c695 --- /dev/null +++ b/filebeat/module/logstash/_meta/kibana/7/search/742e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "columns": [ + "log.level", + "logstash.slowlog.plugin_type", + "logstash.slowlog.plugin_name", + "logstash.slowlog.message", + "logstash.slowlog.plugin_params", + "logstash.slowlog.execution_time_ns" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "logstash", + "type": "phrase" + }, + "type": "phrase", + "value": "logstash" + }, + "query": { + "match": { + "event.module": { + "query": "logstash", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "fileset.name", + "negate": false, + "params": { + "query": "slowlog", + "type": "phrase" + }, + "type": "phrase", + "value": "slowlog" + }, + "query": { + "match": { + "fileset.name": { + "query": "slowlog", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "log.level", + "asc" + ] + ], + "title": "Slow logs [Filebeat Logstash] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "742e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:11.672Z", + "version": "WzQ0NDAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/logstash/_meta/kibana/7/search/cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs.json b/filebeat/module/logstash/_meta/kibana/7/search/cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs.json new file mode 100644 index 000000000000..6fe02049c266 --- /dev/null +++ b/filebeat/module/logstash/_meta/kibana/7/search/cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs.json @@ -0,0 +1,110 @@ +{ + "attributes": { + "columns": [ + "log.level", + "logstash.log.module", + "message", + "source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "logstash", + "type": "phrase" + }, + "type": "phrase", + "value": "logstash" + }, + "query": { + "match": { + "event.module": { + "query": "logstash", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "fileset.name", + "negate": false, + "params": { + "query": "log", + "type": "phrase" + }, + "type": "phrase", + "value": "log" + }, + "query": { + "match": { + "fileset.name": { + "query": "log", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "logs [Filebeat Logstash] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:11.672Z", + "version": "WzQ0NDQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/logstash/_meta/kibana/7/visualization/0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs.json b/filebeat/module/logstash/_meta/kibana/7/visualization/0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs.json new file mode 100644 index 000000000000..6f62404f49d6 --- /dev/null +++ b/filebeat/module/logstash/_meta/kibana/7/visualization/0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Logs Severity [Filebeat Logstash] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "log.level", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Logs Severity [Filebeat Logstash] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0b1dace0-cbdb-11e7-9852-73e0a9df1bb6-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:11.672Z", + "version": "WzQ0NDEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/logstash/_meta/kibana/7/visualization/b3315630-cbdf-11e7-9852-73e0a9df1bb6-ecs.json b/filebeat/module/logstash/_meta/kibana/7/visualization/b3315630-cbdf-11e7-9852-73e0a9df1bb6-ecs.json new file mode 100644 index 000000000000..a0c3a9612d0a --- /dev/null +++ b/filebeat/module/logstash/_meta/kibana/7/visualization/b3315630-cbdf-11e7-9852-73e0a9df1bb6-ecs.json @@ -0,0 +1,116 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Slowest plugins [Filebeat Logstash] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": 3, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "Average", + "field": "logstash.slowlog.took_in_millis" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Min", + "field": "logstash.slowlog.took_in_millis" + }, + "schema": "metric", + "type": "min" + }, + { + "enabled": true, + "id": "8", + "params": { + "customLabel": "Plugin Name", + "field": "logstash.slowlog.plugin_name", + "order": "desc", + "orderBy": "5", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "7", + "params": { + "customLabel": "Max", + "field": "logstash.slowlog.took_in_millis" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "9", + "params": { + "customLabel": "Plugin Type", + "field": "logstash.slowlog.plugin_type", + "order": "desc", + "orderBy": "5", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Slowest plugins [Filebeat Logstash] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b3315630-cbdf-11e7-9852-73e0a9df1bb6-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "742e45d0-cbdd-11e7-9852-73e0a9df1bb6-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:11.672Z", + "version": "WzQ0NDMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/logstash/_meta/kibana/7/visualization/e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs.json b/filebeat/module/logstash/_meta/kibana/7/visualization/e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs.json new file mode 100644 index 000000000000..95e8698d600f --- /dev/null +++ b/filebeat/module/logstash/_meta/kibana/7/visualization/e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs.json @@ -0,0 +1,145 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "logs over time [Filebeat Logstash] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "log.level", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "logs over time [Filebeat Logstash] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e90b7240-cbda-11e7-9852-73e0a9df1bb6-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "cfaba090-cbda-11e7-9852-73e0a9df1bb6-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:11.672Z", + "version": "WzQ0NDIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/logstash/module.yml b/filebeat/module/logstash/module.yml index d8d9c492d6a8..c039b2b4d0ba 100644 --- a/filebeat/module/logstash/module.yml +++ b/filebeat/module/logstash/module.yml @@ -1,5 +1,5 @@ dashboards: - id: Filebeat-Logstash-Log-Dashboard - file: Filebeat-logstash-log.ndjson + file: Filebeat-logstash-log.json - id: Filebeat-Logstash-Slowlog-Dashboard - file: Filebeat-logstash-slowlog.ndjson + file: Filebeat-logstash-slowlog.json diff --git a/filebeat/module/mongodb/_meta/kibana/7/dashboard/Filebeat-Mongodb-overview.ndjson b/filebeat/module/mongodb/_meta/kibana/7/dashboard/Filebeat-Mongodb-overview.ndjson deleted file mode 100644 index fe51cc753d93..000000000000 --- a/filebeat/module/mongodb/_meta/kibana/7/dashboard/Filebeat-Mongodb-overview.ndjson +++ /dev/null @@ -1,4 +0,0 @@ -{"attributes":{"columns":["mongodb.log.timestamp","log.level","mongodb.log.component","mongodb.log.context","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"log.level: *\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["mongodb.log.timestamp","asc"]],"title":"All logs [Filebeat MongoDB] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"bfc96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:48.189Z","version":"WzQzMDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Logs Severity [Filebeat MongoDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Log severity\",\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Logs Severity [Filebeat MongoDB] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0fef5710-0a82-11e8-bffe-ff7d4f68cf94-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"bfc96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:48.189Z","version":"WzQzMDAsMV0="} -{"attributes":{"columns":["mongodb.log.timestamp","log.level","mongodb.log.component","mongodb.log.context","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"log.level: F or log.level: W\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Error logs [Filebeat MongoDB] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"e49fe000-0a7e-11e8-bffe-ff7d4f68cf94-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:48.189Z","version":"WzQzMDEsMV0="} -{"attributes":{"description":"Filebeat MongoDB module overview","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":16,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":16,\"y\":0,\"w\":32,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"columns\":[\"mongodb.log.timestamp\",\"log.level\",\"mongodb.log.component\",\"mongodb.log.context\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":24,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"columns\":[\"mongodb.log.timestamp\",\"log.level\",\"mongodb.log.component\",\"mongodb.log.context\",\"message\"],\"sort\":[\"mongodb.log.timestamp\",\"asc\"],\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Filebeat MongoDB] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"abcf35b0-0a82-11e8-bffe-ff7d4f68cf94-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"0fef5710-0a82-11e8-bffe-ff7d4f68cf94-ecs","name":"1:panel_1","type":"visualization"},{"id":"e49fe000-0a7e-11e8-bffe-ff7d4f68cf94-ecs","name":"2:panel_2","type":"search"},{"id":"bfc96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs","name":"3:panel_3","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:48.189Z","version":"WzQzMDMsMV0="} diff --git a/filebeat/module/mongodb/_meta/kibana/7/dashboard/abcf35b0-0a82-11e8-bffe-ff7d4f68cf94-ecs.json b/filebeat/module/mongodb/_meta/kibana/7/dashboard/abcf35b0-0a82-11e8-bffe-ff7d4f68cf94-ecs.json new file mode 100644 index 000000000000..ba33e6477cad --- /dev/null +++ b/filebeat/module/mongodb/_meta/kibana/7/dashboard/abcf35b0-0a82-11e8-bffe-ff7d4f68cf94-ecs.json @@ -0,0 +1,120 @@ +{ + "attributes": { + "description": "Filebeat MongoDB module overview", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 16, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "mongodb.log.timestamp", + "log.level", + "mongodb.log.component", + "mongodb.log.context", + "message" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 12, + "i": "2", + "w": 32, + "x": 16, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "mongodb.log.timestamp", + "log.level", + "mongodb.log.component", + "mongodb.log.context", + "message" + ], + "enhancements": {}, + "sort": [ + "mongodb.log.timestamp", + "asc" + ] + }, + "gridData": { + "h": 24, + "i": "3", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "search", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat MongoDB] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "abcf35b0-0a82-11e8-bffe-ff7d4f68cf94-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "0fef5710-0a82-11e8-bffe-ff7d4f68cf94-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "e49fe000-0a7e-11e8-bffe-ff7d4f68cf94-ecs", + "name": "2:panel_2", + "type": "search" + }, + { + "id": "bfc96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs", + "name": "3:panel_3", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:48.189Z", + "version": "WzQzMDMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/mongodb/_meta/kibana/7/search/bfc96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs.json b/filebeat/module/mongodb/_meta/kibana/7/search/bfc96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs.json new file mode 100644 index 000000000000..31ceec119486 --- /dev/null +++ b/filebeat/module/mongodb/_meta/kibana/7/search/bfc96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs.json @@ -0,0 +1,48 @@ +{ + "attributes": { + "columns": [ + "mongodb.log.timestamp", + "log.level", + "mongodb.log.component", + "mongodb.log.context", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "log.level: *" + }, + "version": true + } + }, + "sort": [ + [ + "mongodb.log.timestamp", + "asc" + ] + ], + "title": "All logs [Filebeat MongoDB] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "bfc96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:48.189Z", + "version": "WzQzMDIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/mongodb/_meta/kibana/7/search/e49fe000-0a7e-11e8-bffe-ff7d4f68cf94-ecs.json b/filebeat/module/mongodb/_meta/kibana/7/search/e49fe000-0a7e-11e8-bffe-ff7d4f68cf94-ecs.json new file mode 100644 index 000000000000..a9e6998af9af --- /dev/null +++ b/filebeat/module/mongodb/_meta/kibana/7/search/e49fe000-0a7e-11e8-bffe-ff7d4f68cf94-ecs.json @@ -0,0 +1,48 @@ +{ + "attributes": { + "columns": [ + "mongodb.log.timestamp", + "log.level", + "mongodb.log.component", + "mongodb.log.context", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "log.level: F or log.level: W" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Error logs [Filebeat MongoDB] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "e49fe000-0a7e-11e8-bffe-ff7d4f68cf94-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:48.189Z", + "version": "WzQzMDEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/mongodb/_meta/kibana/7/visualization/0fef5710-0a82-11e8-bffe-ff7d4f68cf94-ecs.json b/filebeat/module/mongodb/_meta/kibana/7/visualization/0fef5710-0a82-11e8-bffe-ff7d4f68cf94-ecs.json new file mode 100644 index 000000000000..e2a742ffe136 --- /dev/null +++ b/filebeat/module/mongodb/_meta/kibana/7/visualization/0fef5710-0a82-11e8-bffe-ff7d4f68cf94-ecs.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Logs Severity [Filebeat MongoDB] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Log severity", + "field": "log.level", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Logs Severity [Filebeat MongoDB] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0fef5710-0a82-11e8-bffe-ff7d4f68cf94-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "bfc96a60-0a80-11e8-bffe-ff7d4f68cf94-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:48.189Z", + "version": "WzQzMDAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/mongodb/module.yml b/filebeat/module/mongodb/module.yml index 2b04d86e4aa3..2fef4e2c89f0 100644 --- a/filebeat/module/mongodb/module.yml +++ b/filebeat/module/mongodb/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 158be870-87f4-11e7-ad9c-db80de0bf8d3 - file: Filebeat-Mongodb-overview.ndjson + file: Filebeat-Mongodb-overview.json diff --git a/filebeat/module/mysql/_meta/kibana/7/dashboard/Filebeat-MySQL-Dashboard-ecs.json b/filebeat/module/mysql/_meta/kibana/7/dashboard/Filebeat-MySQL-Dashboard-ecs.json new file mode 100644 index 000000000000..ad94505a8ffd --- /dev/null +++ b/filebeat/module/mysql/_meta/kibana/7/dashboard/Filebeat-MySQL-Dashboard-ecs.json @@ -0,0 +1,177 @@ +{ + "attributes": { + "description": "Overview dashboard for the Filebeat MySQL module", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 16, + "i": "1", + "w": 24, + "x": 0, + "y": 28 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "log.level", + "message" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 20, + "i": "4", + "w": 24, + "x": 24, + "y": 28 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "5", + "w": 24, + "x": 24, + "y": 12 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "6", + "w": 24, + "x": 0, + "y": 12 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat MySQL] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Filebeat-MySQL-Dashboard-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "MySQL-slowest-queries-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "MySQL-Slow-queries-over-time-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "MySQL-error-logs-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "Filebeat-MySQL-error-log-ecs", + "name": "4:panel_4", + "type": "search" + }, + { + "id": "MySQL-Error-logs-levels-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "MySQL-Slow-logs-by-count-ecs", + "name": "6:panel_6", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:13.657Z", + "version": "WzQ0NjEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/mysql/_meta/kibana/7/dashboard/Filebeat-mysql.ndjson b/filebeat/module/mysql/_meta/kibana/7/dashboard/Filebeat-mysql.ndjson deleted file mode 100644 index eb202c0ef9fe..000000000000 --- a/filebeat/module/mysql/_meta/kibana/7/dashboard/Filebeat-mysql.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"mysql\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mysql\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"mysql\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"slowlog\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"slowlog\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"slowlog\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Slow logs [Filebeat MySQL] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-MySQL-Slow-log-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:13.657Z","version":"WzQ0NjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Top slowest queries [Filebeat MySQL] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Query time\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Query\",\"field\":\"mysql.slowlog.query\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"User\",\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top slowest queries [Filebeat MySQL] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-slowest-queries-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-MySQL-Slow-log-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:13.657Z","version":"WzQ0NTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Slow queries over time [Filebeat MySQL] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Slow queries\": \"#EF843C\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Slow queries\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per 30 seconds\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Slow queries\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Slow queries\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Slow queries over time [Filebeat MySQL] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-Slow-queries-over-time-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-MySQL-Slow-log-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:13.657Z","version":"WzQ0NTUsMV0="} -{"attributes":{"columns":["log.level","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"mysql\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mysql\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"mysql\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"error\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"error\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"error\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Error logs [Filebeat MySQL] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-MySQL-error-log-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:13.657Z","version":"WzQ0NTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Error logs over time [Filebeat MySQL] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Count\": \"#447EBC\", \"Error logs\": \"#1F78C1\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Error logs\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per 30 seconds\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Error logs\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Error logs\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Error logs over time [Filebeat MySQL] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-error-logs-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-MySQL-error-log-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:13.657Z","version":"WzQ0NTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Error logs levels breakdown [Filebeat MySQL] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"ERROR\": \"#E24D42\", \"Note\": \"#9AC48A\", \"Warning\": \"#F9934E\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Error logs levels breakdown [Filebeat MySQL] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-Error-logs-levels-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-MySQL-error-log-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:13.657Z","version":"WzQ0NTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Slow logs breakdown [Filebeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"mysql.slowlog.query\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Slow logs breakdown [Filebeat MySQL] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-Slow-logs-by-count-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-MySQL-Slow-log-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:13.657Z","version":"WzQ0NTksMV0="} -{"attributes":{"description":"Overview dashboard for the Filebeat MySQL module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":24,\"h\":16,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":24,\"y\":28,\"w\":24,\"h\":20,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"columns\":[\"log.level\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":12,\"w\":24,\"h\":16,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":24,\"h\":16,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Filebeat MySQL] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-MySQL-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"MySQL-slowest-queries-ecs","name":"1:panel_1","type":"visualization"},{"id":"MySQL-Slow-queries-over-time-ecs","name":"2:panel_2","type":"visualization"},{"id":"MySQL-error-logs-ecs","name":"3:panel_3","type":"visualization"},{"id":"Filebeat-MySQL-error-log-ecs","name":"4:panel_4","type":"search"},{"id":"MySQL-Error-logs-levels-ecs","name":"5:panel_5","type":"visualization"},{"id":"MySQL-Slow-logs-by-count-ecs","name":"6:panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:13.657Z","version":"WzQ0NjEsMV0="} diff --git a/filebeat/module/mysql/_meta/kibana/7/search/Filebeat-MySQL-Slow-log-ecs.json b/filebeat/module/mysql/_meta/kibana/7/search/Filebeat-MySQL-Slow-log-ecs.json new file mode 100644 index 000000000000..b4563fb9f74e --- /dev/null +++ b/filebeat/module/mysql/_meta/kibana/7/search/Filebeat-MySQL-Slow-log-ecs.json @@ -0,0 +1,120 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "mysql", + "type": "phrase" + }, + "type": "phrase", + "value": "mysql" + }, + "query": { + "match": { + "event.module": { + "query": "mysql", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "fileset.name", + "negate": false, + "params": { + "query": "slowlog", + "type": "phrase" + }, + "type": "phrase", + "value": "slowlog" + }, + "query": { + "match": { + "fileset.name": { + "query": "slowlog", + "type": "phrase" + } + } + } + } + ], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Slow logs [Filebeat MySQL] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Filebeat-MySQL-Slow-log-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:13.657Z", + "version": "WzQ0NjAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/mysql/_meta/kibana/7/search/Filebeat-MySQL-error-log-ecs.json b/filebeat/module/mysql/_meta/kibana/7/search/Filebeat-MySQL-error-log-ecs.json new file mode 100644 index 000000000000..b7efdbe09ca7 --- /dev/null +++ b/filebeat/module/mysql/_meta/kibana/7/search/Filebeat-MySQL-error-log-ecs.json @@ -0,0 +1,121 @@ +{ + "attributes": { + "columns": [ + "log.level", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "mysql", + "type": "phrase" + }, + "type": "phrase", + "value": "mysql" + }, + "query": { + "match": { + "event.module": { + "query": "mysql", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "fileset.name", + "negate": false, + "params": { + "query": "error", + "type": "phrase" + }, + "type": "phrase", + "value": "error" + }, + "query": { + "match": { + "fileset.name": { + "query": "error", + "type": "phrase" + } + } + } + } + ], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Error logs [Filebeat MySQL] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Filebeat-MySQL-error-log-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:13.657Z", + "version": "WzQ0NTcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-Error-logs-levels-ecs.json b/filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-Error-logs-levels-ecs.json new file mode 100644 index 000000000000..7f626a11a412 --- /dev/null +++ b/filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-Error-logs-levels-ecs.json @@ -0,0 +1,75 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Error logs levels breakdown [Filebeat MySQL] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "ERROR": "#E24D42", + "Note": "#9AC48A", + "Warning": "#F9934E" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "log.level", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "shareYAxis": true, + "type": "pie" + }, + "title": "Error logs levels breakdown [Filebeat MySQL] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "MySQL-Error-logs-levels-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Filebeat-MySQL-error-log-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:13.657Z", + "version": "WzQ0NTgsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-Slow-logs-by-count-ecs.json b/filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-Slow-logs-by-count-ecs.json new file mode 100644 index 000000000000..d424635ab62d --- /dev/null +++ b/filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-Slow-logs-by-count-ecs.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Slow logs breakdown [Filebeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "mysql.slowlog.query", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "shareYAxis": true, + "type": "pie" + }, + "title": "Slow logs breakdown [Filebeat MySQL] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "MySQL-Slow-logs-by-count-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Filebeat-MySQL-Slow-log-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:13.657Z", + "version": "WzQ0NTksMV0=" +} \ No newline at end of file diff --git a/filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-Slow-queries-over-time-ecs.json b/filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-Slow-queries-over-time-ecs.json new file mode 100644 index 000000000000..d90f3354ef83 --- /dev/null +++ b/filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-Slow-queries-over-time-ecs.json @@ -0,0 +1,145 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Slow queries over time [Filebeat MySQL] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "Slow queries": "#EF843C" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Slow queries" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "@timestamp per 30 seconds" + }, + "type": "category" + } + ], + "defaultYExtents": false, + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "mode": "stacked", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Slow queries" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "shareYAxis": true, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Slow queries" + }, + "type": "value" + } + ], + "yAxis": {} + }, + "title": "Slow queries over time [Filebeat MySQL] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "MySQL-Slow-queries-over-time-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Filebeat-MySQL-Slow-log-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:13.657Z", + "version": "WzQ0NTUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-error-logs-ecs.json b/filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-error-logs-ecs.json new file mode 100644 index 000000000000..ba4a55bc3a2b --- /dev/null +++ b/filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-error-logs-ecs.json @@ -0,0 +1,146 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Error logs over time [Filebeat MySQL] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "Count": "#447EBC", + "Error logs": "#1F78C1" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Error logs" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "@timestamp per 30 seconds" + }, + "type": "category" + } + ], + "defaultYExtents": false, + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "mode": "stacked", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Error logs" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "shareYAxis": true, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Error logs" + }, + "type": "value" + } + ], + "yAxis": {} + }, + "title": "Error logs over time [Filebeat MySQL] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "MySQL-error-logs-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Filebeat-MySQL-error-log-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:13.657Z", + "version": "WzQ0NTYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-slowest-queries-ecs.json b/filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-slowest-queries-ecs.json new file mode 100644 index 000000000000..6ef0391364e8 --- /dev/null +++ b/filebeat/module/mysql/_meta/kibana/7/visualization/MySQL-slowest-queries-ecs.json @@ -0,0 +1,92 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top slowest queries [Filebeat MySQL] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Query time", + "field": "event.duration" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Query", + "field": "mysql.slowlog.query", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "User", + "field": "user.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top slowest queries [Filebeat MySQL] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "MySQL-slowest-queries-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Filebeat-MySQL-Slow-log-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:13.657Z", + "version": "WzQ0NTQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/mysql/module.yml b/filebeat/module/mysql/module.yml index 33aa2fe23fc0..48dbd6d30763 100644 --- a/filebeat/module/mysql/module.yml +++ b/filebeat/module/mysql/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Filebeat-MySQL-Dashboard - file: Filebeat-mysql.ndjson + file: Filebeat-mysql.json diff --git a/filebeat/module/nats/_meta/kibana/7/dashboard/Filebeat-nats-overview-ecs.json b/filebeat/module/nats/_meta/kibana/7/dashboard/Filebeat-nats-overview-ecs.json new file mode 100644 index 000000000000..deccc1369f46 --- /dev/null +++ b/filebeat/module/nats/_meta/kibana/7/dashboard/Filebeat-nats-overview-ecs.json @@ -0,0 +1,254 @@ +{ + "attributes": { + "description": "Overview of NATS server statistics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 11, + "i": "1", + "w": 17, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Message Types Timeline", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 11, + "i": "2", + "w": 17, + "x": 31, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Communication Directions", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 12, + "i": "3", + "w": 25, + "x": 0, + "y": 20 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Topics Timeline", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 9, + "i": "4", + "w": 12, + "x": 11, + "y": 11 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": " Bytes Timeline", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 9, + "i": "5", + "w": 11, + "x": 0, + "y": 11 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Communication Directions Distribution", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 9, + "i": "6", + "w": 11, + "x": 37, + "y": 11 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Log Level Distribution", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 11, + "i": "7", + "w": 14, + "x": 17, + "y": 0 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "title": "Message Type Distribution", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 9, + "i": "8", + "w": 14, + "x": 23, + "y": 11 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "title": "Log Level Timeline", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 12, + "i": "9", + "w": 22, + "x": 25, + "y": 20 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "title": "Client IP Count Timeline", + "type": "visualization", + "version": "7.10.0" + } + ], + "timeRestore": false, + "title": "[Filebeat NATS] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Filebeat-nats-overview-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "6987a800-41a8-11e9-a4da-b1df688edbcd-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "0b2061d0-41ad-11e9-a4da-b1df688edbcd-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "4a6d9ec0-41a8-11e9-a4da-b1df688edbcd-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "c3d1ab80-41a8-11e9-a4da-b1df688edbcd-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "7716c780-41ad-11e9-a4da-b1df688edbcd-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "3f6cca40-41ae-11e9-a4da-b1df688edbcd-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "7ed62870-41ae-11e9-a4da-b1df688edbcd-ecs", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "04083600-41af-11e9-a4da-b1df688edbcd-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "c669ae20-41ed-11e9-ac5c-71ffa38a62e3-ecs", + "name": "9:panel_9", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:14.693Z", + "version": "WzQ0NjIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nats/_meta/kibana/7/dashboard/Filebeat-nats-overview.ndjson b/filebeat/module/nats/_meta/kibana/7/dashboard/Filebeat-nats-overview.ndjson deleted file mode 100644 index 74f3ac2eed01..000000000000 --- a/filebeat/module/nats/_meta/kibana/7/dashboard/Filebeat-nats-overview.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Message Types Timeline [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"nats.log.msg.type\",\"size\":15},\"schema\":\"group\",\"type\":\"significant_terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Message Types Timeline [Filebeat NATS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"6987a800-41a8-11e9-a4da-b1df688edbcd-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"service.type: nats\"}}"},"title":"Communication Directions [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"network.direction\",\"size\":2},\"schema\":\"group\",\"type\":\"significant_terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Communication Directions [Filebeat NATS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"0b2061d0-41ad-11e9-a4da-b1df688edbcd-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Topics Timeline [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"nats.log.msg.subject\",\"size\":5},\"schema\":\"group\",\"type\":\"significant_terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Topics Timeline [Filebeat NATS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"4a6d9ec0-41a8-11e9-a4da-b1df688edbcd-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":" Bytes Timeline [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Sum of Message Bytes\",\"field\":\"nats.log.msg.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Sum of Message Bytes\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Sum of Message Bytes\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\" Bytes Timeline [Filebeat NATS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"c3d1ab80-41a8-11e9-a4da-b1df688edbcd-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"service.type: nats\"}}"},"title":"Communication Directions Distribution [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.direction\",\"size\":2},\"schema\":\"segment\",\"type\":\"significant_terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Communication Directions Distribution [Filebeat NATS] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7716c780-41ad-11e9-a4da-b1df688edbcd-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"service.type: nats\"}}"},"title":"Log Level Distribution [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"log.level\",\"size\":10},\"schema\":\"segment\",\"type\":\"significant_terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Log Level Distribution [Filebeat NATS] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"3f6cca40-41ae-11e9-a4da-b1df688edbcd-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Message Type Distribution [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"nats.log.msg.type\",\"size\":15},\"schema\":\"segment\",\"type\":\"significant_terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Message Type Distribution [Filebeat NATS] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7ed62870-41ae-11e9-a4da-b1df688edbcd-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"service.type: nats\"}}"},"title":"Log Level Timeline [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.level\",\"size\":10},\"schema\":\"group\",\"type\":\"significant_terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Log Level Timeline [Filebeat NATS] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"04083600-41af-11e9-a4da-b1df688edbcd-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"service.type: nats\"}}"},"title":"Client IP Count Timeline [Filebeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"client.ip\",\"ipRangeType\":\"fromTo\",\"ranges\":{\"fromTo\":[{\"from\":\"0.0.0.0\",\"to\":\"127.255.255.255\"},{\"from\":\"128.0.0.0\",\"to\":\"191.255.255.255\"}],\"mask\":[{\"mask\":\"0.0.0.0/1\"},{\"mask\":\"128.0.0.0/2\"}]}},\"schema\":\"group\",\"type\":\"ip_range\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Client IP Count Timeline [Filebeat NATS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"c669ae20-41ed-11e9-ac5c-71ffa38a62e3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NzEsMV0="} -{"attributes":{"description":"Overview of NATS server statistics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"1\",\"w\":17,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Message Types Timeline\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"2\",\"w\":17,\"x\":31,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Communication Directions\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":25,\"x\":0,\"y\":20},\"panelIndex\":\"3\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Topics Timeline\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"4\",\"w\":12,\"x\":11,\"y\":11},\"panelIndex\":\"4\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\" Bytes Timeline\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"5\",\"w\":11,\"x\":0,\"y\":11},\"panelIndex\":\"5\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Communication Directions Distribution\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"6\",\"w\":11,\"x\":37,\"y\":11},\"panelIndex\":\"6\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Log Level Distribution\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"7\",\"w\":14,\"x\":17,\"y\":0},\"panelIndex\":\"7\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Message Type Distribution\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"8\",\"w\":14,\"x\":23,\"y\":11},\"panelIndex\":\"8\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Log Level Timeline\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"9\",\"w\":22,\"x\":25,\"y\":20},\"panelIndex\":\"9\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Client IP Count Timeline\",\"panelRefName\":\"panel_9\"}]","timeRestore":false,"title":"[Filebeat NATS] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-nats-overview-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"6987a800-41a8-11e9-a4da-b1df688edbcd-ecs","name":"1:panel_1","type":"visualization"},{"id":"0b2061d0-41ad-11e9-a4da-b1df688edbcd-ecs","name":"2:panel_2","type":"visualization"},{"id":"4a6d9ec0-41a8-11e9-a4da-b1df688edbcd-ecs","name":"3:panel_3","type":"visualization"},{"id":"c3d1ab80-41a8-11e9-a4da-b1df688edbcd-ecs","name":"4:panel_4","type":"visualization"},{"id":"7716c780-41ad-11e9-a4da-b1df688edbcd-ecs","name":"5:panel_5","type":"visualization"},{"id":"3f6cca40-41ae-11e9-a4da-b1df688edbcd-ecs","name":"6:panel_6","type":"visualization"},{"id":"7ed62870-41ae-11e9-a4da-b1df688edbcd-ecs","name":"7:panel_7","type":"visualization"},{"id":"04083600-41af-11e9-a4da-b1df688edbcd-ecs","name":"8:panel_8","type":"visualization"},{"id":"c669ae20-41ed-11e9-ac5c-71ffa38a62e3-ecs","name":"9:panel_9","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:14.693Z","version":"WzQ0NjIsMV0="} diff --git a/filebeat/module/nats/_meta/kibana/7/visualization/04083600-41af-11e9-a4da-b1df688edbcd-ecs.json b/filebeat/module/nats/_meta/kibana/7/visualization/04083600-41af-11e9-a4da-b1df688edbcd-ecs.json new file mode 100644 index 000000000000..020b815e5a18 --- /dev/null +++ b/filebeat/module/nats/_meta/kibana/7/visualization/04083600-41af-11e9-a4da-b1df688edbcd-ecs.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "service.type: nats" + } + } + }, + "title": "Log Level Timeline [Filebeat NATS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "log.level", + "size": 10 + }, + "schema": "group", + "type": "significant_terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "area", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Log Level Timeline [Filebeat NATS] ECS", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "04083600-41af-11e9-a4da-b1df688edbcd-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:14.693Z", + "version": "WzQ0NzAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nats/_meta/kibana/7/visualization/0b2061d0-41ad-11e9-a4da-b1df688edbcd-ecs.json b/filebeat/module/nats/_meta/kibana/7/visualization/0b2061d0-41ad-11e9-a4da-b1df688edbcd-ecs.json new file mode 100644 index 000000000000..4cce27955ce1 --- /dev/null +++ b/filebeat/module/nats/_meta/kibana/7/visualization/0b2061d0-41ad-11e9-a4da-b1df688edbcd-ecs.json @@ -0,0 +1,138 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "service.type: nats" + } + } + }, + "title": "Communication Directions [Filebeat NATS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "network.direction", + "size": 2 + }, + "schema": "group", + "type": "significant_terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Communication Directions [Filebeat NATS] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0b2061d0-41ad-11e9-a4da-b1df688edbcd-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:14.693Z", + "version": "WzQ0NjQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nats/_meta/kibana/7/visualization/3f6cca40-41ae-11e9-a4da-b1df688edbcd-ecs.json b/filebeat/module/nats/_meta/kibana/7/visualization/3f6cca40-41ae-11e9-a4da-b1df688edbcd-ecs.json new file mode 100644 index 000000000000..4e1ab005d168 --- /dev/null +++ b/filebeat/module/nats/_meta/kibana/7/visualization/3f6cca40-41ae-11e9-a4da-b1df688edbcd-ecs.json @@ -0,0 +1,74 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "service.type: nats" + } + } + }, + "title": "Log Level Distribution [Filebeat NATS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "log.level", + "size": 10 + }, + "schema": "segment", + "type": "significant_terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Log Level Distribution [Filebeat NATS] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3f6cca40-41ae-11e9-a4da-b1df688edbcd-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:14.693Z", + "version": "WzQ0NjgsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nats/_meta/kibana/7/visualization/4a6d9ec0-41a8-11e9-a4da-b1df688edbcd-ecs.json b/filebeat/module/nats/_meta/kibana/7/visualization/4a6d9ec0-41a8-11e9-a4da-b1df688edbcd-ecs.json new file mode 100644 index 000000000000..0524c92b5ddc --- /dev/null +++ b/filebeat/module/nats/_meta/kibana/7/visualization/4a6d9ec0-41a8-11e9-a4da-b1df688edbcd-ecs.json @@ -0,0 +1,138 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Topics Timeline [Filebeat NATS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "nats.log.msg.subject", + "size": 5 + }, + "schema": "group", + "type": "significant_terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Topics Timeline [Filebeat NATS] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4a6d9ec0-41a8-11e9-a4da-b1df688edbcd-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:14.693Z", + "version": "WzQ0NjUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nats/_meta/kibana/7/visualization/6987a800-41a8-11e9-a4da-b1df688edbcd-ecs.json b/filebeat/module/nats/_meta/kibana/7/visualization/6987a800-41a8-11e9-a4da-b1df688edbcd-ecs.json new file mode 100644 index 000000000000..e17e969dc06c --- /dev/null +++ b/filebeat/module/nats/_meta/kibana/7/visualization/6987a800-41a8-11e9-a4da-b1df688edbcd-ecs.json @@ -0,0 +1,141 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Message Types Timeline [Filebeat NATS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "nats.log.msg.type", + "size": 15 + }, + "schema": "group", + "type": "significant_terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "interpolate": "cardinal", + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Message Types Timeline [Filebeat NATS] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6987a800-41a8-11e9-a4da-b1df688edbcd-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:14.693Z", + "version": "WzQ0NjMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nats/_meta/kibana/7/visualization/7716c780-41ad-11e9-a4da-b1df688edbcd-ecs.json b/filebeat/module/nats/_meta/kibana/7/visualization/7716c780-41ad-11e9-a4da-b1df688edbcd-ecs.json new file mode 100644 index 000000000000..130d940c025f --- /dev/null +++ b/filebeat/module/nats/_meta/kibana/7/visualization/7716c780-41ad-11e9-a4da-b1df688edbcd-ecs.json @@ -0,0 +1,74 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "service.type: nats" + } + } + }, + "title": "Communication Directions Distribution [Filebeat NATS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "network.direction", + "size": 2 + }, + "schema": "segment", + "type": "significant_terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Communication Directions Distribution [Filebeat NATS] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7716c780-41ad-11e9-a4da-b1df688edbcd-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:14.693Z", + "version": "WzQ0NjcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nats/_meta/kibana/7/visualization/7ed62870-41ae-11e9-a4da-b1df688edbcd-ecs.json b/filebeat/module/nats/_meta/kibana/7/visualization/7ed62870-41ae-11e9-a4da-b1df688edbcd-ecs.json new file mode 100644 index 000000000000..0de10dfb4ca8 --- /dev/null +++ b/filebeat/module/nats/_meta/kibana/7/visualization/7ed62870-41ae-11e9-a4da-b1df688edbcd-ecs.json @@ -0,0 +1,74 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Message Type Distribution [Filebeat NATS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "nats.log.msg.type", + "size": 15 + }, + "schema": "segment", + "type": "significant_terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Message Type Distribution [Filebeat NATS] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7ed62870-41ae-11e9-a4da-b1df688edbcd-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:14.693Z", + "version": "WzQ0NjksMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nats/_meta/kibana/7/visualization/c3d1ab80-41a8-11e9-a4da-b1df688edbcd-ecs.json b/filebeat/module/nats/_meta/kibana/7/visualization/c3d1ab80-41a8-11e9-a4da-b1df688edbcd-ecs.json new file mode 100644 index 000000000000..fc38a9699e9b --- /dev/null +++ b/filebeat/module/nats/_meta/kibana/7/visualization/c3d1ab80-41a8-11e9-a4da-b1df688edbcd-ecs.json @@ -0,0 +1,131 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": " Bytes Timeline [Filebeat NATS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Sum of Message Bytes", + "field": "nats.log.msg.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Sum of Message Bytes" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Sum of Message Bytes" + }, + "type": "value" + } + ] + }, + "title": " Bytes Timeline [Filebeat NATS] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c3d1ab80-41a8-11e9-a4da-b1df688edbcd-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:14.693Z", + "version": "WzQ0NjYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nats/_meta/kibana/7/visualization/c669ae20-41ed-11e9-ac5c-71ffa38a62e3-ecs.json b/filebeat/module/nats/_meta/kibana/7/visualization/c669ae20-41ed-11e9-ac5c-71ffa38a62e3-ecs.json new file mode 100644 index 000000000000..35528751bf86 --- /dev/null +++ b/filebeat/module/nats/_meta/kibana/7/visualization/c669ae20-41ed-11e9-ac5c-71ffa38a62e3-ecs.json @@ -0,0 +1,158 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "service.type: nats" + } + } + }, + "title": "Client IP Count Timeline [Filebeat NATS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "client.ip", + "ipRangeType": "fromTo", + "ranges": { + "fromTo": [ + { + "from": "0.0.0.0", + "to": "127.255.255.255" + }, + { + "from": "128.0.0.0", + "to": "191.255.255.255" + } + ], + "mask": [ + { + "mask": "0.0.0.0/1" + }, + { + "mask": "128.0.0.0/2" + } + ] + } + }, + "schema": "group", + "type": "ip_range" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Client IP Count Timeline [Filebeat NATS] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c669ae20-41ed-11e9-ac5c-71ffa38a62e3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:14.693Z", + "version": "WzQ0NzEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nats/module.yml b/filebeat/module/nats/module.yml index ddf36a9f64e8..84ef91da1466 100644 --- a/filebeat/module/nats/module.yml +++ b/filebeat/module/nats/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Filebeat-nats-overview - file: Filebeat-nats-overview.ndjson + file: Filebeat-nats-overview.json diff --git a/filebeat/module/nginx/_meta/kibana/7/dashboard/046212a0-a2a1-11e7-928f-5dbe6f6f5519-ecs.json b/filebeat/module/nginx/_meta/kibana/7/dashboard/046212a0-a2a1-11e7-928f-5dbe6f6f5519-ecs.json new file mode 100644 index 000000000000..97c9432438b9 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/dashboard/046212a0-a2a1-11e7-928f-5dbe6f6f5519-ecs.json @@ -0,0 +1,137 @@ +{ + "attributes": { + "description": "Dashboard for the Filebeat Nginx module", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "columns": [ + "log.level", + "message" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 12, + "i": "11", + "w": 48, + "x": 0, + "y": 16 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "url.original", + "http.request.method", + "http.response.status_code", + "http.response.body.bytes" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 28, + "i": "16", + "w": 48, + "x": 0, + "y": 28 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "18", + "w": 48, + "x": 0, + "y": 4 + }, + "panelIndex": "18", + "panelRefName": "panel_18", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "19", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "19", + "panelRefName": "panel_19", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Nginx] Access and error logs ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "046212a0-a2a1-11e7-928f-5dbe6f6f5519-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "9eb25600-a1f0-11e7-928f-5dbe6f6f5519-ecs", + "name": "11:panel_11", + "type": "search" + }, + { + "id": "6d9e66d0-a1f0-11e7-928f-5dbe6f6f5519-ecs", + "name": "16:panel_16", + "type": "search" + }, + { + "id": "1cfb1a80-a1f4-11e7-928f-5dbe6f6f5519-ecs", + "name": "18:panel_18", + "type": "visualization" + }, + { + "id": "97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs", + "name": "19:panel_19", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:18.875Z", + "version": "WzQ1MDMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/dashboard/0b3dba40-f341-11ea-a3fd-1b45ec532bb3.json b/filebeat/module/nginx/_meta/kibana/7/dashboard/0b3dba40-f341-11ea-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..a77f2c19c7e4 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/dashboard/0b3dba40-f341-11ea-a3fd-1b45ec532bb3.json @@ -0,0 +1,119 @@ +{ + "attributes": { + "description": "Dashboard for the Filebeat Nginx Ingress Controller", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "36b94fba-26a2-4a63-9260-1e5bdf3a9dd8", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "36b94fba-26a2-4a63-9260-1e5bdf3a9dd8", + "panelRefName": "panel_36b94fba-26a2-4a63-9260-1e5bdf3a9dd8", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "a7e7600a-703f-48a0-9a3a-3670294ee98b", + "w": 48, + "x": 0, + "y": 4 + }, + "panelIndex": "a7e7600a-703f-48a0-9a3a-3670294ee98b", + "panelRefName": "panel_a7e7600a-703f-48a0-9a3a-3670294ee98b", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1a56c416-e1e4-4e0e-bd2b-ac5e3553d118", + "w": 48, + "x": 0, + "y": 16 + }, + "panelIndex": "1a56c416-e1e4-4e0e-bd2b-ac5e3553d118", + "panelRefName": "panel_1a56c416-e1e4-4e0e-bd2b-ac5e3553d118", + "type": "search", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 28, + "i": "7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1", + "w": 48, + "x": 0, + "y": 28 + }, + "panelIndex": "7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1", + "panelRefName": "panel_7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1", + "type": "search", + "version": "7.8.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Nginx] Ingress Controller access and error logs", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "0b3dba40-f341-11ea-a3fd-1b45ec532bb3", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "c37e2770-f341-11ea-a3fd-1b45ec532bb3", + "name": "36b94fba-26a2-4a63-9260-1e5bdf3a9dd8:panel_36b94fba-26a2-4a63-9260-1e5bdf3a9dd8", + "type": "visualization" + }, + { + "id": "78738850-f342-11ea-a3fd-1b45ec532bb3", + "name": "a7e7600a-703f-48a0-9a3a-3670294ee98b:panel_a7e7600a-703f-48a0-9a3a-3670294ee98b", + "type": "visualization" + }, + { + "id": "a832bcf0-f342-11ea-a3fd-1b45ec532bb3", + "name": "1a56c416-e1e4-4e0e-bd2b-ac5e3553d118:panel_1a56c416-e1e4-4e0e-bd2b-ac5e3553d118", + "type": "search" + }, + { + "id": "d20d4ea0-f342-11ea-a3fd-1b45ec532bb3", + "name": "7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1:panel_7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:16.767Z", + "version": "WzQ0ODIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/dashboard/55a9e6e0-a29e-11e7-928f-5dbe6f6f5519-ecs.json b/filebeat/module/nginx/_meta/kibana/7/dashboard/55a9e6e0-a29e-11e7-928f-5dbe6f6f5519-ecs.json new file mode 100644 index 000000000000..954cab6d1be1 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/dashboard/55a9e6e0-a29e-11e7-928f-5dbe6f6f5519-ecs.json @@ -0,0 +1,232 @@ +{ + "attributes": { + "description": "Dashboard for the Filebeat Nginx module", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 12, + "x": 36, + "y": 44 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": true + } + }, + "gridData": { + "h": 12, + "i": "4", + "w": 12, + "x": 24, + "y": 44 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapBounds": { + "bottom_right": { + "lat": -7.362466865535738, + "lon": 245.39062500000003 + }, + "top_left": { + "lat": 77.07878389624943, + "lon": -245.74218750000003 + } + }, + "mapCenter": [ + 50.51342652633956, + -0.17578125 + ], + "mapCollar": { + "bottom_right": { + "lat": -49.583095, + "lon": 180 + }, + "top_left": { + "lat": 90, + "lon": -180 + }, + "zoom": 2 + }, + "mapZoom": 2 + }, + "gridData": { + "h": 16, + "i": "8", + "w": 48, + "x": 0, + "y": 4 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "13", + "w": 48, + "x": 0, + "y": 20 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "14", + "w": 24, + "x": 24, + "y": 32 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "15", + "w": 24, + "x": 0, + "y": 32 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "16", + "w": 24, + "x": 0, + "y": 44 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "17", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "17", + "panelRefName": "panel_17", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Nginx] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "55a9e6e0-a29e-11e7-928f-5dbe6f6f5519-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Nginx-Access-Browsers-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "Nginx-Access-OSes-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "Nginx-Access-Map-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "b70b1b20-a1f4-11e7-928f-5dbe6f6f5519-ecs", + "name": "13:panel_13", + "type": "visualization" + }, + { + "id": "9184fa00-a1f5-11e7-928f-5dbe6f6f5519-ecs", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "46322e50-a1f6-11e7-928f-5dbe6f6f5519-ecs", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "0dd6f320-a29f-11e7-928f-5dbe6f6f5519-ecs", + "name": "16:panel_16", + "type": "visualization" + }, + { + "id": "97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs", + "name": "17:panel_17", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:19.828Z", + "version": "WzQ1MTMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-logs.ndjson b/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-logs.ndjson deleted file mode 100644 index 2ecb2e5779eb..000000000000 --- a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-logs.ndjson +++ /dev/null @@ -1,5 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboards Ingress Controller [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Nginx Ingress Controller logs overview](#/dashboard/dfbc0840-f340-11ea-a3fd-1b45ec532bb3) | [Nginx Ingress Controller access and error logs](#/dashboard/0b3dba40-f341-11ea-a3fd-1b45ec532bb3)\",\"openLinksInNewTab\":false},\"title\":\"Dashboards Ingress Controller [Filebeat Nginx] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"c37e2770-f341-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0OTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ingress Controller access logs over time [Filebeat Nginx]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"icon\":\"fa-tag\",\"id\":\"970b1420-a1f3-11e7-a062-a1c3587f4874\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"filebeat-*\",\"time_field\":\"@timestamp\"}],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"3189aa80-a1f3-11e7-a062-a1c3587f4874\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:nginx AND fileset.name:ingress_controller\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Access logs\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"1db649a0-a1f3-11e7-a062-a1c3587f4874\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"url.original\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Ingress Controller access logs over time [Filebeat Nginx]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"78738850-f342-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:16.767Z","version":"WzQ0ODQsMV0="} -{"attributes":{"columns":["log.level","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlight\": {\"fields\": {\"*\": {}}, \"fragment_size\": 2147483647, \"post_tags\": [\"@/kibana-highlighted-field@\"], \"pre_tags\": [\"@kibana-highlighted-field@\"], \"require_field_match\": false}, \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.module:nginx AND message:*\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Nginx Ingress Controller error logs [Filebeat Nginx]","version":1},"coreMigrationVersion":"8.0.0","id":"a832bcf0-f342-11ea-a3fd-1b45ec532bb3","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:16.767Z","version":"WzQ0ODUsMV0="} -{"attributes":{"columns":["url.original","http.request.method","http.response.status_code","http.response.body.bytes"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlight\": {\"fields\": {\"*\": {}}, \"fragment_size\": 2147483647, \"post_tags\": [\"@/kibana-highlighted-field@\"], \"pre_tags\": [\"@kibana-highlighted-field@\"], \"require_field_match\": false}, \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.module:nginx AND url.original:*\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Nginx Ingress Controller access logs [Filebeat Nginx]","version":1},"coreMigrationVersion":"8.0.0","id":"d20d4ea0-f342-11ea-a3fd-1b45ec532bb3","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:16.767Z","version":"WzQ0ODYsMV0="} -{"attributes":{"description":"Dashboard for the Filebeat Nginx Ingress Controller","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"36b94fba-26a2-4a63-9260-1e5bdf3a9dd8\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"36b94fba-26a2-4a63-9260-1e5bdf3a9dd8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_36b94fba-26a2-4a63-9260-1e5bdf3a9dd8\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"a7e7600a-703f-48a0-9a3a-3670294ee98b\",\"w\":48,\"x\":0,\"y\":4},\"panelIndex\":\"a7e7600a-703f-48a0-9a3a-3670294ee98b\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a7e7600a-703f-48a0-9a3a-3670294ee98b\"},{\"version\":\"7.8.0\",\"type\":\"search\",\"gridData\":{\"h\":12,\"i\":\"1a56c416-e1e4-4e0e-bd2b-ac5e3553d118\",\"w\":48,\"x\":0,\"y\":16},\"panelIndex\":\"1a56c416-e1e4-4e0e-bd2b-ac5e3553d118\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1a56c416-e1e4-4e0e-bd2b-ac5e3553d118\"},{\"version\":\"7.8.0\",\"type\":\"search\",\"gridData\":{\"h\":28,\"i\":\"7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1\",\"w\":48,\"x\":0,\"y\":28},\"panelIndex\":\"7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1\"}]","timeRestore":false,"title":"[Filebeat Nginx] Ingress Controller access and error logs","version":1},"coreMigrationVersion":"8.0.0","id":"0b3dba40-f341-11ea-a3fd-1b45ec532bb3","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"c37e2770-f341-11ea-a3fd-1b45ec532bb3","name":"36b94fba-26a2-4a63-9260-1e5bdf3a9dd8:panel_36b94fba-26a2-4a63-9260-1e5bdf3a9dd8","type":"visualization"},{"id":"78738850-f342-11ea-a3fd-1b45ec532bb3","name":"a7e7600a-703f-48a0-9a3a-3670294ee98b:panel_a7e7600a-703f-48a0-9a3a-3670294ee98b","type":"visualization"},{"id":"a832bcf0-f342-11ea-a3fd-1b45ec532bb3","name":"1a56c416-e1e4-4e0e-bd2b-ac5e3553d118:panel_1a56c416-e1e4-4e0e-bd2b-ac5e3553d118","type":"search"},{"id":"d20d4ea0-f342-11ea-a3fd-1b45ec532bb3","name":"7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1:panel_7e5729fd-aa67-4ee2-aaa3-8a67e529d4b1","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:16.767Z","version":"WzQ0ODIsMV0="} diff --git a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-overview.ndjson b/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-overview.ndjson deleted file mode 100644 index f25e4aae61d1..000000000000 --- a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-ingress-overview.ndjson +++ /dev/null @@ -1,12 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Browsers breakdown [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Nginx Access Browsers ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Nginx-Access-Browsers-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Operating systems breakdown [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.os.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.os.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Nginx Access OSes ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Nginx-Access-OSes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDUsMV0="} -{"attributes":{"columns":["url.original","http.request.method","http.response.status_code","http.request.referrer","http.response.body.bytes"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.module:nginx\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Nginx logs [Filebeat Nginx] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-Nginx-module-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Access Map [Filebeat Nginx] ECS","uiStateJSON":"{\"mapCenter\": [12.039320557540572, -0.17578125]}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\"},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Nginx Access Map ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"Nginx-Access-Map-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-Nginx-module-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboards Ingress Controller [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Nginx Ingress Controller logs overview](#/dashboard/dfbc0840-f340-11ea-a3fd-1b45ec532bb3) | [Nginx Ingress Controller access and error logs](#/dashboard/0b3dba40-f341-11ea-a3fd-1b45ec532bb3)\",\"openLinksInNewTab\":false},\"title\":\"Dashboards Ingress Controller [Filebeat Nginx] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"c37e2770-f341-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0OTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ingress Controller response codes over time [Filebeat Nginx]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:nginx AND fileset.name:ingress_controller\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"lucene\",\"query\":\"http.response.status_code:[200 TO 299]\"},\"id\":\"5acdc750-a29d-11e7-a062-a1c3587f4874\",\"label\":\"200s\"},{\"color\":\"rgba(252,196,0,1)\",\"filter\":{\"language\":\"lucene\",\"query\":\"http.response.status_code:[300 TO 399]\"},\"id\":\"6efd2ae0-a29d-11e7-a062-a1c3587f4874\",\"label\":\"300s\"},{\"color\":\"rgba(211,49,21,1)\",\"filter\":{\"language\":\"lucene\",\"query\":\"http.response.status_code:[400 TO 499]\"},\"id\":\"76089a90-a29d-11e7-a062-a1c3587f4874\",\"label\":\"400s\"},{\"color\":\"rgba(171,20,158,1)\",\"filter\":{\"language\":\"lucene\",\"query\":\"http.response.status_code:[500 TO 599]\"},\"id\":\"7c7929d0-a29d-11e7-a062-a1c3587f4874\",\"label\":\"500s\"}],\"split_mode\":\"filters\",\"stacked\":\"stacked\",\"terms_field\":\"http.response.status_code\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Ingress Controller response codes over time [Filebeat Nginx]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ba138ab0-f344-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0OTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ingress Controller top Upstreams [Filebeat Nginx]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"6252c320-a1f5-11e7-92ba-5d0b8663aece\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:nginx AND fileset.name:ingress_controller\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nginx.ingress_controller.upstream.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Ingress Controller top Upstreams [Filebeat Nginx]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f137cb40-f345-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0OTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ingress Controller top pages [Filebeat Nginx]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"6252c320-a1f5-11e7-92ba-5d0b8663aece\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:nginx AND fileset.name:ingress_controller\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"url.original\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Ingress Controller top pages [Filebeat Nginx]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ee250270-f344-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0OTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ingress Controller Data Volume [Filebeat Nginx]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"lucene\",\"query\":\"event.module: nginx AND fileset.name:ingress_controller\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"http.response.body.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"lucene\",\"query\":\"http.response.status_code:[200 TO 299]\"},\"id\":\"7c343c20-a29e-11e7-a062-a1c3587f4874\",\"label\":\"200s\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Ingress Controller Data Volume [Filebeat Nginx]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1aa782a0-f345-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0OTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ingress Controller Upstream Time Consumed By Path [Filebeat Nginx]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"lucene\",\"query\":\"event.module: nginx AND fileset.name:ingress_controller\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"s,s,\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.ingress_controller.upstream.response.time\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"lucene\",\"query\":\"http.response.status_code:[200 TO 299]\"},\"id\":\"7c343c20-a29e-11e7-a062-a1c3587f4874\",\"label\":\"200s\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"url.original\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Ingress Controller Upstream Time Consumed By Path [Filebeat Nginx]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a3bf1ce0-f347-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0OTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ingress Controller Request Volume By Path [Filebeat Nginx]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"lucene\",\"query\":\"event.module: nginx AND fileset.name:ingress_controller\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.ingress_controller.upstream.response.length\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\",\"values\":[\"0.5\",\"0.95\",\"0.99\"]}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"lucene\",\"query\":\"http.response.status_code:[200 TO 299]\"},\"id\":\"7c343c20-a29e-11e7-a062-a1c3587f4874\",\"label\":\"200s\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_exclude\":\"\",\"terms_field\":\"url.original\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Ingress Controller request Volume By Path [Filebeat Nginx]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"afd506b0-f348-11ea-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0OTcsMV0="} -{"attributes":{"description":"Dashboard for the Filebeat Nginx Ingress Controller","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":12,\"x\":36,\"y\":32},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"4\",\"w\":11,\"x\":25,\"y\":32},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"8\",\"w\":48,\"x\":0,\"y\":4},\"panelIndex\":\"8\",\"embeddableConfig\":{\"mapBounds\":{\"bottom_right\":{\"lat\":-7.362466865535738,\"lon\":245.39062500000003},\"top_left\":{\"lat\":77.07878389624943,\"lon\":-245.74218750000003}},\"mapCenter\":null,\"mapCollar\":{\"bottom_right\":{\"lat\":-49.583095,\"lon\":180},\"top_left\":{\"lat\":90,\"lon\":-180},\"zoom\":2},\"mapZoom\":null,\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"f760cd68-8472-4709-b516-ba74f0c00db8\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"f760cd68-8472-4709-b516-ba74f0c00db8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_f760cd68-8472-4709-b516-ba74f0c00db8\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"9351d7ed-b2f4-419b-8c15-4696f69c2831\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"9351d7ed-b2f4-419b-8c15-4696f69c2831\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9351d7ed-b2f4-419b-8c15-4696f69c2831\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"a62866e6-5c7f-4c52-a619-d01fb5005d7c\",\"w\":12,\"x\":0,\"y\":32},\"panelIndex\":\"a62866e6-5c7f-4c52-a619-d01fb5005d7c\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a62866e6-5c7f-4c52-a619-d01fb5005d7c\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"453e4965-85d2-48a8-aea6-b37970d50ec5\",\"w\":13,\"x\":12,\"y\":32},\"panelIndex\":\"453e4965-85d2-48a8-aea6-b37970d50ec5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_453e4965-85d2-48a8-aea6-b37970d50ec5\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"606dd662-23fe-4fec-a781-7a5831eb1dc4\",\"w\":18,\"x\":0,\"y\":44},\"panelIndex\":\"606dd662-23fe-4fec-a781-7a5831eb1dc4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_606dd662-23fe-4fec-a781-7a5831eb1dc4\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"23972f5a-8e18-457a-8288-adf6f15e792e\",\"w\":15,\"x\":18,\"y\":44},\"panelIndex\":\"23972f5a-8e18-457a-8288-adf6f15e792e\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_23972f5a-8e18-457a-8288-adf6f15e792e\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"4b4ec4d3-b8a2-4d94-9a6c-b469552940e8\",\"w\":15,\"x\":33,\"y\":44},\"panelIndex\":\"4b4ec4d3-b8a2-4d94-9a6c-b469552940e8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4b4ec4d3-b8a2-4d94-9a6c-b469552940e8\"}]","timeRestore":false,"title":"[Filebeat Nginx] Ingress Controller Overview","version":1},"coreMigrationVersion":"8.0.0","id":"dfbc0840-f340-11ea-a3fd-1b45ec532bb3","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Nginx-Access-Browsers-ecs","name":"3:panel_3","type":"visualization"},{"id":"Nginx-Access-OSes-ecs","name":"4:panel_4","type":"visualization"},{"id":"Nginx-Access-Map-ecs","name":"8:panel_8","type":"visualization"},{"id":"c37e2770-f341-11ea-a3fd-1b45ec532bb3","name":"f760cd68-8472-4709-b516-ba74f0c00db8:panel_f760cd68-8472-4709-b516-ba74f0c00db8","type":"visualization"},{"id":"ba138ab0-f344-11ea-a3fd-1b45ec532bb3","name":"9351d7ed-b2f4-419b-8c15-4696f69c2831:panel_9351d7ed-b2f4-419b-8c15-4696f69c2831","type":"visualization"},{"id":"f137cb40-f345-11ea-a3fd-1b45ec532bb3","name":"a62866e6-5c7f-4c52-a619-d01fb5005d7c:panel_a62866e6-5c7f-4c52-a619-d01fb5005d7c","type":"visualization"},{"id":"ee250270-f344-11ea-a3fd-1b45ec532bb3","name":"453e4965-85d2-48a8-aea6-b37970d50ec5:panel_453e4965-85d2-48a8-aea6-b37970d50ec5","type":"visualization"},{"id":"1aa782a0-f345-11ea-a3fd-1b45ec532bb3","name":"606dd662-23fe-4fec-a781-7a5831eb1dc4:panel_606dd662-23fe-4fec-a781-7a5831eb1dc4","type":"visualization"},{"id":"a3bf1ce0-f347-11ea-a3fd-1b45ec532bb3","name":"23972f5a-8e18-457a-8288-adf6f15e792e:panel_23972f5a-8e18-457a-8288-adf6f15e792e","type":"visualization"},{"id":"afd506b0-f348-11ea-a3fd-1b45ec532bb3","name":"4b4ec4d3-b8a2-4d94-9a6c-b469552940e8:panel_4b4ec4d3-b8a2-4d94-9a6c-b469552940e8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:17.806Z","version":"WzQ0ODcsMV0="} diff --git a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-logs.ndjson b/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-logs.ndjson deleted file mode 100644 index 6add65282c6a..000000000000 --- a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-logs.ndjson +++ /dev/null @@ -1,5 +0,0 @@ -{"attributes":{"columns":["log.level","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.module:nginx AND message:*\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Nginx error logs [Filebeat Nginx] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"9eb25600-a1f0-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:18.875Z","version":"WzQ0OTksMV0="} -{"attributes":{"columns":["url.original","http.request.method","http.response.status_code","http.response.body.bytes"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.module:nginx AND url.original:*\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Nginx access logs [Filebeat Nginx] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6d9e66d0-a1f0-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:18.875Z","version":"WzQ1MDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Access logs over time [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"icon\":\"fa-tag\",\"id\":\"970b1420-a1f3-11e7-a062-a1c3587f4874\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"filebeat-*\",\"time_field\":\"@timestamp\"}],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"3189aa80-a1f3-11e7-a062-a1c3587f4874\"}],\"filter\":{\"query\":\"event.module:nginx AND fileset.name:access\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Access logs\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"1db649a0-a1f3-11e7-a062-a1c3587f4874\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"url.original\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Access logs over time [Filebeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1cfb1a80-a1f4-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:18.875Z","version":"WzQ1MDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Dashboards [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Nginx logs overview](#/dashboard/55a9e6e0-a29e-11e7-928f-5dbe6f6f5519-ecs) | [Nginx access and error logs](#/dashboard/046212a0-a2a1-11e7-928f-5dbe6f6f5519-ecs)\"},\"title\":\"Dashboards [Filebeat Nginx] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MTEsMV0="} -{"attributes":{"description":"Dashboard for the Filebeat Nginx module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":16,\"w\":48,\"h\":12,\"i\":\"11\"},\"panelIndex\":\"11\",\"embeddableConfig\":{\"columns\":[\"log.level\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":28,\"w\":48,\"h\":28,\"i\":\"16\"},\"panelIndex\":\"16\",\"embeddableConfig\":{\"columns\":[\"url.original\",\"http.request.method\",\"http.response.status_code\",\"http.response.body.bytes\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":48,\"h\":12,\"i\":\"18\"},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"19\"},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"}]","timeRestore":false,"title":"[Filebeat Nginx] Access and error logs ECS","version":1},"coreMigrationVersion":"8.0.0","id":"046212a0-a2a1-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"9eb25600-a1f0-11e7-928f-5dbe6f6f5519-ecs","name":"11:panel_11","type":"search"},{"id":"6d9e66d0-a1f0-11e7-928f-5dbe6f6f5519-ecs","name":"16:panel_16","type":"search"},{"id":"1cfb1a80-a1f4-11e7-928f-5dbe6f6f5519-ecs","name":"18:panel_18","type":"visualization"},{"id":"97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs","name":"19:panel_19","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:18.875Z","version":"WzQ1MDMsMV0="} diff --git a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-overview.ndjson b/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-overview.ndjson deleted file mode 100644 index 7553bdc0fcd4..000000000000 --- a/filebeat/module/nginx/_meta/kibana/7/dashboard/Filebeat-nginx-overview.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Browsers breakdown [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Nginx Access Browsers ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Nginx-Access-Browsers-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Operating systems breakdown [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.os.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.os.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Nginx Access OSes ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Nginx-Access-OSes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDUsMV0="} -{"attributes":{"columns":["url.original","http.request.method","http.response.status_code","http.request.referrer","http.response.body.bytes"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.module:nginx\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Nginx logs [Filebeat Nginx] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-Nginx-module-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Access Map [Filebeat Nginx] ECS","uiStateJSON":"{\"mapCenter\": [12.039320557540572, -0.17578125]}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\"},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Nginx Access Map ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"Nginx-Access-Map-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-Nginx-module-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Response codes over time [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"query\":\"event.module:nginx AND fileset.name:access\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"query\":\"http.response.status_code:[200 TO 299]\",\"language\":\"lucene\"},\"id\":\"5acdc750-a29d-11e7-a062-a1c3587f4874\",\"label\":\"200s\"},{\"color\":\"rgba(252,196,0,1)\",\"filter\":{\"query\":\"http.response.status_code:[300 TO 399]\",\"language\":\"lucene\"},\"id\":\"6efd2ae0-a29d-11e7-a062-a1c3587f4874\",\"label\":\"300s\"},{\"color\":\"rgba(211,49,21,1)\",\"filter\":{\"query\":\"http.response.status_code:[400 TO 499]\",\"language\":\"lucene\"},\"id\":\"76089a90-a29d-11e7-a062-a1c3587f4874\",\"label\":\"400s\"},{\"color\":\"rgba(171,20,158,1)\",\"filter\":{\"query\":\"http.response.status_code:[500 TO 599]\",\"language\":\"lucene\"},\"id\":\"7c7929d0-a29d-11e7-a062-a1c3587f4874\",\"label\":\"500s\"}],\"split_mode\":\"filters\",\"stacked\":\"stacked\",\"terms_field\":\"http.response.status_code\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Response codes over time [Filebeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b70b1b20-a1f4-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top pages [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"6252c320-a1f5-11e7-92ba-5d0b8663aece\"}],\"filter\":{\"query\":\"event.module:nginx AND fileset.name:access\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"url.original\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"value_template\":\"\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top pages [Filebeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9184fa00-a1f5-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Errors over time [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"query\":\"event.module:nginx AND fileset.name:error\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"log.level\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Errors over time [Filebeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"46322e50-a1f6-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Data Volume [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"query\":\"event.module: nginx AND fileset.name: access\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"http.response.body.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"query\":\"http.response.status_code:[200 TO 299]\",\"language\":\"lucene\"},\"id\":\"7c343c20-a29e-11e7-a062-a1c3587f4874\",\"label\":\"200s\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Data Volume [Filebeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0dd6f320-a29f-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Dashboards [Filebeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Nginx logs overview](#/dashboard/55a9e6e0-a29e-11e7-928f-5dbe6f6f5519-ecs) | [Nginx access and error logs](#/dashboard/046212a0-a2a1-11e7-928f-5dbe6f6f5519-ecs)\"},\"title\":\"Dashboards [Filebeat Nginx] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MTEsMV0="} -{"attributes":{"description":"Dashboard for the Filebeat Nginx module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":36,\"y\":44,\"w\":12,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":44,\"w\":12,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":48,\"h\":16,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"mapBounds\":{\"bottom_right\":{\"lat\":-7.362466865535738,\"lon\":245.39062500000003},\"top_left\":{\"lat\":77.07878389624943,\"lon\":-245.74218750000003}},\"mapCenter\":[50.51342652633956,-0.17578125],\"mapCollar\":{\"bottom_right\":{\"lat\":-49.583095,\"lon\":180},\"top_left\":{\"lat\":90,\"lon\":-180},\"zoom\":2},\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":48,\"h\":12,\"i\":\"13\"},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":32,\"w\":24,\"h\":12,\"i\":\"14\"},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":32,\"w\":24,\"h\":12,\"i\":\"15\"},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":44,\"w\":24,\"h\":12,\"i\":\"16\"},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"17\"},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"}]","timeRestore":false,"title":"[Filebeat Nginx] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"55a9e6e0-a29e-11e7-928f-5dbe6f6f5519-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Nginx-Access-Browsers-ecs","name":"3:panel_3","type":"visualization"},{"id":"Nginx-Access-OSes-ecs","name":"4:panel_4","type":"visualization"},{"id":"Nginx-Access-Map-ecs","name":"8:panel_8","type":"visualization"},{"id":"b70b1b20-a1f4-11e7-928f-5dbe6f6f5519-ecs","name":"13:panel_13","type":"visualization"},{"id":"9184fa00-a1f5-11e7-928f-5dbe6f6f5519-ecs","name":"14:panel_14","type":"visualization"},{"id":"46322e50-a1f6-11e7-928f-5dbe6f6f5519-ecs","name":"15:panel_15","type":"visualization"},{"id":"0dd6f320-a29f-11e7-928f-5dbe6f6f5519-ecs","name":"16:panel_16","type":"visualization"},{"id":"97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs","name":"17:panel_17","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:19.828Z","version":"WzQ1MTMsMV0="} diff --git a/filebeat/module/nginx/_meta/kibana/7/dashboard/dfbc0840-f340-11ea-a3fd-1b45ec532bb3.json b/filebeat/module/nginx/_meta/kibana/7/dashboard/dfbc0840-f340-11ea-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..aec8e804aef6 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/dashboard/dfbc0840-f340-11ea-a3fd-1b45ec532bb3.json @@ -0,0 +1,271 @@ +{ + "attributes": { + "description": "Dashboard for the Filebeat Nginx Ingress Controller", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 12, + "x": 36, + "y": 32 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": true + } + }, + "gridData": { + "h": 12, + "i": "4", + "w": 11, + "x": 25, + "y": 32 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapBounds": { + "bottom_right": { + "lat": -7.362466865535738, + "lon": 245.39062500000003 + }, + "top_left": { + "lat": 77.07878389624943, + "lon": -245.74218750000003 + } + }, + "mapCenter": null, + "mapCollar": { + "bottom_right": { + "lat": -49.583095, + "lon": 180 + }, + "top_left": { + "lat": 90, + "lon": -180 + }, + "zoom": 2 + }, + "mapZoom": null + }, + "gridData": { + "h": 16, + "i": "8", + "w": 48, + "x": 0, + "y": 4 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "f760cd68-8472-4709-b516-ba74f0c00db8", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "f760cd68-8472-4709-b516-ba74f0c00db8", + "panelRefName": "panel_f760cd68-8472-4709-b516-ba74f0c00db8", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "9351d7ed-b2f4-419b-8c15-4696f69c2831", + "w": 48, + "x": 0, + "y": 20 + }, + "panelIndex": "9351d7ed-b2f4-419b-8c15-4696f69c2831", + "panelRefName": "panel_9351d7ed-b2f4-419b-8c15-4696f69c2831", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "a62866e6-5c7f-4c52-a619-d01fb5005d7c", + "w": 12, + "x": 0, + "y": 32 + }, + "panelIndex": "a62866e6-5c7f-4c52-a619-d01fb5005d7c", + "panelRefName": "panel_a62866e6-5c7f-4c52-a619-d01fb5005d7c", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "453e4965-85d2-48a8-aea6-b37970d50ec5", + "w": 13, + "x": 12, + "y": 32 + }, + "panelIndex": "453e4965-85d2-48a8-aea6-b37970d50ec5", + "panelRefName": "panel_453e4965-85d2-48a8-aea6-b37970d50ec5", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "606dd662-23fe-4fec-a781-7a5831eb1dc4", + "w": 18, + "x": 0, + "y": 44 + }, + "panelIndex": "606dd662-23fe-4fec-a781-7a5831eb1dc4", + "panelRefName": "panel_606dd662-23fe-4fec-a781-7a5831eb1dc4", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "23972f5a-8e18-457a-8288-adf6f15e792e", + "w": 15, + "x": 18, + "y": 44 + }, + "panelIndex": "23972f5a-8e18-457a-8288-adf6f15e792e", + "panelRefName": "panel_23972f5a-8e18-457a-8288-adf6f15e792e", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4b4ec4d3-b8a2-4d94-9a6c-b469552940e8", + "w": 15, + "x": 33, + "y": 44 + }, + "panelIndex": "4b4ec4d3-b8a2-4d94-9a6c-b469552940e8", + "panelRefName": "panel_4b4ec4d3-b8a2-4d94-9a6c-b469552940e8", + "type": "visualization", + "version": "7.8.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Nginx] Ingress Controller Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "dfbc0840-f340-11ea-a3fd-1b45ec532bb3", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Nginx-Access-Browsers-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "Nginx-Access-OSes-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "Nginx-Access-Map-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "c37e2770-f341-11ea-a3fd-1b45ec532bb3", + "name": "f760cd68-8472-4709-b516-ba74f0c00db8:panel_f760cd68-8472-4709-b516-ba74f0c00db8", + "type": "visualization" + }, + { + "id": "ba138ab0-f344-11ea-a3fd-1b45ec532bb3", + "name": "9351d7ed-b2f4-419b-8c15-4696f69c2831:panel_9351d7ed-b2f4-419b-8c15-4696f69c2831", + "type": "visualization" + }, + { + "id": "f137cb40-f345-11ea-a3fd-1b45ec532bb3", + "name": "a62866e6-5c7f-4c52-a619-d01fb5005d7c:panel_a62866e6-5c7f-4c52-a619-d01fb5005d7c", + "type": "visualization" + }, + { + "id": "ee250270-f344-11ea-a3fd-1b45ec532bb3", + "name": "453e4965-85d2-48a8-aea6-b37970d50ec5:panel_453e4965-85d2-48a8-aea6-b37970d50ec5", + "type": "visualization" + }, + { + "id": "1aa782a0-f345-11ea-a3fd-1b45ec532bb3", + "name": "606dd662-23fe-4fec-a781-7a5831eb1dc4:panel_606dd662-23fe-4fec-a781-7a5831eb1dc4", + "type": "visualization" + }, + { + "id": "a3bf1ce0-f347-11ea-a3fd-1b45ec532bb3", + "name": "23972f5a-8e18-457a-8288-adf6f15e792e:panel_23972f5a-8e18-457a-8288-adf6f15e792e", + "type": "visualization" + }, + { + "id": "afd506b0-f348-11ea-a3fd-1b45ec532bb3", + "name": "4b4ec4d3-b8a2-4d94-9a6c-b469552940e8:panel_4b4ec4d3-b8a2-4d94-9a6c-b469552940e8", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:17.806Z", + "version": "WzQ0ODcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/search/6d9e66d0-a1f0-11e7-928f-5dbe6f6f5519-ecs.json b/filebeat/module/nginx/_meta/kibana/7/search/6d9e66d0-a1f0-11e7-928f-5dbe6f6f5519-ecs.json new file mode 100644 index 000000000000..680d44653b7a --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/search/6d9e66d0-a1f0-11e7-928f-5dbe6f6f5519-ecs.json @@ -0,0 +1,60 @@ +{ + "attributes": { + "columns": [ + "url.original", + "http.request.method", + "http.response.status_code", + "http.response.body.bytes" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.module:nginx AND url.original:*" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Nginx access logs [Filebeat Nginx] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "6d9e66d0-a1f0-11e7-928f-5dbe6f6f5519-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:18.875Z", + "version": "WzQ1MDAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/search/9eb25600-a1f0-11e7-928f-5dbe6f6f5519-ecs.json b/filebeat/module/nginx/_meta/kibana/7/search/9eb25600-a1f0-11e7-928f-5dbe6f6f5519-ecs.json new file mode 100644 index 000000000000..37b2a7e45fd3 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/search/9eb25600-a1f0-11e7-928f-5dbe6f6f5519-ecs.json @@ -0,0 +1,58 @@ +{ + "attributes": { + "columns": [ + "log.level", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.module:nginx AND message:*" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Nginx error logs [Filebeat Nginx] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "9eb25600-a1f0-11e7-928f-5dbe6f6f5519-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:18.875Z", + "version": "WzQ0OTksMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/search/Filebeat-Nginx-module-ecs.json b/filebeat/module/nginx/_meta/kibana/7/search/Filebeat-Nginx-module-ecs.json new file mode 100644 index 000000000000..23b509a4ba9f --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/search/Filebeat-Nginx-module-ecs.json @@ -0,0 +1,61 @@ +{ + "attributes": { + "columns": [ + "url.original", + "http.request.method", + "http.response.status_code", + "http.request.referrer", + "http.response.body.bytes" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.module:nginx" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Nginx logs [Filebeat Nginx] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Filebeat-Nginx-module-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:19.828Z", + "version": "WzQ1MTIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/search/a832bcf0-f342-11ea-a3fd-1b45ec532bb3.json b/filebeat/module/nginx/_meta/kibana/7/search/a832bcf0-f342-11ea-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..7bc0361e23e3 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/search/a832bcf0-f342-11ea-a3fd-1b45ec532bb3.json @@ -0,0 +1,58 @@ +{ + "attributes": { + "columns": [ + "log.level", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.module:nginx AND message:*" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Nginx Ingress Controller error logs [Filebeat Nginx]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "a832bcf0-f342-11ea-a3fd-1b45ec532bb3", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:16.767Z", + "version": "WzQ0ODUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/search/d20d4ea0-f342-11ea-a3fd-1b45ec532bb3.json b/filebeat/module/nginx/_meta/kibana/7/search/d20d4ea0-f342-11ea-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..a791bfc96b35 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/search/d20d4ea0-f342-11ea-a3fd-1b45ec532bb3.json @@ -0,0 +1,60 @@ +{ + "attributes": { + "columns": [ + "url.original", + "http.request.method", + "http.response.status_code", + "http.response.body.bytes" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.module:nginx AND url.original:*" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Nginx Ingress Controller access logs [Filebeat Nginx]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "d20d4ea0-f342-11ea-a3fd-1b45ec532bb3", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:16.767Z", + "version": "WzQ0ODYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/0dd6f320-a29f-11e7-928f-5dbe6f6f5519-ecs.json b/filebeat/module/nginx/_meta/kibana/7/visualization/0dd6f320-a29f-11e7-928f-5dbe6f6f5519-ecs.json new file mode 100644 index 000000000000..717e4d0c541e --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/0dd6f320-a29f-11e7-928f-5dbe6f6f5519-ecs.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Data Volume [Filebeat Nginx] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "filter": { + "language": "lucene", + "query": "event.module: nginx AND fileset.name: access" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "http.response.body.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "lucene", + "query": "http.response.status_code:[200 TO 299]" + }, + "id": "7c343c20-a29e-11e7-a062-a1c3587f4874", + "label": "200s" + } + ], + "split_mode": "everything", + "stacked": "none", + "terms_field": null + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Data Volume [Filebeat Nginx] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0dd6f320-a29f-11e7-928f-5dbe6f6f5519-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:19.828Z", + "version": "WzQ1MTAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/1aa782a0-f345-11ea-a3fd-1b45ec532bb3.json b/filebeat/module/nginx/_meta/kibana/7/visualization/1aa782a0-f345-11ea-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..3e555a75b2bf --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/1aa782a0-f345-11ea-a3fd-1b45ec532bb3.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Ingress Controller Data Volume [Filebeat Nginx]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "lucene", + "query": "event.module: nginx AND fileset.name:ingress_controller" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "http.response.body.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "lucene", + "query": "http.response.status_code:[200 TO 299]" + }, + "id": "7c343c20-a29e-11e7-a062-a1c3587f4874", + "label": "200s" + } + ], + "split_mode": "everything", + "stacked": "none", + "terms_field": null + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Ingress Controller Data Volume [Filebeat Nginx]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1aa782a0-f345-11ea-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:17.806Z", + "version": "WzQ0OTUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/1cfb1a80-a1f4-11e7-928f-5dbe6f6f5519-ecs.json b/filebeat/module/nginx/_meta/kibana/7/visualization/1cfb1a80-a1f4-11e7-928f-5dbe6f6f5519-ecs.json new file mode 100644 index 000000000000..0b58c01c853b --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/1cfb1a80-a1f4-11e7-928f-5dbe6f6f5519-ecs.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Access logs over time [Filebeat Nginx] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [ + { + "color": "#F00", + "icon": "fa-tag", + "id": "970b1420-a1f3-11e7-a062-a1c3587f4874", + "ignore_global_filters": 1, + "ignore_panel_filters": 1, + "index_pattern": "filebeat-*", + "time_field": "@timestamp" + } + ], + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "3189aa80-a1f3-11e7-a062-a1c3587f4874" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:nginx AND fileset.name:access" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Access logs", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "id": "1db649a0-a1f3-11e7-a062-a1c3587f4874" + } + ], + "split_mode": "everything", + "stacked": "none", + "terms_field": "url.original", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Access logs over time [Filebeat Nginx] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1cfb1a80-a1f4-11e7-928f-5dbe6f6f5519-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:18.875Z", + "version": "WzQ1MDEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/46322e50-a1f6-11e7-928f-5dbe6f6f5519-ecs.json b/filebeat/module/nginx/_meta/kibana/7/visualization/46322e50-a1f6-11e7-928f-5dbe6f6f5519-ecs.json new file mode 100644 index 000000000000..7fca617feadc --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/46322e50-a1f6-11e7-928f-5dbe6f6f5519-ecs.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Errors over time [Filebeat Nginx] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "filter": { + "language": "lucene", + "query": "event.module:nginx AND fileset.name:error" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "rgba(211,49,21,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "log.level", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Errors over time [Filebeat Nginx] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "46322e50-a1f6-11e7-928f-5dbe6f6f5519-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:19.828Z", + "version": "WzQ1MDksMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/78738850-f342-11ea-a3fd-1b45ec532bb3.json b/filebeat/module/nginx/_meta/kibana/7/visualization/78738850-f342-11ea-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..46c7efcf6f18 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/78738850-f342-11ea-a3fd-1b45ec532bb3.json @@ -0,0 +1,91 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Ingress Controller access logs over time [Filebeat Nginx]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [ + { + "color": "#F00", + "icon": "fa-tag", + "id": "970b1420-a1f3-11e7-a062-a1c3587f4874", + "ignore_global_filters": 1, + "ignore_panel_filters": 1, + "index_pattern": "filebeat-*", + "time_field": "@timestamp" + } + ], + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "3189aa80-a1f3-11e7-a062-a1c3587f4874" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:nginx AND fileset.name:ingress_controller" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Access logs", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "id": "1db649a0-a1f3-11e7-a062-a1c3587f4874" + } + ], + "split_mode": "everything", + "stacked": "none", + "terms_field": "url.original", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Ingress Controller access logs over time [Filebeat Nginx]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "78738850-f342-11ea-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:16.767Z", + "version": "WzQ0ODQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/9184fa00-a1f5-11e7-928f-5dbe6f6f5519-ecs.json b/filebeat/module/nginx/_meta/kibana/7/visualization/9184fa00-a1f5-11e7-928f-5dbe6f6f5519-ecs.json new file mode 100644 index 000000000000..4a5e4974b3b2 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/9184fa00-a1f5-11e7-928f-5dbe6f6f5519-ecs.json @@ -0,0 +1,72 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Top pages [Filebeat Nginx] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "id": "6252c320-a1f5-11e7-92ba-5d0b8663aece" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:nginx AND fileset.name:access" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "url.original", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "value_template": "" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Top pages [Filebeat Nginx] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9184fa00-a1f5-11e7-928f-5dbe6f6f5519-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:19.828Z", + "version": "WzQ1MDgsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs.json b/filebeat/module/nginx/_meta/kibana/7/visualization/97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs.json new file mode 100644 index 000000000000..cf4e24fd8654 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs.json @@ -0,0 +1,29 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Dashboards [Filebeat Nginx] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "[Nginx logs overview](#/dashboard/55a9e6e0-a29e-11e7-928f-5dbe6f6f5519-ecs) | [Nginx access and error logs](#/dashboard/046212a0-a2a1-11e7-928f-5dbe6f6f5519-ecs)" + }, + "title": "Dashboards [Filebeat Nginx] ECS", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "97109780-a2a5-11e7-928f-5dbe6f6f5519-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:19.828Z", + "version": "WzQ1MTEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/Nginx-Access-Browsers-ecs.json b/filebeat/module/nginx/_meta/kibana/7/visualization/Nginx-Access-Browsers-ecs.json new file mode 100644 index 000000000000..39ecda460b04 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/Nginx-Access-Browsers-ecs.json @@ -0,0 +1,83 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Browsers breakdown [Filebeat Nginx] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user_agent.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "user_agent.version", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "shareYAxis": true + }, + "title": "Nginx Access Browsers ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Nginx-Access-Browsers-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:19.828Z", + "version": "WzQ1MDQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/Nginx-Access-Map-ecs.json b/filebeat/module/nginx/_meta/kibana/7/visualization/Nginx-Access-Map-ecs.json new file mode 100644 index 000000000000..b401469e163b --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/Nginx-Access-Map-ecs.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Access Map [Filebeat Nginx] ECS", + "uiStateJSON": { + "mapCenter": [ + 12.039320557540572, + -0.17578125 + ] + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "source.geo.location" + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "listeners": {}, + "params": { + "addTooltip": true, + "heatBlur": 15, + "heatMaxZoom": 16, + "heatMinOpacity": 0.1, + "heatNormalizeData": true, + "heatRadius": 25, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 15, + 5 + ], + "mapType": "Scaled Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "attribution": "Maps provided by USGS", + "format": "image/png", + "layers": "0", + "styles": "", + "transparent": true, + "version": "1.3.0" + }, + "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" + } + }, + "title": "Nginx Access Map ECS", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Nginx-Access-Map-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Filebeat-Nginx-module-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:19.828Z", + "version": "WzQ1MDYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/Nginx-Access-OSes-ecs.json b/filebeat/module/nginx/_meta/kibana/7/visualization/Nginx-Access-OSes-ecs.json new file mode 100644 index 000000000000..74505bd1d42d --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/Nginx-Access-OSes-ecs.json @@ -0,0 +1,83 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Operating systems breakdown [Filebeat Nginx] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user_agent.os.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "user_agent.os.version", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "shareYAxis": true + }, + "title": "Nginx Access OSes ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Nginx-Access-OSes-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:19.828Z", + "version": "WzQ1MDUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/a3bf1ce0-f347-11ea-a3fd-1b45ec532bb3.json b/filebeat/module/nginx/_meta/kibana/7/visualization/a3bf1ce0-f347-11ea-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..1dbd438f7fa9 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/a3bf1ce0-f347-11ea-a3fd-1b45ec532bb3.json @@ -0,0 +1,81 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Ingress Controller Upstream Time Consumed By Path [Filebeat Nginx]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "lucene", + "query": "event.module: nginx AND fileset.name:ingress_controller" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "s,s,", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "nginx.ingress_controller.upstream.response.time", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "lucene", + "query": "http.response.status_code:[200 TO 299]" + }, + "id": "7c343c20-a29e-11e7-a062-a1c3587f4874", + "label": "200s" + } + ], + "split_mode": "terms", + "stacked": "none", + "terms_field": "url.original", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Ingress Controller Upstream Time Consumed By Path [Filebeat Nginx]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a3bf1ce0-f347-11ea-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:17.806Z", + "version": "WzQ0OTYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/afd506b0-f348-11ea-a3fd-1b45ec532bb3.json b/filebeat/module/nginx/_meta/kibana/7/visualization/afd506b0-f348-11ea-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..51cbc692f065 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/afd506b0-f348-11ea-a3fd-1b45ec532bb3.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Ingress Controller Request Volume By Path [Filebeat Nginx]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "lucene", + "query": "event.module: nginx AND fileset.name:ingress_controller" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "nginx.ingress_controller.upstream.response.length", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum", + "values": [ + "0.5", + "0.95", + "0.99" + ] + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "lucene", + "query": "http.response.status_code:[200 TO 299]" + }, + "id": "7c343c20-a29e-11e7-a062-a1c3587f4874", + "label": "200s" + } + ], + "split_mode": "terms", + "stacked": "none", + "terms_exclude": "", + "terms_field": "url.original", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Ingress Controller request Volume By Path [Filebeat Nginx]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "afd506b0-f348-11ea-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:17.806Z", + "version": "WzQ0OTcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/b70b1b20-a1f4-11e7-928f-5dbe6f6f5519-ecs.json b/filebeat/module/nginx/_meta/kibana/7/visualization/b70b1b20-a1f4-11e7-928f-5dbe6f6f5519-ecs.json new file mode 100644 index 000000000000..b70ac5fa7f9f --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/b70b1b20-a1f4-11e7-928f-5dbe6f6f5519-ecs.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Response codes over time [Filebeat Nginx] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "filter": { + "language": "lucene", + "query": "event.module:nginx AND fileset.name:access" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "lucene", + "query": "http.response.status_code:[200 TO 299]" + }, + "id": "5acdc750-a29d-11e7-a062-a1c3587f4874", + "label": "200s" + }, + { + "color": "rgba(252,196,0,1)", + "filter": { + "language": "lucene", + "query": "http.response.status_code:[300 TO 399]" + }, + "id": "6efd2ae0-a29d-11e7-a062-a1c3587f4874", + "label": "300s" + }, + { + "color": "rgba(211,49,21,1)", + "filter": { + "language": "lucene", + "query": "http.response.status_code:[400 TO 499]" + }, + "id": "76089a90-a29d-11e7-a062-a1c3587f4874", + "label": "400s" + }, + { + "color": "rgba(171,20,158,1)", + "filter": { + "language": "lucene", + "query": "http.response.status_code:[500 TO 599]" + }, + "id": "7c7929d0-a29d-11e7-a062-a1c3587f4874", + "label": "500s" + } + ], + "split_mode": "filters", + "stacked": "stacked", + "terms_field": "http.response.status_code", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Response codes over time [Filebeat Nginx] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b70b1b20-a1f4-11e7-928f-5dbe6f6f5519-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:19.828Z", + "version": "WzQ1MDcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/ba138ab0-f344-11ea-a3fd-1b45ec532bb3.json b/filebeat/module/nginx/_meta/kibana/7/visualization/ba138ab0-f344-11ea-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..b3168ff82078 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/ba138ab0-f344-11ea-a3fd-1b45ec532bb3.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Ingress Controller response codes over time [Filebeat Nginx]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "lucene", + "query": "event.module:nginx AND fileset.name:ingress_controller" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "lucene", + "query": "http.response.status_code:[200 TO 299]" + }, + "id": "5acdc750-a29d-11e7-a062-a1c3587f4874", + "label": "200s" + }, + { + "color": "rgba(252,196,0,1)", + "filter": { + "language": "lucene", + "query": "http.response.status_code:[300 TO 399]" + }, + "id": "6efd2ae0-a29d-11e7-a062-a1c3587f4874", + "label": "300s" + }, + { + "color": "rgba(211,49,21,1)", + "filter": { + "language": "lucene", + "query": "http.response.status_code:[400 TO 499]" + }, + "id": "76089a90-a29d-11e7-a062-a1c3587f4874", + "label": "400s" + }, + { + "color": "rgba(171,20,158,1)", + "filter": { + "language": "lucene", + "query": "http.response.status_code:[500 TO 599]" + }, + "id": "7c7929d0-a29d-11e7-a062-a1c3587f4874", + "label": "500s" + } + ], + "split_mode": "filters", + "stacked": "stacked", + "terms_field": "http.response.status_code", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Ingress Controller response codes over time [Filebeat Nginx]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ba138ab0-f344-11ea-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:17.806Z", + "version": "WzQ0OTIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/c37e2770-f341-11ea-a3fd-1b45ec532bb3.json b/filebeat/module/nginx/_meta/kibana/7/visualization/c37e2770-f341-11ea-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..503df2026f65 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/c37e2770-f341-11ea-a3fd-1b45ec532bb3.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Dashboards Ingress Controller [Filebeat Nginx] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "[Nginx Ingress Controller logs overview](#/dashboard/dfbc0840-f340-11ea-a3fd-1b45ec532bb3) | [Nginx Ingress Controller access and error logs](#/dashboard/0b3dba40-f341-11ea-a3fd-1b45ec532bb3)", + "openLinksInNewTab": false + }, + "title": "Dashboards Ingress Controller [Filebeat Nginx] ECS", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c37e2770-f341-11ea-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:17.806Z", + "version": "WzQ0OTEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/ee250270-f344-11ea-a3fd-1b45ec532bb3.json b/filebeat/module/nginx/_meta/kibana/7/visualization/ee250270-f344-11ea-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..18bf3a1417be --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/ee250270-f344-11ea-a3fd-1b45ec532bb3.json @@ -0,0 +1,74 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Ingress Controller top pages [Filebeat Nginx]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "6252c320-a1f5-11e7-92ba-5d0b8663aece" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:nginx AND fileset.name:ingress_controller" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "url.original", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "value_template": "" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Ingress Controller top pages [Filebeat Nginx]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ee250270-f344-11ea-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:17.806Z", + "version": "WzQ0OTQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/_meta/kibana/7/visualization/f137cb40-f345-11ea-a3fd-1b45ec532bb3.json b/filebeat/module/nginx/_meta/kibana/7/visualization/f137cb40-f345-11ea-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..5f070d96db06 --- /dev/null +++ b/filebeat/module/nginx/_meta/kibana/7/visualization/f137cb40-f345-11ea-a3fd-1b45ec532bb3.json @@ -0,0 +1,74 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Ingress Controller top Upstreams [Filebeat Nginx]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "6252c320-a1f5-11e7-92ba-5d0b8663aece" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:nginx AND fileset.name:ingress_controller" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "nginx.ingress_controller.upstream.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "value_template": "" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Ingress Controller top Upstreams [Filebeat Nginx]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f137cb40-f345-11ea-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:17.806Z", + "version": "WzQ0OTMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/nginx/module.yml b/filebeat/module/nginx/module.yml index ee22a349a27a..f0447f9173e9 100644 --- a/filebeat/module/nginx/module.yml +++ b/filebeat/module/nginx/module.yml @@ -1,12 +1,12 @@ dashboards: - id: 55a9e6e0-a29e-11e7-928f-5dbe6f6f5519 - file: Filebeat-nginx-overview.ndjson + file: Filebeat-nginx-overview.json - id: 046212a0-a2a1-11e7-928f-5dbe6f6f5519 - file: Filebeat-nginx-logs.ndjson + file: Filebeat-nginx-logs.json - id: ML-Nginx-Access-Remote-IP-Count-Explorer - file: ml-nginx-access-remote-ip-count-explorer.ndjson + file: ml-nginx-access-remote-ip-count-explorer.json - id: ML-Nginx-Remote-IP-URL-Explorer - file: ml-nginx-remote-ip-url-explorer.ndjson + file: ml-nginx-remote-ip-url-explorer.json diff --git a/filebeat/module/osquery/_meta/kibana/7/dashboard/69f5ae20-eb02-11e7-8f04-51231daa5b05-ecs.json b/filebeat/module/osquery/_meta/kibana/7/dashboard/69f5ae20-eb02-11e7-8f04-51231daa5b05-ecs.json new file mode 100644 index 000000000000..c0bd8925daa5 --- /dev/null +++ b/filebeat/module/osquery/_meta/kibana/7/dashboard/69f5ae20-eb02-11e7-8f04-51231daa5b05-ecs.json @@ -0,0 +1,163 @@ +{ + "attributes": { + "description": "Dashboard for visualizing the data collected by the Osquery compliance pack.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "1", + "w": 24, + "x": 24, + "y": 24 + }, + "panelIndex": "1", + "panelRefName": "panel_0", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "2", + "w": 28, + "x": 20, + "y": 4 + }, + "panelIndex": "2", + "panelRefName": "panel_1", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "3", + "w": 24, + "x": 0, + "y": 24 + }, + "panelIndex": "3", + "panelRefName": "panel_2", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4", + "w": 20, + "x": 0, + "y": 4 + }, + "panelIndex": "4", + "panelRefName": "panel_3", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + }, + "legendOpen": false + } + }, + "gridData": { + "h": 8, + "i": "5", + "w": 20, + "x": 0, + "y": 16 + }, + "panelIndex": "5", + "panelRefName": "panel_4", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 1, + "i": "6", + "w": 12, + "x": 0, + "y": 0 + }, + "panelIndex": "6", + "panelRefName": "panel_5", + "version": "6.1.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Filebeat Osquery] Compliance pack ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "69f5ae20-eb02-11e7-8f04-51231daa5b05-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "7a9482d0-eb00-11e7-8f04-51231daa5b05-ecs", + "name": "panel_0", + "type": "search" + }, + { + "id": "a9fd8bb0-eb01-11e7-8f04-51231daa5b05-ecs", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "3824b080-eb02-11e7-8f04-51231daa5b05-ecs", + "name": "panel_2", + "type": "search" + }, + { + "id": "1da1ed30-eb03-11e7-8f04-51231daa5b05-ecs", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "240f3630-eb05-11e7-8f04-51231daa5b05-ecs", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs", + "name": "panel_5", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:54.660Z", + "version": "WzQ5MzIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/osquery/_meta/kibana/7/dashboard/c0a7ce90-f4aa-11e7-8647-534bb4c21040-ecs.json b/filebeat/module/osquery/_meta/kibana/7/dashboard/c0a7ce90-f4aa-11e7-8647-534bb4c21040-ecs.json new file mode 100644 index 000000000000..e7b96c9af88e --- /dev/null +++ b/filebeat/module/osquery/_meta/kibana/7/dashboard/c0a7ce90-f4aa-11e7-8647-534bb4c21040-ecs.json @@ -0,0 +1,137 @@ +{ + "attributes": { + "description": "This dashboard shows data collected by the OSSEC rootkit pack from osquery", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 2, + "i": "1", + "w": 4, + "x": 8, + "y": 1 + }, + "panelIndex": "1", + "panelRefName": "panel_0", + "version": "6.1.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 2, + "i": "2", + "w": 4, + "x": 4, + "y": 1 + }, + "panelIndex": "2", + "panelRefName": "panel_1", + "version": "6.1.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 2, + "i": "3", + "w": 4, + "x": 0, + "y": 1 + }, + "panelIndex": "3", + "panelRefName": "panel_2", + "version": "6.1.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 1, + "i": "4", + "w": 12, + "x": 0, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_3", + "version": "6.1.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "5", + "w": 12, + "x": 0, + "y": 3 + }, + "panelIndex": "5", + "panelRefName": "panel_4", + "version": "6.1.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Filebeat Osquery] OSSEC rootkit pack ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "c0a7ce90-f4aa-11e7-8647-534bb4c21040-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "6ec10290-f4aa-11e7-8647-534bb4c21040-ecs", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "ffdbba50-f4a9-11e7-8647-534bb4c21040-ecs", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "ab587180-f4a9-11e7-8647-534bb4c21040-ecs", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs", + "name": "panel_4", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:55.664Z", + "version": "WzQ5MzgsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-compliance.ndjson b/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-compliance.ndjson deleted file mode 100644 index efcece85296e..000000000000 --- a/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-compliance.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"columns":["osquery.result.columns.path","osquery.result.columns.type","osquery.result.columns.flags"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"osquery.result.name\",\"negate\":false,\"params\":{\"query\":\"pack_it-compliance_mounts\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"pack_it-compliance_mounts\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"osquery.result.name\":{\"query\":\"pack_it-compliance_mounts\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Mounts [Filebeat Osquery] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"7a9482d0-eb00-11e7-8f04-51231daa5b05-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:54.660Z","version":"WzQ5MjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Mounts by type [Filebeat Osquery] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"osquery.result.columns.path\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"osquery.result.columns.type\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Mounts by type [Filebeat Osquery] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"a9fd8bb0-eb01-11e7-8f04-51231daa5b05-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"7a9482d0-eb00-11e7-8f04-51231daa5b05-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:54.660Z","version":"WzQ5MjUsMV0="} -{"attributes":{"columns":["osquery.result.columns.name","osquery.result.columns.version","osquery.result.columns.revision"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"osquery.result.name\",\"negate\":false,\"params\":{\"query\":\"pack_it-compliance_deb_packages\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"pack_it-compliance_deb_packages\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"osquery.result.name\":{\"query\":\"pack_it-compliance_deb_packages\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"DEB packages installed [Filebeat Osquery] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"3824b080-eb02-11e7-8f04-51231daa5b05-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:54.660Z","version":"WzQ5MjYsMV0="} -{"attributes":{"columns":["osquery.result.name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"osquery.result.name\",\"negate\":false,\"params\":{\"query\":\"pack_it-compliance_os_version\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"pack_it-compliance_os_version\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"osquery.result.name\":{\"query\":\"pack_it-compliance_os_version\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"OS versions [Filebeat Osquery] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"b5d6baa0-eb02-11e7-8f04-51231daa5b05-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:54.660Z","version":"WzQ5MzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"OS versions [Filebeat Osquery] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"osquery.result.host_identifier\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"osquery.result.columns.platform_like\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"osquery.result.columns.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"osquery.result.columns.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"OS versions [Filebeat Osquery] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"1da1ed30-eb03-11e7-8f04-51231daa5b05-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b5d6baa0-eb02-11e7-8f04-51231daa5b05-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:54.660Z","version":"WzQ5MjcsMV0="} -{"attributes":{"columns":["osquery.result.name","osquery.result.columns.name","osquery.result.columns.status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"osquery.result.name\",\"negate\":false,\"params\":{\"query\":\"pack_it-compliance_kernel_modules\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"pack_it-compliance_kernel_modules\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"osquery.result.name\":{\"query\":\"pack_it-compliance_kernel_modules\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Kernel modules [Filebeat Osquery] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"f59e21e0-eb03-11e7-8f04-51231daa5b05-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:54.660Z","version":"WzQ5MzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"osquery.result.columns.status\",\"negate\":false,\"params\":{\"query\":\"Live\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"Live\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"osquery.result.columns.status\":{\"query\":\"Live\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Number of Kernel modules [Filebeat Osquery] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Live Kernel modules\",\"field\":\"osquery.result.columns.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"gauge\":{\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":false,\"bgFill\":\"#eee\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"labelColor\":true,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\",\"alignment\":\"horizontal\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Number of Kernel modules [Filebeat Osquery] ECS\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"240f3630-eb05-11e7-8f04-51231daa5b05-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"f59e21e0-eb03-11e7-8f04-51231daa5b05-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:54.660Z","version":"WzQ5MjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Navigation [Filebeat Osquery] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"[Compilance](#/dashboard/69f5ae20-eb02-11e7-8f04-51231daa5b05-ecs) | [OSSEC Rootkit](#/dashboard/c0a7ce90-f4aa-11e7-8647-534bb4c21040-ecs)\"},\"title\":\"Navigation [Filebeat Osquery] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:55.664Z","version":"WzQ5MzYsMV0="} -{"attributes":{"description":"Dashboard for visualizing the data collected by the Osquery compliance pack.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"gridData\":{\"w\":24,\"h\":16,\"x\":24,\"y\":24,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.3.0\",\"gridData\":{\"w\":28,\"h\":20,\"x\":20,\"y\":4,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"gridData\":{\"w\":24,\"h\":16,\"x\":0,\"y\":24,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"gridData\":{\"w\":20,\"h\":12,\"x\":0,\"y\":4,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"gridData\":{\"w\":20,\"h\":8,\"x\":0,\"y\":16,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"},\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"6.1.0-SNAPSHOT\",\"gridData\":{\"h\":1,\"i\":\"6\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Filebeat Osquery] Compliance pack ECS","version":1},"coreMigrationVersion":"8.0.0","id":"69f5ae20-eb02-11e7-8f04-51231daa5b05-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"7a9482d0-eb00-11e7-8f04-51231daa5b05-ecs","name":"panel_0","type":"search"},{"id":"a9fd8bb0-eb01-11e7-8f04-51231daa5b05-ecs","name":"panel_1","type":"visualization"},{"id":"3824b080-eb02-11e7-8f04-51231daa5b05-ecs","name":"panel_2","type":"search"},{"id":"1da1ed30-eb03-11e7-8f04-51231daa5b05-ecs","name":"panel_3","type":"visualization"},{"id":"240f3630-eb05-11e7-8f04-51231daa5b05-ecs","name":"panel_4","type":"visualization"},{"id":"2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs","name":"panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:54.660Z","version":"WzQ5MzIsMV0="} diff --git a/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-rootkit.ndjson b/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-rootkit.ndjson deleted file mode 100644 index bdd3aa1d3f0b..000000000000 --- a/filebeat/module/osquery/_meta/kibana/7/dashboard/osquery-rootkit.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Info OSSEC rootkit [Filebeat Osquery] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"This dashboard shows data collected by the ossec-rootkit pack from osquery.\"},\"title\":\"Info OSSEC rootkit [Filebeat Osquery] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"6ec10290-f4aa-11e7-8647-534bb4c21040-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:55.664Z","version":"WzQ5MzMsMV0="} -{"attributes":{"columns":["osquery.result.name","osquery.result.columns.path","agent.name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"query\",\"negate\":false,\"type\":\"custom\",\"value\":\"{\\\"prefix\\\":{\\\"osquery.result.name\\\":\\\"pack_ossec-rootkit\\\"}}\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"prefix\":{\"osquery.result.name\":\"pack_ossec-rootkit\"}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"osquery\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"osquery\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"osquery\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"result\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"result\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"result\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"OSSEC Rootkits [Filebeat Osquery] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:55.664Z","version":"WzQ5MzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Number of rootkits found [Filebeat Osquery] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Rootkits\",\"field\":\"osquery.result.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":40,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Number of rootkits found [Filebeat Osquery] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"ffdbba50-f4a9-11e7-8647-534bb4c21040-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:55.664Z","version":"WzQ5MzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Number of hosts infected [Filebeat Osquery] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Hosts\",\"field\":\"agent.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":40,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Number of hosts infected [Filebeat Osquery] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"ab587180-f4a9-11e7-8647-534bb4c21040-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:55.664Z","version":"WzQ5MzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Navigation [Filebeat Osquery] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"[Compilance](#/dashboard/69f5ae20-eb02-11e7-8f04-51231daa5b05-ecs) | [OSSEC Rootkit](#/dashboard/c0a7ce90-f4aa-11e7-8647-534bb4c21040-ecs)\"},\"title\":\"Navigation [Filebeat Osquery] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:55.664Z","version":"WzQ5MzYsMV0="} -{"attributes":{"description":"This dashboard shows data collected by the OSSEC rootkit pack from osquery","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"6.1.0-SNAPSHOT\",\"gridData\":{\"h\":2,\"i\":\"1\",\"w\":4,\"x\":8,\"y\":1},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"6.1.0-SNAPSHOT\",\"gridData\":{\"h\":2,\"i\":\"2\",\"w\":4,\"x\":4,\"y\":1},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"6.1.0-SNAPSHOT\",\"gridData\":{\"h\":2,\"i\":\"3\",\"w\":4,\"x\":0,\"y\":1},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"6.1.0-SNAPSHOT\",\"gridData\":{\"h\":1,\"i\":\"4\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"6.1.0-SNAPSHOT\",\"gridData\":{\"h\":4,\"i\":\"5\",\"w\":12,\"x\":0,\"y\":3},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Filebeat Osquery] OSSEC rootkit pack ECS","version":1},"coreMigrationVersion":"8.0.0","id":"c0a7ce90-f4aa-11e7-8647-534bb4c21040-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"6ec10290-f4aa-11e7-8647-534bb4c21040-ecs","name":"panel_0","type":"visualization"},{"id":"ffdbba50-f4a9-11e7-8647-534bb4c21040-ecs","name":"panel_1","type":"visualization"},{"id":"ab587180-f4a9-11e7-8647-534bb4c21040-ecs","name":"panel_2","type":"visualization"},{"id":"2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs","name":"panel_3","type":"visualization"},{"id":"0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs","name":"panel_4","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:55.664Z","version":"WzQ5MzgsMV0="} diff --git a/filebeat/module/osquery/_meta/kibana/7/search/0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs.json b/filebeat/module/osquery/_meta/kibana/7/search/0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs.json new file mode 100644 index 000000000000..2bacb213684d --- /dev/null +++ b/filebeat/module/osquery/_meta/kibana/7/search/0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs.json @@ -0,0 +1,133 @@ +{ + "attributes": { + "columns": [ + "osquery.result.name", + "osquery.result.columns.path", + "agent.name" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "query", + "negate": false, + "type": "custom", + "value": "{\"prefix\":{\"osquery.result.name\":\"pack_ossec-rootkit\"}}" + }, + "query": { + "prefix": { + "osquery.result.name": "pack_ossec-rootkit" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "osquery", + "type": "phrase" + }, + "type": "phrase", + "value": "osquery" + }, + "query": { + "match": { + "event.module": { + "query": "osquery", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "key": "fileset.name", + "negate": false, + "params": { + "query": "result", + "type": "phrase" + }, + "type": "phrase", + "value": "result" + }, + "query": { + "match": { + "fileset.name": { + "query": "result", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "OSSEC Rootkits [Filebeat Osquery] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:55.664Z", + "version": "WzQ5MzcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/osquery/_meta/kibana/7/search/3824b080-eb02-11e7-8f04-51231daa5b05-ecs.json b/filebeat/module/osquery/_meta/kibana/7/search/3824b080-eb02-11e7-8f04-51231daa5b05-ecs.json new file mode 100644 index 000000000000..7181a778e852 --- /dev/null +++ b/filebeat/module/osquery/_meta/kibana/7/search/3824b080-eb02-11e7-8f04-51231daa5b05-ecs.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "columns": [ + "osquery.result.columns.name", + "osquery.result.columns.version", + "osquery.result.columns.revision" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "osquery.result.name", + "negate": false, + "params": { + "query": "pack_it-compliance_deb_packages", + "type": "phrase" + }, + "type": "phrase", + "value": "pack_it-compliance_deb_packages" + }, + "query": { + "match": { + "osquery.result.name": { + "query": "pack_it-compliance_deb_packages", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "DEB packages installed [Filebeat Osquery] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "3824b080-eb02-11e7-8f04-51231daa5b05-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:54.660Z", + "version": "WzQ5MjYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/osquery/_meta/kibana/7/search/7a9482d0-eb00-11e7-8f04-51231daa5b05-ecs.json b/filebeat/module/osquery/_meta/kibana/7/search/7a9482d0-eb00-11e7-8f04-51231daa5b05-ecs.json new file mode 100644 index 000000000000..38e833e0f61f --- /dev/null +++ b/filebeat/module/osquery/_meta/kibana/7/search/7a9482d0-eb00-11e7-8f04-51231daa5b05-ecs.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "columns": [ + "osquery.result.columns.path", + "osquery.result.columns.type", + "osquery.result.columns.flags" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "osquery.result.name", + "negate": false, + "params": { + "query": "pack_it-compliance_mounts", + "type": "phrase" + }, + "type": "phrase", + "value": "pack_it-compliance_mounts" + }, + "query": { + "match": { + "osquery.result.name": { + "query": "pack_it-compliance_mounts", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Mounts [Filebeat Osquery] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "7a9482d0-eb00-11e7-8f04-51231daa5b05-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:54.660Z", + "version": "WzQ5MjQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/osquery/_meta/kibana/7/search/b5d6baa0-eb02-11e7-8f04-51231daa5b05-ecs.json b/filebeat/module/osquery/_meta/kibana/7/search/b5d6baa0-eb02-11e7-8f04-51231daa5b05-ecs.json new file mode 100644 index 000000000000..0b9decc062a1 --- /dev/null +++ b/filebeat/module/osquery/_meta/kibana/7/search/b5d6baa0-eb02-11e7-8f04-51231daa5b05-ecs.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "columns": [ + "osquery.result.name" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "osquery.result.name", + "negate": false, + "params": { + "query": "pack_it-compliance_os_version", + "type": "phrase" + }, + "type": "phrase", + "value": "pack_it-compliance_os_version" + }, + "query": { + "match": { + "osquery.result.name": { + "query": "pack_it-compliance_os_version", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "OS versions [Filebeat Osquery] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "b5d6baa0-eb02-11e7-8f04-51231daa5b05-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:54.660Z", + "version": "WzQ5MzAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/osquery/_meta/kibana/7/search/f59e21e0-eb03-11e7-8f04-51231daa5b05-ecs.json b/filebeat/module/osquery/_meta/kibana/7/search/f59e21e0-eb03-11e7-8f04-51231daa5b05-ecs.json new file mode 100644 index 000000000000..6f5a823422a2 --- /dev/null +++ b/filebeat/module/osquery/_meta/kibana/7/search/f59e21e0-eb03-11e7-8f04-51231daa5b05-ecs.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "columns": [ + "osquery.result.name", + "osquery.result.columns.name", + "osquery.result.columns.status" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "osquery.result.name", + "negate": false, + "params": { + "query": "pack_it-compliance_kernel_modules", + "type": "phrase" + }, + "type": "phrase", + "value": "pack_it-compliance_kernel_modules" + }, + "query": { + "match": { + "osquery.result.name": { + "query": "pack_it-compliance_kernel_modules", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Kernel modules [Filebeat Osquery] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "f59e21e0-eb03-11e7-8f04-51231daa5b05-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:54.660Z", + "version": "WzQ5MzEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/osquery/_meta/kibana/7/visualization/1da1ed30-eb03-11e7-8f04-51231daa5b05-ecs.json b/filebeat/module/osquery/_meta/kibana/7/visualization/1da1ed30-eb03-11e7-8f04-51231daa5b05-ecs.json new file mode 100644 index 000000000000..564a660751ed --- /dev/null +++ b/filebeat/module/osquery/_meta/kibana/7/visualization/1da1ed30-eb03-11e7-8f04-51231daa5b05-ecs.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "OS versions [Filebeat Osquery] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "osquery.result.host_identifier" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "4", + "params": { + "field": "osquery.result.columns.platform_like", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "osquery.result.columns.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "osquery.result.columns.version", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "OS versions [Filebeat Osquery] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1da1ed30-eb03-11e7-8f04-51231daa5b05-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b5d6baa0-eb02-11e7-8f04-51231daa5b05-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:54.660Z", + "version": "WzQ5MjcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/osquery/_meta/kibana/7/visualization/240f3630-eb05-11e7-8f04-51231daa5b05-ecs.json b/filebeat/module/osquery/_meta/kibana/7/visualization/240f3630-eb05-11e7-8f04-51231daa5b05-ecs.json new file mode 100644 index 000000000000..3ee16e8bd2ed --- /dev/null +++ b/filebeat/module/osquery/_meta/kibana/7/visualization/240f3630-eb05-11e7-8f04-51231daa5b05-ecs.json @@ -0,0 +1,133 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "osquery.result.columns.status", + "negate": false, + "params": { + "query": "Live", + "type": "phrase" + }, + "type": "phrase", + "value": "Live" + }, + "query": { + "match": { + "osquery.result.columns.status": { + "query": "Live", + "type": "phrase" + } + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Number of Kernel modules [Filebeat Osquery] ECS", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Live Kernel modules", + "field": "osquery.result.columns.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "gauge": { + "alignment": "horizontal", + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "extendRange": true, + "gaugeColorMode": "Labels", + "gaugeStyle": "Full", + "gaugeType": "Arc", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": true + }, + "style": { + "bgColor": false, + "bgFill": "#eee", + "bgMask": false, + "bgWidth": 0.9, + "fontSize": 60, + "labelColor": true, + "mask": false, + "maskBars": 50, + "subText": "", + "width": 0.9 + }, + "type": "meter" + }, + "isDisplayWarning": false, + "type": "gauge" + }, + "title": "Number of Kernel modules [Filebeat Osquery] ECS", + "type": "gauge" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "240f3630-eb05-11e7-8f04-51231daa5b05-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "f59e21e0-eb03-11e7-8f04-51231daa5b05-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:54.660Z", + "version": "WzQ5MjgsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/osquery/_meta/kibana/7/visualization/2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs.json b/filebeat/module/osquery/_meta/kibana/7/visualization/2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs.json new file mode 100644 index 000000000000..f7d62f54dafe --- /dev/null +++ b/filebeat/module/osquery/_meta/kibana/7/visualization/2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs.json @@ -0,0 +1,29 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Navigation [Filebeat Osquery] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "[Compilance](#/dashboard/69f5ae20-eb02-11e7-8f04-51231daa5b05-ecs) | [OSSEC Rootkit](#/dashboard/c0a7ce90-f4aa-11e7-8647-534bb4c21040-ecs)" + }, + "title": "Navigation [Filebeat Osquery] ECS", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2d6e0760-f4ab-11e7-8647-534bb4c21040-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:55.664Z", + "version": "WzQ5MzYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/osquery/_meta/kibana/7/visualization/6ec10290-f4aa-11e7-8647-534bb4c21040-ecs.json b/filebeat/module/osquery/_meta/kibana/7/visualization/6ec10290-f4aa-11e7-8647-534bb4c21040-ecs.json new file mode 100644 index 000000000000..cb7ca2960787 --- /dev/null +++ b/filebeat/module/osquery/_meta/kibana/7/visualization/6ec10290-f4aa-11e7-8647-534bb4c21040-ecs.json @@ -0,0 +1,29 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Info OSSEC rootkit [Filebeat Osquery] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "This dashboard shows data collected by the ossec-rootkit pack from osquery." + }, + "title": "Info OSSEC rootkit [Filebeat Osquery] ECS", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6ec10290-f4aa-11e7-8647-534bb4c21040-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:55.664Z", + "version": "WzQ5MzMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/osquery/_meta/kibana/7/visualization/a9fd8bb0-eb01-11e7-8f04-51231daa5b05-ecs.json b/filebeat/module/osquery/_meta/kibana/7/visualization/a9fd8bb0-eb01-11e7-8f04-51231daa5b05-ecs.json new file mode 100644 index 000000000000..d1257d4b28b8 --- /dev/null +++ b/filebeat/module/osquery/_meta/kibana/7/visualization/a9fd8bb0-eb01-11e7-8f04-51231daa5b05-ecs.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Mounts by type [Filebeat Osquery] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "osquery.result.columns.path", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "osquery.result.columns.type", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Mounts by type [Filebeat Osquery] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a9fd8bb0-eb01-11e7-8f04-51231daa5b05-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "7a9482d0-eb00-11e7-8f04-51231daa5b05-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:54.660Z", + "version": "WzQ5MjUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/osquery/_meta/kibana/7/visualization/ab587180-f4a9-11e7-8647-534bb4c21040-ecs.json b/filebeat/module/osquery/_meta/kibana/7/visualization/ab587180-f4a9-11e7-8647-534bb4c21040-ecs.json new file mode 100644 index 000000000000..6ee78eefceb2 --- /dev/null +++ b/filebeat/module/osquery/_meta/kibana/7/visualization/ab587180-f4a9-11e7-8647-534bb4c21040-ecs.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Number of hosts infected [Filebeat Osquery] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Hosts", + "field": "agent.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 40, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Number of hosts infected [Filebeat Osquery] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ab587180-f4a9-11e7-8647-534bb4c21040-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:55.664Z", + "version": "WzQ5MzUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/osquery/_meta/kibana/7/visualization/ffdbba50-f4a9-11e7-8647-534bb4c21040-ecs.json b/filebeat/module/osquery/_meta/kibana/7/visualization/ffdbba50-f4a9-11e7-8647-534bb4c21040-ecs.json new file mode 100644 index 000000000000..c2094395b623 --- /dev/null +++ b/filebeat/module/osquery/_meta/kibana/7/visualization/ffdbba50-f4a9-11e7-8647-534bb4c21040-ecs.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Number of rootkits found [Filebeat Osquery] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Rootkits", + "field": "osquery.result.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 40, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Number of rootkits found [Filebeat Osquery] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ffdbba50-f4a9-11e7-8647-534bb4c21040-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "0fe5dc00-f49b-11e7-8647-534bb4c21040-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:55.664Z", + "version": "WzQ5MzQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/osquery/module.yml b/filebeat/module/osquery/module.yml index 5ded7315e990..621dc6a3d360 100644 --- a/filebeat/module/osquery/module.yml +++ b/filebeat/module/osquery/module.yml @@ -1,5 +1,5 @@ dashboards: - id: 69f5ae20-eb02-11e7-8f04-51231daa5b05 - file: osquery-compliance.ndjson + file: osquery-compliance.json - id: c0a7ce90-f4aa-11e7-8647-534bb4c21040 - file: osquery-rootkit.ndjson + file: osquery-rootkit.json diff --git a/filebeat/module/pensando/_meta/kibana/7/dashboard/2713ee40-f3b1-11ea-ba07-c1efedbf0bf9.json b/filebeat/module/pensando/_meta/kibana/7/dashboard/2713ee40-f3b1-11ea-ba07-c1efedbf0bf9.json new file mode 100644 index 000000000000..f97447bf02e3 --- /dev/null +++ b/filebeat/module/pensando/_meta/kibana/7/dashboard/2713ee40-f3b1-11ea-ba07-c1efedbf0bf9.json @@ -0,0 +1,302 @@ +{ + "attributes": { + "description": "Overview of events coming from Pensando DSC distributed firewall system.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "85119076-2756-4415-8917-14c9d46732a5", + "w": 41, + "x": 0, + "y": 0 + }, + "panelIndex": "85119076-2756-4415-8917-14c9d46732a5", + "panelRefName": "panel_85119076-2756-4415-8917-14c9d46732a5", + "title": "", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "9215c2be-bca5-4b21-8042-0e0be99e38c0", + "w": 7, + "x": 41, + "y": 0 + }, + "panelIndex": "9215c2be-bca5-4b21-8042-0e0be99e38c0", + "panelRefName": "panel_9215c2be-bca5-4b21-8042-0e0be99e38c0", + "title": "", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "81013c87-76c2-4ff0-9545-1295babad06e", + "w": 8, + "x": 0, + "y": 5 + }, + "panelIndex": "81013c87-76c2-4ff0-9545-1295babad06e", + "panelRefName": "panel_81013c87-76c2-4ff0-9545-1295babad06e", + "title": "Active Workloads", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "3ee01275-08dd-4d3f-9834-d844f5550365", + "w": 8, + "x": 8, + "y": 5 + }, + "panelIndex": "3ee01275-08dd-4d3f-9834-d844f5550365", + "panelRefName": "panel_3ee01275-08dd-4d3f-9834-d844f5550365", + "title": "DFW Allowed Count", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "9628e969-1f18-4659-a8d9-e9409f11f3a9", + "w": 8, + "x": 16, + "y": 5 + }, + "panelIndex": "9628e969-1f18-4659-a8d9-e9409f11f3a9", + "panelRefName": "panel_9628e969-1f18-4659-a8d9-e9409f11f3a9", + "title": "DFW Denied Count", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "37787af1-b5ef-467e-8c5e-b0dfba56c9f9", + "w": 24, + "x": 24, + "y": 5 + }, + "panelIndex": "37787af1-b5ef-467e-8c5e-b0dfba56c9f9", + "panelRefName": "panel_37787af1-b5ef-467e-8c5e-b0dfba56c9f9", + "title": "Denied Destination IPs", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "efafcbff-a163-4475-8d12-59f716e5a3ef", + "w": 12, + "x": 0, + "y": 14 + }, + "panelIndex": "efafcbff-a163-4475-8d12-59f716e5a3ef", + "panelRefName": "panel_efafcbff-a163-4475-8d12-59f716e5a3ef", + "title": "Traffic by Workload", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "52506949-eb15-4b23-b50c-2e5083df5e0f", + "w": 12, + "x": 12, + "y": 14 + }, + "panelIndex": "52506949-eb15-4b23-b50c-2e5083df5e0f", + "panelRefName": "panel_52506949-eb15-4b23-b50c-2e5083df5e0f", + "title": "Client to Server FW Action", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "077406bd-aa47-4dc9-b1f6-04cae0ae34b6", + "w": 24, + "x": 24, + "y": 16 + }, + "panelIndex": "077406bd-aa47-4dc9-b1f6-04cae0ae34b6", + "panelRefName": "panel_077406bd-aa47-4dc9-b1f6-04cae0ae34b6", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 14, + "i": "58e763b7-a23a-480a-a984-24dd115aba2c", + "w": 12, + "x": 0, + "y": 28 + }, + "panelIndex": "58e763b7-a23a-480a-a984-24dd115aba2c", + "panelRefName": "panel_58e763b7-a23a-480a-a984-24dd115aba2c", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "table": null, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 14, + "i": "36fc48c8-0044-4af6-a8b2-da8023806f32", + "w": 12, + "x": 12, + "y": 28 + }, + "panelIndex": "36fc48c8-0044-4af6-a8b2-da8023806f32", + "panelRefName": "panel_36fc48c8-0044-4af6-a8b2-da8023806f32", + "title": "Dest Port by DSC", + "type": "visualization", + "version": "7.8.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "a1d34501-4d64-4213-b192-1b4ca2d88793", + "w": 24, + "x": 24, + "y": 29 + }, + "panelIndex": "a1d34501-4d64-4213-b192-1b4ca2d88793", + "panelRefName": "panel_a1d34501-4d64-4213-b192-1b4ca2d88793", + "type": "visualization", + "version": "7.8.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Pensando] DFW Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "2713ee40-f3b1-11ea-ba07-c1efedbf0bf9", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "a73c8dc0-cc8d-11ea-918e-c778f7abe5d7", + "name": "85119076-2756-4415-8917-14c9d46732a5:panel_85119076-2756-4415-8917-14c9d46732a5", + "type": "visualization" + }, + { + "id": "39e26d70-cc4d-11ea-918e-c778f7abe5d7", + "name": "9215c2be-bca5-4b21-8042-0e0be99e38c0:panel_9215c2be-bca5-4b21-8042-0e0be99e38c0", + "type": "visualization" + }, + { + "id": "bc6a36b0-cdba-11ea-a0ef-8f5241e594be", + "name": "81013c87-76c2-4ff0-9545-1295babad06e:panel_81013c87-76c2-4ff0-9545-1295babad06e", + "type": "visualization" + }, + { + "id": "fa745d10-cc88-11ea-918e-c778f7abe5d7", + "name": "3ee01275-08dd-4d3f-9834-d844f5550365:panel_3ee01275-08dd-4d3f-9834-d844f5550365", + "type": "visualization" + }, + { + "id": "1d2d5f00-cc89-11ea-918e-c778f7abe5d7", + "name": "9628e969-1f18-4659-a8d9-e9409f11f3a9:panel_9628e969-1f18-4659-a8d9-e9409f11f3a9", + "type": "visualization" + }, + { + "id": "bf9d4650-cc8a-11ea-918e-c778f7abe5d7", + "name": "37787af1-b5ef-467e-8c5e-b0dfba56c9f9:panel_37787af1-b5ef-467e-8c5e-b0dfba56c9f9", + "type": "visualization" + }, + { + "id": "07983660-cd38-11ea-a0ef-8f5241e594be", + "name": "efafcbff-a163-4475-8d12-59f716e5a3ef:panel_efafcbff-a163-4475-8d12-59f716e5a3ef", + "type": "visualization" + }, + { + "id": "fd2202d0-cc86-11ea-918e-c778f7abe5d7", + "name": "52506949-eb15-4b23-b50c-2e5083df5e0f:panel_52506949-eb15-4b23-b50c-2e5083df5e0f", + "type": "visualization" + }, + { + "id": "2aa5d850-cc85-11ea-918e-c778f7abe5d7", + "name": "077406bd-aa47-4dc9-b1f6-04cae0ae34b6:panel_077406bd-aa47-4dc9-b1f6-04cae0ae34b6", + "type": "visualization" + }, + { + "id": "b8bfd3e0-e8b7-11ea-ba07-c1efedbf0bf9", + "name": "58e763b7-a23a-480a-a984-24dd115aba2c:panel_58e763b7-a23a-480a-a984-24dd115aba2c", + "type": "visualization" + }, + { + "id": "c6188140-cdb9-11ea-a0ef-8f5241e594be", + "name": "36fc48c8-0044-4af6-a8b2-da8023806f32:panel_36fc48c8-0044-4af6-a8b2-da8023806f32", + "type": "visualization" + }, + { + "id": "0583e120-cc8f-11ea-918e-c778f7abe5d7", + "name": "a1d34501-4d64-4213-b192-1b4ca2d88793:panel_a1d34501-4d64-4213-b192-1b4ca2d88793", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:56.763Z", + "version": "WzQ5MzksMV0=" +} \ No newline at end of file diff --git a/filebeat/module/pensando/_meta/kibana/7/dashboard/pensando-dfw-overview.ndjson b/filebeat/module/pensando/_meta/kibana/7/dashboard/pensando-dfw-overview.ndjson deleted file mode 100644 index 289793aa52c2..000000000000 --- a/filebeat/module/pensando/_meta/kibana/7/dashboard/pensando-dfw-overview.ndjson +++ /dev/null @@ -1,13 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Client/Server - input list [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"client.ip\",\"id\":\"1595471403191\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Client\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":500,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"server.ip\",\"id\":\"1595471807689\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Server\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":500,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"log.source.address\",\"id\":\"1595471848091\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"DSC\",\"options\":{\"dynamicOptions\":false,\"multiselect\":false,\"order\":\"desc\",\"size\":500,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":true,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"Client/Server - input list [Filebeat Pensando]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"a73c8dc0-cc8d-11ea-918e-c778f7abe5d7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": {\"match_all\": {}}}}"},"title":"Logo [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":8,\"markdown\":\"[![Pensando](data:image/png;base64,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)](https://pensando.io)\",\"openLinksInNewTab\":true},\"title\":\"Logo [Filebeat Pensando]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"39e26d70-cc4d-11ea-918e-c778f7abe5d7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Active Workload Count [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Active Workloads\",\"field\":\"client.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":false},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":36,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Active Workload Count [Filebeat Pensando]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"bc6a36b0-cdba-11ea-a0ef-8f5241e594be","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"DFW Allowed Count [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"\",\"exclude\":\"denied\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":false},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":30,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"DFW Allowed Count [Filebeat Pensando]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"fa745d10-cc88-11ea-918e-c778f7abe5d7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"DFW Denied Count [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"packet count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"\",\"exclude\":\"allowed\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":false},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":30,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"DFW Denied Count [Filebeat Pensando]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"1d2d5f00-cc89-11ea-918e-c778f7abe5d7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": \"Denied Destination IPs\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.action\", \"negate\": false, \"params\": {\"query\": \"denied\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.action\": \"denied\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.action: \\\"denied\\\" \"}}"},"title":"Denied Destination IPs [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"server.ip\",\"json\":\"\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":36,\"minFontSize\":14,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Denied Destination IPs [Filebeat Pensando]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"bf9d4650-cc8a-11ea-918e-c778f7abe5d7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Traffic by Workload Pie [Filebeat Pensando]","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"client.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Traffic by Workload Pie [Filebeat Pensando]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"07983660-cd38-11ea-a0ef-8f5241e594be","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDYsMV0="} -{"attributes":{"description":"Inner ring is client IP, middle ring is server IP and the outer ring is Allow vs Deny actions performed by the FW","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Client to Server FW Action [Filebeat Pensando]","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"client.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"server.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":false},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Client to Server FW Action [Filebeat Pensando]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"fd2202d0-cc86-11ea-918e-c778f7abe5d7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDcsMV0="} -{"attributes":{"description":"Firewall denies and allows plotted against each other in time series","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DFW Deny vs Allow [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset:\\\"pensando.dfw\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"pensando.dfw.action : \\\"allow\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"pensando.dfw.action\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(150,10,3,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"pensando.dfw.action : \\\"deny\\\" \"},\"formatter\":\"number\",\"id\":\"b6c562c0-cc84-11ea-a4da-c770c13b4387\",\"line_width\":1,\"metrics\":[{\"id\":\"b6c562c1-cc84-11ea-a4da-c770c13b4387\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"pensando.dfw.action\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(188,186,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"pensando.dfw.action :\\\"none\\\" \"},\"formatter\":\"number\",\"id\":\"2dd6bef0-cd1f-11ea-98bc-ef8e168e330d\",\"line_width\":1,\"metrics\":[{\"id\":\"2dd6bef1-cd1f-11ea-98bc-ef8e168e330d\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"pensando.dfw.action\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DFW Deny vs Allow [Filebeat Pensando]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2aa5d850-cc85-11ea-918e-c778f7abe5d7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top Destination IPs [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"destination.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top Destination IPs [Filebeat Pensando]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"b8bfd3e0-e8b7-11ea-ba07-c1efedbf0bf9","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Destination Port by DSC Pie [Filebeat Pensando]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"destination.port\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.source.address\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destination Port by DSC Pie [Filebeat Pensando]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"c6188140-cdb9-11ea-a0ef-8f5241e594be","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top Destinations - table [Filebeat Pensando]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Network Packets\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Top Servers\",\"field\":\"server.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":300},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":true,\"showPartialRows\":true,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Destinations - table [Filebeat Pensando]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"0583e120-cc8f-11ea-918e-c778f7abe5d7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5NTEsMV0="} -{"attributes":{"description":"Overview of events coming from Pensando DSC distributed firewall system.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"85119076-2756-4415-8917-14c9d46732a5\",\"w\":41,\"x\":0,\"y\":0},\"panelIndex\":\"85119076-2756-4415-8917-14c9d46732a5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_85119076-2756-4415-8917-14c9d46732a5\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"9215c2be-bca5-4b21-8042-0e0be99e38c0\",\"w\":7,\"x\":41,\"y\":0},\"panelIndex\":\"9215c2be-bca5-4b21-8042-0e0be99e38c0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_9215c2be-bca5-4b21-8042-0e0be99e38c0\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"81013c87-76c2-4ff0-9545-1295babad06e\",\"w\":8,\"x\":0,\"y\":5},\"panelIndex\":\"81013c87-76c2-4ff0-9545-1295babad06e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Active Workloads\",\"panelRefName\":\"panel_81013c87-76c2-4ff0-9545-1295babad06e\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"3ee01275-08dd-4d3f-9834-d844f5550365\",\"w\":8,\"x\":8,\"y\":5},\"panelIndex\":\"3ee01275-08dd-4d3f-9834-d844f5550365\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"DFW Allowed Count\",\"panelRefName\":\"panel_3ee01275-08dd-4d3f-9834-d844f5550365\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"9628e969-1f18-4659-a8d9-e9409f11f3a9\",\"w\":8,\"x\":16,\"y\":5},\"panelIndex\":\"9628e969-1f18-4659-a8d9-e9409f11f3a9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"DFW Denied Count\",\"panelRefName\":\"panel_9628e969-1f18-4659-a8d9-e9409f11f3a9\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"37787af1-b5ef-467e-8c5e-b0dfba56c9f9\",\"w\":24,\"x\":24,\"y\":5},\"panelIndex\":\"37787af1-b5ef-467e-8c5e-b0dfba56c9f9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Denied Destination IPs\",\"panelRefName\":\"panel_37787af1-b5ef-467e-8c5e-b0dfba56c9f9\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"efafcbff-a163-4475-8d12-59f716e5a3ef\",\"w\":12,\"x\":0,\"y\":14},\"panelIndex\":\"efafcbff-a163-4475-8d12-59f716e5a3ef\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Traffic by Workload\",\"panelRefName\":\"panel_efafcbff-a163-4475-8d12-59f716e5a3ef\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"52506949-eb15-4b23-b50c-2e5083df5e0f\",\"w\":12,\"x\":12,\"y\":14},\"panelIndex\":\"52506949-eb15-4b23-b50c-2e5083df5e0f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Client to Server FW Action\",\"panelRefName\":\"panel_52506949-eb15-4b23-b50c-2e5083df5e0f\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"077406bd-aa47-4dc9-b1f6-04cae0ae34b6\",\"w\":24,\"x\":24,\"y\":16},\"panelIndex\":\"077406bd-aa47-4dc9-b1f6-04cae0ae34b6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_077406bd-aa47-4dc9-b1f6-04cae0ae34b6\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"58e763b7-a23a-480a-a984-24dd115aba2c\",\"w\":12,\"x\":0,\"y\":28},\"panelIndex\":\"58e763b7-a23a-480a-a984-24dd115aba2c\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_58e763b7-a23a-480a-a984-24dd115aba2c\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"36fc48c8-0044-4af6-a8b2-da8023806f32\",\"w\":12,\"x\":12,\"y\":28},\"panelIndex\":\"36fc48c8-0044-4af6-a8b2-da8023806f32\",\"embeddableConfig\":{\"table\":null,\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Dest Port by DSC\",\"panelRefName\":\"panel_36fc48c8-0044-4af6-a8b2-da8023806f32\"},{\"version\":\"7.8.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"a1d34501-4d64-4213-b192-1b4ca2d88793\",\"w\":24,\"x\":24,\"y\":29},\"panelIndex\":\"a1d34501-4d64-4213-b192-1b4ca2d88793\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a1d34501-4d64-4213-b192-1b4ca2d88793\"}]","timeRestore":false,"title":"[Filebeat Pensando] DFW Overview","version":1},"coreMigrationVersion":"8.0.0","id":"2713ee40-f3b1-11ea-ba07-c1efedbf0bf9","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a73c8dc0-cc8d-11ea-918e-c778f7abe5d7","name":"85119076-2756-4415-8917-14c9d46732a5:panel_85119076-2756-4415-8917-14c9d46732a5","type":"visualization"},{"id":"39e26d70-cc4d-11ea-918e-c778f7abe5d7","name":"9215c2be-bca5-4b21-8042-0e0be99e38c0:panel_9215c2be-bca5-4b21-8042-0e0be99e38c0","type":"visualization"},{"id":"bc6a36b0-cdba-11ea-a0ef-8f5241e594be","name":"81013c87-76c2-4ff0-9545-1295babad06e:panel_81013c87-76c2-4ff0-9545-1295babad06e","type":"visualization"},{"id":"fa745d10-cc88-11ea-918e-c778f7abe5d7","name":"3ee01275-08dd-4d3f-9834-d844f5550365:panel_3ee01275-08dd-4d3f-9834-d844f5550365","type":"visualization"},{"id":"1d2d5f00-cc89-11ea-918e-c778f7abe5d7","name":"9628e969-1f18-4659-a8d9-e9409f11f3a9:panel_9628e969-1f18-4659-a8d9-e9409f11f3a9","type":"visualization"},{"id":"bf9d4650-cc8a-11ea-918e-c778f7abe5d7","name":"37787af1-b5ef-467e-8c5e-b0dfba56c9f9:panel_37787af1-b5ef-467e-8c5e-b0dfba56c9f9","type":"visualization"},{"id":"07983660-cd38-11ea-a0ef-8f5241e594be","name":"efafcbff-a163-4475-8d12-59f716e5a3ef:panel_efafcbff-a163-4475-8d12-59f716e5a3ef","type":"visualization"},{"id":"fd2202d0-cc86-11ea-918e-c778f7abe5d7","name":"52506949-eb15-4b23-b50c-2e5083df5e0f:panel_52506949-eb15-4b23-b50c-2e5083df5e0f","type":"visualization"},{"id":"2aa5d850-cc85-11ea-918e-c778f7abe5d7","name":"077406bd-aa47-4dc9-b1f6-04cae0ae34b6:panel_077406bd-aa47-4dc9-b1f6-04cae0ae34b6","type":"visualization"},{"id":"b8bfd3e0-e8b7-11ea-ba07-c1efedbf0bf9","name":"58e763b7-a23a-480a-a984-24dd115aba2c:panel_58e763b7-a23a-480a-a984-24dd115aba2c","type":"visualization"},{"id":"c6188140-cdb9-11ea-a0ef-8f5241e594be","name":"36fc48c8-0044-4af6-a8b2-da8023806f32:panel_36fc48c8-0044-4af6-a8b2-da8023806f32","type":"visualization"},{"id":"0583e120-cc8f-11ea-918e-c778f7abe5d7","name":"a1d34501-4d64-4213-b192-1b4ca2d88793:panel_a1d34501-4d64-4213-b192-1b4ca2d88793","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:56.763Z","version":"WzQ5MzksMV0="} diff --git a/filebeat/module/pensando/_meta/kibana/7/visualization/0583e120-cc8f-11ea-918e-c778f7abe5d7.json b/filebeat/module/pensando/_meta/kibana/7/visualization/0583e120-cc8f-11ea-918e-c778f7abe5d7.json new file mode 100644 index 000000000000..13691c9bd488 --- /dev/null +++ b/filebeat/module/pensando/_meta/kibana/7/visualization/0583e120-cc8f-11ea-918e-c778f7abe5d7.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Top Destinations - table [Filebeat Pensando]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Network Packets" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Top Servers", + "field": "server.ip", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 300 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": true, + "showPartialRows": true, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top Destinations - table [Filebeat Pensando]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0583e120-cc8f-11ea-918e-c778f7abe5d7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:56.763Z", + "version": "WzQ5NTEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/pensando/_meta/kibana/7/visualization/07983660-cd38-11ea-a0ef-8f5241e594be.json b/filebeat/module/pensando/_meta/kibana/7/visualization/07983660-cd38-11ea-a0ef-8f5241e594be.json new file mode 100644 index 000000000000..555f21e9151c --- /dev/null +++ b/filebeat/module/pensando/_meta/kibana/7/visualization/07983660-cd38-11ea-a0ef-8f5241e594be.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Traffic by Workload Pie [Filebeat Pensando]", + "uiStateJSON": { + "vis": { + "legendOpen": false + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "client.ip", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 25 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Traffic by Workload Pie [Filebeat Pensando]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "07983660-cd38-11ea-a0ef-8f5241e594be", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:56.763Z", + "version": "WzQ5NDYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/pensando/_meta/kibana/7/visualization/1d2d5f00-cc89-11ea-918e-c778f7abe5d7.json b/filebeat/module/pensando/_meta/kibana/7/visualization/1d2d5f00-cc89-11ea-918e-c778f7abe5d7.json new file mode 100644 index 000000000000..30b6fd173bbc --- /dev/null +++ b/filebeat/module/pensando/_meta/kibana/7/visualization/1d2d5f00-cc89-11ea-918e-c778f7abe5d7.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "DFW Denied Count [Filebeat Pensando]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "packet count" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "", + "exclude": "allowed", + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": false + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 30, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "DFW Denied Count [Filebeat Pensando]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1d2d5f00-cc89-11ea-918e-c778f7abe5d7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:56.763Z", + "version": "WzQ5NDQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/pensando/_meta/kibana/7/visualization/2aa5d850-cc85-11ea-918e-c778f7abe5d7.json b/filebeat/module/pensando/_meta/kibana/7/visualization/2aa5d850-cc85-11ea-918e-c778f7abe5d7.json new file mode 100644 index 000000000000..9866fc600136 --- /dev/null +++ b/filebeat/module/pensando/_meta/kibana/7/visualization/2aa5d850-cc85-11ea-918e-c778f7abe5d7.json @@ -0,0 +1,118 @@ +{ + "attributes": { + "description": "Firewall denies and allows plotted against each other in time series", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "DFW Deny vs Allow [Filebeat Pensando]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "event.dataset:\"pensando.dfw\" " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "pensando.dfw.action : \"allow\" " + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "terms", + "stacked": "none", + "terms_field": "pensando.dfw.action" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(150,10,3,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "pensando.dfw.action : \"deny\" " + }, + "formatter": "number", + "id": "b6c562c0-cc84-11ea-a4da-c770c13b4387", + "line_width": 1, + "metrics": [ + { + "id": "b6c562c1-cc84-11ea-a4da-c770c13b4387", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "pensando.dfw.action" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(188,186,0,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "pensando.dfw.action :\"none\" " + }, + "formatter": "number", + "id": "2dd6bef0-cd1f-11ea-98bc-ef8e168e330d", + "line_width": 1, + "metrics": [ + { + "id": "2dd6bef1-cd1f-11ea-98bc-ef8e168e330d", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "pensando.dfw.action" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "DFW Deny vs Allow [Filebeat Pensando]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2aa5d850-cc85-11ea-918e-c778f7abe5d7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:56.763Z", + "version": "WzQ5NDgsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/pensando/_meta/kibana/7/visualization/39e26d70-cc4d-11ea-918e-c778f7abe5d7.json b/filebeat/module/pensando/_meta/kibana/7/visualization/39e26d70-cc4d-11ea-918e-c778f7abe5d7.json new file mode 100644 index 000000000000..a8667830572b --- /dev/null +++ b/filebeat/module/pensando/_meta/kibana/7/visualization/39e26d70-cc4d-11ea-918e-c778f7abe5d7.json @@ -0,0 +1,38 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": { + "match_all": {} + } + } + } + }, + "title": "Logo [Filebeat Pensando]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 8, + "markdown": "[![Pensando](data:image/png;base64,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)](https://pensando.io)", + "openLinksInNewTab": true + }, + "title": "Logo [Filebeat Pensando]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "39e26d70-cc4d-11ea-918e-c778f7abe5d7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:56.763Z", + "version": "WzQ5NDEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/pensando/_meta/kibana/7/visualization/a73c8dc0-cc8d-11ea-918e-c778f7abe5d7.json b/filebeat/module/pensando/_meta/kibana/7/visualization/a73c8dc0-cc8d-11ea-918e-c778f7abe5d7.json new file mode 100644 index 000000000000..f2c4d3eeefa7 --- /dev/null +++ b/filebeat/module/pensando/_meta/kibana/7/visualization/a73c8dc0-cc8d-11ea-918e-c778f7abe5d7.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Client/Server - input list [Filebeat Pensando]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "client.ip", + "id": "1595471403191", + "indexPatternRefName": "control_0_index_pattern", + "label": "Client", + "options": { + "dynamicOptions": true, + "multiselect": false, + "order": "desc", + "size": 500, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "server.ip", + "id": "1595471807689", + "indexPatternRefName": "control_1_index_pattern", + "label": "Server", + "options": { + "dynamicOptions": true, + "multiselect": false, + "order": "desc", + "size": 500, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "log.source.address", + "id": "1595471848091", + "indexPatternRefName": "control_2_index_pattern", + "label": "DSC", + "options": { + "dynamicOptions": false, + "multiselect": false, + "order": "desc", + "size": 500, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": true, + "updateFiltersOnChange": true, + "useTimeFilter": true + }, + "title": "Client/Server - input list [Filebeat Pensando]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a73c8dc0-cc8d-11ea-918e-c778f7abe5d7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:56.763Z", + "version": "WzQ5NDAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/pensando/_meta/kibana/7/visualization/b8bfd3e0-e8b7-11ea-ba07-c1efedbf0bf9.json b/filebeat/module/pensando/_meta/kibana/7/visualization/b8bfd3e0-e8b7-11ea-ba07-c1efedbf0bf9.json new file mode 100644 index 000000000000..37a79fb324b3 --- /dev/null +++ b/filebeat/module/pensando/_meta/kibana/7/visualization/b8bfd3e0-e8b7-11ea-ba07-c1efedbf0bf9.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Top Destination IPs [Filebeat Pensando]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "destination.ip", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 25 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Top Destination IPs [Filebeat Pensando]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b8bfd3e0-e8b7-11ea-ba07-c1efedbf0bf9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:56.763Z", + "version": "WzQ5NDksMV0=" +} \ No newline at end of file diff --git a/filebeat/module/pensando/_meta/kibana/7/visualization/bc6a36b0-cdba-11ea-a0ef-8f5241e594be.json b/filebeat/module/pensando/_meta/kibana/7/visualization/bc6a36b0-cdba-11ea-a0ef-8f5241e594be.json new file mode 100644 index 000000000000..8d339a299b3c --- /dev/null +++ b/filebeat/module/pensando/_meta/kibana/7/visualization/bc6a36b0-cdba-11ea-a0ef-8f5241e594be.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Active Workload Count [Filebeat Pensando]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Active Workloads", + "field": "client.ip" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": false + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 36, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Active Workload Count [Filebeat Pensando]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bc6a36b0-cdba-11ea-a0ef-8f5241e594be", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:56.763Z", + "version": "WzQ5NDIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/pensando/_meta/kibana/7/visualization/bf9d4650-cc8a-11ea-918e-c778f7abe5d7.json b/filebeat/module/pensando/_meta/kibana/7/visualization/bf9d4650-cc8a-11ea-918e-c778f7abe5d7.json new file mode 100644 index 000000000000..022ca617b918 --- /dev/null +++ b/filebeat/module/pensando/_meta/kibana/7/visualization/bf9d4650-cc8a-11ea-918e-c778f7abe5d7.json @@ -0,0 +1,101 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": "Denied Destination IPs", + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.action", + "negate": false, + "params": { + "query": "denied" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.action": "denied" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.action: \"denied\" " + } + } + }, + "title": "Denied Destination IPs [Filebeat Pensando]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "server.ip", + "json": "", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 25 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "maxFontSize": 36, + "minFontSize": 14, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": false + }, + "title": "Denied Destination IPs [Filebeat Pensando]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bf9d4650-cc8a-11ea-918e-c778f7abe5d7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:56.763Z", + "version": "WzQ5NDUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/pensando/_meta/kibana/7/visualization/c6188140-cdb9-11ea-a0ef-8f5241e594be.json b/filebeat/module/pensando/_meta/kibana/7/visualization/c6188140-cdb9-11ea-a0ef-8f5241e594be.json new file mode 100644 index 000000000000..9acbdad76eda --- /dev/null +++ b/filebeat/module/pensando/_meta/kibana/7/visualization/c6188140-cdb9-11ea-a0ef-8f5241e594be.json @@ -0,0 +1,96 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Destination Port by DSC Pie [Filebeat Pensando]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "destination.port", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 25 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "log.source.address", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Destination Port by DSC Pie [Filebeat Pensando]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c6188140-cdb9-11ea-a0ef-8f5241e594be", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:56.763Z", + "version": "WzQ5NTAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/pensando/_meta/kibana/7/visualization/fa745d10-cc88-11ea-918e-c778f7abe5d7.json b/filebeat/module/pensando/_meta/kibana/7/visualization/fa745d10-cc88-11ea-918e-c778f7abe5d7.json new file mode 100644 index 000000000000..13b2ab9e61b5 --- /dev/null +++ b/filebeat/module/pensando/_meta/kibana/7/visualization/fa745d10-cc88-11ea-918e-c778f7abe5d7.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "DFW Allowed Count [Filebeat Pensando]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "", + "exclude": "denied", + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": false + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 30, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "DFW Allowed Count [Filebeat Pensando]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fa745d10-cc88-11ea-918e-c778f7abe5d7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:56.763Z", + "version": "WzQ5NDMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/pensando/_meta/kibana/7/visualization/fd2202d0-cc86-11ea-918e-c778f7abe5d7.json b/filebeat/module/pensando/_meta/kibana/7/visualization/fd2202d0-cc86-11ea-918e-c778f7abe5d7.json new file mode 100644 index 000000000000..96b6ad3911c7 --- /dev/null +++ b/filebeat/module/pensando/_meta/kibana/7/visualization/fd2202d0-cc86-11ea-918e-c778f7abe5d7.json @@ -0,0 +1,116 @@ +{ + "attributes": { + "description": "Inner ring is client IP, middle ring is server IP and the outer ring is Allow vs Deny actions performed by the FW", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Client to Server FW Action [Filebeat Pensando]", + "uiStateJSON": { + "vis": { + "legendOpen": false + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "client.ip", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 100 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "server.ip", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Client to Server FW Action [Filebeat Pensando]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fd2202d0-cc86-11ea-918e-c778f7abe5d7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:56.763Z", + "version": "WzQ5NDcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/postgresql/_meta/kibana/7/dashboard/158be870-87f4-11e7-ad9c-db80de0bf8d3-ecs.json b/filebeat/module/postgresql/_meta/kibana/7/dashboard/158be870-87f4-11e7-ad9c-db80de0bf8d3-ecs.json new file mode 100644 index 000000000000..8c30dae2d31e --- /dev/null +++ b/filebeat/module/postgresql/_meta/kibana/7/dashboard/158be870-87f4-11e7-ad9c-db80de0bf8d3-ecs.json @@ -0,0 +1,117 @@ +{ + "attributes": { + "description": "Overview dashboard for the Filebeat PostgreSQL module", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 12, + "i": "1", + "w": 12, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "user.name", + "postgresql.log.database", + "log.level", + "message", + "postgresql.log.query" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 24, + "i": "2", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 36, + "x": 12, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat PostgreSQL] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "158be870-87f4-11e7-ad9c-db80de0bf8d3-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "PostgreSQL Log Level Count-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "PostgreSQL All Logs-ecs", + "name": "2:panel_2", + "type": "search" + }, + { + "id": "3dbd5370-87f3-11e7-ad9c-db80de0bf8d3-ecs", + "name": "3:panel_3", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:50.312Z", + "version": "WzQzMTIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-overview.ndjson b/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-overview.ndjson deleted file mode 100644 index 7af285551429..000000000000 --- a/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-overview.ndjson +++ /dev/null @@ -1,4 +0,0 @@ -{"attributes":{"columns":["user.name","postgresql.log.database","log.level","message","postgresql.log.query"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"postgresql.log\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"postgresql.log\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"All Logs [Filebeat PostgreSQL] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"PostgreSQL All Logs-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:50.312Z","version":"WzQzMTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"postgresql.log\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"postgresql.log\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Log Level Count [Filebeat PostgreSQL] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"log.level\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":12},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Log Level Count [Filebeat PostgreSQL] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"PostgreSQL Log Level Count-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"PostgreSQL All Logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:50.312Z","version":"WzQzMTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"postgresql.log\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"postgresql.log\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Logs by level over time [Filebeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.level\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per month\"},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Logs by level over time [Filebeat PostgreSQL] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"3dbd5370-87f3-11e7-ad9c-db80de0bf8d3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"PostgreSQL All Logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:50.312Z","version":"WzQzMTUsMV0="} -{"attributes":{"description":"Overview dashboard for the Filebeat PostgreSQL module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"1\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":24,\"i\":\"2\",\"w\":48,\"x\":0,\"y\":12},\"panelIndex\":\"2\",\"embeddableConfig\":{\"columns\":[\"user.name\",\"postgresql.log.database\",\"log.level\",\"message\",\"postgresql.log.query\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Filebeat PostgreSQL] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"158be870-87f4-11e7-ad9c-db80de0bf8d3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"PostgreSQL Log Level Count-ecs","name":"1:panel_1","type":"visualization"},{"id":"PostgreSQL All Logs-ecs","name":"2:panel_2","type":"search"},{"id":"3dbd5370-87f3-11e7-ad9c-db80de0bf8d3-ecs","name":"3:panel_3","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:50.312Z","version":"WzQzMTIsMV0="} diff --git a/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-slowlogs.ndjson b/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-slowlogs.ndjson deleted file mode 100644 index a07bfcc6061e..000000000000 --- a/filebeat/module/postgresql/_meta/kibana/7/dashboard/Filebeat-Postgresql-slowlogs.ndjson +++ /dev/null @@ -1,4 +0,0 @@ -{"attributes":{"columns":["user.name","postgresql.log.database","event.duration","postgresql.log.query"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:\\\"postgresql.log\\\" AND event.duration:*\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Query Durations [Filebeat PostgreSQL] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"PostgreSQL Query Durations-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:51.290Z","version":"WzQzMTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"postgresql.log\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"postgresql.log\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Query count and cumulated duration [Filebeat PostgreSQL] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Number of queries\": \"#0A437C\", \"Sum of query duration\": \"#6ED0E0\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Number of queries\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Sum of query duration\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per 3 hours\"},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"4\",\"label\":\"Number of queries\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"2\",\"label\":\"Sum of query duration\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Query count and cumulated duration [Filebeat PostgreSQL] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"PostgreSQL Query Count and Duration-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"PostgreSQL Query Durations-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:51.290Z","version":"WzQzMTcsMV0="} -{"attributes":{"columns":["user.name","postgresql.log.database","event.duration","postgresql.log.query"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:\\\"postgresql.log\\\" AND event.duration>30000000\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Slow Queries [Filebeat PostgreSQL] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Slow PostgreSQL Queries-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:51.290Z","version":"WzQzMTgsMV0="} -{"attributes":{"description":"Dashboard for analyzing the query durations of the Filebeat PostgreSQL module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.10.0\",\"type\":\"search\",\"gridData\":{\"h\":12,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"columns\":[\"user.name\",\"postgresql.log.database\",\"event.duration\",\"postgresql.log.query\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.10.0\",\"type\":\"search\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":48,\"x\":0,\"y\":12},\"panelIndex\":\"3\",\"embeddableConfig\":{\"columns\":[\"user.name\",\"postgresql.log.database\",\"event.duration\",\"postgresql.log.query\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Filebeat PostgreSQL] Query Duration Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"e4c5f230-87f3-11e7-ad9c-db80de0bf8d3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"PostgreSQL Query Count and Duration-ecs","name":"1:panel_1","type":"visualization"},{"id":"Slow PostgreSQL Queries-ecs","name":"2:panel_2","type":"search"},{"id":"PostgreSQL Query Durations-ecs","name":"3:panel_3","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:51.290Z","version":"WzQzMTYsMV0="} diff --git a/filebeat/module/postgresql/_meta/kibana/7/dashboard/e4c5f230-87f3-11e7-ad9c-db80de0bf8d3-ecs.json b/filebeat/module/postgresql/_meta/kibana/7/dashboard/e4c5f230-87f3-11e7-ad9c-db80de0bf8d3-ecs.json new file mode 100644 index 000000000000..241986a1c307 --- /dev/null +++ b/filebeat/module/postgresql/_meta/kibana/7/dashboard/e4c5f230-87f3-11e7-ad9c-db80de0bf8d3-ecs.json @@ -0,0 +1,118 @@ +{ + "attributes": { + "description": "Dashboard for analyzing the query durations of the Filebeat PostgreSQL module", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "columns": [ + "user.name", + "postgresql.log.database", + "event.duration", + "postgresql.log.query" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 12, + "i": "2", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "search", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "columns": [ + "user.name", + "postgresql.log.database", + "event.duration", + "postgresql.log.query" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 20, + "i": "3", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "search", + "version": "7.10.0" + } + ], + "timeRestore": false, + "title": "[Filebeat PostgreSQL] Query Duration Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "e4c5f230-87f3-11e7-ad9c-db80de0bf8d3-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "PostgreSQL Query Count and Duration-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "Slow PostgreSQL Queries-ecs", + "name": "2:panel_2", + "type": "search" + }, + { + "id": "PostgreSQL Query Durations-ecs", + "name": "3:panel_3", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:51.290Z", + "version": "WzQzMTYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/postgresql/_meta/kibana/7/search/PostgreSQL All Logs-ecs.json b/filebeat/module/postgresql/_meta/kibana/7/search/PostgreSQL All Logs-ecs.json new file mode 100644 index 000000000000..df21a214c464 --- /dev/null +++ b/filebeat/module/postgresql/_meta/kibana/7/search/PostgreSQL All Logs-ecs.json @@ -0,0 +1,75 @@ +{ + "attributes": { + "columns": [ + "user.name", + "postgresql.log.database", + "log.level", + "message", + "postgresql.log.query" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "postgresql.log" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "postgresql.log" + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "All Logs [Filebeat PostgreSQL] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "PostgreSQL All Logs-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:50.312Z", + "version": "WzQzMTQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/postgresql/_meta/kibana/7/search/PostgreSQL Query Durations-ecs.json b/filebeat/module/postgresql/_meta/kibana/7/search/PostgreSQL Query Durations-ecs.json new file mode 100644 index 000000000000..743cadcb8aed --- /dev/null +++ b/filebeat/module/postgresql/_meta/kibana/7/search/PostgreSQL Query Durations-ecs.json @@ -0,0 +1,47 @@ +{ + "attributes": { + "columns": [ + "user.name", + "postgresql.log.database", + "event.duration", + "postgresql.log.query" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:\"postgresql.log\" AND event.duration:*" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Query Durations [Filebeat PostgreSQL] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "PostgreSQL Query Durations-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:51.290Z", + "version": "WzQzMTksMV0=" +} \ No newline at end of file diff --git a/filebeat/module/postgresql/_meta/kibana/7/search/Slow PostgreSQL Queries-ecs.json b/filebeat/module/postgresql/_meta/kibana/7/search/Slow PostgreSQL Queries-ecs.json new file mode 100644 index 000000000000..d0d26790d27f --- /dev/null +++ b/filebeat/module/postgresql/_meta/kibana/7/search/Slow PostgreSQL Queries-ecs.json @@ -0,0 +1,47 @@ +{ + "attributes": { + "columns": [ + "user.name", + "postgresql.log.database", + "event.duration", + "postgresql.log.query" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:\"postgresql.log\" AND event.duration>30000000" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Slow Queries [Filebeat PostgreSQL] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Slow PostgreSQL Queries-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:51.290Z", + "version": "WzQzMTgsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/postgresql/_meta/kibana/7/visualization/3dbd5370-87f3-11e7-ad9c-db80de0bf8d3-ecs.json b/filebeat/module/postgresql/_meta/kibana/7/visualization/3dbd5370-87f3-11e7-ad9c-db80de0bf8d3-ecs.json new file mode 100644 index 000000000000..3f39301589ec --- /dev/null +++ b/filebeat/module/postgresql/_meta/kibana/7/visualization/3dbd5370-87f3-11e7-ad9c-db80de0bf8d3-ecs.json @@ -0,0 +1,195 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "postgresql.log" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "postgresql.log" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Logs by level over time [Filebeat PostgreSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "now-15m", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "log.level", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "@timestamp per month" + }, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "labels": { + "show": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Logs by level over time [Filebeat PostgreSQL] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3dbd5370-87f3-11e7-ad9c-db80de0bf8d3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "PostgreSQL All Logs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:50.312Z", + "version": "WzQzMTUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/postgresql/_meta/kibana/7/visualization/PostgreSQL Log Level Count-ecs.json b/filebeat/module/postgresql/_meta/kibana/7/visualization/PostgreSQL Log Level Count-ecs.json new file mode 100644 index 000000000000..ffbe640b1215 --- /dev/null +++ b/filebeat/module/postgresql/_meta/kibana/7/visualization/PostgreSQL Log Level Count-ecs.json @@ -0,0 +1,111 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "postgresql.log" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "postgresql.log" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Log Level Count [Filebeat PostgreSQL] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "log.level", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 12 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Log Level Count [Filebeat PostgreSQL] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "PostgreSQL Log Level Count-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "PostgreSQL All Logs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:50.312Z", + "version": "WzQzMTMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/postgresql/_meta/kibana/7/visualization/PostgreSQL Query Count and Duration-ecs.json b/filebeat/module/postgresql/_meta/kibana/7/visualization/PostgreSQL Query Count and Duration-ecs.json new file mode 100644 index 000000000000..de60d003369d --- /dev/null +++ b/filebeat/module/postgresql/_meta/kibana/7/visualization/PostgreSQL Query Count and Duration-ecs.json @@ -0,0 +1,215 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "postgresql.log" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "postgresql.log" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Query count and cumulated duration [Filebeat PostgreSQL] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "Number of queries": "#0A437C", + "Sum of query duration": "#6ED0E0" + }, + "legendOpen": true + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "3", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "now-15m", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Number of queries" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Sum of query duration", + "field": "event.duration" + }, + "schema": "metric", + "type": "sum" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "@timestamp per 3 hours" + }, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "labels": { + "show": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "4", + "label": "Number of queries" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "lineWidth": 2, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + }, + { + "data": { + "id": "2", + "label": "Sum of query duration" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "lineWidth": 2, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "" + }, + "type": "value" + } + ] + }, + "title": "Query count and cumulated duration [Filebeat PostgreSQL] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "PostgreSQL Query Count and Duration-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "PostgreSQL Query Durations-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:51.290Z", + "version": "WzQzMTcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/postgresql/module.yml b/filebeat/module/postgresql/module.yml index afb122072e50..881ddf4b6344 100644 --- a/filebeat/module/postgresql/module.yml +++ b/filebeat/module/postgresql/module.yml @@ -1,5 +1,5 @@ dashboards: - id: 158be870-87f4-11e7-ad9c-db80de0bf8d3 - file: Filebeat-Postgresql-overview.ndjson + file: Filebeat-Postgresql-overview.json - id: e4c5f230-87f3-11e7-ad9c-db80de0bf8d3 - file: Filebeat-Postgresql-slowlogs.ndjson + file: Filebeat-Postgresql-slowlogs.json diff --git a/filebeat/module/redis/_meta/kibana/7/dashboard/7fea2930-478e-11e7-b1f0-cb29bac6bf8b-ecs.json b/filebeat/module/redis/_meta/kibana/7/dashboard/7fea2930-478e-11e7-b1f0-cb29bac6bf8b-ecs.json new file mode 100644 index 000000000000..063c57ec26f0 --- /dev/null +++ b/filebeat/module/redis/_meta/kibana/7/dashboard/7fea2930-478e-11e7-b1f0-cb29bac6bf8b-ecs.json @@ -0,0 +1,163 @@ +{ + "attributes": { + "description": "Overview dashboard for the FIlebeat Redis module", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 12, + "x": 0, + "y": 16 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 36, + "x": 12, + "y": 16 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "host.name", + "log.level", + "redis.log.role", + "message" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 16, + "i": "4", + "w": 48, + "x": 0, + "y": 28 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 16, + "i": "5", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "host.name", + "message", + "redis.slowlog.duration.us", + "redis.slowlog.key" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 16, + "i": "6", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "search", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Redis] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "7fea2930-478e-11e7-b1f0-cb29bac6bf8b-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "78b9afe0-478f-11e7-b1f0-cb29bac6bf8b-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "d2864600-478f-11e7-be88-2ddb32f3df97-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "73613570-4791-11e7-be88-2ddb32f3df97-ecs", + "name": "4:panel_4", + "type": "search" + }, + { + "id": "dcccaa80-4791-11e7-be88-2ddb32f3df97-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "0ab87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs", + "name": "6:panel_6", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:22.899Z", + "version": "WzQ1MzYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/redis/_meta/kibana/7/dashboard/Filebeat-redis.ndjson b/filebeat/module/redis/_meta/kibana/7/dashboard/Filebeat-redis.ndjson deleted file mode 100644 index 23bbdf16e981..000000000000 --- a/filebeat/module/redis/_meta/kibana/7/dashboard/Filebeat-redis.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:redis.log\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Log levels and roles breakdown [Filebeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"redis.log.role\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Log level\",\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"bottom\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Log levels and roles breakdown [Filebeat Redis] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"78b9afe0-478f-11e7-b1f0-cb29bac6bf8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:22.899Z","version":"WzQ1MzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:redis.log\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Logs over time [Filebeat Redis] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"notice\": \"#629E51\", \"warning\": \"#EF843C\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"log.level\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per month\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Logs over time [Filebeat Redis] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"d2864600-478f-11e7-be88-2ddb32f3df97-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:22.899Z","version":"WzQ1MzIsMV0="} -{"attributes":{"columns":["host.name","log.level","redis.log.role","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"redis\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"redis\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"redis\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"fileset.name\",\"negate\":false,\"params\":{\"query\":\"log\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"log\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"log\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Logs [Filebeat Redis] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"73613570-4791-11e7-be88-2ddb32f3df97-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:22.899Z","version":"WzQ1MzMsMV0="} -{"attributes":{"columns":["host.name","message","redis.slowlog.duration.us","redis.slowlog.key"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:redis.slowlog\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Slow logs [Filebeat Redis] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"0ab87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:22.899Z","version":"WzQ1MzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Top slowest commands [Filebeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Command\",\"field\":\"redis.slowlog.duration.us\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Duration (microseconds)\",\"field\":\"redis.slowlog.cmd\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Duration (microseconds)\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Command\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Command\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Top slowest commands [Filebeat Redis] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"dcccaa80-4791-11e7-be88-2ddb32f3df97-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"0ab87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:22.899Z","version":"WzQ1MzQsMV0="} -{"attributes":{"description":"Overview dashboard for the FIlebeat Redis module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":16,\"w\":12,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":16,\"w\":36,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":28,\"w\":48,\"h\":16,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"columns\":[\"host.name\",\"log.level\",\"redis.log.role\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":16,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":16,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"columns\":[\"host.name\",\"message\",\"redis.slowlog.duration.us\",\"redis.slowlog.key\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Filebeat Redis] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"7fea2930-478e-11e7-b1f0-cb29bac6bf8b-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"78b9afe0-478f-11e7-b1f0-cb29bac6bf8b-ecs","name":"2:panel_2","type":"visualization"},{"id":"d2864600-478f-11e7-be88-2ddb32f3df97-ecs","name":"3:panel_3","type":"visualization"},{"id":"73613570-4791-11e7-be88-2ddb32f3df97-ecs","name":"4:panel_4","type":"search"},{"id":"dcccaa80-4791-11e7-be88-2ddb32f3df97-ecs","name":"5:panel_5","type":"visualization"},{"id":"0ab87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs","name":"6:panel_6","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:22.899Z","version":"WzQ1MzYsMV0="} diff --git a/filebeat/module/redis/_meta/kibana/7/search/0ab87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs.json b/filebeat/module/redis/_meta/kibana/7/search/0ab87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs.json new file mode 100644 index 000000000000..32ed68a46efb --- /dev/null +++ b/filebeat/module/redis/_meta/kibana/7/search/0ab87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs.json @@ -0,0 +1,47 @@ +{ + "attributes": { + "columns": [ + "host.name", + "message", + "redis.slowlog.duration.us", + "redis.slowlog.key" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:redis.slowlog" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Slow logs [Filebeat Redis] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "0ab87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:22.899Z", + "version": "WzQ1MzUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/redis/_meta/kibana/7/search/73613570-4791-11e7-be88-2ddb32f3df97-ecs.json b/filebeat/module/redis/_meta/kibana/7/search/73613570-4791-11e7-be88-2ddb32f3df97-ecs.json new file mode 100644 index 000000000000..8ce84dc803fe --- /dev/null +++ b/filebeat/module/redis/_meta/kibana/7/search/73613570-4791-11e7-be88-2ddb32f3df97-ecs.json @@ -0,0 +1,110 @@ +{ + "attributes": { + "columns": [ + "host.name", + "log.level", + "redis.log.role", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "redis", + "type": "phrase" + }, + "type": "phrase", + "value": "redis" + }, + "query": { + "match": { + "event.module": { + "query": "redis", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "fileset.name", + "negate": false, + "params": { + "query": "log", + "type": "phrase" + }, + "type": "phrase", + "value": "log" + }, + "query": { + "match": { + "fileset.name": { + "query": "log", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Logs [Filebeat Redis] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "73613570-4791-11e7-be88-2ddb32f3df97-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:22.899Z", + "version": "WzQ1MzMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/redis/_meta/kibana/7/visualization/78b9afe0-478f-11e7-b1f0-cb29bac6bf8b-ecs.json b/filebeat/module/redis/_meta/kibana/7/visualization/78b9afe0-478f-11e7-b1f0-cb29bac6bf8b-ecs.json new file mode 100644 index 000000000000..28d8af3c437f --- /dev/null +++ b/filebeat/module/redis/_meta/kibana/7/visualization/78b9afe0-478f-11e7-b1f0-cb29bac6bf8b-ecs.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:redis.log" + }, + "version": true + } + }, + "title": "Log levels and roles breakdown [Filebeat Redis] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "redis.log.role", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Log level", + "field": "log.level", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Log levels and roles breakdown [Filebeat Redis] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "78b9afe0-478f-11e7-b1f0-cb29bac6bf8b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:22.899Z", + "version": "WzQ1MzEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/redis/_meta/kibana/7/visualization/d2864600-478f-11e7-be88-2ddb32f3df97-ecs.json b/filebeat/module/redis/_meta/kibana/7/visualization/d2864600-478f-11e7-be88-2ddb32f3df97-ecs.json new file mode 100644 index 000000000000..6e99a0ded691 --- /dev/null +++ b/filebeat/module/redis/_meta/kibana/7/visualization/d2864600-478f-11e7-be88-2ddb32f3df97-ecs.json @@ -0,0 +1,163 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:redis.log" + }, + "version": true + } + }, + "title": "Logs over time [Filebeat Redis] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "notice": "#629E51", + "warning": "#EF843C" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "log.level", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "@timestamp per month" + }, + "type": "category" + } + ], + "defaultYExtents": false, + "detailedTooltip": true, + "drawLinesBetweenPoints": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "radiusRatio": 9, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "showCircles": true, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Logs over time [Filebeat Redis] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d2864600-478f-11e7-be88-2ddb32f3df97-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:22.899Z", + "version": "WzQ1MzIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/redis/_meta/kibana/7/visualization/dcccaa80-4791-11e7-be88-2ddb32f3df97-ecs.json b/filebeat/module/redis/_meta/kibana/7/visualization/dcccaa80-4791-11e7-be88-2ddb32f3df97-ecs.json new file mode 100644 index 000000000000..d8e88a541a99 --- /dev/null +++ b/filebeat/module/redis/_meta/kibana/7/visualization/dcccaa80-4791-11e7-be88-2ddb32f3df97-ecs.json @@ -0,0 +1,143 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top slowest commands [Filebeat Redis] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Command", + "field": "redis.slowlog.duration.us" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Duration (microseconds)", + "field": "redis.slowlog.cmd", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 200 + }, + "position": "left", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Duration (microseconds)" + }, + "type": "category" + } + ], + "defaultYExtents": false, + "detailedTooltip": true, + "drawLinesBetweenPoints": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "radiusRatio": 9, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Command" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "showCircles": true, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": true, + "rotate": 75, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "bottom", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Command" + }, + "type": "value" + } + ] + }, + "title": "Top slowest commands [Filebeat Redis] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dcccaa80-4791-11e7-be88-2ddb32f3df97-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "0ab87b80-478e-11e7-b1f0-cb29bac6bf8b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:22.899Z", + "version": "WzQ1MzQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/redis/module.yml b/filebeat/module/redis/module.yml index b8b0c95ed9e0..29c9a121d93d 100644 --- a/filebeat/module/redis/module.yml +++ b/filebeat/module/redis/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 7fea2930-478e-11e7-b1f0-cb29bac6bf8b - file: Filebeat-redis.ndjson + file: Filebeat-redis.json diff --git a/filebeat/module/santa/_meta/kibana/7/dashboard/161855f0-ff6a-11e8-93c5-d5ecd1b3e307-ecs.json b/filebeat/module/santa/_meta/kibana/7/dashboard/161855f0-ff6a-11e8-93c5-d5ecd1b3e307-ecs.json new file mode 100644 index 000000000000..d651e8b371a3 --- /dev/null +++ b/filebeat/module/santa/_meta/kibana/7/dashboard/161855f0-ff6a-11e8-93c5-d5ecd1b3e307-ecs.json @@ -0,0 +1,175 @@ +{ + "attributes": { + "description": "Process executions on macOS monitored by Google Santa.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 10, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_0", + "version": "7.0.0-alpha1-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 38, + "x": 10, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_1", + "version": "7.0.0-alpha1-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "3", + "w": 10, + "x": 8, + "y": 12 + }, + "panelIndex": "3", + "panelRefName": "panel_2", + "version": "7.0.0-alpha1-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "4", + "w": 12, + "x": 36, + "y": 12 + }, + "panelIndex": "4", + "panelRefName": "panel_3", + "version": "7.0.0-alpha1-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "5", + "w": 8, + "x": 0, + "y": 12 + }, + "panelIndex": "5", + "panelRefName": "panel_4", + "version": "7.0.0-alpha1-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "6", + "w": 18, + "x": 18, + "y": 12 + }, + "panelIndex": "6", + "panelRefName": "panel_5", + "version": "7.0.0-alpha1-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "7", + "w": 48, + "x": 0, + "y": 22 + }, + "panelIndex": "7", + "panelRefName": "panel_6", + "version": "7.0.0-alpha1-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Filebeat Santa] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "161855f0-ff6a-11e8-93c5-d5ecd1b3e307-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "dad521d0-ff69-11e8-93c5-d5ecd1b3e307-ecs", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "1579d690-ff6b-11e8-93c5-d5ecd1b3e307-ecs", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "51677b80-ff6b-11e8-93c5-d5ecd1b3e307-ecs", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "30962fe0-ff6c-11e8-93c5-d5ecd1b3e307-ecs", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "b06c0460-ff6c-11e8-93c5-d5ecd1b3e307-ecs", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "11858000-ff6d-11e8-93c5-d5ecd1b3e307-ecs", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs", + "name": "panel_6", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:51.587Z", + "version": "WzQ5MDIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/santa/_meta/kibana/7/dashboard/filebeat-santa-log-overview.ndjson b/filebeat/module/santa/_meta/kibana/7/dashboard/filebeat-santa-log-overview.ndjson deleted file mode 100644 index 8bccc293654e..000000000000 --- a/filebeat/module/santa/_meta/kibana/7/dashboard/filebeat-santa-log-overview.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Description [Filebeat Santa] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"![Santa Icon](https://raw.githubusercontent.com/google/santa/master/Source/SantaGUI/Resources/Images.xcassets/AppIcon.appiconset/santa-hat-icon-128.png)\\n\\nGoogle Santa is a binary whitelisting/blacklisting system for macOS that monitors process executions.\",\"openLinksInNewTab\":false},\"title\":\"Description [Filebeat Santa] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"dad521d0-ff69-11e8-93c5-d5ecd1b3e307-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:51.587Z","version":"WzQ4OTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Decisions [Filebeat Santa] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"query\":\"event.module:santa AND event.dataset:log\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Decision\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"santa.decision\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Decisions [Filebeat Santa] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1579d690-ff6b-11e8-93c5-d5ecd1b3e307-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:51.587Z","version":"WzQ4OTYsMV0="} -{"attributes":{"columns":["agent.name","process.executable","user.name","certificate.common_name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"santa\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"santa\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"santa\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"log\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"log\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"log\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Santa Logs Search [Filebeat Santa] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:51.587Z","version":"WzQ5MDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Total Events [Filebeat Santa] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Events\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total Events [Filebeat Santa] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"51677b80-ff6b-11e8-93c5-d5ecd1b3e307-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:51.587Z","version":"WzQ4OTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Decision and Reason [Filebeat Santa] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"ALLOW\": \"#7EB26D\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Decision\",\"field\":\"santa.decision\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Reason\",\"field\":\"santa.reason\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Decision and Reason [Filebeat Santa] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"30962fe0-ff6c-11e8-93c5-d5ecd1b3e307-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:51.587Z","version":"WzQ4OTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Num of Hosts Reporting [Filebeat Santa] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Hosts Reporting\",\"field\":\"agent.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Num of Hosts Reporting [Filebeat Santa] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"b06c0460-ff6c-11e8-93c5-d5ecd1b3e307-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:51.587Z","version":"WzQ4OTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Code Signers [Filebeat Santa] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"certificate.common_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":39,\"minFontSize\":12,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Code Signers [Filebeat Santa] ECS\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"11858000-ff6d-11e8-93c5-d5ecd1b3e307-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:51.587Z","version":"WzQ5MDAsMV0="} -{"attributes":{"description":"Process executions on macOS monitored by Google Santa.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.0.0-alpha1-SNAPSHOT\",\"gridData\":{\"h\":12,\"i\":\"1\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-alpha1-SNAPSHOT\",\"gridData\":{\"h\":12,\"i\":\"2\",\"w\":38,\"x\":10,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-alpha1-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"3\",\"w\":10,\"x\":8,\"y\":12},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-alpha1-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":12,\"x\":36,\"y\":12},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-alpha1-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"5\",\"w\":8,\"x\":0,\"y\":12},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-alpha1-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"6\",\"w\":18,\"x\":18,\"y\":12},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-alpha1-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":22},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Filebeat Santa] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"161855f0-ff6a-11e8-93c5-d5ecd1b3e307-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"dad521d0-ff69-11e8-93c5-d5ecd1b3e307-ecs","name":"panel_0","type":"visualization"},{"id":"1579d690-ff6b-11e8-93c5-d5ecd1b3e307-ecs","name":"panel_1","type":"visualization"},{"id":"51677b80-ff6b-11e8-93c5-d5ecd1b3e307-ecs","name":"panel_2","type":"visualization"},{"id":"30962fe0-ff6c-11e8-93c5-d5ecd1b3e307-ecs","name":"panel_3","type":"visualization"},{"id":"b06c0460-ff6c-11e8-93c5-d5ecd1b3e307-ecs","name":"panel_4","type":"visualization"},{"id":"11858000-ff6d-11e8-93c5-d5ecd1b3e307-ecs","name":"panel_5","type":"visualization"},{"id":"6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs","name":"panel_6","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:51.587Z","version":"WzQ5MDIsMV0="} diff --git a/filebeat/module/santa/_meta/kibana/7/search/6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs.json b/filebeat/module/santa/_meta/kibana/7/search/6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs.json new file mode 100644 index 000000000000..a5ec69843948 --- /dev/null +++ b/filebeat/module/santa/_meta/kibana/7/search/6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs.json @@ -0,0 +1,110 @@ +{ + "attributes": { + "columns": [ + "agent.name", + "process.executable", + "user.name", + "certificate.common_name" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "santa", + "type": "phrase" + }, + "type": "phrase", + "value": "santa" + }, + "query": { + "match": { + "event.module": { + "query": "santa", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "log", + "type": "phrase" + }, + "type": "phrase", + "value": "log" + }, + "query": { + "match": { + "event.dataset": { + "query": "log", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Santa Logs Search [Filebeat Santa] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:51.587Z", + "version": "WzQ5MDEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/santa/_meta/kibana/7/visualization/11858000-ff6d-11e8-93c5-d5ecd1b3e307-ecs.json b/filebeat/module/santa/_meta/kibana/7/visualization/11858000-ff6d-11e8-93c5-d5ecd1b3e307-ecs.json new file mode 100644 index 000000000000..a4bb5be241f2 --- /dev/null +++ b/filebeat/module/santa/_meta/kibana/7/visualization/11858000-ff6d-11e8-93c5-d5ecd1b3e307-ecs.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Code Signers [Filebeat Santa] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "certificate.common_name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "maxFontSize": 39, + "minFontSize": 12, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": true + }, + "title": "Code Signers [Filebeat Santa] ECS", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "11858000-ff6d-11e8-93c5-d5ecd1b3e307-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:51.587Z", + "version": "WzQ5MDAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/santa/_meta/kibana/7/visualization/1579d690-ff6b-11e8-93c5-d5ecd1b3e307-ecs.json b/filebeat/module/santa/_meta/kibana/7/visualization/1579d690-ff6b-11e8-93c5-d5ecd1b3e307-ecs.json new file mode 100644 index 000000000000..c2d4dc6775d5 --- /dev/null +++ b/filebeat/module/santa/_meta/kibana/7/visualization/1579d690-ff6b-11e8-93c5-d5ecd1b3e307-ecs.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Decisions [Filebeat Santa] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "lucene", + "query": "event.module:santa AND event.dataset:log" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Decision", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "santa.decision" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Decisions [Filebeat Santa] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1579d690-ff6b-11e8-93c5-d5ecd1b3e307-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:51.587Z", + "version": "WzQ4OTYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/santa/_meta/kibana/7/visualization/30962fe0-ff6c-11e8-93c5-d5ecd1b3e307-ecs.json b/filebeat/module/santa/_meta/kibana/7/visualization/30962fe0-ff6c-11e8-93c5-d5ecd1b3e307-ecs.json new file mode 100644 index 000000000000..01a7cb9724d9 --- /dev/null +++ b/filebeat/module/santa/_meta/kibana/7/visualization/30962fe0-ff6c-11e8-93c5-d5ecd1b3e307-ecs.json @@ -0,0 +1,104 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Decision and Reason [Filebeat Santa] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "ALLOW": "#7EB26D" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Decision", + "field": "santa.decision", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Reason", + "field": "santa.reason", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Decision and Reason [Filebeat Santa] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "30962fe0-ff6c-11e8-93c5-d5ecd1b3e307-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:51.587Z", + "version": "WzQ4OTgsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/santa/_meta/kibana/7/visualization/51677b80-ff6b-11e8-93c5-d5ecd1b3e307-ecs.json b/filebeat/module/santa/_meta/kibana/7/visualization/51677b80-ff6b-11e8-93c5-d5ecd1b3e307-ecs.json new file mode 100644 index 000000000000..296cff818759 --- /dev/null +++ b/filebeat/module/santa/_meta/kibana/7/visualization/51677b80-ff6b-11e8-93c5-d5ecd1b3e307-ecs.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Total Events [Filebeat Santa] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Total Events" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Total Events [Filebeat Santa] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "51677b80-ff6b-11e8-93c5-d5ecd1b3e307-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:51.587Z", + "version": "WzQ4OTcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/santa/_meta/kibana/7/visualization/b06c0460-ff6c-11e8-93c5-d5ecd1b3e307-ecs.json b/filebeat/module/santa/_meta/kibana/7/visualization/b06c0460-ff6c-11e8-93c5-d5ecd1b3e307-ecs.json new file mode 100644 index 000000000000..7c1eadcf5096 --- /dev/null +++ b/filebeat/module/santa/_meta/kibana/7/visualization/b06c0460-ff6c-11e8-93c5-d5ecd1b3e307-ecs.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Num of Hosts Reporting [Filebeat Santa] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Hosts Reporting", + "field": "agent.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Num of Hosts Reporting [Filebeat Santa] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b06c0460-ff6c-11e8-93c5-d5ecd1b3e307-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "6d56a010-ff6a-11e8-93c5-d5ecd1b3e307-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:51.587Z", + "version": "WzQ4OTksMV0=" +} \ No newline at end of file diff --git a/filebeat/module/santa/_meta/kibana/7/visualization/dad521d0-ff69-11e8-93c5-d5ecd1b3e307-ecs.json b/filebeat/module/santa/_meta/kibana/7/visualization/dad521d0-ff69-11e8-93c5-d5ecd1b3e307-ecs.json new file mode 100644 index 000000000000..c693fb92ff3d --- /dev/null +++ b/filebeat/module/santa/_meta/kibana/7/visualization/dad521d0-ff69-11e8-93c5-d5ecd1b3e307-ecs.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Description [Filebeat Santa] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "![Santa Icon](https://raw.githubusercontent.com/google/santa/master/Source/SantaGUI/Resources/Images.xcassets/AppIcon.appiconset/santa-hat-icon-128.png)\n\nGoogle Santa is a binary whitelisting/blacklisting system for macOS that monitors process executions.", + "openLinksInNewTab": false + }, + "title": "Description [Filebeat Santa] ECS", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dad521d0-ff69-11e8-93c5-d5ecd1b3e307-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:51.587Z", + "version": "WzQ4OTUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/santa/module.yml b/filebeat/module/santa/module.yml index 5a93fe726f90..6cc574b477c4 100644 --- a/filebeat/module/santa/module.yml +++ b/filebeat/module/santa/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Filebeat-santa-overview-dashboard - file: Filebeat-santa-overview.ndjson + file: Filebeat-santa-overview.json diff --git a/filebeat/module/system/_meta/kibana/7/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs.json b/filebeat/module/system/_meta/kibana/7/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs.json new file mode 100644 index 000000000000..134208f43abe --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs.json @@ -0,0 +1,198 @@ +{ + "attributes": { + "description": "New users and groups dashboard for the System module in Filebeat", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 12, + "i": "1", + "w": 24, + "x": 0, + "y": 4 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 24, + "x": 24, + "y": 4 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 24, + "x": 0, + "y": 16 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4", + "w": 24, + "x": 24, + "y": 16 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 12, + "i": "5", + "w": 24, + "x": 0, + "y": 28 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6", + "w": 24, + "x": 24, + "y": 28 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "7", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat System] New users and groups ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "f398d2f0-fa77-11e6-ae9b-81e5311e8cab-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "5dd15c00-fa78-11e6-ae9b-81e5311e8cab-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "e121b140-fa78-11e6-a1df-a78bd7504d38-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "d56ee420-fa79-11e6-a1df-a78bd7504d38-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "12667040-fa80-11e6-a1df-a78bd7504d38-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "346bb290-fa80-11e6-a1df-a78bd7504d38-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs", + "name": "7:panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:15.759Z", + "version": "WzQ0ODEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs.json b/filebeat/module/system/_meta/kibana/7/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs.json new file mode 100644 index 000000000000..530b7e4e3587 --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs.json @@ -0,0 +1,127 @@ +{ + "attributes": { + "description": "Sudo commands dashboard from the Filebeat System module", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "1", + "w": 48, + "x": 0, + "y": 20 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 48, + "x": 0, + "y": 36 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 16, + "i": "3", + "w": 48, + "x": 0, + "y": 4 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "4", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat System] Sudo commands ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "5c7af030-fa2a-11e6-bbd3-29c986c96e5a-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "51164310-fa2b-11e6-bbd3-29c986c96e5a-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "dc589770-fa2b-11e6-bbd3-29c986c96e5a-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs", + "name": "4:panel_4", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:57.403Z", + "version": "WzQzNTgsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs.json b/filebeat/module/system/_meta/kibana/7/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs.json new file mode 100644 index 000000000000..649a60aa375e --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs.json @@ -0,0 +1,198 @@ +{ + "attributes": { + "description": "SSH dashboard for the System module in Filebeat", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 48, + "x": 0, + "y": 16 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 48, + "x": 0, + "y": 4 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "3", + "w": 24, + "x": 0, + "y": 28 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapBounds": { + "bottom_right": { + "lat": 10.31491928581316, + "lon": 74.53125 + }, + "top_left": { + "lat": 60.50052541051131, + "lon": -27.94921875 + } + }, + "mapCenter": [ + 39.774769485295465, + 23.203125 + ], + "mapCollar": { + "bottom_right": { + "lat": -14.777884999999998, + "lon": 125.771485 + }, + "top_left": { + "lat": 85.593335, + "lon": -79.189455 + }, + "zoom": 3 + }, + "mapZoom": 3 + }, + "gridData": { + "h": 16, + "i": "4", + "w": 24, + "x": 24, + "y": 28 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "system.auth.ssh.event", + "system.auth.ssh.method", + "user.name", + "source.ip", + "source.geo.country_iso_code" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 12, + "i": "5", + "w": 48, + "x": 0, + "y": 44 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "6", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat System] SSH login attempts ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "5517a150-f9ce-11e6-8115-a7c18106d86a-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "d16bb400-f9cc-11e6-8115-a7c18106d86a-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "78b74f30-f9cd-11e6-8115-a7c18106d86a-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "341ffe70-f9ce-11e6-8115-a7c18106d86a-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "3cec3eb0-f9d3-11e6-8a3e-2b904044ea1d-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "62439dc0-f9c9-11e6-a747-6121780e0414-ecs", + "name": "5:panel_5", + "type": "search" + }, + { + "id": "327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs", + "name": "6:panel_6", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:23.956Z", + "version": "WzQ1NDMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-auth-sudo-commands.ndjson b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-auth-sudo-commands.ndjson deleted file mode 100644 index 32b15f2a7695..000000000000 --- a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-auth-sudo-commands.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"columns":["user.name","system.auth.sudo.user","system.auth.sudo.pwd","system.auth.sudo.command"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"system.auth.sudo:*\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Sudo commands [Filebeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"b6f321e0-fa25-11e6-bbd3-29c986c96e5a-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:57.403Z","version":"WzQzNTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Sudo commands by user [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"Sudo commands by user ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"5c7af030-fa2a-11e6-bbd3-29c986c96e5a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b6f321e0-fa25-11e6-bbd3-29c986c96e5a-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:57.403Z","version":"WzQzNTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"system.auth.sudo.error:*\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Sudo errors [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"system.auth.sudo.error\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"Sudo errors ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"51164310-fa2b-11e6-bbd3-29c986c96e5a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:57.403Z","version":"WzQzNTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Top sudo commands [Filebeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"system.auth.sudo.command\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top sudo commands ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"dc589770-fa2b-11e6-bbd3-29c986c96e5a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b6f321e0-fa25-11e6-bbd3-29c986c96e5a-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:57.403Z","version":"WzQzNTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Dashboards [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Syslog](#/dashboard/Filebeat-syslog-dashboard-ecs) | [Sudo commands](#/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs) | [SSH logins](#/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs) | [New users and groups](#/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs)\"},\"title\":\"Dashboards [Filebeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:24.999Z","version":"WzQ1NDcsMV0="} -{"attributes":{"description":"Sudo commands dashboard from the Filebeat System module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":48,\"h\":16,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":36,\"w\":48,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":48,\"h\":16,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Filebeat System] Sudo commands ECS","version":1},"coreMigrationVersion":"8.0.0","id":"277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"5c7af030-fa2a-11e6-bbd3-29c986c96e5a-ecs","name":"1:panel_1","type":"visualization"},{"id":"51164310-fa2b-11e6-bbd3-29c986c96e5a-ecs","name":"2:panel_2","type":"visualization"},{"id":"dc589770-fa2b-11e6-bbd3-29c986c96e5a-ecs","name":"3:panel_3","type":"visualization"},{"id":"327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs","name":"4:panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:57.403Z","version":"WzQzNTgsMV0="} diff --git a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-new-users-and-groups.ndjson b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-new-users-and-groups.ndjson deleted file mode 100644 index 600d760906f7..000000000000 --- a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-new-users-and-groups.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"columns":["user.name","user.id","group.id","system.auth.useradd.home","system.auth.useradd.shell"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"system.auth.useradd:*\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"useradd logs [Filebeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0NzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"New users [Filebeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Host\",\"field\":\"host.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"User\",\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"UID\",\"field\":\"user.id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"GID\",\"field\":\"group.id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Home\",\"field\":\"system.auth.useradd.home\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"Shell\",\"field\":\"system.auth.useradd.shell\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"New users ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"f398d2f0-fa77-11e6-ae9b-81e5311e8cab-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0NzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"New users over time [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"bottom\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"New users over time ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"5dd15c00-fa78-11e6-ae9b-81e5311e8cab-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0NzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"New users by shell [Filebeat System] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"/bin/bash\": \"#E24D42\", \"/bin/false\": \"#508642\", \"/sbin/nologin\": \"#7EB26D\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"system.auth.useradd.shell\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"New users by shell ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"e121b140-fa78-11e6-a1df-a78bd7504d38-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0NzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"New users by home directory [Filebeat System] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"/bin/bash\": \"#E24D42\", \"/bin/false\": \"#508642\", \"/nonexistent\": \"#629E51\", \"/sbin/nologin\": \"#7EB26D\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"system.auth.useradd.home\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"New users by home directory ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"d56ee420-fa79-11e6-a1df-a78bd7504d38-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0NzUsMV0="} -{"attributes":{"columns":["group.name","group.id"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"system.auth.groupadd:*\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"groupadd logs [Filebeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"eb0039f0-fa7f-11e6-a1df-a78bd7504d38-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0ODAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"New groups [Filebeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"group.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"group.id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"New groups ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"12667040-fa80-11e6-a1df-a78bd7504d38-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"eb0039f0-fa7f-11e6-a1df-a78bd7504d38-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0NzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"New groups over time [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"group.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"bottom\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"New groups over time ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"346bb290-fa80-11e6-a1df-a78bd7504d38-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"eb0039f0-fa7f-11e6-a1df-a78bd7504d38-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0NzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Dashboards [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Syslog](#/dashboard/Filebeat-syslog-dashboard-ecs) | [Sudo commands](#/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs) | [SSH logins](#/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs) | [New users and groups](#/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs)\"},\"title\":\"Dashboards [Filebeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:24.999Z","version":"WzQ1NDcsMV0="} -{"attributes":{"description":"New users and groups dashboard for the System module in Filebeat","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":24,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":4,\"w\":24,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":16,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":16,\"w\":24,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":24,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":28,\"w\":24,\"h\":12,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Filebeat System] New users and groups ECS","version":1},"coreMigrationVersion":"8.0.0","id":"0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"f398d2f0-fa77-11e6-ae9b-81e5311e8cab-ecs","name":"1:panel_1","type":"visualization"},{"id":"5dd15c00-fa78-11e6-ae9b-81e5311e8cab-ecs","name":"2:panel_2","type":"visualization"},{"id":"e121b140-fa78-11e6-a1df-a78bd7504d38-ecs","name":"3:panel_3","type":"visualization"},{"id":"d56ee420-fa79-11e6-a1df-a78bd7504d38-ecs","name":"4:panel_4","type":"visualization"},{"id":"12667040-fa80-11e6-a1df-a78bd7504d38-ecs","name":"5:panel_5","type":"visualization"},{"id":"346bb290-fa80-11e6-a1df-a78bd7504d38-ecs","name":"6:panel_6","type":"visualization"},{"id":"327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:15.759Z","version":"WzQ0ODEsMV0="} diff --git a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-ssh-login-attempts.ndjson b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-ssh-login-attempts.ndjson deleted file mode 100644 index 52160c10607b..000000000000 --- a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-ssh-login-attempts.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"system.auth.ssh.event:Accepted\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Successful SSH logins [Filebeat System] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Accepted\": \"#3F6833\", \"Failed\": \"#F9934E\", \"Invalid\": \"#447EBC\", \"password\": \"#BF1B00\", \"publickey\": \"#629E51\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"system.auth.ssh.method\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"Successful SSH logins ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"d16bb400-f9cc-11e6-8115-a7c18106d86a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:23.956Z","version":"WzQ1MzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"SSH login attempts [Filebeat System] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Accepted\": \"#3F6833\", \"Failed\": \"#F9934E\", \"Invalid\": \"#447EBC\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"system.auth.ssh.event\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"times\":[]},\"title\":\"SSH login attempts ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"78b74f30-f9cd-11e6-8115-a7c18106d86a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:23.956Z","version":"WzQ1MzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"system.auth.ssh.event:Failed OR system.auth.ssh.event:Invalid\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"SSH users of failed login attempts [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"SSH users of failed login attempts ECS\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"341ffe70-f9ce-11e6-8115-a7c18106d86a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:23.956Z","version":"WzQ1MzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"system.auth.ssh.event:Failed OR system.auth.ssh.event:Invalid\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"SSH failed login attempts source locations [Filebeat System] ECS","uiStateJSON":"{\"mapCenter\": [17.602139123350838, 69.697265625], \"mapZoom\": 2}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"precision\":2},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Shaded Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"SSH failed login attempts source locations ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"3cec3eb0-f9d3-11e6-8a3e-2b904044ea1d-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:23.956Z","version":"WzQ1NDAsMV0="} -{"attributes":{"columns":["system.auth.ssh.event","system.auth.ssh.method","user.name","source.ip","source.geo.country_iso_code"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:system.auth AND system.auth.ssh.event:*\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"SSH login attempts [Filebeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"62439dc0-f9c9-11e6-a747-6121780e0414-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:23.956Z","version":"WzQ1NDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Dashboards [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Syslog](#/dashboard/Filebeat-syslog-dashboard-ecs) | [Sudo commands](#/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs) | [SSH logins](#/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs) | [New users and groups](#/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs)\"},\"title\":\"Dashboards [Filebeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:24.999Z","version":"WzQ1NDcsMV0="} -{"attributes":{"description":"SSH dashboard for the System module in Filebeat","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":16,\"w\":48,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":48,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":24,\"h\":16,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":28,\"w\":24,\"h\":16,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"mapBounds\":{\"bottom_right\":{\"lat\":10.31491928581316,\"lon\":74.53125},\"top_left\":{\"lat\":60.50052541051131,\"lon\":-27.94921875}},\"mapCenter\":[39.774769485295465,23.203125],\"mapCollar\":{\"bottom_right\":{\"lat\":-14.777884999999998,\"lon\":125.771485},\"top_left\":{\"lat\":85.593335,\"lon\":-79.189455},\"zoom\":3},\"mapZoom\":3,\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":44,\"w\":48,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"columns\":[\"system.auth.ssh.event\",\"system.auth.ssh.method\",\"user.name\",\"source.ip\",\"source.geo.country_iso_code\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Filebeat System] SSH login attempts ECS","version":1},"coreMigrationVersion":"8.0.0","id":"5517a150-f9ce-11e6-8115-a7c18106d86a-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"d16bb400-f9cc-11e6-8115-a7c18106d86a-ecs","name":"1:panel_1","type":"visualization"},{"id":"78b74f30-f9cd-11e6-8115-a7c18106d86a-ecs","name":"2:panel_2","type":"visualization"},{"id":"341ffe70-f9ce-11e6-8115-a7c18106d86a-ecs","name":"3:panel_3","type":"visualization"},{"id":"3cec3eb0-f9d3-11e6-8a3e-2b904044ea1d-ecs","name":"4:panel_4","type":"visualization"},{"id":"62439dc0-f9c9-11e6-a747-6121780e0414-ecs","name":"5:panel_5","type":"search"},{"id":"327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs","name":"6:panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:23.956Z","version":"WzQ1NDMsMV0="} diff --git a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-syslog-dashboard-ecs.json b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-syslog-dashboard-ecs.json new file mode 100644 index 000000000000..1f12a6c4f875 --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-syslog-dashboard-ecs.json @@ -0,0 +1,128 @@ +{ + "attributes": { + "description": "Syslog dashboard from the Filebeat System module", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "1", + "w": 32, + "x": 0, + "y": 4 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "2", + "w": 16, + "x": 32, + "y": 4 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "host.hostname", + "process.name", + "message" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 28, + "i": "3", + "w": 48, + "x": 0, + "y": 20 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "4", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat System] Syslog dashboard ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Filebeat-syslog-dashboard-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Syslog-events-by-hostname-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "Syslog-hostnames-and-processes-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "Syslog-system-logs-ecs", + "name": "3:panel_3", + "type": "search" + }, + { + "id": "327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs", + "name": "4:panel_4", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:24.999Z", + "version": "WzQ1NDgsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-syslog.ndjson b/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-syslog.ndjson deleted file mode 100644 index b37f6aa1d44c..000000000000 --- a/filebeat/module/system/_meta/kibana/7/dashboard/Filebeat-syslog.ndjson +++ /dev/null @@ -1,5 +0,0 @@ -{"attributes":{"columns":["host.hostname","process.name","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:system.syslog\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Syslog logs [Filebeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Syslog-system-logs-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:24.999Z","version":"WzQ1NDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Syslog events by hostname [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"host.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Syslog events by hostname ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Syslog-events-by-hostname-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Syslog-system-logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:24.999Z","version":"WzQ1NDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Syslog hostnames and processes [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"host.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"process.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Syslog hostnames and processes ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Syslog-hostnames-and-processes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Syslog-system-logs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:24.999Z","version":"WzQ1NDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Dashboards [Filebeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Syslog](#/dashboard/Filebeat-syslog-dashboard-ecs) | [Sudo commands](#/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs) | [SSH logins](#/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs) | [New users and groups](#/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs)\"},\"title\":\"Dashboards [Filebeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:24.999Z","version":"WzQ1NDcsMV0="} -{"attributes":{"description":"Syslog dashboard from the Filebeat System module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":32,\"h\":16,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":4,\"w\":16,\"h\":16,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":20,\"w\":48,\"h\":28,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"columns\":[\"host.hostname\",\"process.name\",\"message\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Filebeat System] Syslog dashboard ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-syslog-dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Syslog-events-by-hostname-ecs","name":"1:panel_1","type":"visualization"},{"id":"Syslog-hostnames-and-processes-ecs","name":"2:panel_2","type":"visualization"},{"id":"Syslog-system-logs-ecs","name":"3:panel_3","type":"search"},{"id":"327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs","name":"4:panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:24.999Z","version":"WzQ1NDgsMV0="} diff --git a/filebeat/module/system/_meta/kibana/7/search/62439dc0-f9c9-11e6-a747-6121780e0414-ecs.json b/filebeat/module/system/_meta/kibana/7/search/62439dc0-f9c9-11e6-a747-6121780e0414-ecs.json new file mode 100644 index 000000000000..da7c37fcecc1 --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/search/62439dc0-f9c9-11e6-a747-6121780e0414-ecs.json @@ -0,0 +1,47 @@ +{ + "attributes": { + "columns": [ + "system.auth.ssh.event", + "system.auth.ssh.method", + "user.name", + "source.ip", + "source.geo.country_iso_code" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:system.auth AND system.auth.ssh.event:*" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "SSH login attempts [Filebeat System] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "62439dc0-f9c9-11e6-a747-6121780e0414-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:23.956Z", + "version": "WzQ1NDEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/search/8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs.json b/filebeat/module/system/_meta/kibana/7/search/8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs.json new file mode 100644 index 000000000000..53aa0c38d8e0 --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/search/8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs.json @@ -0,0 +1,47 @@ +{ + "attributes": { + "columns": [ + "user.name", + "user.id", + "group.id", + "system.auth.useradd.home", + "system.auth.useradd.shell" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "system.auth.useradd:*" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "useradd logs [Filebeat System] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:15.759Z", + "version": "WzQ0NzksMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/search/Syslog-system-logs-ecs.json b/filebeat/module/system/_meta/kibana/7/search/Syslog-system-logs-ecs.json new file mode 100644 index 000000000000..3943a95557c2 --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/search/Syslog-system-logs-ecs.json @@ -0,0 +1,58 @@ +{ + "attributes": { + "columns": [ + "host.hostname", + "process.name", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:system.syslog" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Syslog logs [Filebeat System] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Syslog-system-logs-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:24.999Z", + "version": "WzQ1NDYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/search/b6f321e0-fa25-11e6-bbd3-29c986c96e5a-ecs.json b/filebeat/module/system/_meta/kibana/7/search/b6f321e0-fa25-11e6-bbd3-29c986c96e5a-ecs.json new file mode 100644 index 000000000000..70924685842d --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/search/b6f321e0-fa25-11e6-bbd3-29c986c96e5a-ecs.json @@ -0,0 +1,46 @@ +{ + "attributes": { + "columns": [ + "user.name", + "system.auth.sudo.user", + "system.auth.sudo.pwd", + "system.auth.sudo.command" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "system.auth.sudo:*" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Sudo commands [Filebeat System] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "b6f321e0-fa25-11e6-bbd3-29c986c96e5a-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:57.403Z", + "version": "WzQzNTcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/search/eb0039f0-fa7f-11e6-a1df-a78bd7504d38-ecs.json b/filebeat/module/system/_meta/kibana/7/search/eb0039f0-fa7f-11e6-a1df-a78bd7504d38-ecs.json new file mode 100644 index 000000000000..9351a0637b28 --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/search/eb0039f0-fa7f-11e6-a1df-a78bd7504d38-ecs.json @@ -0,0 +1,44 @@ +{ + "attributes": { + "columns": [ + "group.name", + "group.id" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "system.auth.groupadd:*" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "groupadd logs [Filebeat System] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "eb0039f0-fa7f-11e6-a1df-a78bd7504d38-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:15.759Z", + "version": "WzQ0ODAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/visualization/12667040-fa80-11e6-a1df-a78bd7504d38-ecs.json b/filebeat/module/system/_meta/kibana/7/visualization/12667040-fa80-11e6-a1df-a78bd7504d38-ecs.json new file mode 100644 index 000000000000..9347e1357875 --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/visualization/12667040-fa80-11e6-a1df-a78bd7504d38-ecs.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "New groups [Filebeat System] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "group.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "group.id", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "New groups ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "12667040-fa80-11e6-a1df-a78bd7504d38-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "eb0039f0-fa7f-11e6-a1df-a78bd7504d38-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:15.759Z", + "version": "WzQ0NzYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/visualization/327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs.json b/filebeat/module/system/_meta/kibana/7/visualization/327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs.json new file mode 100644 index 000000000000..50f2e04c938f --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/visualization/327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs.json @@ -0,0 +1,29 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Dashboards [Filebeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "[Syslog](#/dashboard/Filebeat-syslog-dashboard-ecs) | [Sudo commands](#/dashboard/277876d0-fa2c-11e6-bbd3-29c986c96e5a-ecs) | [SSH logins](#/dashboard/5517a150-f9ce-11e6-8115-a7c18106d86a-ecs) | [New users and groups](#/dashboard/0d3f2380-fa78-11e6-ae9b-81e5311e8cab-ecs)" + }, + "title": "Dashboards [Filebeat System] ECS", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "327417e0-8462-11e7-bab8-bd2f0fb42c54-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:24.999Z", + "version": "WzQ1NDcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/visualization/341ffe70-f9ce-11e6-8115-a7c18106d86a-ecs.json b/filebeat/module/system/_meta/kibana/7/visualization/341ffe70-f9ce-11e6-8115-a7c18106d86a-ecs.json new file mode 100644 index 000000000000..a235d84f6b4d --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/visualization/341ffe70-f9ce-11e6-8115-a7c18106d86a-ecs.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "system.auth.ssh.event:Failed OR system.auth.ssh.event:Invalid" + } + } + }, + "title": "SSH users of failed login attempts [Filebeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user.name", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "maxFontSize": 72, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear" + }, + "title": "SSH users of failed login attempts ECS", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "341ffe70-f9ce-11e6-8115-a7c18106d86a-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:23.956Z", + "version": "WzQ1MzksMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/visualization/346bb290-fa80-11e6-a1df-a78bd7504d38-ecs.json b/filebeat/module/system/_meta/kibana/7/visualization/346bb290-fa80-11e6-a1df-a78bd7504d38-ecs.json new file mode 100644 index 000000000000..fd2096b2cfba --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/visualization/346bb290-fa80-11e6-a1df-a78bd7504d38-ecs.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "New groups over time [Filebeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "group.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "legendPosition": "bottom", + "mode": "stacked", + "scale": "linear", + "setYExtents": false, + "times": [] + }, + "title": "New groups over time ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "346bb290-fa80-11e6-a1df-a78bd7504d38-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "eb0039f0-fa7f-11e6-a1df-a78bd7504d38-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:15.759Z", + "version": "WzQ0NzcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/visualization/3cec3eb0-f9d3-11e6-8a3e-2b904044ea1d-ecs.json b/filebeat/module/system/_meta/kibana/7/visualization/3cec3eb0-f9d3-11e6-8a3e-2b904044ea1d-ecs.json new file mode 100644 index 000000000000..c46ce8eacf3b --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/visualization/3cec3eb0-f9d3-11e6-8a3e-2b904044ea1d-ecs.json @@ -0,0 +1,93 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "system.auth.ssh.event:Failed OR system.auth.ssh.event:Invalid" + } + } + }, + "title": "SSH failed login attempts source locations [Filebeat System] ECS", + "uiStateJSON": { + "mapCenter": [ + 17.602139123350838, + 69.697265625 + ], + "mapZoom": 2 + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "source.geo.location", + "precision": 2 + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "listeners": {}, + "params": { + "addTooltip": true, + "heatBlur": 15, + "heatMaxZoom": 16, + "heatMinOpacity": 0.1, + "heatNormalizeData": true, + "heatRadius": 25, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 15, + 5 + ], + "mapType": "Shaded Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "attribution": "Maps provided by USGS", + "format": "image/png", + "layers": "0", + "styles": "", + "transparent": true, + "version": "1.3.0" + }, + "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" + } + }, + "title": "SSH failed login attempts source locations ECS", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3cec3eb0-f9d3-11e6-8a3e-2b904044ea1d-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:23.956Z", + "version": "WzQ1NDAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/visualization/51164310-fa2b-11e6-bbd3-29c986c96e5a-ecs.json b/filebeat/module/system/_meta/kibana/7/visualization/51164310-fa2b-11e6-bbd3-29c986c96e5a-ecs.json new file mode 100644 index 000000000000..abf8b1782baf --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/visualization/51164310-fa2b-11e6-bbd3-29c986c96e5a-ecs.json @@ -0,0 +1,83 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "system.auth.sudo.error:*" + } + } + }, + "title": "Sudo errors [Filebeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "system.auth.sudo.error", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "legendPosition": "right", + "mode": "stacked", + "scale": "linear", + "setYExtents": false, + "times": [] + }, + "title": "Sudo errors ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "51164310-fa2b-11e6-bbd3-29c986c96e5a-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:57.403Z", + "version": "WzQzNTQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/visualization/5c7af030-fa2a-11e6-bbd3-29c986c96e5a-ecs.json b/filebeat/module/system/_meta/kibana/7/visualization/5c7af030-fa2a-11e6-bbd3-29c986c96e5a-ecs.json new file mode 100644 index 000000000000..61d1f58b95c4 --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/visualization/5c7af030-fa2a-11e6-bbd3-29c986c96e5a-ecs.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Sudo commands by user [Filebeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "user.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "legendPosition": "right", + "mode": "stacked", + "scale": "linear", + "setYExtents": false, + "times": [] + }, + "title": "Sudo commands by user ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5c7af030-fa2a-11e6-bbd3-29c986c96e5a-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b6f321e0-fa25-11e6-bbd3-29c986c96e5a-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:57.403Z", + "version": "WzQzNTMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/visualization/5dd15c00-fa78-11e6-ae9b-81e5311e8cab-ecs.json b/filebeat/module/system/_meta/kibana/7/visualization/5dd15c00-fa78-11e6-ae9b-81e5311e8cab-ecs.json new file mode 100644 index 000000000000..03e4cb6d1d6d --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/visualization/5dd15c00-fa78-11e6-ae9b-81e5311e8cab-ecs.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "New users over time [Filebeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "user.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "legendPosition": "bottom", + "mode": "stacked", + "scale": "linear", + "setYExtents": false, + "times": [] + }, + "title": "New users over time ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5dd15c00-fa78-11e6-ae9b-81e5311e8cab-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:15.759Z", + "version": "WzQ0NzMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/visualization/78b74f30-f9cd-11e6-8115-a7c18106d86a-ecs.json b/filebeat/module/system/_meta/kibana/7/visualization/78b74f30-f9cd-11e6-8115-a7c18106d86a-ecs.json new file mode 100644 index 000000000000..ae4ddf4d63dd --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/visualization/78b74f30-f9cd-11e6-8115-a7c18106d86a-ecs.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index" + } + }, + "title": "SSH login attempts [Filebeat System] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "Accepted": "#3F6833", + "Failed": "#F9934E", + "Invalid": "#447EBC" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "system.auth.ssh.event", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "legendPosition": "right", + "mode": "stacked", + "scale": "linear", + "setYExtents": false, + "times": [] + }, + "title": "SSH login attempts ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "78b74f30-f9cd-11e6-8115-a7c18106d86a-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:23.956Z", + "version": "WzQ1MzgsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/visualization/Syslog-events-by-hostname-ecs.json b/filebeat/module/system/_meta/kibana/7/visualization/Syslog-events-by-hostname-ecs.json new file mode 100644 index 000000000000..fd1cb381a9b8 --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/visualization/Syslog-events-by-hostname-ecs.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Syslog events by hostname [Filebeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "host.hostname", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "legendPosition": "right", + "mode": "stacked", + "scale": "linear", + "setYExtents": false, + "shareYAxis": true, + "times": [], + "yAxis": {} + }, + "title": "Syslog events by hostname ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Syslog-events-by-hostname-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Syslog-system-logs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:24.999Z", + "version": "WzQ1NDQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/visualization/Syslog-hostnames-and-processes-ecs.json b/filebeat/module/system/_meta/kibana/7/visualization/Syslog-hostnames-and-processes-ecs.json new file mode 100644 index 000000000000..0c0e53fbdb4a --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/visualization/Syslog-hostnames-and-processes-ecs.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Syslog hostnames and processes [Filebeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "host.hostname", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "process.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "shareYAxis": true + }, + "title": "Syslog hostnames and processes ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Syslog-hostnames-and-processes-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Syslog-system-logs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:24.999Z", + "version": "WzQ1NDUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/visualization/d16bb400-f9cc-11e6-8115-a7c18106d86a-ecs.json b/filebeat/module/system/_meta/kibana/7/visualization/d16bb400-f9cc-11e6-8115-a7c18106d86a-ecs.json new file mode 100644 index 000000000000..9a3a7ebc5713 --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/visualization/d16bb400-f9cc-11e6-8115-a7c18106d86a-ecs.json @@ -0,0 +1,93 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "system.auth.ssh.event:Accepted" + } + } + }, + "title": "Successful SSH logins [Filebeat System] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "Accepted": "#3F6833", + "Failed": "#F9934E", + "Invalid": "#447EBC", + "password": "#BF1B00", + "publickey": "#629E51" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "system.auth.ssh.method", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "legendPosition": "right", + "mode": "stacked", + "scale": "linear", + "setYExtents": false, + "times": [] + }, + "title": "Successful SSH logins ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d16bb400-f9cc-11e6-8115-a7c18106d86a-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:23.956Z", + "version": "WzQ1MzcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/visualization/d56ee420-fa79-11e6-a1df-a78bd7504d38-ecs.json b/filebeat/module/system/_meta/kibana/7/visualization/d56ee420-fa79-11e6-a1df-a78bd7504d38-ecs.json new file mode 100644 index 000000000000..021380e0bec4 --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/visualization/d56ee420-fa79-11e6-a1df-a78bd7504d38-ecs.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "New users by home directory [Filebeat System] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "/bin/bash": "#E24D42", + "/bin/false": "#508642", + "/nonexistent": "#629E51", + "/sbin/nologin": "#7EB26D" + }, + "legendOpen": true + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "system.auth.useradd.home", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "user.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "New users by home directory ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d56ee420-fa79-11e6-a1df-a78bd7504d38-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:15.759Z", + "version": "WzQ0NzUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/visualization/dc589770-fa2b-11e6-bbd3-29c986c96e5a-ecs.json b/filebeat/module/system/_meta/kibana/7/visualization/dc589770-fa2b-11e6-bbd3-29c986c96e5a-ecs.json new file mode 100644 index 000000000000..944b0ae71a79 --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/visualization/dc589770-fa2b-11e6-bbd3-29c986c96e5a-ecs.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top sudo commands [Filebeat System] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "system.auth.sudo.command", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "user.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top sudo commands ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dc589770-fa2b-11e6-bbd3-29c986c96e5a-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b6f321e0-fa25-11e6-bbd3-29c986c96e5a-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:57.403Z", + "version": "WzQzNTUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/visualization/e121b140-fa78-11e6-a1df-a78bd7504d38-ecs.json b/filebeat/module/system/_meta/kibana/7/visualization/e121b140-fa78-11e6-a1df-a78bd7504d38-ecs.json new file mode 100644 index 000000000000..cb055536781b --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/visualization/e121b140-fa78-11e6-a1df-a78bd7504d38-ecs.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "New users by shell [Filebeat System] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "/bin/bash": "#E24D42", + "/bin/false": "#508642", + "/sbin/nologin": "#7EB26D" + }, + "legendOpen": true + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "system.auth.useradd.shell", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "user.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "New users by shell ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e121b140-fa78-11e6-a1df-a78bd7504d38-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:15.759Z", + "version": "WzQ0NzQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/_meta/kibana/7/visualization/f398d2f0-fa77-11e6-ae9b-81e5311e8cab-ecs.json b/filebeat/module/system/_meta/kibana/7/visualization/f398d2f0-fa77-11e6-ae9b-81e5311e8cab-ecs.json new file mode 100644 index 000000000000..fc083853f048 --- /dev/null +++ b/filebeat/module/system/_meta/kibana/7/visualization/f398d2f0-fa77-11e6-ae9b-81e5311e8cab-ecs.json @@ -0,0 +1,142 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "New users [Filebeat System] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Host", + "field": "host.hostname", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "User", + "field": "user.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "UID", + "field": "user.id", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "GID", + "field": "group.id", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "Home", + "field": "system.auth.useradd.home", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "7", + "params": { + "customLabel": "Shell", + "field": "system.auth.useradd.shell", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "New users ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f398d2f0-fa77-11e6-ae9b-81e5311e8cab-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "8030c1b0-fa77-11e6-ae9b-81e5311e8cab-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:15.759Z", + "version": "WzQ0NzIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/system/module.yml b/filebeat/module/system/module.yml index 9e908d443652..624c7e318094 100644 --- a/filebeat/module/system/module.yml +++ b/filebeat/module/system/module.yml @@ -1,12 +1,12 @@ dashboards: - id: 0d3f2380-fa78-11e6-ae9b-81e5311e8cab - file: Filebeat-new-users-and-groups.ndjson + file: Filebeat-new-users-and-groups.json - id: 277876d0-fa2c-11e6-bbd3-29c986c96e5a - file: Filebeat-auth-sudo-commands.ndjson + file: Filebeat-auth-sudo-commands.json - id: 5517a150-f9ce-11e6-8115-a7c18106d86a - file: Filebeat-ssh-login-attempts.ndjson + file: Filebeat-ssh-login-attempts.json - id: Filebeat-syslog-dashboard - file: Filebeat-syslog.ndjson + file: Filebeat-syslog.json diff --git a/filebeat/module/traefik/_meta/kibana/7/dashboard/Filebeat-Traefik-Dashboard-ecs.json b/filebeat/module/traefik/_meta/kibana/7/dashboard/Filebeat-Traefik-Dashboard-ecs.json new file mode 100644 index 000000000000..44322284612a --- /dev/null +++ b/filebeat/module/traefik/_meta/kibana/7/dashboard/Filebeat-Traefik-Dashboard-ecs.json @@ -0,0 +1,166 @@ +{ + "attributes": { + "description": "Dashboard for the Filebeat Traefik module", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "3", + "w": 16, + "x": 0, + "y": 36 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": true + } + }, + "gridData": { + "h": 16, + "i": "4", + "w": 16, + "x": 16, + "y": 36 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "5", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6", + "w": 48, + "x": 0, + "y": 24 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "7", + "w": 16, + "x": 32, + "y": 36 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapCenter": [ + 50.51342652633956, + -0.17578125 + ] + }, + "gridData": { + "h": 12, + "i": "8", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Traefik] Access logs ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Filebeat-Traefik-Dashboard-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Traefik-Access-Browsers-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "Traefik-Access-OSes-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "New-Visualization-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "Traefik-Access-Response-codes-by-top-URLs-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "Sent-sizes-ecs", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "Traefik-Access-Map-ecs", + "name": "8:panel_8", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:34.139Z", + "version": "WzQ2ODcsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/traefik/_meta/kibana/7/dashboard/Filebeat-traefik-overview.ndjson b/filebeat/module/traefik/_meta/kibana/7/dashboard/Filebeat-traefik-overview.ndjson deleted file mode 100644 index af584872c7e4..000000000000 --- a/filebeat/module/traefik/_meta/kibana/7/dashboard/Filebeat-traefik-overview.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Browsers breakdown [Filebeat Traefik] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Traefik Access Browsers ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Traefik-Access-Browsers-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:34.139Z","version":"WzQ2ODAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Operating systems breakdown [Filebeat Traefik] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.os.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"user_agent.os.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Traefik Access OSes ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Traefik-Access-OSes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:34.139Z","version":"WzQ2ODEsMV0="} -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module:traefik\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Traefik logs [Filebeat Traefik] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-Traefik-module-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:34.139Z","version":"WzQ2ODYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Response codes over time [Filebeat Traefik] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"200\": \"#7EB26D\", \"404\": \"#614D93\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"http.response.status_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"New Visualization ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"New-Visualization-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-Traefik-module-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:34.139Z","version":"WzQ2ODIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Response codes by top URLs [Filebeat Traefik] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"200\": \"#629E51\", \"404\": \"#0A50A1\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"url.original\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"http.response.status_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"shareYAxis\":true,\"row\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Traefik Access Response codes by top URLs ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Traefik-Access-Response-codes-by-top-URLs-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:34.139Z","version":"WzQ2ODMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:traefik.access\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Sent Byte Size [Filebeat Traefik] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Data sent\",\"field\":\"http.response.body.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{},\"schema\":\"radius\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":\"17\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Sent sizes ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Sent-sizes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:34.139Z","version":"WzQ2ODQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Access Map [Filebeat Traefik] ECS","uiStateJSON":"{\"mapCenter\": [12.039320557540572, -0.17578125]}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\"},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Traefik Access Map ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"Traefik-Access-Map-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Filebeat-Traefik-module-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:34.139Z","version":"WzQ2ODUsMV0="} -{"attributes":{"description":"Dashboard for the Filebeat Traefik module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":36,\"w\":16,\"h\":16,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":36,\"w\":16,\"h\":16,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":24,\"w\":48,\"h\":12,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":36,\"w\":16,\"h\":16,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":12,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"mapCenter\":[50.51342652633956,-0.17578125],\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Filebeat Traefik] Access logs ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Filebeat-Traefik-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Traefik-Access-Browsers-ecs","name":"3:panel_3","type":"visualization"},{"id":"Traefik-Access-OSes-ecs","name":"4:panel_4","type":"visualization"},{"id":"New-Visualization-ecs","name":"5:panel_5","type":"visualization"},{"id":"Traefik-Access-Response-codes-by-top-URLs-ecs","name":"6:panel_6","type":"visualization"},{"id":"Sent-sizes-ecs","name":"7:panel_7","type":"visualization"},{"id":"Traefik-Access-Map-ecs","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:34.139Z","version":"WzQ2ODcsMV0="} diff --git a/filebeat/module/traefik/_meta/kibana/7/search/Filebeat-Traefik-module-ecs.json b/filebeat/module/traefik/_meta/kibana/7/search/Filebeat-Traefik-module-ecs.json new file mode 100644 index 000000000000..5a41828cfe31 --- /dev/null +++ b/filebeat/module/traefik/_meta/kibana/7/search/Filebeat-Traefik-module-ecs.json @@ -0,0 +1,55 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.module:traefik" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Traefik logs [Filebeat Traefik] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Filebeat-Traefik-module-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:34.139Z", + "version": "WzQ2ODYsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/traefik/_meta/kibana/7/visualization/New-Visualization-ecs.json b/filebeat/module/traefik/_meta/kibana/7/visualization/New-Visualization-ecs.json new file mode 100644 index 000000000000..c532e81307ed --- /dev/null +++ b/filebeat/module/traefik/_meta/kibana/7/visualization/New-Visualization-ecs.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Response codes over time [Filebeat Traefik] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "200": "#7EB26D", + "404": "#614D93" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "http.response.status_code", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "legendPosition": "right", + "mode": "stacked", + "scale": "linear", + "setYExtents": false, + "shareYAxis": true, + "times": [], + "yAxis": {} + }, + "title": "New Visualization ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "New-Visualization-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Filebeat-Traefik-module-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:34.139Z", + "version": "WzQ2ODIsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/traefik/_meta/kibana/7/visualization/Sent-sizes-ecs.json b/filebeat/module/traefik/_meta/kibana/7/visualization/Sent-sizes-ecs.json new file mode 100644 index 000000000000..cf38b134322f --- /dev/null +++ b/filebeat/module/traefik/_meta/kibana/7/visualization/Sent-sizes-ecs.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:traefik.access" + } + } + }, + "title": "Sent Byte Size [Filebeat Traefik] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Data sent", + "field": "http.response.body.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": {}, + "schema": "radius", + "type": "count" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "legendPosition": "right", + "radiusRatio": "17", + "scale": "linear", + "setYExtents": false, + "shareYAxis": true, + "showCircles": true, + "smoothLines": true, + "times": [], + "yAxis": {} + }, + "title": "Sent sizes ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Sent-sizes-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:34.139Z", + "version": "WzQ2ODQsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/traefik/_meta/kibana/7/visualization/Traefik-Access-Browsers-ecs.json b/filebeat/module/traefik/_meta/kibana/7/visualization/Traefik-Access-Browsers-ecs.json new file mode 100644 index 000000000000..3b575b5c591b --- /dev/null +++ b/filebeat/module/traefik/_meta/kibana/7/visualization/Traefik-Access-Browsers-ecs.json @@ -0,0 +1,83 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Browsers breakdown [Filebeat Traefik] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user_agent.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "user_agent.version", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "shareYAxis": true + }, + "title": "Traefik Access Browsers ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Traefik-Access-Browsers-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:34.139Z", + "version": "WzQ2ODAsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/traefik/_meta/kibana/7/visualization/Traefik-Access-Map-ecs.json b/filebeat/module/traefik/_meta/kibana/7/visualization/Traefik-Access-Map-ecs.json new file mode 100644 index 000000000000..d01720cd35ad --- /dev/null +++ b/filebeat/module/traefik/_meta/kibana/7/visualization/Traefik-Access-Map-ecs.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Access Map [Filebeat Traefik] ECS", + "uiStateJSON": { + "mapCenter": [ + 12.039320557540572, + -0.17578125 + ] + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "source.geo.location" + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "listeners": {}, + "params": { + "addTooltip": true, + "heatBlur": 15, + "heatMaxZoom": 16, + "heatMinOpacity": 0.1, + "heatNormalizeData": true, + "heatRadius": 25, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 15, + 5 + ], + "mapType": "Scaled Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "attribution": "Maps provided by USGS", + "format": "image/png", + "layers": "0", + "styles": "", + "transparent": true, + "version": "1.3.0" + }, + "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" + } + }, + "title": "Traefik Access Map ECS", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Traefik-Access-Map-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Filebeat-Traefik-module-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:34.139Z", + "version": "WzQ2ODUsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/traefik/_meta/kibana/7/visualization/Traefik-Access-OSes-ecs.json b/filebeat/module/traefik/_meta/kibana/7/visualization/Traefik-Access-OSes-ecs.json new file mode 100644 index 000000000000..da5ed2d34bac --- /dev/null +++ b/filebeat/module/traefik/_meta/kibana/7/visualization/Traefik-Access-OSes-ecs.json @@ -0,0 +1,83 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Operating systems breakdown [Filebeat Traefik] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user_agent.os.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "user_agent.os.version", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "shareYAxis": true + }, + "title": "Traefik Access OSes ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Traefik-Access-OSes-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:34.139Z", + "version": "WzQ2ODEsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/traefik/_meta/kibana/7/visualization/Traefik-Access-Response-codes-by-top-URLs-ecs.json b/filebeat/module/traefik/_meta/kibana/7/visualization/Traefik-Access-Response-codes-by-top-URLs-ecs.json new file mode 100644 index 000000000000..d89f58bc1631 --- /dev/null +++ b/filebeat/module/traefik/_meta/kibana/7/visualization/Traefik-Access-Response-codes-by-top-URLs-ecs.json @@ -0,0 +1,91 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Response codes by top URLs [Filebeat Traefik] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "200": "#629E51", + "404": "#0A50A1" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "url.original", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "split", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "http.response.status_code", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "row": false, + "shareYAxis": true + }, + "title": "Traefik Access Response codes by top URLs ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Traefik-Access-Response-codes-by-top-URLs-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:34.139Z", + "version": "WzQ2ODMsMV0=" +} \ No newline at end of file diff --git a/filebeat/module/traefik/module.yml b/filebeat/module/traefik/module.yml index 37e61c7c506d..30161e18bdc0 100644 --- a/filebeat/module/traefik/module.yml +++ b/filebeat/module/traefik/module.yml @@ -1,12 +1,12 @@ dashboards: - id: filebeat-traefik-overview - file: Filebeat-traefik-overview.ndjson + file: Filebeat-traefik-overview.json - id: filebeat-traefik-logs - file: Filebeat-traefik-logs.ndjson + file: Filebeat-traefik-logs.json - id: ML-Traefik-Access-Remote-IP-Count-Explorer - file: ml-traefik-access-remote-ip-count-explorer.ndjson + file: ml-traefik-access-remote-ip-count-explorer.json - id: ML-Traefik-Remote-IP-URL-Explorer - file: ml-traefik-remote-ip-url-explorer.ndjson + file: ml-traefik-remote-ip-url-explorer.json diff --git a/libbeat/cmd/export/dashboard.go b/libbeat/cmd/export/dashboard.go index 83778d512d96..e0cb74545ded 100644 --- a/libbeat/cmd/export/dashboard.go +++ b/libbeat/cmd/export/dashboard.go @@ -18,7 +18,6 @@ package export import ( - "fmt" "path/filepath" "github.com/spf13/cobra" @@ -37,7 +36,11 @@ func GenDashboardCmd(settings instance.Settings) *cobra.Command { Run: func(cmd *cobra.Command, args []string) { dashboard, _ := cmd.Flags().GetString("id") yml, _ := cmd.Flags().GetString("yml") - decode, _ := cmd.Flags().GetBool("decode") + folder, _ := cmd.Flags().GetString("folder") + + if len(folder) == 0 { + fatalf("-folder must be specified") + } b, err := instance.NewInitializedBeat(settings) if err != nil { @@ -61,9 +64,7 @@ func GenDashboardCmd(settings instance.Settings) *cobra.Command { fatalf("Error exporting dashboards from yml: %+v.\n", err) } for i, r := range results { - if decode { - r = dashboards.DecodeExported(r) - } + r = dashboards.DecodeExported(r) err = dashboards.SaveToFile(r, info.Dashboards[i].File, filepath.Dir(yml), client.GetVersion()) if err != nil { @@ -81,17 +82,20 @@ func GenDashboardCmd(settings instance.Settings) *cobra.Command { fatalf("Error exporting dashboard: %+v.\n", err) } - if decode { - result = dashboards.DecodeExported(result) + result = dashboards.DecodeExported(result) + + err = dashboards.SaveToFolder(result, folder, client.GetVersion()) + if err != nil { + fatalf("Error saving assets to folder '%s' : %+v.\n", folder, err) } - fmt.Println(string(result)) + } }, } genTemplateConfigCmd.Flags().String("id", "", "Dashboard id") genTemplateConfigCmd.Flags().String("yml", "", "Yaml file containing list of dashboard ID and filename pairs") - genTemplateConfigCmd.Flags().Bool("decode", false, "Decode exported dashboard") + genTemplateConfigCmd.Flags().String("folder", "", "Target folder to save exported assets") return genTemplateConfigCmd } diff --git a/libbeat/dashboards/decode.go b/libbeat/dashboards/decode.go index 6771559e5fe0..cd79bfead430 100644 --- a/libbeat/dashboards/decode.go +++ b/libbeat/dashboards/decode.go @@ -41,17 +41,28 @@ var ( // DecodeExported decodes an exported dashboard func DecodeExported(exported []byte) []byte { // remove unsupported chars - var result []byte + var result bytes.Buffer r := bufio.NewReader(bytes.NewReader(exported)) for { line, err := r.ReadBytes('\n') if err != nil { if err == io.EOF { - return append(result, decodeLine(line)...) + _, err = result.Write(decodeLine(line)) + if err != nil { + return exported + } + return result.Bytes() } return exported } - result = append(result, decodeLine(line)...) + _, err = result.Write(decodeLine(line)) + if err != nil { + return exported + } + _, err = result.WriteRune('\n') + if err != nil { + return exported + } } } @@ -65,7 +76,6 @@ func decodeLine(line []byte) []byte { if err != nil { return line } - var result []byte for _, key := range responseToDecode { // All fields are optional, so errors are not caught err := decodeValue(o, key) @@ -73,9 +83,8 @@ func decodeLine(line []byte) []byte { logger := logp.NewLogger("dashboards") logger.Debugf("Error while decoding dashboard objects: %+v", err) } - result = append(result, []byte(o.String())...) } - return result + return []byte(o.String()) } func decodeValue(data common.MapStr, key string) error { diff --git a/libbeat/dashboards/export.go b/libbeat/dashboards/export.go index 28245ba272ed..b75adfc4b99f 100644 --- a/libbeat/dashboards/export.go +++ b/libbeat/dashboards/export.go @@ -18,6 +18,11 @@ package dashboards import ( + "bufio" + "bytes" + "encoding/json" + "fmt" + "io" "io/ioutil" "os" "path" @@ -99,3 +104,65 @@ func SaveToFile(dashboard []byte, filename, root string, version common.Version) return ioutil.WriteFile(out, dashboard, OutputPermission) } + +// SaveToFile creates the required directories if needed and saves dashboard. +func SaveToFolder(dashboard []byte, root string, version common.Version) error { + p := path.Join(root, "_meta", "kibana", strconv.Itoa(version.Major)) + err := os.MkdirAll(p, 0750) + if err != nil { + return fmt.Errorf("failed to create folder ('%s') for new dashboard: %+v", p, err) + } + + r := bufio.NewReader(bytes.NewReader(dashboard)) + for { + line, err := r.ReadBytes('\n') + if err != nil { + if err == io.EOF { + return saveAsset(line, p) + } + return fmt.Errorf("error while reading dashboard lines: %+v", err) + } + err = saveAsset(line, p) + if err != nil { + return fmt.Errorf("error while saving dashboard asset: %+v", err) + } + } +} + +func saveAsset(line []byte, assetRoot string) error { + var a common.MapStr + err := json.Unmarshal(line, &a) + if err != nil { + return fmt.Errorf("failed to decode dashboard asset: %+v", err) + } + + t, err := a.GetValue("type") + if err != nil { + return fmt.Errorf("failed to retrieve asset type: %+v", err) + } + assetType, ok := t.(string) + if !ok { + return fmt.Errorf("asset type must be string: %+v", t) + } + id, err := a.GetValue("id") + if err != nil { + return fmt.Errorf("failed to retrieve asset id: %+v", err) + } + assetID, ok := id.(string) + if !ok { + return fmt.Errorf("asset id must be string: %+v", id) + } + assetFolder := filepath.Join(assetRoot, assetType) + err = os.MkdirAll(assetFolder, 0750) + if err != nil { + return fmt.Errorf("failed to create folder ('%s') for asset: %+v", assetFolder, err) + } + + out := filepath.Join(assetFolder, assetID+".json") + assetIndented, err := json.MarshalIndent(a, "", " ") + if err != nil { + return fmt.Errorf("failed to get indented bytes: %+v", err) + } + return ioutil.WriteFile(out, assetIndented, OutputPermission) + +} diff --git a/libbeat/dashboards/importer.go b/libbeat/dashboards/importer.go index 139acbb1facc..d1c81a691bba 100644 --- a/libbeat/dashboards/importer.go +++ b/libbeat/dashboards/importer.go @@ -110,10 +110,9 @@ func (imp Importer) ImportFile(fileType string, file string) error { func (imp Importer) ImportDir(dirType string, dir string) error { imp.loader.statusMsg("Import directory %s", dir) - dir = path.Join(dir, dirType) var errors []string - files, err := filepath.Glob(path.Join(dir, "*.ndjson")) + files, err := filepath.Glob(path.Join(dir, "*", "*.json")) if err != nil { return fmt.Errorf("Failed to read directory %s. Error: %s", dir, err) } diff --git a/libbeat/dashboards/kibana_loader.go b/libbeat/dashboards/kibana_loader.go index be3114e2c2ba..6c512f4edd02 100644 --- a/libbeat/dashboards/kibana_loader.go +++ b/libbeat/dashboards/kibana_loader.go @@ -151,12 +151,23 @@ func (loader KibanaLoader) ImportDashboard(file string) error { content = ReplaceStringInDashboard("CHANGEME_HOSTNAME", loader.hostname, content) - if err := loader.client.ImportMultiPartFormFile(importAPI, params, filepath.Base(file), string(content)); err != nil { - return fmt.Errorf("error loading index pattern: %+v", err) + var obj common.MapStr + err = json.Unmarshal(content, &obj) + if err != nil { + return err + } + + if err := loader.client.ImportMultiPartFormFile(importAPI, params, correctExtension(file), obj.String()); err != nil { + return fmt.Errorf("error dashboard asset: %+v", err) } return nil } +func correctExtension(file string) string { + return filepath.Base(file[:len(file)-len("json")]) + "ndjson" +} + +// Close closes the client func (loader KibanaLoader) Close() error { return loader.client.Close() } diff --git a/libbeat/kibana/client.go b/libbeat/kibana/client.go index ee1bd5b86470..2093630a9542 100644 --- a/libbeat/kibana/client.go +++ b/libbeat/kibana/client.go @@ -184,7 +184,9 @@ func (conn *Connection) Request(method, extraPath string, return 0, nil, fmt.Errorf("fail to read response %s", err) } - retError = extractError(result) + if resp.StatusCode >= 300 { + retError = extractError(result) + } return resp.StatusCode, result, retError } diff --git a/libbeat/kibana/client_test.go b/libbeat/kibana/client_test.go index c69592b8ef5c..1f103f387e4c 100644 --- a/libbeat/kibana/client_test.go +++ b/libbeat/kibana/client_test.go @@ -33,6 +33,7 @@ import ( func TestErrorJson(t *testing.T) { // also common 200: {"objects":[{"id":"apm-*","type":"index-pattern","error":{"message":"[doc][index-pattern:test-*]: version conflict, document already exists (current version [1])"}}]} kibanaTs := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { + w.WriteHeader(http.StatusUnauthorized) w.Write([]byte(`{"message": "Cannot export dashboard", "attributes":{"objects":[{"id":"test-*","type":"index-pattern","error":{"message":"action [indices:data/write/bulk[s]] is unauthorized for user [test]"}}]}}`)) })) defer kibanaTs.Close() @@ -42,12 +43,13 @@ func TestErrorJson(t *testing.T) { HTTP: http.DefaultClient, } code, _, err := conn.Request(http.MethodPost, "", url.Values{}, nil, nil) - assert.Equal(t, http.StatusOK, code) + assert.Equal(t, http.StatusUnauthorized, code) assert.Error(t, err) } func TestErrorBadJson(t *testing.T) { kibanaTs := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { + w.WriteHeader(http.StatusGone) w.Write([]byte(`{`)) })) defer kibanaTs.Close() @@ -57,7 +59,7 @@ func TestErrorBadJson(t *testing.T) { HTTP: http.DefaultClient, } code, _, err := conn.Request(http.MethodPost, "", url.Values{}, nil, nil) - assert.Equal(t, http.StatusOK, code) + assert.Equal(t, http.StatusGone, code) assert.Error(t, err) } diff --git a/libbeat/scripts/unpack_dashboards.py b/libbeat/scripts/unpack_dashboards.py index b0adbe09b919..e3b068fbf7af 100644 --- a/libbeat/scripts/unpack_dashboards.py +++ b/libbeat/scripts/unpack_dashboards.py @@ -5,25 +5,24 @@ def transform_data(data, method): - for obj in data["objects"]: - if "attributes" not in obj: - continue + if "attributes" not in data: + return - if "uiStateJSON" in obj["attributes"]: - obj["attributes"]["uiStateJSON"] = method(obj["attributes"]["uiStateJSON"]) + if "uiStateJSON" in data["attributes"]: + data["attributes"]["uiStateJSON"] = method(data["attributes"]["uiStateJSON"]) - if "optionsJSON" in obj["attributes"]: - obj["attributes"]["optionsJSON"] = method(obj["attributes"]["optionsJSON"]) + if "optionsJSON" in data["attributes"]: + data["attributes"]["optionsJSON"] = method(data["attributes"]["optionsJSON"]) - if "panelsJSON" in obj["attributes"]: - obj["attributes"]["panelsJSON"] = method(obj["attributes"]["panelsJSON"]) + if "panelsJSON" in data["attributes"]: + data["attributes"]["panelsJSON"] = method(data["attributes"]["panelsJSON"]) - if "visState" in obj["attributes"]: - obj["attributes"]["visState"] = method(obj["attributes"]["visState"]) + if "visState" in data["attributes"]: + data["attributes"]["visState"] = method(data["attributes"]["visState"]) - if "kibanaSavedObjectMeta" in obj["attributes"] and "searchSourceJSON" in obj["attributes"]["kibanaSavedObjectMeta"]: - obj["attributes"]["kibanaSavedObjectMeta"]["searchSourceJSON"] = method( - obj["attributes"]["kibanaSavedObjectMeta"]["searchSourceJSON"]) + if "kibanaSavedObjectMeta" in data["attributes"] and "searchSourceJSON" in data["attributes"]["kibanaSavedObjectMeta"]: + data["attributes"]["kibanaSavedObjectMeta"]["searchSourceJSON"] = method( + data["attributes"]["kibanaSavedObjectMeta"]["searchSourceJSON"]) def transform_file(path, method): diff --git a/libbeat/tests/system/test_dashboard.py b/libbeat/tests/system/test_dashboard.py index 96fc8685b35d..8022953042c3 100644 --- a/libbeat/tests/system/test_dashboard.py +++ b/libbeat/tests/system/test_dashboard.py @@ -1,9 +1,11 @@ import os import os.path import pytest +import json import re import requests import semver +import shutil import subprocess import unittest @@ -260,7 +262,6 @@ def test_dev_tool_export_dashboard_by_id(self): command = path + " -kibana http://" + self.get_kibana_host() + ":" + self.get_kibana_port() command = "go run " + command + " -dashboard Metricbeat-system-overview" - print(command) p = subprocess.Popen(command, shell=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE) content, err = p.communicate() @@ -274,6 +275,44 @@ def test_dev_tool_export_dashboard_by_id(self): os.remove("output.ndjson") + @unittest.skipUnless(INTEGRATION_TESTS, "integration test") + @pytest.mark.tag('integration') + def test_dev_tool_export_dashboard_by_id_to_folder(self): + """ + Test dev-tools/cmd/dashboards exports dashboard and removes unsupported characters + and separates each asset into a file under the appropriate folder + """ + + self.test_load_dashboard() + + folder_name = "my-system" + path = os.path.normpath(self.beat_path + "/../dev-tools/cmd/dashboards/export_dashboards.go") + command = path + " -kibana http://" + self.get_kibana_host() + ":" + self.get_kibana_port() + command = "go run " + command + " -dashboard Metricbeat-system-overview -folder " + folder_name + + p = subprocess.Popen(command, shell=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE) + content, err = p.communicate() + print(content, err) + + assert p.returncode == 0 + + assert os.path.isfile("output.ndjson") is False + assert os.path.isdir(folder_name) is True + + kibana_semver = semver.VersionInfo.parse(self.get_version()) + assets_root = os.path.join(folder_name, "_meta", "kibana", str(kibana_semver.major)) + assert os.path.isdir(assets_root) is True + assert os.path.isdir(os.path.join(assets_root, "dashboard")) is True + assert os.path.isdir(os.path.join(assets_root, "visualization")) is True + + with open(os.path.join(assets_root, "dashboard", "Metricbeat-system-overview.json")) as dashboard_file: + dashboard = json.load(dashboard_file) + for reference in dashboard["references"]: + reference_path = os.path.join(assets_root, reference["type"], reference["id"]+".json") + assert os.path.isfile(reference_path) + + shutil.rmtree(folder_name) + @unittest.skipUnless(INTEGRATION_TESTS, "integration test") @pytest.mark.tag('integration') def test_dev_tool_export_dashboard_by_id_unknown_id(self): @@ -334,7 +373,6 @@ def test_dev_tool_export_dashboard_from_yml(self): path = os.path.normpath(self.beat_path + "/../dev-tools/cmd/dashboards/export_dashboards.go") command = path + " -kibana http://" + self.get_kibana_host() + ":" + self.get_kibana_port() command = "go run " + command + " -yml " + os.path.join(self.beat_path, "tests", "files", "dashboards.yml") - print(command) p = subprocess.Popen(command, shell=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE) content, err = p.communicate() diff --git a/metricbeat/module/aerospike/_meta/kibana/7/dashboard/Metricbeat-aerospike-overview.ndjson b/metricbeat/module/aerospike/_meta/kibana/7/dashboard/Metricbeat-aerospike-overview.ndjson deleted file mode 100644 index be8d8567b063..000000000000 --- a/metricbeat/module/aerospike/_meta/kibana/7/dashboard/Metricbeat-aerospike-overview.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Namespace Filter [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"aerospike.namespace.name\",\"id\":\"1565367993423\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"namespace\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"Namespace Filter [Metricbeat Aerospike] ECS\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"72523510-bac3-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMyOTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Node Filter [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"aerospike.namespace.node.host\",\"id\":\"1565367993423\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"node\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"Node Filter [Metricbeat Aerospike] ECS\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"8c173130-bac3-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMyOTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Client Error Rates [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"8674fc30-bac8-11e9-986e-1d8d9532a1f1\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"8674fc31-bac8-11e9-986e-1d8d9532a1f1\",\"label\":\"read\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.read.error\",\"id\":\"8674fc32-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"max\"},{\"field\":\"8674fc32-bac8-11e9-986e-1d8d9532a1f1\",\"id\":\"8674fc34-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"8674fc34-bac8-11e9-986e-1d8d9532a1f1\",\"id\":\"8674fc33-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"86752340-bac8-11e9-986e-1d8d9532a1f1\",\"label\":\"write\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.write.error\",\"id\":\"86752341-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"max\"},{\"field\":\"86752341-bac8-11e9-986e-1d8d9532a1f1\",\"id\":\"86752343-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"86752343-bac8-11e9-986e-1d8d9532a1f1\",\"id\":\"86752342-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"86752344-bac8-11e9-986e-1d8d9532a1f1\",\"label\":\"delete\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.delete.error\",\"id\":\"86752345-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"max\"},{\"field\":\"86752345-bac8-11e9-986e-1d8d9532a1f1\",\"id\":\"86752347-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"86752347-bac8-11e9-986e-1d8d9532a1f1\",\"id\":\"86752346-bac8-11e9-986e-1d8d9532a1f1\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Client Error Rates [Metricbeat Aerospike] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b5121f00-bac8-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMyOTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Client Success Rates [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"3b633120-bac9-11e9-9a9a-2f5e8f21d503\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"3b633121-bac9-11e9-9a9a-2f5e8f21d503\",\"label\":\"read\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.read.success\",\"id\":\"3b633122-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"max\"},{\"field\":\"3b633122-bac9-11e9-9a9a-2f5e8f21d503\",\"id\":\"3b633124-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"3b633124-bac9-11e9-9a9a-2f5e8f21d503\",\"id\":\"3b633123-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"3b633125-bac9-11e9-9a9a-2f5e8f21d503\",\"label\":\"write\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.write.success\",\"id\":\"3b633126-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"max\"},{\"field\":\"3b633126-bac9-11e9-9a9a-2f5e8f21d503\",\"id\":\"3b633128-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"3b633128-bac9-11e9-9a9a-2f5e8f21d503\",\"id\":\"3b633127-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"3b633129-bac9-11e9-9a9a-2f5e8f21d503\",\"label\":\"delete\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.delete.success\",\"id\":\"3b63312a-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"max\"},{\"field\":\"3b63312a-bac9-11e9-9a9a-2f5e8f21d503\",\"id\":\"3b63312c-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"3b63312c-bac9-11e9-9a9a-2f5e8f21d503\",\"id\":\"3b63312b-bac9-11e9-9a9a-2f5e8f21d503\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Client Success Rates [Metricbeat Aerospike] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5b9bf0d0-bac9-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMyOTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Client Timeout Rates [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"ec962840-bac8-11e9-8c31-ed10485dacc9\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"ec962841-bac8-11e9-8c31-ed10485dacc9\",\"label\":\"read\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.read.timeout\",\"id\":\"ec962842-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"max\"},{\"field\":\"ec962842-bac8-11e9-8c31-ed10485dacc9\",\"id\":\"ec962844-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"ec962844-bac8-11e9-8c31-ed10485dacc9\",\"id\":\"ec962843-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"ec962845-bac8-11e9-8c31-ed10485dacc9\",\"label\":\"write\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.write.timeout\",\"id\":\"ec964f50-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"max\"},{\"field\":\"ec964f50-bac8-11e9-8c31-ed10485dacc9\",\"id\":\"ec964f52-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"ec964f52-bac8-11e9-8c31-ed10485dacc9\",\"id\":\"ec964f51-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"ec964f53-bac8-11e9-8c31-ed10485dacc9\",\"label\":\"delete\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.delete.timeout\",\"id\":\"ec964f54-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"max\"},{\"field\":\"ec964f54-bac8-11e9-8c31-ed10485dacc9\",\"id\":\"ec964f56-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"ec964f56-bac8-11e9-8c31-ed10485dacc9\",\"id\":\"ec964f55-bac8-11e9-8c31-ed10485dacc9\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Client Timeout Rates [Metricbeat Aerospike] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"23758d10-bac9-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMyOTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Disk Space [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"8f321e10-bac9-11e9-a715-c7f36757ae84\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"8f321e11-bac9-11e9-a715-c7f36757ae84\",\"label\":\"Total\",\"line_width\":2,\"metrics\":[{\"field\":\"aerospike.namespace.device.total.bytes\",\"id\":\"8f321e12-bac9-11e9-a715-c7f36757ae84\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.2\",\"formatter\":\"bytes\",\"id\":\"8f321e13-bac9-11e9-a715-c7f36757ae84\",\"label\":\"Used\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.device.used.bytes\",\"id\":\"8f321e14-bac9-11e9-a715-c7f36757ae84\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Disk Space [Metricbeat Aerospike] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bd767280-bac9-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMzMDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of Objects [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":null,\"id\":\"689053c0-baca-11e9-a6e8-09b17988a9ca\",\"value\":0}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"6a3d4070-baca-11e9-a6e8-09b17988a9ca\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"63159630-baca-11e9-b44b-b5d06880c15a\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"63159631-baca-11e9-b44b-b5d06880c15a\",\"label\":\"objects\",\"line_width\":2,\"metrics\":[{\"field\":\"aerospike.namespace.objects.total\",\"id\":\"63159632-baca-11e9-b44b-b5d06880c15a\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Number of Objects [Metricbeat Aerospike] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9ce7ae20-baca-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMzMDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Client Write Rates [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"0316eb50-bac8-11e9-a2f5-271fa90cc176\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"0316eb51-bac8-11e9-a2f5-271fa90cc176\",\"label\":\"success\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.write.success\",\"id\":\"0316eb52-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"max\"},{\"field\":\"0316eb52-bac8-11e9-a2f5-271fa90cc176\",\"id\":\"0316eb54-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"0316eb54-bac8-11e9-a2f5-271fa90cc176\",\"id\":\"0316eb53-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"0316eb55-bac8-11e9-a2f5-271fa90cc176\",\"label\":\"error\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.write.error\",\"id\":\"0316eb56-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"max\"},{\"field\":\"0316eb56-bac8-11e9-a2f5-271fa90cc176\",\"id\":\"0316eb58-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"0316eb58-bac8-11e9-a2f5-271fa90cc176\",\"id\":\"0316eb57-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"0316eb59-bac8-11e9-a2f5-271fa90cc176\",\"label\":\"timeout\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.write.timeout\",\"id\":\"0316eb5a-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"max\"},{\"field\":\"0316eb5a-bac8-11e9-a2f5-271fa90cc176\",\"id\":\"0316eb5c-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"0316eb5c-bac8-11e9-a2f5-271fa90cc176\",\"id\":\"0316eb5b-bac8-11e9-a2f5-271fa90cc176\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Client Write Rates [Metricbeat Aerospike] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3586e810-bac8-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMzMDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Client Read Rates [Metricbeat Aerospike] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"98667320-bac7-11e9-9324-49d4f7fb9626\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"98667321-bac7-11e9-9324-49d4f7fb9626\",\"label\":\"success\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.read.success\",\"id\":\"98667322-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"max\"},{\"field\":\"98667322-bac7-11e9-9324-49d4f7fb9626\",\"id\":\"98667324-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"98667324-bac7-11e9-9324-49d4f7fb9626\",\"id\":\"98667323-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"98667325-bac7-11e9-9324-49d4f7fb9626\",\"label\":\"error\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.read.error\",\"id\":\"98667326-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"max\"},{\"field\":\"98667326-bac7-11e9-9324-49d4f7fb9626\",\"id\":\"98667328-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"98667328-bac7-11e9-9324-49d4f7fb9626\",\"id\":\"98667327-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"98667329-bac7-11e9-9324-49d4f7fb9626\",\"label\":\"not_found\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.read.not_found\",\"id\":\"9866732a-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"max\"},{\"field\":\"9866732a-bac7-11e9-9324-49d4f7fb9626\",\"id\":\"9866732c-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"9866732c-bac7-11e9-9324-49d4f7fb9626\",\"id\":\"9866732b-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#490092\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"9866732d-bac7-11e9-9324-49d4f7fb9626\",\"label\":\"timeout\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"aerospike.namespace.client.read.timeout\",\"id\":\"9866732e-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"max\"},{\"field\":\"9866732e-bac7-11e9-9324-49d4f7fb9626\",\"id\":\"98667330-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"98667330-bac7-11e9-9324-49d4f7fb9626\",\"id\":\"9866732f-bac7-11e9-9324-49d4f7fb9626\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Client Read Rates [Metricbeat Aerospike] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"eae846a0-bac7-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMzMDMsMV0="} -{"attributes":{"description":"This Aerospike dashboard visualizes the most important metrics for Aerospike namespaces.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"controlledBy\": \"1565367993423\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"aerospike.namespace.name\", \"negate\": false, \"params\": {\"query\": \"metricbeat\"}, \"type\": \"phrase\", \"value\": \"metricbeat\"}, \"query\": {\"match\": {\"aerospike.namespace.name\": {\"query\": \"metricbeat\", \"type\": \"phrase\"}}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"1\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Namespace Filter\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"2\",\"w\":9,\"x\":0,\"y\":6},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Node Filter\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"3\",\"w\":25,\"x\":23,\"y\":12},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Client Error Rates\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"4\",\"w\":25,\"x\":23,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Client Success Rates\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"5\",\"w\":25,\"x\":23,\"y\":25},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Client Timeout Rates\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"6\",\"w\":23,\"x\":0,\"y\":25},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disk Space\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"7\",\"w\":14,\"x\":9,\"y\":0},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Number of Objects\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"8\",\"w\":12,\"x\":0,\"y\":12},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Writes per second\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"9\",\"w\":11,\"x\":12,\"y\":12},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Reads per second\",\"panelRefName\":\"panel_9\"}]","timeRestore":false,"title":"[Metricbeat Aerospike] Database Overview ","version":1},"coreMigrationVersion":"8.0.0","id":"b15668d0-bac3-11e9-a579-f5c0a5d81340","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"72523510-bac3-11e9-a579-f5c0a5d81340","name":"1:panel_1","type":"visualization"},{"id":"8c173130-bac3-11e9-a579-f5c0a5d81340","name":"2:panel_2","type":"visualization"},{"id":"b5121f00-bac8-11e9-a579-f5c0a5d81340","name":"3:panel_3","type":"visualization"},{"id":"5b9bf0d0-bac9-11e9-a579-f5c0a5d81340","name":"4:panel_4","type":"visualization"},{"id":"23758d10-bac9-11e9-a579-f5c0a5d81340","name":"5:panel_5","type":"visualization"},{"id":"bd767280-bac9-11e9-a579-f5c0a5d81340","name":"6:panel_6","type":"visualization"},{"id":"9ce7ae20-baca-11e9-a579-f5c0a5d81340","name":"7:panel_7","type":"visualization"},{"id":"3586e810-bac8-11e9-a579-f5c0a5d81340","name":"8:panel_8","type":"visualization"},{"id":"eae846a0-bac7-11e9-a579-f5c0a5d81340","name":"9:panel_9","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:23.479Z","version":"WzMyOTQsMV0="} diff --git a/metricbeat/module/aerospike/_meta/kibana/7/dashboard/b15668d0-bac3-11e9-a579-f5c0a5d81340.json b/metricbeat/module/aerospike/_meta/kibana/7/dashboard/b15668d0-bac3-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..adf0ad08f56c --- /dev/null +++ b/metricbeat/module/aerospike/_meta/kibana/7/dashboard/b15668d0-bac3-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,264 @@ +{ + "attributes": { + "description": "This Aerospike dashboard visualizes the most important metrics for Aerospike namespaces.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "controlledBy": "1565367993423", + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "aerospike.namespace.name", + "negate": false, + "params": { + "query": "metricbeat" + }, + "type": "phrase", + "value": "metricbeat" + }, + "query": { + "match": { + "aerospike.namespace.name": { + "query": "metricbeat", + "type": "phrase" + } + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "1", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Namespace Filter", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "2", + "w": 9, + "x": 0, + "y": 6 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Node Filter", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "3", + "w": 25, + "x": 23, + "y": 12 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Client Error Rates", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4", + "w": 25, + "x": 23, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "Client Success Rates", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "5", + "w": 25, + "x": 23, + "y": 25 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Client Timeout Rates", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "6", + "w": 23, + "x": 0, + "y": 25 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Disk Space", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "7", + "w": 14, + "x": 9, + "y": 0 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "title": "Number of Objects", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "8", + "w": 12, + "x": 0, + "y": 12 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "title": "Writes per second", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "9", + "w": 11, + "x": 12, + "y": 12 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "title": "Reads per second", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Aerospike] Database Overview ", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "b15668d0-bac3-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "72523510-bac3-11e9-a579-f5c0a5d81340", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "8c173130-bac3-11e9-a579-f5c0a5d81340", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "b5121f00-bac8-11e9-a579-f5c0a5d81340", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "5b9bf0d0-bac9-11e9-a579-f5c0a5d81340", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "23758d10-bac9-11e9-a579-f5c0a5d81340", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "bd767280-bac9-11e9-a579-f5c0a5d81340", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "9ce7ae20-baca-11e9-a579-f5c0a5d81340", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "3586e810-bac8-11e9-a579-f5c0a5d81340", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "eae846a0-bac7-11e9-a579-f5c0a5d81340", + "name": "9:panel_9", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:23.479Z", + "version": "WzMyOTQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/aerospike/_meta/kibana/7/visualization/23758d10-bac9-11e9-a579-f5c0a5d81340.json b/metricbeat/module/aerospike/_meta/kibana/7/visualization/23758d10-bac9-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..31b74f43d1a6 --- /dev/null +++ b/metricbeat/module/aerospike/_meta/kibana/7/visualization/23758d10-bac9-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,146 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Client Timeout Rates [Metricbeat Aerospike] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "ec962840-bac8-11e9-8c31-ed10485dacc9", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": "0.2", + "formatter": "number", + "id": "ec962841-bac8-11e9-8c31-ed10485dacc9", + "label": "read", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.client.read.timeout", + "id": "ec962842-bac8-11e9-8c31-ed10485dacc9", + "type": "max" + }, + { + "field": "ec962842-bac8-11e9-8c31-ed10485dacc9", + "id": "ec962844-bac8-11e9-8c31-ed10485dacc9", + "type": "derivative", + "unit": "1s" + }, + { + "field": "ec962844-bac8-11e9-8c31-ed10485dacc9", + "id": "ec962843-bac8-11e9-8c31-ed10485dacc9", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#DB1374", + "fill": "0.2", + "formatter": "number", + "id": "ec962845-bac8-11e9-8c31-ed10485dacc9", + "label": "write", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.client.write.timeout", + "id": "ec964f50-bac8-11e9-8c31-ed10485dacc9", + "type": "max" + }, + { + "field": "ec964f50-bac8-11e9-8c31-ed10485dacc9", + "id": "ec964f52-bac8-11e9-8c31-ed10485dacc9", + "type": "derivative", + "unit": "1s" + }, + { + "field": "ec964f52-bac8-11e9-8c31-ed10485dacc9", + "id": "ec964f51-bac8-11e9-8c31-ed10485dacc9", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#00B3A4", + "fill": "0.2", + "formatter": "number", + "id": "ec964f53-bac8-11e9-8c31-ed10485dacc9", + "label": "delete", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.client.delete.timeout", + "id": "ec964f54-bac8-11e9-8c31-ed10485dacc9", + "type": "max" + }, + { + "field": "ec964f54-bac8-11e9-8c31-ed10485dacc9", + "id": "ec964f56-bac8-11e9-8c31-ed10485dacc9", + "type": "derivative", + "unit": "1s" + }, + { + "field": "ec964f56-bac8-11e9-8c31-ed10485dacc9", + "id": "ec964f55-bac8-11e9-8c31-ed10485dacc9", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Client Timeout Rates [Metricbeat Aerospike] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "23758d10-bac9-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:23.479Z", + "version": "WzMyOTksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/aerospike/_meta/kibana/7/visualization/3586e810-bac8-11e9-a579-f5c0a5d81340.json b/metricbeat/module/aerospike/_meta/kibana/7/visualization/3586e810-bac8-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..2d8ab55de1cd --- /dev/null +++ b/metricbeat/module/aerospike/_meta/kibana/7/visualization/3586e810-bac8-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,146 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Client Write Rates [Metricbeat Aerospike] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "0316eb50-bac8-11e9-a2f5-271fa90cc176", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": "0.2", + "formatter": "number", + "id": "0316eb51-bac8-11e9-a2f5-271fa90cc176", + "label": "success", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.client.write.success", + "id": "0316eb52-bac8-11e9-a2f5-271fa90cc176", + "type": "max" + }, + { + "field": "0316eb52-bac8-11e9-a2f5-271fa90cc176", + "id": "0316eb54-bac8-11e9-a2f5-271fa90cc176", + "type": "derivative", + "unit": "1s" + }, + { + "field": "0316eb54-bac8-11e9-a2f5-271fa90cc176", + "id": "0316eb53-bac8-11e9-a2f5-271fa90cc176", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#DB1374", + "fill": "0.2", + "formatter": "number", + "id": "0316eb55-bac8-11e9-a2f5-271fa90cc176", + "label": "error", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.client.write.error", + "id": "0316eb56-bac8-11e9-a2f5-271fa90cc176", + "type": "max" + }, + { + "field": "0316eb56-bac8-11e9-a2f5-271fa90cc176", + "id": "0316eb58-bac8-11e9-a2f5-271fa90cc176", + "type": "derivative", + "unit": "1s" + }, + { + "field": "0316eb58-bac8-11e9-a2f5-271fa90cc176", + "id": "0316eb57-bac8-11e9-a2f5-271fa90cc176", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#00B3A4", + "fill": "0.2", + "formatter": "number", + "id": "0316eb59-bac8-11e9-a2f5-271fa90cc176", + "label": "timeout", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.client.write.timeout", + "id": "0316eb5a-bac8-11e9-a2f5-271fa90cc176", + "type": "max" + }, + { + "field": "0316eb5a-bac8-11e9-a2f5-271fa90cc176", + "id": "0316eb5c-bac8-11e9-a2f5-271fa90cc176", + "type": "derivative", + "unit": "1s" + }, + { + "field": "0316eb5c-bac8-11e9-a2f5-271fa90cc176", + "id": "0316eb5b-bac8-11e9-a2f5-271fa90cc176", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Client Write Rates [Metricbeat Aerospike] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3586e810-bac8-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:23.479Z", + "version": "WzMzMDIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/aerospike/_meta/kibana/7/visualization/5b9bf0d0-bac9-11e9-a579-f5c0a5d81340.json b/metricbeat/module/aerospike/_meta/kibana/7/visualization/5b9bf0d0-bac9-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..720a1e1cebb9 --- /dev/null +++ b/metricbeat/module/aerospike/_meta/kibana/7/visualization/5b9bf0d0-bac9-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,146 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Client Success Rates [Metricbeat Aerospike] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "3b633120-bac9-11e9-9a9a-2f5e8f21d503", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": "0.2", + "formatter": "number", + "id": "3b633121-bac9-11e9-9a9a-2f5e8f21d503", + "label": "read", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.client.read.success", + "id": "3b633122-bac9-11e9-9a9a-2f5e8f21d503", + "type": "max" + }, + { + "field": "3b633122-bac9-11e9-9a9a-2f5e8f21d503", + "id": "3b633124-bac9-11e9-9a9a-2f5e8f21d503", + "type": "derivative", + "unit": "1s" + }, + { + "field": "3b633124-bac9-11e9-9a9a-2f5e8f21d503", + "id": "3b633123-bac9-11e9-9a9a-2f5e8f21d503", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#DB1374", + "fill": "0.2", + "formatter": "number", + "id": "3b633125-bac9-11e9-9a9a-2f5e8f21d503", + "label": "write", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.client.write.success", + "id": "3b633126-bac9-11e9-9a9a-2f5e8f21d503", + "type": "max" + }, + { + "field": "3b633126-bac9-11e9-9a9a-2f5e8f21d503", + "id": "3b633128-bac9-11e9-9a9a-2f5e8f21d503", + "type": "derivative", + "unit": "1s" + }, + { + "field": "3b633128-bac9-11e9-9a9a-2f5e8f21d503", + "id": "3b633127-bac9-11e9-9a9a-2f5e8f21d503", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#00B3A4", + "fill": "0.2", + "formatter": "number", + "id": "3b633129-bac9-11e9-9a9a-2f5e8f21d503", + "label": "delete", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.client.delete.success", + "id": "3b63312a-bac9-11e9-9a9a-2f5e8f21d503", + "type": "max" + }, + { + "field": "3b63312a-bac9-11e9-9a9a-2f5e8f21d503", + "id": "3b63312c-bac9-11e9-9a9a-2f5e8f21d503", + "type": "derivative", + "unit": "1s" + }, + { + "field": "3b63312c-bac9-11e9-9a9a-2f5e8f21d503", + "id": "3b63312b-bac9-11e9-9a9a-2f5e8f21d503", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Client Success Rates [Metricbeat Aerospike] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5b9bf0d0-bac9-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:23.479Z", + "version": "WzMyOTgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/aerospike/_meta/kibana/7/visualization/72523510-bac3-11e9-a579-f5c0a5d81340.json b/metricbeat/module/aerospike/_meta/kibana/7/visualization/72523510-bac3-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..54c0c4a7cc38 --- /dev/null +++ b/metricbeat/module/aerospike/_meta/kibana/7/visualization/72523510-bac3-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Namespace Filter [Metricbeat Aerospike] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "aerospike.namespace.name", + "id": "1565367993423", + "indexPatternRefName": "control_0_index_pattern", + "label": "namespace", + "options": { + "dynamicOptions": true, + "multiselect": false, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": true + }, + "title": "Namespace Filter [Metricbeat Aerospike] ECS", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "72523510-bac3-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:23.479Z", + "version": "WzMyOTUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/aerospike/_meta/kibana/7/visualization/8c173130-bac3-11e9-a579-f5c0a5d81340.json b/metricbeat/module/aerospike/_meta/kibana/7/visualization/8c173130-bac3-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..deaea4b8413a --- /dev/null +++ b/metricbeat/module/aerospike/_meta/kibana/7/visualization/8c173130-bac3-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Node Filter [Metricbeat Aerospike] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "aerospike.namespace.node.host", + "id": "1565367993423", + "indexPatternRefName": "control_0_index_pattern", + "label": "node", + "options": { + "dynamicOptions": true, + "multiselect": false, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": true + }, + "title": "Node Filter [Metricbeat Aerospike] ECS", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8c173130-bac3-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:23.479Z", + "version": "WzMyOTYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/aerospike/_meta/kibana/7/visualization/9ce7ae20-baca-11e9-a579-f5c0a5d81340.json b/metricbeat/module/aerospike/_meta/kibana/7/visualization/9ce7ae20-baca-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..0564bac25de8 --- /dev/null +++ b/metricbeat/module/aerospike/_meta/kibana/7/visualization/9ce7ae20-baca-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,83 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Number of Objects [Metricbeat Aerospike] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": null, + "id": "689053c0-baca-11e9-a6e8-09b17988a9ca", + "value": 0 + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "6a3d4070-baca-11e9-a6e8-09b17988a9ca" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "63159630-baca-11e9-b44b-b5d06880c15a", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "number", + "id": "63159631-baca-11e9-b44b-b5d06880c15a", + "label": "objects", + "line_width": 2, + "metrics": [ + { + "field": "aerospike.namespace.objects.total", + "id": "63159632-baca-11e9-b44b-b5d06880c15a", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Number of Objects [Metricbeat Aerospike] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9ce7ae20-baca-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:23.479Z", + "version": "WzMzMDEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/aerospike/_meta/kibana/7/visualization/b5121f00-bac8-11e9-a579-f5c0a5d81340.json b/metricbeat/module/aerospike/_meta/kibana/7/visualization/b5121f00-bac8-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..5eb44dcc6ceb --- /dev/null +++ b/metricbeat/module/aerospike/_meta/kibana/7/visualization/b5121f00-bac8-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,146 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Client Error Rates [Metricbeat Aerospike] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "8674fc30-bac8-11e9-986e-1d8d9532a1f1", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": "0.2", + "formatter": "number", + "id": "8674fc31-bac8-11e9-986e-1d8d9532a1f1", + "label": "read", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.client.read.error", + "id": "8674fc32-bac8-11e9-986e-1d8d9532a1f1", + "type": "max" + }, + { + "field": "8674fc32-bac8-11e9-986e-1d8d9532a1f1", + "id": "8674fc34-bac8-11e9-986e-1d8d9532a1f1", + "type": "derivative", + "unit": "1s" + }, + { + "field": "8674fc34-bac8-11e9-986e-1d8d9532a1f1", + "id": "8674fc33-bac8-11e9-986e-1d8d9532a1f1", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#DB1374", + "fill": "0.2", + "formatter": "number", + "id": "86752340-bac8-11e9-986e-1d8d9532a1f1", + "label": "write", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.client.write.error", + "id": "86752341-bac8-11e9-986e-1d8d9532a1f1", + "type": "max" + }, + { + "field": "86752341-bac8-11e9-986e-1d8d9532a1f1", + "id": "86752343-bac8-11e9-986e-1d8d9532a1f1", + "type": "derivative", + "unit": "1s" + }, + { + "field": "86752343-bac8-11e9-986e-1d8d9532a1f1", + "id": "86752342-bac8-11e9-986e-1d8d9532a1f1", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#00B3A4", + "fill": "0.2", + "formatter": "number", + "id": "86752344-bac8-11e9-986e-1d8d9532a1f1", + "label": "delete", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.client.delete.error", + "id": "86752345-bac8-11e9-986e-1d8d9532a1f1", + "type": "max" + }, + { + "field": "86752345-bac8-11e9-986e-1d8d9532a1f1", + "id": "86752347-bac8-11e9-986e-1d8d9532a1f1", + "type": "derivative", + "unit": "1s" + }, + { + "field": "86752347-bac8-11e9-986e-1d8d9532a1f1", + "id": "86752346-bac8-11e9-986e-1d8d9532a1f1", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Client Error Rates [Metricbeat Aerospike] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b5121f00-bac8-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:23.479Z", + "version": "WzMyOTcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/aerospike/_meta/kibana/7/visualization/bd767280-bac9-11e9-a579-f5c0a5d81340.json b/metricbeat/module/aerospike/_meta/kibana/7/visualization/bd767280-bac9-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..3ecb1a647be8 --- /dev/null +++ b/metricbeat/module/aerospike/_meta/kibana/7/visualization/bd767280-bac9-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Disk Space [Metricbeat Aerospike] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "8f321e10-bac9-11e9-a715-c7f36757ae84", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": 0, + "formatter": "bytes", + "id": "8f321e11-bac9-11e9-a715-c7f36757ae84", + "label": "Total", + "line_width": 2, + "metrics": [ + { + "field": "aerospike.namespace.device.total.bytes", + "id": "8f321e12-bac9-11e9-a715-c7f36757ae84", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(22,165,165,1)", + "fill": "0.2", + "formatter": "bytes", + "id": "8f321e13-bac9-11e9-a715-c7f36757ae84", + "label": "Used", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.device.used.bytes", + "id": "8f321e14-bac9-11e9-a715-c7f36757ae84", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Disk Space [Metricbeat Aerospike] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bd767280-bac9-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:23.479Z", + "version": "WzMzMDAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/aerospike/_meta/kibana/7/visualization/eae846a0-bac7-11e9-a579-f5c0a5d81340.json b/metricbeat/module/aerospike/_meta/kibana/7/visualization/eae846a0-bac7-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..cf5f0ec8131e --- /dev/null +++ b/metricbeat/module/aerospike/_meta/kibana/7/visualization/eae846a0-bac7-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,180 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Client Read Rates [Metricbeat Aerospike] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "98667320-bac7-11e9-9324-49d4f7fb9626", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": "0.2", + "formatter": "number", + "id": "98667321-bac7-11e9-9324-49d4f7fb9626", + "label": "success", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.client.read.success", + "id": "98667322-bac7-11e9-9324-49d4f7fb9626", + "type": "max" + }, + { + "field": "98667322-bac7-11e9-9324-49d4f7fb9626", + "id": "98667324-bac7-11e9-9324-49d4f7fb9626", + "type": "derivative", + "unit": "1s" + }, + { + "field": "98667324-bac7-11e9-9324-49d4f7fb9626", + "id": "98667323-bac7-11e9-9324-49d4f7fb9626", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#DB1374", + "fill": "0.2", + "formatter": "number", + "id": "98667325-bac7-11e9-9324-49d4f7fb9626", + "label": "error", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.client.read.error", + "id": "98667326-bac7-11e9-9324-49d4f7fb9626", + "type": "max" + }, + { + "field": "98667326-bac7-11e9-9324-49d4f7fb9626", + "id": "98667328-bac7-11e9-9324-49d4f7fb9626", + "type": "derivative", + "unit": "1s" + }, + { + "field": "98667328-bac7-11e9-9324-49d4f7fb9626", + "id": "98667327-bac7-11e9-9324-49d4f7fb9626", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#00B3A4", + "fill": "0.2", + "formatter": "number", + "id": "98667329-bac7-11e9-9324-49d4f7fb9626", + "label": "not_found", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.client.read.not_found", + "id": "9866732a-bac7-11e9-9324-49d4f7fb9626", + "type": "max" + }, + { + "field": "9866732a-bac7-11e9-9324-49d4f7fb9626", + "id": "9866732c-bac7-11e9-9324-49d4f7fb9626", + "type": "derivative", + "unit": "1s" + }, + { + "field": "9866732c-bac7-11e9-9324-49d4f7fb9626", + "id": "9866732b-bac7-11e9-9324-49d4f7fb9626", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#490092", + "fill": "0.2", + "formatter": "number", + "id": "9866732d-bac7-11e9-9324-49d4f7fb9626", + "label": "timeout", + "line_width": "1", + "metrics": [ + { + "field": "aerospike.namespace.client.read.timeout", + "id": "9866732e-bac7-11e9-9324-49d4f7fb9626", + "type": "max" + }, + { + "field": "9866732e-bac7-11e9-9324-49d4f7fb9626", + "id": "98667330-bac7-11e9-9324-49d4f7fb9626", + "type": "derivative", + "unit": "1s" + }, + { + "field": "98667330-bac7-11e9-9324-49d4f7fb9626", + "id": "9866732f-bac7-11e9-9324-49d4f7fb9626", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Client Read Rates [Metricbeat Aerospike] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "eae846a0-bac7-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:23.479Z", + "version": "WzMzMDMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/apache/_meta/kibana/7/dashboard/Metricbeat-Apache-HTTPD-server-status-ecs.json b/metricbeat/module/apache/_meta/kibana/7/dashboard/Metricbeat-Apache-HTTPD-server-status-ecs.json new file mode 100644 index 000000000000..c400c95cd8fb --- /dev/null +++ b/metricbeat/module/apache/_meta/kibana/7/dashboard/Metricbeat-Apache-HTTPD-server-status-ecs.json @@ -0,0 +1,200 @@ +{ + "attributes": { + "description": "Overview of Apache server status", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 24, + "x": 24, + "y": 36 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 12, + "i": "2", + "w": 12, + "x": 0, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 24, + "x": 0, + "y": 36 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4", + "w": 48, + "x": 0, + "y": 24 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 12, + "i": "5", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 12, + "i": "6", + "w": 12, + "x": 12, + "y": 0 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "7", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Apache] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Metricbeat-Apache-HTTPD-server-status-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Apache-HTTPD-CPU-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "Apache-HTTPD-Hostname-list-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "Apache-HTTPD-Load1-slash-5-slash-15-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "Apache-HTTPD-Scoreboard-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "Apache-HTTPD-Total-accesses-and-kbytes-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "Apache-HTTPD-Uptime-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "Apache-HTTPD-Workers-ecs", + "name": "7:panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:24.484Z", + "version": "WzMzMTIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/apache/_meta/kibana/7/dashboard/Metricbeat-apache-overview.ndjson b/metricbeat/module/apache/_meta/kibana/7/dashboard/Metricbeat-apache-overview.ndjson deleted file mode 100644 index 30682dfe90f9..000000000000 --- a/metricbeat/module/apache/_meta/kibana/7/dashboard/Metricbeat-apache-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module: apache\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Apache HTTPD ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Apache-HTTPD-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"CPU usage [Metricbeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{\"customLabel\":\"CPU load\",\"field\":\"apache.status.cpu.load\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"id\":\"3\",\"params\":{\"field\":\"apache.status.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"id\":\"4\",\"params\":{\"customLabel\":\"CPU user\",\"field\":\"apache.status.cpu.user\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"5\",\"params\":{\"customLabel\":\"CPU system\",\"field\":\"apache.status.cpu.system\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"6\",\"params\":{\"customLabel\":\"CPU children user\",\"field\":\"apache.status.cpu.children_user\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"7\",\"params\":{\"customLabel\":\"CPU children system\",\"field\":\"apache.status.cpu.children_system\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"radiusRatio\":9,\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"yAxis\":{},\"row\":true},\"title\":\"Apache HTTPD - CPU ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-HTTPD-CPU-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-HTTPD-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Hostname list [Metricbeat Apache] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{\"customLabel\":\"Events count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"customLabel\":\"Apache HTTD Hostname\",\"field\":\"apache.status.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"showToolbar\":true},\"title\":\"Apache HTTPD - Hostname list ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-HTTPD-Hostname-list-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-HTTPD-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Load1/5/15 [Metricbeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{\"customLabel\":\"Load 5\",\"field\":\"apache.status.load.5\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"id\":\"3\",\"params\":{\"customLabel\":\"Load 1\",\"field\":\"apache.status.load.1\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"4\",\"params\":{\"customLabel\":\"Load 15\",\"field\":\"apache.status.load.15\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"5\",\"params\":{\"customLabel\":\"Hostname\",\"field\":\"apache.status.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"radiusRatio\":9,\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"yAxis\":{},\"row\":true},\"title\":\"Apache HTTPD - Load1/5/15 ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-HTTPD-Load1-slash-5-slash-15-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-HTTPD-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Scoreboard [Metricbeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{\"customLabel\":\"Closing connection\",\"field\":\"apache.status.scoreboard.closing_connection\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"id\":\"3\",\"params\":{\"customLabel\":\"Hostname\",\"field\":\"apache.status.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"id\":\"4\",\"params\":{\"customLabel\":\"DNS lookup\",\"field\":\"apache.status.scoreboard.dns_lookup\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"5\",\"params\":{\"customLabel\":\"Gracefully finishing\",\"field\":\"apache.status.scoreboard.gracefully_finishing\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"6\",\"params\":{\"customLabel\":\"Idle cleanup\",\"field\":\"apache.status.scoreboard.idle_cleanup\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"7\",\"params\":{\"customLabel\":\"Keepalive\",\"field\":\"apache.status.scoreboard.keepalive\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"8\",\"params\":{\"customLabel\":\"Logging\",\"field\":\"apache.status.scoreboard.logging\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"9\",\"params\":{\"customLabel\":\"Open slot\",\"field\":\"apache.status.scoreboard.open_slot\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"10\",\"params\":{\"customLabel\":\"Reading request\",\"field\":\"apache.status.scoreboard.reading_request\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"11\",\"params\":{\"customLabel\":\"Sending reply\",\"field\":\"apache.status.scoreboard.sending_reply\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"12\",\"params\":{\"customLabel\":\"Starting up\",\"field\":\"apache.status.scoreboard.starting_up\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"13\",\"params\":{\"customLabel\":\"Total\",\"field\":\"apache.status.scoreboard.total\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"14\",\"params\":{\"customLabel\":\"Waiting for connection\",\"field\":\"apache.status.scoreboard.waiting_for_connection\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"radiusRatio\":9,\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"yAxis\":{},\"row\":true},\"title\":\"Apache HTTPD - Scoreboard ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-HTTPD-Scoreboard-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-HTTPD-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Total accesses and kbytes [Metricbeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{\"customLabel\":\"Total kbytes\",\"field\":\"apache.status.total_kbytes\"},\"schema\":\"metric\",\"type\":\"max\"},{\"id\":\"2\",\"params\":{\"customLabel\":\"Total accesses\",\"field\":\"apache.status.total_accesses\"},\"schema\":\"metric\",\"type\":\"max\"}],\"listeners\":{},\"params\":{\"fontSize\":60,\"handleNoResults\":true},\"title\":\"Apache HTTPD - Total accesses and kbytes ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-HTTPD-Total-accesses-and-kbytes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-HTTPD-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Uptime [Metricbeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{\"customLabel\":\"Uptime\",\"field\":\"apache.status.uptime.uptime\"},\"schema\":\"metric\",\"type\":\"max\"},{\"id\":\"2\",\"params\":{\"customLabel\":\"Server uptime\",\"field\":\"apache.status.uptime.server_uptime\"},\"schema\":\"metric\",\"type\":\"max\"}],\"listeners\":{},\"params\":{\"fontSize\":60,\"handleNoResults\":true},\"title\":\"Apache HTTPD - Uptime ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-HTTPD-Uptime-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-HTTPD-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Workers [Metricbeat Apache] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{\"customLabel\":\"Busy workers\",\"field\":\"apache.status.workers.busy\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"id\":\"3\",\"params\":{\"customLabel\":\"Hostname\",\"field\":\"apache.status.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"id\":\"4\",\"params\":{\"customLabel\":\"Idle workers\",\"field\":\"apache.status.workers.idle\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"radiusRatio\":9,\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"yAxis\":{},\"row\":true},\"title\":\"Apache HTTPD - Workers ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Apache-HTTPD-Workers-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Apache-HTTPD-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMTAsMV0="} -{"attributes":{"description":"Overview of Apache server status","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":36,\"w\":24,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":12,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":36,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":24,\"w\":48,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":0,\"w\":12,\"h\":12,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":12,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Metricbeat Apache] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Metricbeat-Apache-HTTPD-server-status-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Apache-HTTPD-CPU-ecs","name":"1:panel_1","type":"visualization"},{"id":"Apache-HTTPD-Hostname-list-ecs","name":"2:panel_2","type":"visualization"},{"id":"Apache-HTTPD-Load1-slash-5-slash-15-ecs","name":"3:panel_3","type":"visualization"},{"id":"Apache-HTTPD-Scoreboard-ecs","name":"4:panel_4","type":"visualization"},{"id":"Apache-HTTPD-Total-accesses-and-kbytes-ecs","name":"5:panel_5","type":"visualization"},{"id":"Apache-HTTPD-Uptime-ecs","name":"6:panel_6","type":"visualization"},{"id":"Apache-HTTPD-Workers-ecs","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:24.484Z","version":"WzMzMTIsMV0="} diff --git a/metricbeat/module/apache/_meta/kibana/7/search/Apache-HTTPD-ecs.json b/metricbeat/module/apache/_meta/kibana/7/search/Apache-HTTPD-ecs.json new file mode 100644 index 000000000000..ae0b549a264a --- /dev/null +++ b/metricbeat/module/apache/_meta/kibana/7/search/Apache-HTTPD-ecs.json @@ -0,0 +1,55 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.module: apache" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Apache HTTPD ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Apache-HTTPD-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:30:24.484Z", + "version": "WzMzMTEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-CPU-ecs.json b/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-CPU-ecs.json new file mode 100644 index 000000000000..c2406109d4ba --- /dev/null +++ b/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-CPU-ecs.json @@ -0,0 +1,120 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "CPU usage [Metricbeat Apache] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "id": "1", + "params": { + "customLabel": "CPU load", + "field": "apache.status.cpu.load" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "id": "3", + "params": { + "field": "apache.status.hostname", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "split", + "type": "terms" + }, + { + "id": "4", + "params": { + "customLabel": "CPU user", + "field": "apache.status.cpu.user" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "5", + "params": { + "customLabel": "CPU system", + "field": "apache.status.cpu.system" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "6", + "params": { + "customLabel": "CPU children user", + "field": "apache.status.cpu.children_user" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "7", + "params": { + "customLabel": "CPU children system", + "field": "apache.status.cpu.children_system" + }, + "schema": "metric", + "type": "avg" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "radiusRatio": 9, + "row": true, + "scale": "linear", + "setYExtents": false, + "shareYAxis": true, + "showCircles": true, + "smoothLines": false, + "times": [], + "yAxis": {} + }, + "title": "Apache HTTPD - CPU ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Apache-HTTPD-CPU-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Apache-HTTPD-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:24.484Z", + "version": "WzMzMDQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Hostname-list-ecs.json b/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Hostname-list-ecs.json new file mode 100644 index 000000000000..c7461d017024 --- /dev/null +++ b/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Hostname-list-ecs.json @@ -0,0 +1,75 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Hostname list [Metricbeat Apache] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "id": "1", + "params": { + "customLabel": "Events count" + }, + "schema": "metric", + "type": "count" + }, + { + "id": "2", + "params": { + "customLabel": "Apache HTTD Hostname", + "field": "apache.status.hostname", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "sort": { + "columnIndex": null, + "direction": null + } + }, + "title": "Apache HTTPD - Hostname list ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Apache-HTTPD-Hostname-list-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Apache-HTTPD-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:24.484Z", + "version": "WzMzMDUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Load1-slash-5-slash-15-ecs.json b/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Load1-slash-5-slash-15-ecs.json new file mode 100644 index 000000000000..4d0c903431b7 --- /dev/null +++ b/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Load1-slash-5-slash-15-ecs.json @@ -0,0 +1,103 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Load1/5/15 [Metricbeat Apache] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "id": "1", + "params": { + "customLabel": "Load 5", + "field": "apache.status.load.5" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "id": "3", + "params": { + "customLabel": "Load 1", + "field": "apache.status.load.1" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "4", + "params": { + "customLabel": "Load 15", + "field": "apache.status.load.15" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "5", + "params": { + "customLabel": "Hostname", + "field": "apache.status.hostname", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "split", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "radiusRatio": 9, + "row": true, + "scale": "linear", + "setYExtents": false, + "shareYAxis": true, + "showCircles": true, + "smoothLines": false, + "times": [], + "yAxis": {} + }, + "title": "Apache HTTPD - Load1/5/15 ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Apache-HTTPD-Load1-slash-5-slash-15-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Apache-HTTPD-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:24.484Z", + "version": "WzMzMDYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Scoreboard-ecs.json b/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Scoreboard-ecs.json new file mode 100644 index 000000000000..ca2fbb1cd112 --- /dev/null +++ b/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Scoreboard-ecs.json @@ -0,0 +1,184 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Scoreboard [Metricbeat Apache] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "id": "1", + "params": { + "customLabel": "Closing connection", + "field": "apache.status.scoreboard.closing_connection" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "id": "3", + "params": { + "customLabel": "Hostname", + "field": "apache.status.hostname", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "split", + "type": "terms" + }, + { + "id": "4", + "params": { + "customLabel": "DNS lookup", + "field": "apache.status.scoreboard.dns_lookup" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "5", + "params": { + "customLabel": "Gracefully finishing", + "field": "apache.status.scoreboard.gracefully_finishing" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "6", + "params": { + "customLabel": "Idle cleanup", + "field": "apache.status.scoreboard.idle_cleanup" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "7", + "params": { + "customLabel": "Keepalive", + "field": "apache.status.scoreboard.keepalive" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "8", + "params": { + "customLabel": "Logging", + "field": "apache.status.scoreboard.logging" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "9", + "params": { + "customLabel": "Open slot", + "field": "apache.status.scoreboard.open_slot" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "10", + "params": { + "customLabel": "Reading request", + "field": "apache.status.scoreboard.reading_request" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "11", + "params": { + "customLabel": "Sending reply", + "field": "apache.status.scoreboard.sending_reply" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "12", + "params": { + "customLabel": "Starting up", + "field": "apache.status.scoreboard.starting_up" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "13", + "params": { + "customLabel": "Total", + "field": "apache.status.scoreboard.total" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "14", + "params": { + "customLabel": "Waiting for connection", + "field": "apache.status.scoreboard.waiting_for_connection" + }, + "schema": "metric", + "type": "avg" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "radiusRatio": 9, + "row": true, + "scale": "linear", + "setYExtents": false, + "shareYAxis": true, + "showCircles": true, + "smoothLines": false, + "times": [], + "yAxis": {} + }, + "title": "Apache HTTPD - Scoreboard ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Apache-HTTPD-Scoreboard-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Apache-HTTPD-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:24.484Z", + "version": "WzMzMDcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Total-accesses-and-kbytes-ecs.json b/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Total-accesses-and-kbytes-ecs.json new file mode 100644 index 000000000000..933d13600b96 --- /dev/null +++ b/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Total-accesses-and-kbytes-ecs.json @@ -0,0 +1,58 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Total accesses and kbytes [Metricbeat Apache] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "id": "1", + "params": { + "customLabel": "Total kbytes", + "field": "apache.status.total_kbytes" + }, + "schema": "metric", + "type": "max" + }, + { + "id": "2", + "params": { + "customLabel": "Total accesses", + "field": "apache.status.total_accesses" + }, + "schema": "metric", + "type": "max" + } + ], + "listeners": {}, + "params": { + "fontSize": 60, + "handleNoResults": true + }, + "title": "Apache HTTPD - Total accesses and kbytes ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Apache-HTTPD-Total-accesses-and-kbytes-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Apache-HTTPD-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:24.484Z", + "version": "WzMzMDgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Uptime-ecs.json b/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Uptime-ecs.json new file mode 100644 index 000000000000..28623d011f80 --- /dev/null +++ b/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Uptime-ecs.json @@ -0,0 +1,58 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Uptime [Metricbeat Apache] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "id": "1", + "params": { + "customLabel": "Uptime", + "field": "apache.status.uptime.uptime" + }, + "schema": "metric", + "type": "max" + }, + { + "id": "2", + "params": { + "customLabel": "Server uptime", + "field": "apache.status.uptime.server_uptime" + }, + "schema": "metric", + "type": "max" + } + ], + "listeners": {}, + "params": { + "fontSize": 60, + "handleNoResults": true + }, + "title": "Apache HTTPD - Uptime ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Apache-HTTPD-Uptime-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Apache-HTTPD-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:24.484Z", + "version": "WzMzMDksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Workers-ecs.json b/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Workers-ecs.json new file mode 100644 index 000000000000..5b3afa95302c --- /dev/null +++ b/metricbeat/module/apache/_meta/kibana/7/visualization/Apache-HTTPD-Workers-ecs.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Workers [Metricbeat Apache] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "id": "1", + "params": { + "customLabel": "Busy workers", + "field": "apache.status.workers.busy" + }, + "schema": "metric", + "type": "avg" + }, + { + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "id": "3", + "params": { + "customLabel": "Hostname", + "field": "apache.status.hostname", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "split", + "type": "terms" + }, + { + "id": "4", + "params": { + "customLabel": "Idle workers", + "field": "apache.status.workers.idle" + }, + "schema": "metric", + "type": "avg" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "radiusRatio": 9, + "row": true, + "scale": "linear", + "setYExtents": false, + "shareYAxis": true, + "showCircles": true, + "smoothLines": false, + "times": [], + "yAxis": {} + }, + "title": "Apache HTTPD - Workers ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Apache-HTTPD-Workers-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Apache-HTTPD-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:24.484Z", + "version": "WzMzMTAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/apache/module.yml b/metricbeat/module/apache/module.yml index 5c9170d94cd5..6d77cafd6ce8 100644 --- a/metricbeat/module/apache/module.yml +++ b/metricbeat/module/apache/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Metricbeat-Apache-HTTPD-server-status - file: Metricbeat-apache-overview.ndjson + file: Metricbeat-apache-overview.json diff --git a/metricbeat/module/ceph/_meta/kibana/7/dashboard/Metricbeat-ceph-overview.ndjson b/metricbeat/module/ceph/_meta/kibana/7/dashboard/Metricbeat-ceph-overview.ndjson deleted file mode 100644 index 31fee78b70db..000000000000 --- a/metricbeat/module/ceph/_meta/kibana/7/dashboard/Metricbeat-ceph-overview.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cluster Disk Stats [Metricbeat Ceph] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"bd70f9c0-b472-11e9-ba7f-f52449624592\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7b71f300-b466-11e9-841e-0ddf9a697c96\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(159,5,0,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"hide_in_legend\":0,\"id\":\"7b71f301-b466-11e9-841e-0ddf9a697c96\",\"label\":\"total\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"ceph.cluster_disk.total.bytes\",\"id\":\"7b71f302-b466-11e9-841e-0ddf9a697c96\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0.2\",\"formatter\":\"bytes\",\"id\":\"7b71f303-b466-11e9-841e-0ddf9a697c96\",\"label\":\"available\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"ceph.cluster_disk.available.bytes\",\"id\":\"7b71f304-b466-11e9-841e-0ddf9a697c96\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"64f99360-b472-11e9-ba7f-f52449624592\",\"label\":\"used\",\"line_width\":1,\"metrics\":[{\"field\":\"ceph.cluster_disk.used.bytes\",\"id\":\"64f99361-b472-11e9-ba7f-f52449624592\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Cluster Disk Stats [Metricbeat Ceph] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"054a0900-b467-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:57.280Z","version":"WzM2MzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Throughput [Metricbeat Ceph] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"57f0f3e0-b46b-11e9-88d3-b1e3cace09ae\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"57f11af0-b46b-11e9-88d3-b1e3cace09ae\",\"label\":\"read\",\"line_width\":2,\"metrics\":[{\"field\":\"ceph.cluster_status.traffic.read_bytes\",\"id\":\"57f11af1-b46b-11e9-88d3-b1e3cace09ae\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"57f11af2-b46b-11e9-88d3-b1e3cace09ae\",\"label\":\"write\",\"line_width\":2,\"metrics\":[{\"field\":\"ceph.cluster_status.traffic.write_bytes\",\"id\":\"57f11af3-b46b-11e9-88d3-b1e3cace09ae\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Throughput [Metricbeat Ceph] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"88d48440-b46b-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:57.280Z","version":"WzM2MzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"IOPS [Metricbeat Ceph] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"0fc1f2e0-b46b-11e9-9488-8bde5ab143f4\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"0fc1f2e1-b46b-11e9-9488-8bde5ab143f4\",\"label\":\"read\",\"line_width\":2,\"metrics\":[{\"field\":\"ceph.cluster_status.traffic.read_op_per_sec\",\"id\":\"0fc1f2e2-b46b-11e9-9488-8bde5ab143f4\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":0,\"formatter\":\"number\",\"id\":\"0fc1f2e3-b46b-11e9-9488-8bde5ab143f4\",\"label\":\"write\",\"line_width\":2,\"metrics\":[{\"field\":\"ceph.cluster_status.traffic.write_op_per_sec\",\"id\":\"0fc1f2e4-b46b-11e9-9488-8bde5ab143f4\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"IOPS [Metricbeat Ceph] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"346d00d0-b46b-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:57.280Z","version":"WzM2MzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"OSD Disk Usage [Metricbeat Ceph] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"gauge\":\"rgba(226,115,0,1)\",\"id\":\"e681d700-b46b-11e9-9bdc-15c69a730d82\",\"operator\":\"gte\",\"value\":70},{\"gauge\":\"rgba(247,58,26,1)\",\"id\":\"61b552b0-b513-11e9-81ce-0379c4621e40\",\"value\":90}],\"gauge_inner_width\":10,\"gauge_max\":\"\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"e17a9bc0-b46b-11e9-9a02-5de45d117640\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":0,\"formatter\":\"percent\",\"id\":\"e17a9bc1-b46b-11e9-9a02-5de45d117640\",\"label\":\"OSD disk usage\",\"line_width\":2,\"metrics\":[{\"field\":\"ceph.osd_df.used.pct\",\"id\":\"e17a9bc2-b46b-11e9-9a02-5de45d117640\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"OSD Disk Usage [Metricbeat Ceph] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"13efa190-b46c-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:57.280Z","version":"WzM2MzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pools [Metricbeat Ceph] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"e96942b0-b46f-11e9-aefa-c791377b99c3\"}],\"bar_color_rules\":[{\"id\":\"21aaa880-b470-11e9-aefa-c791377b99c3\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"20eadaf0-b470-11e9-aefa-c791377b99c3\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"b859c050-b46f-11e9-9f8f-97f5e69abdab\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"b859e760-b46f-11e9-9f8f-97f5e69abdab\",\"label\":\"Pools\",\"line_width\":2,\"metrics\":[{\"field\":\"ceph.pool_disk.id\",\"id\":\"b859e761-b46f-11e9-9f8f-97f5e69abdab\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Pools [Metricbeat Ceph] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"393df790-b470-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:57.280Z","version":"WzM2MzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pool Objects [Metricbeat Ceph] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6ac91290-b470-11e9-a4bb-473d6710f872\"}],\"bar_color_rules\":[{\"id\":\"6b864810-b470-11e9-a4bb-473d6710f872\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"4ce78950-b470-11e9-87e8-53bd102d292b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"4ce78951-b470-11e9-87e8-53bd102d292b\",\"label\":\"Objects\",\"line_width\":2,\"metrics\":[{\"field\":\"ceph.pool_disk.stats.objects\",\"id\":\"4ce78952-b470-11e9-87e8-53bd102d292b\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"ceph.pool_disk.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Pool Objects [Metricbeat Ceph] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"aa9c2f10-b470-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:57.280Z","version":"WzM2MzUsMV0="} -{"attributes":{"description":"This Ceph dashboard that shows the most important cluster metrics.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"1\",\"w\":18,\"x\":30,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cluster Disk Stats\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":12},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Throughput\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":12},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"IOPS\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"4\",\"w\":6,\"x\":24,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"OSD Disk Usage\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"5\",\"w\":5,\"x\":0,\"y\":0},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Pools\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6\",\"w\":19,\"x\":5,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Pool Objects\",\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Metricbeat Ceph] Cluster Overview","version":1},"coreMigrationVersion":"8.0.0","id":"c93f2c30-b473-11e9-a579-f5c0a5d81340","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"054a0900-b467-11e9-a579-f5c0a5d81340","name":"1:panel_1","type":"visualization"},{"id":"88d48440-b46b-11e9-a579-f5c0a5d81340","name":"2:panel_2","type":"visualization"},{"id":"346d00d0-b46b-11e9-a579-f5c0a5d81340","name":"3:panel_3","type":"visualization"},{"id":"13efa190-b46c-11e9-a579-f5c0a5d81340","name":"4:panel_4","type":"visualization"},{"id":"393df790-b470-11e9-a579-f5c0a5d81340","name":"5:panel_5","type":"visualization"},{"id":"aa9c2f10-b470-11e9-a579-f5c0a5d81340","name":"6:panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:57.280Z","version":"WzM2MjksMV0="} diff --git a/metricbeat/module/ceph/_meta/kibana/7/dashboard/c93f2c30-b473-11e9-a579-f5c0a5d81340.json b/metricbeat/module/ceph/_meta/kibana/7/dashboard/c93f2c30-b473-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..ece157f8bbed --- /dev/null +++ b/metricbeat/module/ceph/_meta/kibana/7/dashboard/c93f2c30-b473-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,166 @@ +{ + "attributes": { + "description": "This Ceph dashboard that shows the most important cluster metrics.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 18, + "x": 30, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Cluster Disk Stats", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "2", + "w": 24, + "x": 24, + "y": 12 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Throughput", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "3", + "w": 24, + "x": 0, + "y": 12 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "IOPS", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4", + "w": 6, + "x": 24, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "OSD Disk Usage", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "5", + "w": 5, + "x": 0, + "y": 0 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Pools", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6", + "w": 19, + "x": 5, + "y": 0 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Pool Objects", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Ceph] Cluster Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "c93f2c30-b473-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "054a0900-b467-11e9-a579-f5c0a5d81340", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "88d48440-b46b-11e9-a579-f5c0a5d81340", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "346d00d0-b46b-11e9-a579-f5c0a5d81340", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "13efa190-b46c-11e9-a579-f5c0a5d81340", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "393df790-b470-11e9-a579-f5c0a5d81340", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "aa9c2f10-b470-11e9-a579-f5c0a5d81340", + "name": "6:panel_6", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:57.280Z", + "version": "WzM2MjksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/ceph/_meta/kibana/7/visualization/054a0900-b467-11e9-a579-f5c0a5d81340.json b/metricbeat/module/ceph/_meta/kibana/7/visualization/054a0900-b467-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..b802d4cc3ef7 --- /dev/null +++ b/metricbeat/module/ceph/_meta/kibana/7/visualization/054a0900-b467-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,118 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Cluster Disk Stats [Metricbeat Ceph] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "bd70f9c0-b472-11e9-ba7f-f52449624592" + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7b71f300-b466-11e9-841e-0ddf9a697c96", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(159,5,0,1)", + "fill": "0", + "formatter": "bytes", + "hide_in_legend": 0, + "id": "7b71f301-b466-11e9-841e-0ddf9a697c96", + "label": "total", + "line_width": "1", + "metrics": [ + { + "field": "ceph.cluster_disk.total.bytes", + "id": "7b71f302-b466-11e9-841e-0ddf9a697c96", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0.2", + "formatter": "bytes", + "id": "7b71f303-b466-11e9-841e-0ddf9a697c96", + "label": "available", + "line_width": "1", + "metrics": [ + { + "field": "ceph.cluster_disk.available.bytes", + "id": "7b71f304-b466-11e9-841e-0ddf9a697c96", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "64f99360-b472-11e9-ba7f-f52449624592", + "label": "used", + "line_width": 1, + "metrics": [ + { + "field": "ceph.cluster_disk.used.bytes", + "id": "64f99361-b472-11e9-ba7f-f52449624592", + "type": "max" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Cluster Disk Stats [Metricbeat Ceph] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "054a0900-b467-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:57.280Z", + "version": "WzM2MzAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/ceph/_meta/kibana/7/visualization/13efa190-b46c-11e9-a579-f5c0a5d81340.json b/metricbeat/module/ceph/_meta/kibana/7/visualization/13efa190-b46c-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..de99c9de9d65 --- /dev/null +++ b/metricbeat/module/ceph/_meta/kibana/7/visualization/13efa190-b46c-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "OSD Disk Usage [Metricbeat Ceph] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "gauge": "rgba(226,115,0,1)", + "id": "e681d700-b46b-11e9-9bdc-15c69a730d82", + "operator": "gte", + "value": 70 + }, + { + "gauge": "rgba(247,58,26,1)", + "id": "61b552b0-b513-11e9-81ce-0379c4621e40", + "value": 90 + } + ], + "gauge_inner_width": 10, + "gauge_max": "", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "e17a9bc0-b46b-11e9-9a02-5de45d117640", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": 0, + "formatter": "percent", + "id": "e17a9bc1-b46b-11e9-9a02-5de45d117640", + "label": "OSD disk usage", + "line_width": 2, + "metrics": [ + { + "field": "ceph.osd_df.used.pct", + "id": "e17a9bc2-b46b-11e9-9a02-5de45d117640", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "OSD Disk Usage [Metricbeat Ceph] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "13efa190-b46c-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:57.280Z", + "version": "WzM2MzMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/ceph/_meta/kibana/7/visualization/346d00d0-b46b-11e9-a579-f5c0a5d81340.json b/metricbeat/module/ceph/_meta/kibana/7/visualization/346d00d0-b46b-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..ae3ef2bc01a6 --- /dev/null +++ b/metricbeat/module/ceph/_meta/kibana/7/visualization/346d00d0-b46b-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "IOPS [Metricbeat Ceph] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "0fc1f2e0-b46b-11e9-9488-8bde5ab143f4", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "number", + "id": "0fc1f2e1-b46b-11e9-9488-8bde5ab143f4", + "label": "read", + "line_width": 2, + "metrics": [ + { + "field": "ceph.cluster_status.traffic.read_op_per_sec", + "id": "0fc1f2e2-b46b-11e9-9488-8bde5ab143f4", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#DB1374", + "fill": 0, + "formatter": "number", + "id": "0fc1f2e3-b46b-11e9-9488-8bde5ab143f4", + "label": "write", + "line_width": 2, + "metrics": [ + { + "field": "ceph.cluster_status.traffic.write_op_per_sec", + "id": "0fc1f2e4-b46b-11e9-9488-8bde5ab143f4", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "IOPS [Metricbeat Ceph] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "346d00d0-b46b-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:57.280Z", + "version": "WzM2MzIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/ceph/_meta/kibana/7/visualization/393df790-b470-11e9-a579-f5c0a5d81340.json b/metricbeat/module/ceph/_meta/kibana/7/visualization/393df790-b470-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..f2e888b7c4eb --- /dev/null +++ b/metricbeat/module/ceph/_meta/kibana/7/visualization/393df790-b470-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Pools [Metricbeat Ceph] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "e96942b0-b46f-11e9-aefa-c791377b99c3" + } + ], + "bar_color_rules": [ + { + "id": "21aaa880-b470-11e9-aefa-c791377b99c3" + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "20eadaf0-b470-11e9-aefa-c791377b99c3" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "b859c050-b46f-11e9-9f8f-97f5e69abdab", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "number", + "id": "b859e760-b46f-11e9-9f8f-97f5e69abdab", + "label": "Pools", + "line_width": 2, + "metrics": [ + { + "field": "ceph.pool_disk.id", + "id": "b859e761-b46f-11e9-9f8f-97f5e69abdab", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Pools [Metricbeat Ceph] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "393df790-b470-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:57.280Z", + "version": "WzM2MzQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/ceph/_meta/kibana/7/visualization/88d48440-b46b-11e9-a579-f5c0a5d81340.json b/metricbeat/module/ceph/_meta/kibana/7/visualization/88d48440-b46b-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..86b9e3062485 --- /dev/null +++ b/metricbeat/module/ceph/_meta/kibana/7/visualization/88d48440-b46b-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Throughput [Metricbeat Ceph] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "57f0f3e0-b46b-11e9-88d3-b1e3cace09ae", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": 0, + "formatter": "number", + "id": "57f11af0-b46b-11e9-88d3-b1e3cace09ae", + "label": "read", + "line_width": 2, + "metrics": [ + { + "field": "ceph.cluster_status.traffic.read_bytes", + "id": "57f11af1-b46b-11e9-88d3-b1e3cace09ae", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(176,188,0,1)", + "fill": 0, + "formatter": "number", + "id": "57f11af2-b46b-11e9-88d3-b1e3cace09ae", + "label": "write", + "line_width": 2, + "metrics": [ + { + "field": "ceph.cluster_status.traffic.write_bytes", + "id": "57f11af3-b46b-11e9-88d3-b1e3cace09ae", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Throughput [Metricbeat Ceph] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "88d48440-b46b-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:57.280Z", + "version": "WzM2MzEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/ceph/_meta/kibana/7/visualization/aa9c2f10-b470-11e9-a579-f5c0a5d81340.json b/metricbeat/module/ceph/_meta/kibana/7/visualization/aa9c2f10-b470-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..abb3ea45d3e7 --- /dev/null +++ b/metricbeat/module/ceph/_meta/kibana/7/visualization/aa9c2f10-b470-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Pool Objects [Metricbeat Ceph] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6ac91290-b470-11e9-a4bb-473d6710f872" + } + ], + "bar_color_rules": [ + { + "id": "6b864810-b470-11e9-a4bb-473d6710f872" + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "id": "4ce78950-b470-11e9-87e8-53bd102d292b", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": 0, + "formatter": "number", + "id": "4ce78951-b470-11e9-87e8-53bd102d292b", + "label": "Objects", + "line_width": 2, + "metrics": [ + { + "field": "ceph.pool_disk.stats.objects", + "id": "4ce78952-b470-11e9-87e8-53bd102d292b", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "ceph.pool_disk.name", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Pool Objects [Metricbeat Ceph] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "aa9c2f10-b470-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:57.280Z", + "version": "WzM2MzUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/consul/_meta/kibana/7/dashboard/6d0cf140-2deb-11e9-bf7e-f35bf5d2e71b.json b/metricbeat/module/consul/_meta/kibana/7/dashboard/6d0cf140-2deb-11e9-bf7e-f35bf5d2e71b.json new file mode 100644 index 000000000000..ce0ebbc01a1c --- /dev/null +++ b/metricbeat/module/consul/_meta/kibana/7/dashboard/6d0cf140-2deb-11e9-bf7e-f35bf5d2e71b.json @@ -0,0 +1,202 @@ +{ + "attributes": { + "description": "Overview of Consul", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "lucene", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "1", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_0", + "title": "Garbage Collector stats", + "version": "7.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "2", + "w": 16, + "x": 15, + "y": 15 + }, + "panelIndex": "2", + "panelRefName": "panel_1", + "title": "Goroutines", + "version": "7.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "3", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_2", + "title": "Bytes Allocated", + "version": "7.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "4", + "w": 17, + "x": 31, + "y": 15 + }, + "panelIndex": "4", + "panelRefName": "panel_3", + "title": "Heap Objects", + "version": "7.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "5", + "w": 15, + "x": 0, + "y": 15 + }, + "panelIndex": "5", + "panelRefName": "panel_4", + "title": "Bytes of memory obtained from the OS", + "version": "7.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "6", + "w": 16, + "x": 31, + "y": 30 + }, + "panelIndex": "6", + "panelRefName": "panel_5", + "title": "Malloc count", + "version": "7.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "7", + "w": 14, + "x": 0, + "y": 30 + }, + "panelIndex": "7", + "panelRefName": "panel_6", + "title": "Garbage Collector pause ms", + "version": "7.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "8", + "w": 17, + "x": 14, + "y": 30 + }, + "panelIndex": "8", + "panelRefName": "panel_7", + "title": "Garbage Collector Runs", + "version": "7.0.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Metricbeat Consul] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "6d0cf140-2deb-11e9-bf7e-f35bf5d2e71b", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "dda0c950-2dea-11e9-bf7e-f35bf5d2e71b", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "ea842730-2de9-11e9-bf7e-f35bf5d2e71b", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "6c39d4b0-2de9-11e9-bf7e-f35bf5d2e71b", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "37c75bc0-2dea-11e9-bf7e-f35bf5d2e71b", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "69b29820-2dea-11e9-bf7e-f35bf5d2e71b", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "8ab67000-2dea-11e9-bf7e-f35bf5d2e71b", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "d275dbc0-2de9-11e9-bf7e-f35bf5d2e71b", + "name": "panel_6", + "type": "visualization" + }, + { + "id": "1e97c1d0-2dea-11e9-bf7e-f35bf5d2e71b", + "name": "panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:02.457Z", + "version": "WzM3MTUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/consul/_meta/kibana/7/dashboard/Metricbeat-consul-overview.ndjson b/metricbeat/module/consul/_meta/kibana/7/dashboard/Metricbeat-consul-overview.ndjson deleted file mode 100644 index 34df729eb670..000000000000 --- a/metricbeat/module/consul/_meta/kibana/7/dashboard/Metricbeat-consul-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Garbage Collector stats [Metricbeat Consul]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"ns,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Pause time\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"consul.agent.runtime.garbage_collector.pause.current.ns\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} ms\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"9728a010-2dea-11e9-83ed-b7c793d35de5\",\"label\":\"Runs\",\"line_width\":1,\"metrics\":[{\"field\":\"consul.agent.runtime.garbage_collector.runs\",\"id\":\"9728a011-2dea-11e9-83ed-b7c793d35de5\",\"type\":\"sum\"},{\"field\":\"9728a011-2dea-11e9-83ed-b7c793d35de5\",\"id\":\"9ed22480-2dea-11e9-83ed-b7c793d35de5\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":1,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":1,\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Garbage Collector stats [Metricbeat Consul]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"dda0c950-2dea-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Goroutines [Metricbeat Consul]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Goroutines\",\"line_width\":1,\"metrics\":[{\"field\":\"consul.agent.runtime.goroutines\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Goroutines [Metricbeat Consul]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ea842730-2de9-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Bytes Allocated [Metricbeat Consul]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Bytes allocated\",\"line_width\":1,\"metrics\":[{\"field\":\"consul.agent.runtime.alloc.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Bytes Allocated [Metricbeat Consul]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6c39d4b0-2de9-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Heap Objects [Metricbeat Consul]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Heap Objects\",\"line_width\":1,\"metrics\":[{\"field\":\"consul.agent.runtime.heap_objects\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Heap Objects [Metricbeat Consul]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"37c75bc0-2dea-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Bytes of memory obtained from the OS [Metricbeat Consul]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Bytes of memory obtained from the OS\",\"line_width\":1,\"metrics\":[{\"field\":\"consul.agent.runtime.sys.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Bytes of memory obtained from the OS [Metricbeat Consul]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"69b29820-2dea-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Malloc count [Metricbeat Consul]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Malloc Count\",\"line_width\":1,\"metrics\":[{\"field\":\"consul.agent.runtime.malloc_count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"7a6e0aa0-2dea-11e9-83ed-b7c793d35de5\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Malloc count [Metricbeat Consul]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8ab67000-2dea-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Garbage Collector pause ms [Metricbeat Consul]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"ns,ms,4\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Garbage Collector pause\",\"line_width\":1,\"metrics\":[{\"field\":\"consul.agent.runtime.garbage_collector.pause.current.ns\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} ms\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Garbage Collector pause ms [Metricbeat Consul]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d275dbc0-2de9-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Garbage Collector Runs [Metricbeat Consul]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Garbage Collector Runs\",\"line_width\":1,\"metrics\":[{\"field\":\"consul.agent.runtime.garbage_collector.runs\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"ffaa1fc0-2de9-11e9-83ed-b7c793d35de5\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":1,\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Garbage Collector Runs [Metricbeat Consul]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1e97c1d0-2dea-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MjMsMV0="} -{"attributes":{"description":"Overview of Consul","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"lucene\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Garbage Collector stats\",\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":16,\"x\":15,\"y\":15},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Goroutines\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Allocated\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":17,\"x\":31,\"y\":15},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Heap Objects\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":15,\"x\":0,\"y\":15},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes of memory obtained from the OS\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":16,\"x\":31,\"y\":30},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Malloc count\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":14,\"x\":0,\"y\":30},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Garbage Collector pause ms\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":17,\"x\":14,\"y\":30},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Garbage Collector Runs\",\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Metricbeat Consul] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"6d0cf140-2deb-11e9-bf7e-f35bf5d2e71b","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"dda0c950-2dea-11e9-bf7e-f35bf5d2e71b","name":"panel_0","type":"visualization"},{"id":"ea842730-2de9-11e9-bf7e-f35bf5d2e71b","name":"panel_1","type":"visualization"},{"id":"6c39d4b0-2de9-11e9-bf7e-f35bf5d2e71b","name":"panel_2","type":"visualization"},{"id":"37c75bc0-2dea-11e9-bf7e-f35bf5d2e71b","name":"panel_3","type":"visualization"},{"id":"69b29820-2dea-11e9-bf7e-f35bf5d2e71b","name":"panel_4","type":"visualization"},{"id":"8ab67000-2dea-11e9-bf7e-f35bf5d2e71b","name":"panel_5","type":"visualization"},{"id":"d275dbc0-2de9-11e9-bf7e-f35bf5d2e71b","name":"panel_6","type":"visualization"},{"id":"1e97c1d0-2dea-11e9-bf7e-f35bf5d2e71b","name":"panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:02.457Z","version":"WzM3MTUsMV0="} diff --git a/metricbeat/module/consul/_meta/kibana/7/visualization/1e97c1d0-2dea-11e9-bf7e-f35bf5d2e71b.json b/metricbeat/module/consul/_meta/kibana/7/visualization/1e97c1d0-2dea-11e9-bf7e-f35bf5d2e71b.json new file mode 100644 index 000000000000..6edccd24f9ff --- /dev/null +++ b/metricbeat/module/consul/_meta/kibana/7/visualization/1e97c1d0-2dea-11e9-bf7e-f35bf5d2e71b.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Garbage Collector Runs [Metricbeat Consul]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Garbage Collector Runs", + "line_width": 1, + "metrics": [ + { + "field": "consul.agent.runtime.garbage_collector.runs", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "ffaa1fc0-2de9-11e9-83ed-b7c793d35de5", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 1 + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Garbage Collector Runs [Metricbeat Consul]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1e97c1d0-2dea-11e9-bf7e-f35bf5d2e71b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:02.457Z", + "version": "WzM3MjMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/consul/_meta/kibana/7/visualization/37c75bc0-2dea-11e9-bf7e-f35bf5d2e71b.json b/metricbeat/module/consul/_meta/kibana/7/visualization/37c75bc0-2dea-11e9-bf7e-f35bf5d2e71b.json new file mode 100644 index 000000000000..21ca8e18c9fa --- /dev/null +++ b/metricbeat/module/consul/_meta/kibana/7/visualization/37c75bc0-2dea-11e9-bf7e-f35bf5d2e71b.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Heap Objects [Metricbeat Consul]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Heap Objects", + "line_width": 1, + "metrics": [ + { + "field": "consul.agent.runtime.heap_objects", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Heap Objects [Metricbeat Consul]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "37c75bc0-2dea-11e9-bf7e-f35bf5d2e71b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:02.457Z", + "version": "WzM3MTksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/consul/_meta/kibana/7/visualization/69b29820-2dea-11e9-bf7e-f35bf5d2e71b.json b/metricbeat/module/consul/_meta/kibana/7/visualization/69b29820-2dea-11e9-bf7e-f35bf5d2e71b.json new file mode 100644 index 000000000000..9a4764399283 --- /dev/null +++ b/metricbeat/module/consul/_meta/kibana/7/visualization/69b29820-2dea-11e9-bf7e-f35bf5d2e71b.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Bytes of memory obtained from the OS [Metricbeat Consul]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Bytes of memory obtained from the OS", + "line_width": 1, + "metrics": [ + { + "field": "consul.agent.runtime.sys.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Bytes of memory obtained from the OS [Metricbeat Consul]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "69b29820-2dea-11e9-bf7e-f35bf5d2e71b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:02.457Z", + "version": "WzM3MjAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/consul/_meta/kibana/7/visualization/6c39d4b0-2de9-11e9-bf7e-f35bf5d2e71b.json b/metricbeat/module/consul/_meta/kibana/7/visualization/6c39d4b0-2de9-11e9-bf7e-f35bf5d2e71b.json new file mode 100644 index 000000000000..2628e0aad679 --- /dev/null +++ b/metricbeat/module/consul/_meta/kibana/7/visualization/6c39d4b0-2de9-11e9-bf7e-f35bf5d2e71b.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Bytes Allocated [Metricbeat Consul]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Bytes allocated", + "line_width": 1, + "metrics": [ + { + "field": "consul.agent.runtime.alloc.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Bytes Allocated [Metricbeat Consul]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6c39d4b0-2de9-11e9-bf7e-f35bf5d2e71b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:02.457Z", + "version": "WzM3MTgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/consul/_meta/kibana/7/visualization/8ab67000-2dea-11e9-bf7e-f35bf5d2e71b.json b/metricbeat/module/consul/_meta/kibana/7/visualization/8ab67000-2dea-11e9-bf7e-f35bf5d2e71b.json new file mode 100644 index 000000000000..b6f4409f2225 --- /dev/null +++ b/metricbeat/module/consul/_meta/kibana/7/visualization/8ab67000-2dea-11e9-bf7e-f35bf5d2e71b.json @@ -0,0 +1,69 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Malloc count [Metricbeat Consul]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Malloc Count", + "line_width": 1, + "metrics": [ + { + "field": "consul.agent.runtime.malloc_count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "7a6e0aa0-2dea-11e9-83ed-b7c793d35de5", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Malloc count [Metricbeat Consul]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8ab67000-2dea-11e9-bf7e-f35bf5d2e71b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:02.457Z", + "version": "WzM3MjEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/consul/_meta/kibana/7/visualization/d275dbc0-2de9-11e9-bf7e-f35bf5d2e71b.json b/metricbeat/module/consul/_meta/kibana/7/visualization/d275dbc0-2de9-11e9-bf7e-f35bf5d2e71b.json new file mode 100644 index 000000000000..fe1487cb87ce --- /dev/null +++ b/metricbeat/module/consul/_meta/kibana/7/visualization/d275dbc0-2de9-11e9-bf7e-f35bf5d2e71b.json @@ -0,0 +1,64 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Garbage Collector pause ms [Metricbeat Consul]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "ns,ms,4", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Garbage Collector pause", + "line_width": 1, + "metrics": [ + { + "field": "consul.agent.runtime.garbage_collector.pause.current.ns", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}} ms" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Garbage Collector pause ms [Metricbeat Consul]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d275dbc0-2de9-11e9-bf7e-f35bf5d2e71b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:02.457Z", + "version": "WzM3MjIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/consul/_meta/kibana/7/visualization/dda0c950-2dea-11e9-bf7e-f35bf5d2e71b.json b/metricbeat/module/consul/_meta/kibana/7/visualization/dda0c950-2dea-11e9-bf7e-f35bf5d2e71b.json new file mode 100644 index 000000000000..61995301d467 --- /dev/null +++ b/metricbeat/module/consul/_meta/kibana/7/visualization/dda0c950-2dea-11e9-bf7e-f35bf5d2e71b.json @@ -0,0 +1,92 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Garbage Collector stats [Metricbeat Consul]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "ns,ms,2", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Pause time", + "line_width": "1", + "metrics": [ + { + "field": "consul.agent.runtime.garbage_collector.pause.current.ns", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}} ms" + }, + { + "axis_position": "right", + "chart_type": "bar", + "color": "rgba(115,216,255,1)", + "fill": "0.5", + "formatter": "number", + "id": "9728a010-2dea-11e9-83ed-b7c793d35de5", + "label": "Runs", + "line_width": 1, + "metrics": [ + { + "field": "consul.agent.runtime.garbage_collector.runs", + "id": "9728a011-2dea-11e9-83ed-b7c793d35de5", + "type": "sum" + }, + { + "field": "9728a011-2dea-11e9-83ed-b7c793d35de5", + "id": "9ed22480-2dea-11e9-83ed-b7c793d35de5", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 1, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 1 + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Garbage Collector stats [Metricbeat Consul]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dda0c950-2dea-11e9-bf7e-f35bf5d2e71b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:02.457Z", + "version": "WzM3MTYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/consul/_meta/kibana/7/visualization/ea842730-2de9-11e9-bf7e-f35bf5d2e71b.json b/metricbeat/module/consul/_meta/kibana/7/visualization/ea842730-2de9-11e9-bf7e-f35bf5d2e71b.json new file mode 100644 index 000000000000..28282f16cb28 --- /dev/null +++ b/metricbeat/module/consul/_meta/kibana/7/visualization/ea842730-2de9-11e9-bf7e-f35bf5d2e71b.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Goroutines [Metricbeat Consul]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Goroutines", + "line_width": 1, + "metrics": [ + { + "field": "consul.agent.runtime.goroutines", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Goroutines [Metricbeat Consul]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ea842730-2de9-11e9-bf7e-f35bf5d2e71b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:02.457Z", + "version": "WzM3MTcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchbase/_meta/kibana/7/dashboard/46d21220-b9f1-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchbase/_meta/kibana/7/dashboard/46d21220-b9f1-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..7243264dcf24 --- /dev/null +++ b/metricbeat/module/couchbase/_meta/kibana/7/dashboard/46d21220-b9f1-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,276 @@ +{ + "attributes": { + "description": "This Couchbase dashboard visualizes the most relevant metrics for cluster, nodes and buckets. ", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "1", + "w": 12, + "x": 0, + "y": 11 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Buckets RAM Used", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "2", + "w": 12, + "x": 12, + "y": 11 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Buckets Disk Used", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "3", + "w": 24, + "x": 24, + "y": 11 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Node CPU Utilization", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "4", + "w": 12, + "x": 0, + "y": 22 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "Buckets Operations Per Second", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "5", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Operations per Node", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "6", + "w": 12, + "x": 0, + "y": 0 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Cluster HDD Usage", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "7", + "w": 12, + "x": 12, + "y": 0 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "title": "Cluster RAM", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "8", + "w": 12, + "x": 12, + "y": 22 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "title": "Bucket Item Count", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "9", + "w": 24, + "x": 24, + "y": 33 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "title": "Document Replicas", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "10", + "w": 24, + "x": 24, + "y": 22 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "title": "Disk space used by docs", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "11", + "w": 24, + "x": 0, + "y": 33 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "title": "Disk Fetches", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Couchbase] Cluster Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "46d21220-b9f1-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "e781add0-b9dc-11e9-a579-f5c0a5d81340", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "c4c81a30-b9dd-11e9-a579-f5c0a5d81340", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "467c99c0-b9de-11e9-a579-f5c0a5d81340", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "e23a9fe0-b9db-11e9-a579-f5c0a5d81340", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "17a01210-b9e0-11e9-a579-f5c0a5d81340", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "f515f2e0-b9e0-11e9-a579-f5c0a5d81340", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "7cc8def0-b9e1-11e9-a579-f5c0a5d81340", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "97ee1ea0-b9f2-11e9-a579-f5c0a5d81340", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "63efced0-b9f4-11e9-a579-f5c0a5d81340", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "99980c90-ba8b-11e9-a579-f5c0a5d81340", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "19eed0e0-ba8c-11e9-a579-f5c0a5d81340", + "name": "11:panel_11", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:05.507Z", + "version": "WzM3MzgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchbase/_meta/kibana/7/dashboard/Metricbeat-couchbase-overview.ndjson b/metricbeat/module/couchbase/_meta/kibana/7/dashboard/Metricbeat-couchbase-overview.ndjson deleted file mode 100644 index e6c29493d4e9..000000000000 --- a/metricbeat/module/couchbase/_meta/kibana/7/dashboard/Metricbeat-couchbase-overview.ndjson +++ /dev/null @@ -1,12 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Buckets RAM Used [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"1ad80860-b9dc-11e9-a74b-270ba78f4926\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"0.1\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"1ad80861-b9dc-11e9-a74b-270ba78f4926\",\"label\":\" RAM used\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchbase.bucket.memory.used.bytes\",\"id\":\"1ad80862-b9dc-11e9-a74b-270ba78f4926\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.bucket.name\",\"terms_order_by\":\"1ad80862-b9dc-11e9-a74b-270ba78f4926\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Buckets RAM Used [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e781add0-b9dc-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3MzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Buckets Disk Used [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"a126b410-b9dd-11e9-aa9d-55aa18f46863\"}],\"bar_color_rules\":[{\"id\":\"9bcf0ee0-b9dd-11e9-aa9d-55aa18f46863\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"97d88050-b9dd-11e9-aa9d-55aa18f46863\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"04f7a400-b9dd-11e9-b988-d77f6106a7f0\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,98,177,1)\",\"fill\":\"0.1\",\"formatter\":\"bytes\",\"id\":\"04f7a401-b9dd-11e9-b988-d77f6106a7f0\",\"label\":\"Disk Used\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchbase.bucket.disk.used.bytes\",\"id\":\"04f7a402-b9dd-11e9-b988-d77f6106a7f0\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.bucket.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Buckets Disk Used [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c4c81a30-b9dd-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Node CPU Utilization [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"f6ae4d80-b9dd-11e9-a864-6f6fa2fda75a\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"'0.'\",\"id\":\"f6ae7490-b9dd-11e9-a864-6f6fa2fda75a\",\"label\":\"CPU Utilization\",\"line_width\":2,\"metrics\":[{\"field\":\"couchbase.node.cpu_utilization_rate.pct\",\"id\":\"f6ae7491-b9dd-11e9-a864-6f6fa2fda75a\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.node.hostname\",\"value_template\":\"{{value}}%\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Node CPU Utilization [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"467c99c0-b9de-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Buckets Operations Per Second [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"b8a49140-b9db-11e9-bc93-69919d73c9bb\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"b8a49141-b9db-11e9-bc93-69919d73c9bb\",\"label\":\"ops_per_sec\",\"line_width\":2,\"metrics\":[{\"field\":\"couchbase.bucket.ops_per_sec\",\"id\":\"b8a49142-b9db-11e9-bc93-69919d73c9bb\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.bucket.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Buckets Operations Per Second [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e23a9fe0-b9db-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Operations per Node [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"ec9c42a0-b9df-11e9-8634-0fd532c4482a\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(84,141,162,1)\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"ec9c42a1-b9df-11e9-8634-0fd532c4482a\",\"label\":\"max(couchbase.node.ops)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchbase.node.ops\",\"id\":\"ec9c42a2-b9df-11e9-8634-0fd532c4482a\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.node.hostname\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Operations per Node [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"17a01210-b9e0-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cluster HDD Usage [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"c7abd1d0-b9e0-11e9-8604-efdef550e653\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"c82f80c0-b9e0-11e9-8604-efdef550e653\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"c34f7c90-b9e0-11e9-ab08-bf43409c5a0d\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(67,191,147,1)\",\"fill\":\"0.2\",\"formatter\":\"bytes\",\"id\":\"c34f7c91-b9e0-11e9-ab08-bf43409c5a0d\",\"label\":\"Free\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchbase.cluster.hdd.free.bytes\",\"id\":\"c34f7c92-b9e0-11e9-ab08-bf43409c5a0d\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"8949ecc0-ba89-11e9-8d4d-f510918c2882\",\"label\":\"Data\",\"line_width\":1,\"metrics\":[{\"field\":\"couchbase.cluster.hdd.used.by_data.bytes\",\"id\":\"8949ecc1-ba89-11e9-8d4d-f510918c2882\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"ce3d98e0-ba89-11e9-8d4d-f510918c2882\",\"label\":\"Cluster\",\"line_width\":1,\"metrics\":[{\"field\":\"couchbase.cluster.hdd.used.value.bytes\",\"id\":\"ce3d98e1-ba89-11e9-8d4d-f510918c2882\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(159,5,0,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"2f4dbb20-ba89-11e9-8d4d-f510918c2882\",\"label\":\"Total\",\"line_width\":1,\"metrics\":[{\"field\":\"couchbase.cluster.hdd.total.bytes\",\"id\":\"2f4dbb21-ba89-11e9-8d4d-f510918c2882\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Cluster HDD Usage [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f515f2e0-b9e0-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cluster RAM [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"3afe8650-b9e1-11e9-861c-7f7211bffe38\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"24242700-b9e1-11e9-ab98-51a45917a19d\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(159,5,0,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"24242701-b9e1-11e9-ab98-51a45917a19d\",\"label\":\"Total\",\"line_width\":2,\"metrics\":[{\"field\":\"couchbase.cluster.ram.total.bytes\",\"id\":\"24242702-b9e1-11e9-ab98-51a45917a19d\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":\"0.2\",\"formatter\":\"bytes\",\"id\":\"24242703-b9e1-11e9-ab98-51a45917a19d\",\"label\":\"Used\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchbase.cluster.ram.used.value.bytes\",\"id\":\"24242704-b9e1-11e9-ab98-51a45917a19d\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Cluster RAM [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7cc8def0-b9e1-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Bucket Item Count [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"5b94e6a0-b9f2-11e9-9c08-535482acfc9e\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"5b94e6a1-b9f2-11e9-9c08-535482acfc9e\",\"label\":\"items\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchbase.bucket.item_count\",\"id\":\"5b94e6a2-b9f2-11e9-9c08-535482acfc9e\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.bucket.name\",\"terms_order_by\":\"5b94e6a2-b9f2-11e9-9c08-535482acfc9e\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Bucket Item Count [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"97ee1ea0-b9f2-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Document Replicas [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"2658bfa0-b9f4-11e9-ac89-cd269ee83e5f\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"2658bfa1-b9f4-11e9-ac89-cd269ee83e5f\",\"label\":\"replicas\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchbase.node.vb_replica_curr_items\",\"id\":\"2658bfa2-b9f4-11e9-ac89-cd269ee83e5f\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.node.hostname\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Document Replicas [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"63efced0-b9f4-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Disk space used by docs [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"46d25240-ba8b-11e9-a06c-c5fca4bfd53b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(83,167,131,1)\",\"fill\":\"0.1\",\"formatter\":\"bytes\",\"id\":\"46d25241-ba8b-11e9-a06c-c5fca4bfd53b\",\"label\":\"Docs \",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchbase.node.couch.docs.disk_size.bytes\",\"id\":\"46d25242-ba8b-11e9-a06c-c5fca4bfd53b\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.node.hostname\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Disk space used by docs [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"99980c90-ba8b-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Disk Fetches [Metricbeat Couchbase] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"ead970d0-ba8b-11e9-8d1e-992a5619d7be\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"ead970d1-ba8b-11e9-8d1e-992a5619d7be\",\"label\":\"Disk Fetches\",\"line_width\":2,\"metrics\":[{\"field\":\"couchbase.bucket.disk.fetches\",\"id\":\"ead970d2-ba8b-11e9-8d1e-992a5619d7be\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"couchbase.bucket.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Disk Fetches [Metricbeat Couchbase] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"19eed0e0-ba8c-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3NDksMV0="} -{"attributes":{"description":"This Couchbase dashboard visualizes the most relevant metrics for cluster, nodes and buckets. ","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"1\",\"w\":12,\"x\":0,\"y\":11},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Buckets RAM Used\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"2\",\"w\":12,\"x\":12,\"y\":11},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Buckets Disk Used\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":11},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Node CPU Utilization\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"4\",\"w\":12,\"x\":0,\"y\":22},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Buckets Operations Per Second\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Operations per Node\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"6\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cluster HDD Usage\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"7\",\"w\":12,\"x\":12,\"y\":0},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cluster RAM\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"8\",\"w\":12,\"x\":12,\"y\":22},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bucket Item Count\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"9\",\"w\":24,\"x\":24,\"y\":33},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Document Replicas\",\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"10\",\"w\":24,\"x\":24,\"y\":22},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disk space used by docs\",\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"11\",\"w\":24,\"x\":0,\"y\":33},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disk Fetches\",\"panelRefName\":\"panel_11\"}]","timeRestore":false,"title":"[Metricbeat Couchbase] Cluster Overview","version":1},"coreMigrationVersion":"8.0.0","id":"46d21220-b9f1-11e9-a579-f5c0a5d81340","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"e781add0-b9dc-11e9-a579-f5c0a5d81340","name":"1:panel_1","type":"visualization"},{"id":"c4c81a30-b9dd-11e9-a579-f5c0a5d81340","name":"2:panel_2","type":"visualization"},{"id":"467c99c0-b9de-11e9-a579-f5c0a5d81340","name":"3:panel_3","type":"visualization"},{"id":"e23a9fe0-b9db-11e9-a579-f5c0a5d81340","name":"4:panel_4","type":"visualization"},{"id":"17a01210-b9e0-11e9-a579-f5c0a5d81340","name":"5:panel_5","type":"visualization"},{"id":"f515f2e0-b9e0-11e9-a579-f5c0a5d81340","name":"6:panel_6","type":"visualization"},{"id":"7cc8def0-b9e1-11e9-a579-f5c0a5d81340","name":"7:panel_7","type":"visualization"},{"id":"97ee1ea0-b9f2-11e9-a579-f5c0a5d81340","name":"8:panel_8","type":"visualization"},{"id":"63efced0-b9f4-11e9-a579-f5c0a5d81340","name":"9:panel_9","type":"visualization"},{"id":"99980c90-ba8b-11e9-a579-f5c0a5d81340","name":"10:panel_10","type":"visualization"},{"id":"19eed0e0-ba8c-11e9-a579-f5c0a5d81340","name":"11:panel_11","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:05.507Z","version":"WzM3MzgsMV0="} diff --git a/metricbeat/module/couchbase/_meta/kibana/7/visualization/17a01210-b9e0-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchbase/_meta/kibana/7/visualization/17a01210-b9e0-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..c335e684869a --- /dev/null +++ b/metricbeat/module/couchbase/_meta/kibana/7/visualization/17a01210-b9e0-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Operations per Node [Metricbeat Couchbase] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "ec9c42a0-b9df-11e9-8634-0fd532c4482a", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(84,141,162,1)", + "fill": "0.1", + "formatter": "number", + "id": "ec9c42a1-b9df-11e9-8634-0fd532c4482a", + "label": "max(couchbase.node.ops)", + "line_width": "1", + "metrics": [ + { + "field": "couchbase.node.ops", + "id": "ec9c42a2-b9df-11e9-8634-0fd532c4482a", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "couchbase.node.hostname", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Operations per Node [Metricbeat Couchbase] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "17a01210-b9e0-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:05.507Z", + "version": "WzM3NDMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchbase/_meta/kibana/7/visualization/19eed0e0-ba8c-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchbase/_meta/kibana/7/visualization/19eed0e0-ba8c-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..16815c9eb0db --- /dev/null +++ b/metricbeat/module/couchbase/_meta/kibana/7/visualization/19eed0e0-ba8c-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Disk Fetches [Metricbeat Couchbase] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "ead970d0-ba8b-11e9-8d1e-992a5619d7be", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(176,188,0,1)", + "fill": 0, + "formatter": "number", + "id": "ead970d1-ba8b-11e9-8d1e-992a5619d7be", + "label": "Disk Fetches", + "line_width": 2, + "metrics": [ + { + "field": "couchbase.bucket.disk.fetches", + "id": "ead970d2-ba8b-11e9-8d1e-992a5619d7be", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "couchbase.bucket.name", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Disk Fetches [Metricbeat Couchbase] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "19eed0e0-ba8c-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:05.507Z", + "version": "WzM3NDksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchbase/_meta/kibana/7/visualization/467c99c0-b9de-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchbase/_meta/kibana/7/visualization/467c99c0-b9de-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..7d1963e6f93c --- /dev/null +++ b/metricbeat/module/couchbase/_meta/kibana/7/visualization/467c99c0-b9de-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Node CPU Utilization [Metricbeat Couchbase] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "f6ae4d80-b9dd-11e9-a864-6f6fa2fda75a", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "'0.'", + "id": "f6ae7490-b9dd-11e9-a864-6f6fa2fda75a", + "label": "CPU Utilization", + "line_width": 2, + "metrics": [ + { + "field": "couchbase.node.cpu_utilization_rate.pct", + "id": "f6ae7491-b9dd-11e9-a864-6f6fa2fda75a", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "couchbase.node.hostname", + "value_template": "{{value}}%" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Node CPU Utilization [Metricbeat Couchbase] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "467c99c0-b9de-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:05.507Z", + "version": "WzM3NDEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchbase/_meta/kibana/7/visualization/63efced0-b9f4-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchbase/_meta/kibana/7/visualization/63efced0-b9f4-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..64368390269a --- /dev/null +++ b/metricbeat/module/couchbase/_meta/kibana/7/visualization/63efced0-b9f4-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Document Replicas [Metricbeat Couchbase] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "2658bfa0-b9f4-11e9-ac89-cd269ee83e5f", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": "0.2", + "formatter": "number", + "id": "2658bfa1-b9f4-11e9-ac89-cd269ee83e5f", + "label": "replicas", + "line_width": "1", + "metrics": [ + { + "field": "couchbase.node.vb_replica_curr_items", + "id": "2658bfa2-b9f4-11e9-ac89-cd269ee83e5f", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "couchbase.node.hostname", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Document Replicas [Metricbeat Couchbase] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "63efced0-b9f4-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:05.507Z", + "version": "WzM3NDcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchbase/_meta/kibana/7/visualization/7cc8def0-b9e1-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchbase/_meta/kibana/7/visualization/7cc8def0-b9e1-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..48768dedffb9 --- /dev/null +++ b/metricbeat/module/couchbase/_meta/kibana/7/visualization/7cc8def0-b9e1-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,95 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Cluster RAM [Metricbeat Couchbase] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "3afe8650-b9e1-11e9-861c-7f7211bffe38" + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "id": "24242700-b9e1-11e9-ab98-51a45917a19d", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(159,5,0,1)", + "fill": 0, + "formatter": "bytes", + "id": "24242701-b9e1-11e9-ab98-51a45917a19d", + "label": "Total", + "line_width": 2, + "metrics": [ + { + "field": "couchbase.cluster.ram.total.bytes", + "id": "24242702-b9e1-11e9-ab98-51a45917a19d", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(226,115,0,1)", + "fill": "0.2", + "formatter": "bytes", + "id": "24242703-b9e1-11e9-ab98-51a45917a19d", + "label": "Used", + "line_width": "1", + "metrics": [ + { + "field": "couchbase.cluster.ram.used.value.bytes", + "id": "24242704-b9e1-11e9-ab98-51a45917a19d", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Cluster RAM [Metricbeat Couchbase] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7cc8def0-b9e1-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:05.507Z", + "version": "WzM3NDUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchbase/_meta/kibana/7/visualization/97ee1ea0-b9f2-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchbase/_meta/kibana/7/visualization/97ee1ea0-b9f2-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..ee970deead95 --- /dev/null +++ b/metricbeat/module/couchbase/_meta/kibana/7/visualization/97ee1ea0-b9f2-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,69 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Bucket Item Count [Metricbeat Couchbase] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "5b94e6a0-b9f2-11e9-9c08-535482acfc9e", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": "0.1", + "formatter": "number", + "id": "5b94e6a1-b9f2-11e9-9c08-535482acfc9e", + "label": "items", + "line_width": "1", + "metrics": [ + { + "field": "couchbase.bucket.item_count", + "id": "5b94e6a2-b9f2-11e9-9c08-535482acfc9e", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "couchbase.bucket.name", + "terms_order_by": "5b94e6a2-b9f2-11e9-9c08-535482acfc9e", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Bucket Item Count [Metricbeat Couchbase] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "97ee1ea0-b9f2-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:05.507Z", + "version": "WzM3NDYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchbase/_meta/kibana/7/visualization/99980c90-ba8b-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchbase/_meta/kibana/7/visualization/99980c90-ba8b-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..4da0a92a9894 --- /dev/null +++ b/metricbeat/module/couchbase/_meta/kibana/7/visualization/99980c90-ba8b-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Disk space used by docs [Metricbeat Couchbase] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "46d25240-ba8b-11e9-a06c-c5fca4bfd53b", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(83,167,131,1)", + "fill": "0.1", + "formatter": "bytes", + "id": "46d25241-ba8b-11e9-a06c-c5fca4bfd53b", + "label": "Docs ", + "line_width": "1", + "metrics": [ + { + "field": "couchbase.node.couch.docs.disk_size.bytes", + "id": "46d25242-ba8b-11e9-a06c-c5fca4bfd53b", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "couchbase.node.hostname", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Disk space used by docs [Metricbeat Couchbase] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "99980c90-ba8b-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:05.507Z", + "version": "WzM3NDgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchbase/_meta/kibana/7/visualization/c4c81a30-b9dd-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchbase/_meta/kibana/7/visualization/c4c81a30-b9dd-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..b6f7296701a2 --- /dev/null +++ b/metricbeat/module/couchbase/_meta/kibana/7/visualization/c4c81a30-b9dd-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Buckets Disk Used [Metricbeat Couchbase] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "a126b410-b9dd-11e9-aa9d-55aa18f46863" + } + ], + "bar_color_rules": [ + { + "id": "9bcf0ee0-b9dd-11e9-aa9d-55aa18f46863" + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "97d88050-b9dd-11e9-aa9d-55aa18f46863" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "04f7a400-b9dd-11e9-b988-d77f6106a7f0", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,98,177,1)", + "fill": "0.1", + "formatter": "bytes", + "id": "04f7a401-b9dd-11e9-b988-d77f6106a7f0", + "label": "Disk Used", + "line_width": "1", + "metrics": [ + { + "field": "couchbase.bucket.disk.used.bytes", + "id": "04f7a402-b9dd-11e9-b988-d77f6106a7f0", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "couchbase.bucket.name", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Buckets Disk Used [Metricbeat Couchbase] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c4c81a30-b9dd-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:05.507Z", + "version": "WzM3NDAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchbase/_meta/kibana/7/visualization/e23a9fe0-b9db-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchbase/_meta/kibana/7/visualization/e23a9fe0-b9db-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..53075623c5d0 --- /dev/null +++ b/metricbeat/module/couchbase/_meta/kibana/7/visualization/e23a9fe0-b9db-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Buckets Operations Per Second [Metricbeat Couchbase] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "b8a49140-b9db-11e9-bc93-69919d73c9bb", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "number", + "id": "b8a49141-b9db-11e9-bc93-69919d73c9bb", + "label": "ops_per_sec", + "line_width": 2, + "metrics": [ + { + "field": "couchbase.bucket.ops_per_sec", + "id": "b8a49142-b9db-11e9-bc93-69919d73c9bb", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "couchbase.bucket.name", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Buckets Operations Per Second [Metricbeat Couchbase] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e23a9fe0-b9db-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:05.507Z", + "version": "WzM3NDIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchbase/_meta/kibana/7/visualization/e781add0-b9dc-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchbase/_meta/kibana/7/visualization/e781add0-b9dc-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..80e24eba916f --- /dev/null +++ b/metricbeat/module/couchbase/_meta/kibana/7/visualization/e781add0-b9dc-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Buckets RAM Used [Metricbeat Couchbase] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "1ad80860-b9dc-11e9-a74b-270ba78f4926", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": "0.1", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "1ad80861-b9dc-11e9-a74b-270ba78f4926", + "label": " RAM used", + "line_width": "1", + "metrics": [ + { + "field": "couchbase.bucket.memory.used.bytes", + "id": "1ad80862-b9dc-11e9-a74b-270ba78f4926", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "couchbase.bucket.name", + "terms_order_by": "1ad80862-b9dc-11e9-a74b-270ba78f4926", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Buckets RAM Used [Metricbeat Couchbase] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e781add0-b9dc-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:05.507Z", + "version": "WzM3MzksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchbase/_meta/kibana/7/visualization/f515f2e0-b9e0-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchbase/_meta/kibana/7/visualization/f515f2e0-b9e0-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..93ca6f2774d5 --- /dev/null +++ b/metricbeat/module/couchbase/_meta/kibana/7/visualization/f515f2e0-b9e0-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,146 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Cluster HDD Usage [Metricbeat Couchbase] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "c7abd1d0-b9e0-11e9-8604-efdef550e653" + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "c82f80c0-b9e0-11e9-8604-efdef550e653" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "c34f7c90-b9e0-11e9-ab08-bf43409c5a0d", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(67,191,147,1)", + "fill": "0.2", + "formatter": "bytes", + "id": "c34f7c91-b9e0-11e9-ab08-bf43409c5a0d", + "label": "Free", + "line_width": "1", + "metrics": [ + { + "field": "couchbase.cluster.hdd.free.bytes", + "id": "c34f7c92-b9e0-11e9-ab08-bf43409c5a0d", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "8949ecc0-ba89-11e9-8d4d-f510918c2882", + "label": "Data", + "line_width": 1, + "metrics": [ + { + "field": "couchbase.cluster.hdd.used.by_data.bytes", + "id": "8949ecc1-ba89-11e9-8d4d-f510918c2882", + "type": "max" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "ce3d98e0-ba89-11e9-8d4d-f510918c2882", + "label": "Cluster", + "line_width": 1, + "metrics": [ + { + "field": "couchbase.cluster.hdd.used.value.bytes", + "id": "ce3d98e1-ba89-11e9-8d4d-f510918c2882", + "type": "max" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(159,5,0,1)", + "fill": "0", + "formatter": "bytes", + "id": "2f4dbb20-ba89-11e9-8d4d-f510918c2882", + "label": "Total", + "line_width": 1, + "metrics": [ + { + "field": "couchbase.cluster.hdd.total.bytes", + "id": "2f4dbb21-ba89-11e9-8d4d-f510918c2882", + "type": "max" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Cluster HDD Usage [Metricbeat Couchbase] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f515f2e0-b9e0-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:05.507Z", + "version": "WzM3NDQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchdb/_meta/kibana/7/dashboard/Metricbeat-couchdb-overview.ndjson b/metricbeat/module/couchdb/_meta/kibana/7/dashboard/Metricbeat-couchdb-overview.ndjson deleted file mode 100644 index d9e5058b0044..000000000000 --- a/metricbeat/module/couchdb/_meta/kibana/7/dashboard/Metricbeat-couchdb-overview.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"HTTP Status Codes [Metricbeat CouchDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c8c0f520-b94d-11e9-8899-f736e404b0e7\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f521-b94d-11e9-8899-f736e404b0e7\",\"label\":\"200 OK\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.200\",\"id\":\"c8c0f522-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f522-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f524-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f524-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f523-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f529-b94d-11e9-8899-f736e404b0e7\",\"label\":\"400 Bad Request\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.400\",\"id\":\"c8c0f52a-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f52a-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f52c-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f52c-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f52b-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#490092\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f52d-b94d-11e9-8899-f736e404b0e7\",\"label\":\"401 Unauthorized\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.401\",\"id\":\"c8c0f52e-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f52e-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f530-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f530-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f52f-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#461A0A\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f541-b94d-11e9-8899-f736e404b0e7\",\"label\":\"500 Internal Server Error\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.500\",\"id\":\"c8c0f542-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f542-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f544-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f544-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f543-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#FEB6DB\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f531-b94d-11e9-8899-f736e404b0e7\",\"label\":\"403 Forbidden\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.403\",\"id\":\"c8c0f532-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f532-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f534-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f534-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f533-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#E6C220\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f535-b94d-11e9-8899-f736e404b0e7\",\"label\":\"404 Not Found\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.404\",\"id\":\"c8c0f536-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f536-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f538-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f538-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f537-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f525-b94d-11e9-8899-f736e404b0e7\",\"label\":\"202 Accepted\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.202\",\"id\":\"c8c0f526-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f526-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f528-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f528-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f527-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#BFA180\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f539-b94d-11e9-8899-f736e404b0e7\",\"label\":\"405 Method Not Allowed\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.405\",\"id\":\"c8c0f53a-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f53a-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f53c-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f53c-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f53b-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#F98510\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f53d-b94d-11e9-8899-f736e404b0e7\",\"label\":\"409 Conflict\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.409\",\"id\":\"c8c0f53e-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f53e-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f540-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f540-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f53f-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#920000\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"c8c0f545-b94d-11e9-8899-f736e404b0e7\",\"label\":\"201 Created\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_status_codes.201\",\"id\":\"c8c0f546-b94d-11e9-8899-f736e404b0e7\",\"type\":\"max\"},{\"field\":\"c8c0f546-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f548-b94d-11e9-8899-f736e404b0e7\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"c8c0f548-b94d-11e9-8899-f736e404b0e7\",\"id\":\"c8c0f547-b94d-11e9-8899-f736e404b0e7\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HTTP Status Codes [Metricbeat CouchDB] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8e15ece0-b94e-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:06.496Z","version":"WzM3NTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"HTTP Request Methods [Metricbeat CouchDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"bb936ee0-b94e-11e9-86ee-f5b628c75be4\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"bb936ee1-b94e-11e9-86ee-f5b628c75be4\",\"label\":\"GET\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_request_methods.GET\",\"id\":\"bb936ee2-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"max\"},{\"field\":\"bb936ee2-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ee4-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"bb936ee4-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ee3-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"bb936ee5-b94e-11e9-86ee-f5b628c75be4\",\"label\":\"POST\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_request_methods.POST\",\"id\":\"bb936ee6-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"max\"},{\"field\":\"bb936ee6-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ee8-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"bb936ee8-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ee7-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"bb936ee9-b94e-11e9-86ee-f5b628c75be4\",\"label\":\"PUT\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_request_methods.PUT\",\"id\":\"bb936eea-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"max\"},{\"field\":\"bb936eea-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936eec-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"bb936eec-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936eeb-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#490092\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"bb936eed-b94e-11e9-86ee-f5b628c75be4\",\"label\":\"DELETE\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_request_methods.DELETE\",\"id\":\"bb936eee-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"max\"},{\"field\":\"bb936eee-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ef0-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"bb936ef0-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936eef-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#FEB6DB\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"bb936ef1-b94e-11e9-86ee-f5b628c75be4\",\"label\":\"HEAD\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_request_methods.HEAD\",\"id\":\"bb936ef2-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"max\"},{\"field\":\"bb936ef2-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ef4-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"bb936ef4-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ef3-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#E6C220\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"bb936ef5-b94e-11e9-86ee-f5b628c75be4\",\"label\":\"COPY\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd_request_methods.COPY\",\"id\":\"bb936ef6-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"max\"},{\"field\":\"bb936ef6-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ef8-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"bb936ef8-b94e-11e9-86ee-f5b628c75be4\",\"id\":\"bb936ef7-b94e-11e9-86ee-f5b628c75be4\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HTTP Request Methods [Metricbeat CouchDB] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1b60bb70-b94f-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:06.496Z","version":"WzM3NTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Open Databases [Metricbeat CouchDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"filter\":{\"language\":\"kuery\",\"query\":\"couchdb\"},\"gauge_color_rules\":[{\"id\":\"ef4c9800-b94f-11e9-bce6-47447dde021d\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"71dd6340-b94f-11e9-9f6f-832b64f4a79f\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"right\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(12,121,125,1)\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"71dd8a50-b94f-11e9-9f6f-832b64f4a79f\",\"label\":\"Open Databases\",\"line_width\":2,\"metrics\":[{\"field\":\"couchdb.server.couchdb.open_databases\",\"id\":\"71dd8a51-b94f-11e9-9f6f-832b64f4a79f\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Open Databases [Metricbeat CouchDB] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f8c29f10-b94f-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:06.496Z","version":"WzM3NTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Database Read/Writes [Metricbeat CouchDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"couchdb\"},\"id\":\"48918790-b950-11e9-84ff-97e538653deb\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"48918791-b950-11e9-84ff-97e538653deb\",\"label\":\"database_writes\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.couchdb.database_writes\",\"id\":\"48918792-b950-11e9-84ff-97e538653deb\",\"type\":\"max\"},{\"field\":\"48918792-b950-11e9-84ff-97e538653deb\",\"id\":\"48918794-b950-11e9-84ff-97e538653deb\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"48918794-b950-11e9-84ff-97e538653deb\",\"id\":\"48918793-b950-11e9-84ff-97e538653deb\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(160,203,38,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"7c71dd30-b950-11e9-bd31-d98b40ea3379\",\"label\":\"database_reads\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.couchdb.database_reads\",\"id\":\"7c71dd31-b950-11e9-bd31-d98b40ea3379\",\"type\":\"max\"},{\"field\":\"7c71dd31-b950-11e9-bd31-d98b40ea3379\",\"id\":\"7c71dd32-b950-11e9-bd31-d98b40ea3379\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"7c71dd32-b950-11e9-bd31-d98b40ea3379\",\"id\":\"7c71dd33-b950-11e9-bd31-d98b40ea3379\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Database Read/Writes [Metricbeat CouchDB] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"702584a0-b950-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:06.496Z","version":"WzM3NTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Auth Cache Hit/Miss [Metricbeat CouchDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"couchdb\"},\"id\":\"7ccd9c50-b951-11e9-8e1d-17d2519ede48\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(179,101,87,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7ccd9c51-b951-11e9-8e1d-17d2519ede48\",\"label\":\"auth_cache_misses\",\"line_width\":2,\"metrics\":[{\"field\":\"couchdb.server.couchdb.auth_cache_misses\",\"id\":\"7ccd9c52-b951-11e9-8e1d-17d2519ede48\",\"type\":\"max\"},{\"field\":\"7ccd9c52-b951-11e9-8e1d-17d2519ede48\",\"id\":\"7ccd9c54-b951-11e9-8e1d-17d2519ede48\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"7ccd9c54-b951-11e9-8e1d-17d2519ede48\",\"id\":\"7ccd9c53-b951-11e9-8e1d-17d2519ede48\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(129,169,80,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7ccd9c55-b951-11e9-8e1d-17d2519ede48\",\"label\":\"auth_cache_hits\",\"line_width\":2,\"metrics\":[{\"field\":\"couchdb.server.couchdb.auth_cache_hits\",\"id\":\"7ccd9c56-b951-11e9-8e1d-17d2519ede48\",\"type\":\"max\"},{\"field\":\"7ccd9c56-b951-11e9-8e1d-17d2519ede48\",\"id\":\"7ccd9c58-b951-11e9-8e1d-17d2519ede48\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"7ccd9c58-b951-11e9-8e1d-17d2519ede48\",\"id\":\"7ccd9c57-b951-11e9-8e1d-17d2519ede48\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Auth Cache Hit/Miss [Metricbeat CouchDB] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"abfaf130-b951-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:06.496Z","version":"WzM3NTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of HTTP Requests [Metricbeat CouchDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"couchdb\"},\"id\":\"caae9780-b951-11e9-8945-b5f393c4775d\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(82,174,177,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"caae9781-b951-11e9-8945-b5f393c4775d\",\"label\":\"requests\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd.requests\",\"id\":\"caae9782-b951-11e9-8945-b5f393c4775d\",\"type\":\"max\"},{\"field\":\"caae9782-b951-11e9-8945-b5f393c4775d\",\"id\":\"caae9784-b951-11e9-8945-b5f393c4775d\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"caae9784-b951-11e9-8945-b5f393c4775d\",\"id\":\"caae9783-b951-11e9-8945-b5f393c4775d\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(237,193,119,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"caae9785-b951-11e9-8945-b5f393c4775d\",\"label\":\"bulk_requests\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"couchdb.server.httpd.bulk_requests\",\"id\":\"caae9786-b951-11e9-8945-b5f393c4775d\",\"type\":\"max\"},{\"field\":\"caae9786-b951-11e9-8945-b5f393c4775d\",\"id\":\"caae9788-b951-11e9-8945-b5f393c4775d\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"caae9788-b951-11e9-8945-b5f393c4775d\",\"id\":\"caae9787-b951-11e9-8945-b5f393c4775d\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Number of HTTP Requests [Metricbeat CouchDB] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"06018310-b952-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:06.496Z","version":"WzM3NTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of View Reads [Metricbeat CouchDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"couchdb\"},\"id\":\"1d4e0520-b952-11e9-b9f3-4d741a808166\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"1d4e0521-b952-11e9-b9f3-4d741a808166\",\"label\":\"view_reads\",\"line_width\":2,\"metrics\":[{\"field\":\"couchdb.server.httpd.view_reads\",\"id\":\"1d4e0522-b952-11e9-b9f3-4d741a808166\",\"type\":\"max\"},{\"field\":\"1d4e0522-b952-11e9-b9f3-4d741a808166\",\"id\":\"1d4e0524-b952-11e9-b9f3-4d741a808166\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"1d4e0524-b952-11e9-b9f3-4d741a808166\",\"id\":\"1d4e0523-b952-11e9-b9f3-4d741a808166\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(247,61,231,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"1d4e0525-b952-11e9-b9f3-4d741a808166\",\"label\":\"temporary_view_reads\",\"line_width\":2,\"metrics\":[{\"field\":\"couchdb.server.httpd.temporary_view_reads\",\"id\":\"1d4e0526-b952-11e9-b9f3-4d741a808166\",\"type\":\"max\"},{\"field\":\"1d4e0526-b952-11e9-b9f3-4d741a808166\",\"id\":\"1d4e0528-b952-11e9-b9f3-4d741a808166\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"1d4e0528-b952-11e9-b9f3-4d741a808166\",\"id\":\"1d4e0527-b952-11e9-b9f3-4d741a808166\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Number of View Reads [Metricbeat CouchDB] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"496910f0-b952-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:06.496Z","version":"WzM3NTcsMV0="} -{"attributes":{"description":"This CouchDB dashboard visualizes the most important CouchDB server metrics.\n\n","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":10},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"HTTP Status Codes\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":10},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"HTTP Request Methods\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Open Databases\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Database Read/Writes\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":25},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Auth Cache Hit/Miss\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"6\",\"w\":14,\"x\":10,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Number of HTTP Requests\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"7\",\"w\":24,\"x\":0,\"y\":25},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Number of View Reads\",\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Metricbeat CouchDB] Database Overview","version":1},"coreMigrationVersion":"8.0.0","id":"a3ab9a60-b952-11e9-a579-f5c0a5d81340","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"8e15ece0-b94e-11e9-a579-f5c0a5d81340","name":"1:panel_1","type":"visualization"},{"id":"1b60bb70-b94f-11e9-a579-f5c0a5d81340","name":"2:panel_2","type":"visualization"},{"id":"f8c29f10-b94f-11e9-a579-f5c0a5d81340","name":"3:panel_3","type":"visualization"},{"id":"702584a0-b950-11e9-a579-f5c0a5d81340","name":"4:panel_4","type":"visualization"},{"id":"abfaf130-b951-11e9-a579-f5c0a5d81340","name":"5:panel_5","type":"visualization"},{"id":"06018310-b952-11e9-a579-f5c0a5d81340","name":"6:panel_6","type":"visualization"},{"id":"496910f0-b952-11e9-a579-f5c0a5d81340","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:06.496Z","version":"WzM3NTAsMV0="} diff --git a/metricbeat/module/couchdb/_meta/kibana/7/dashboard/a3ab9a60-b952-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchdb/_meta/kibana/7/dashboard/a3ab9a60-b952-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..b5746e9f5de3 --- /dev/null +++ b/metricbeat/module/couchdb/_meta/kibana/7/dashboard/a3ab9a60-b952-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,188 @@ +{ + "attributes": { + "description": "This CouchDB dashboard visualizes the most important CouchDB server metrics.\n\n", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "1", + "w": 24, + "x": 0, + "y": 10 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "HTTP Status Codes", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "2", + "w": 24, + "x": 24, + "y": 10 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "HTTP Request Methods", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "3", + "w": 10, + "x": 0, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Open Databases", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "4", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "Database Read/Writes", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "5", + "w": 24, + "x": 24, + "y": 25 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Auth Cache Hit/Miss", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "6", + "w": 14, + "x": 10, + "y": 0 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Number of HTTP Requests", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "7", + "w": 24, + "x": 0, + "y": 25 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "title": "Number of View Reads", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat CouchDB] Database Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "a3ab9a60-b952-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "8e15ece0-b94e-11e9-a579-f5c0a5d81340", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "1b60bb70-b94f-11e9-a579-f5c0a5d81340", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "f8c29f10-b94f-11e9-a579-f5c0a5d81340", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "702584a0-b950-11e9-a579-f5c0a5d81340", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "abfaf130-b951-11e9-a579-f5c0a5d81340", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "06018310-b952-11e9-a579-f5c0a5d81340", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "496910f0-b952-11e9-a579-f5c0a5d81340", + "name": "7:panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:06.496Z", + "version": "WzM3NTAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchdb/_meta/kibana/7/visualization/06018310-b952-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchdb/_meta/kibana/7/visualization/06018310-b952-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..5a954be3f938 --- /dev/null +++ b/metricbeat/module/couchdb/_meta/kibana/7/visualization/06018310-b952-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Number of HTTP Requests [Metricbeat CouchDB] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "couchdb" + }, + "id": "caae9780-b951-11e9-8945-b5f393c4775d", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(82,174,177,1)", + "fill": "0.2", + "formatter": "number", + "id": "caae9781-b951-11e9-8945-b5f393c4775d", + "label": "requests", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd.requests", + "id": "caae9782-b951-11e9-8945-b5f393c4775d", + "type": "max" + }, + { + "field": "caae9782-b951-11e9-8945-b5f393c4775d", + "id": "caae9784-b951-11e9-8945-b5f393c4775d", + "type": "derivative", + "unit": "1s" + }, + { + "field": "caae9784-b951-11e9-8945-b5f393c4775d", + "id": "caae9783-b951-11e9-8945-b5f393c4775d", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(237,193,119,1)", + "fill": "0.2", + "formatter": "number", + "id": "caae9785-b951-11e9-8945-b5f393c4775d", + "label": "bulk_requests", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd.bulk_requests", + "id": "caae9786-b951-11e9-8945-b5f393c4775d", + "type": "max" + }, + { + "field": "caae9786-b951-11e9-8945-b5f393c4775d", + "id": "caae9788-b951-11e9-8945-b5f393c4775d", + "type": "derivative", + "unit": "1s" + }, + { + "field": "caae9788-b951-11e9-8945-b5f393c4775d", + "id": "caae9787-b951-11e9-8945-b5f393c4775d", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Number of HTTP Requests [Metricbeat CouchDB] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "06018310-b952-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:06.496Z", + "version": "WzM3NTYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchdb/_meta/kibana/7/visualization/1b60bb70-b94f-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchdb/_meta/kibana/7/visualization/1b60bb70-b94f-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..e29840bde7a6 --- /dev/null +++ b/metricbeat/module/couchdb/_meta/kibana/7/visualization/1b60bb70-b94f-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,248 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "HTTP Request Methods [Metricbeat CouchDB] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "bb936ee0-b94e-11e9-86ee-f5b628c75be4", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": "0.2", + "formatter": "number", + "id": "bb936ee1-b94e-11e9-86ee-f5b628c75be4", + "label": "GET", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd_request_methods.GET", + "id": "bb936ee2-b94e-11e9-86ee-f5b628c75be4", + "type": "max" + }, + { + "field": "bb936ee2-b94e-11e9-86ee-f5b628c75be4", + "id": "bb936ee4-b94e-11e9-86ee-f5b628c75be4", + "type": "derivative", + "unit": "1s" + }, + { + "field": "bb936ee4-b94e-11e9-86ee-f5b628c75be4", + "id": "bb936ee3-b94e-11e9-86ee-f5b628c75be4", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#DB1374", + "fill": "0.2", + "formatter": "number", + "id": "bb936ee5-b94e-11e9-86ee-f5b628c75be4", + "label": "POST", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd_request_methods.POST", + "id": "bb936ee6-b94e-11e9-86ee-f5b628c75be4", + "type": "max" + }, + { + "field": "bb936ee6-b94e-11e9-86ee-f5b628c75be4", + "id": "bb936ee8-b94e-11e9-86ee-f5b628c75be4", + "type": "derivative", + "unit": "1s" + }, + { + "field": "bb936ee8-b94e-11e9-86ee-f5b628c75be4", + "id": "bb936ee7-b94e-11e9-86ee-f5b628c75be4", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#00B3A4", + "fill": "0.2", + "formatter": "number", + "id": "bb936ee9-b94e-11e9-86ee-f5b628c75be4", + "label": "PUT", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd_request_methods.PUT", + "id": "bb936eea-b94e-11e9-86ee-f5b628c75be4", + "type": "max" + }, + { + "field": "bb936eea-b94e-11e9-86ee-f5b628c75be4", + "id": "bb936eec-b94e-11e9-86ee-f5b628c75be4", + "type": "derivative", + "unit": "1s" + }, + { + "field": "bb936eec-b94e-11e9-86ee-f5b628c75be4", + "id": "bb936eeb-b94e-11e9-86ee-f5b628c75be4", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#490092", + "fill": "0.2", + "formatter": "number", + "id": "bb936eed-b94e-11e9-86ee-f5b628c75be4", + "label": "DELETE", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd_request_methods.DELETE", + "id": "bb936eee-b94e-11e9-86ee-f5b628c75be4", + "type": "max" + }, + { + "field": "bb936eee-b94e-11e9-86ee-f5b628c75be4", + "id": "bb936ef0-b94e-11e9-86ee-f5b628c75be4", + "type": "derivative", + "unit": "1s" + }, + { + "field": "bb936ef0-b94e-11e9-86ee-f5b628c75be4", + "id": "bb936eef-b94e-11e9-86ee-f5b628c75be4", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#FEB6DB", + "fill": "0.2", + "formatter": "number", + "id": "bb936ef1-b94e-11e9-86ee-f5b628c75be4", + "label": "HEAD", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd_request_methods.HEAD", + "id": "bb936ef2-b94e-11e9-86ee-f5b628c75be4", + "type": "max" + }, + { + "field": "bb936ef2-b94e-11e9-86ee-f5b628c75be4", + "id": "bb936ef4-b94e-11e9-86ee-f5b628c75be4", + "type": "derivative", + "unit": "1s" + }, + { + "field": "bb936ef4-b94e-11e9-86ee-f5b628c75be4", + "id": "bb936ef3-b94e-11e9-86ee-f5b628c75be4", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#E6C220", + "fill": "0.2", + "formatter": "number", + "id": "bb936ef5-b94e-11e9-86ee-f5b628c75be4", + "label": "COPY", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd_request_methods.COPY", + "id": "bb936ef6-b94e-11e9-86ee-f5b628c75be4", + "type": "max" + }, + { + "field": "bb936ef6-b94e-11e9-86ee-f5b628c75be4", + "id": "bb936ef8-b94e-11e9-86ee-f5b628c75be4", + "type": "derivative", + "unit": "1s" + }, + { + "field": "bb936ef8-b94e-11e9-86ee-f5b628c75be4", + "id": "bb936ef7-b94e-11e9-86ee-f5b628c75be4", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "HTTP Request Methods [Metricbeat CouchDB] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1b60bb70-b94f-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:06.496Z", + "version": "WzM3NTIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchdb/_meta/kibana/7/visualization/496910f0-b952-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchdb/_meta/kibana/7/visualization/496910f0-b952-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..e916ec2241f7 --- /dev/null +++ b/metricbeat/module/couchdb/_meta/kibana/7/visualization/496910f0-b952-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Number of View Reads [Metricbeat CouchDB] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "couchdb" + }, + "id": "1d4e0520-b952-11e9-b9f3-4d741a808166", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": 0, + "formatter": "number", + "id": "1d4e0521-b952-11e9-b9f3-4d741a808166", + "label": "view_reads", + "line_width": 2, + "metrics": [ + { + "field": "couchdb.server.httpd.view_reads", + "id": "1d4e0522-b952-11e9-b9f3-4d741a808166", + "type": "max" + }, + { + "field": "1d4e0522-b952-11e9-b9f3-4d741a808166", + "id": "1d4e0524-b952-11e9-b9f3-4d741a808166", + "type": "derivative", + "unit": "1s" + }, + { + "field": "1d4e0524-b952-11e9-b9f3-4d741a808166", + "id": "1d4e0523-b952-11e9-b9f3-4d741a808166", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(247,61,231,1)", + "fill": 0, + "formatter": "number", + "id": "1d4e0525-b952-11e9-b9f3-4d741a808166", + "label": "temporary_view_reads", + "line_width": 2, + "metrics": [ + { + "field": "couchdb.server.httpd.temporary_view_reads", + "id": "1d4e0526-b952-11e9-b9f3-4d741a808166", + "type": "max" + }, + { + "field": "1d4e0526-b952-11e9-b9f3-4d741a808166", + "id": "1d4e0528-b952-11e9-b9f3-4d741a808166", + "type": "derivative", + "unit": "1s" + }, + { + "field": "1d4e0528-b952-11e9-b9f3-4d741a808166", + "id": "1d4e0527-b952-11e9-b9f3-4d741a808166", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Number of View Reads [Metricbeat CouchDB] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "496910f0-b952-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:06.496Z", + "version": "WzM3NTcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchdb/_meta/kibana/7/visualization/702584a0-b950-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchdb/_meta/kibana/7/visualization/702584a0-b950-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..9c80c31137a5 --- /dev/null +++ b/metricbeat/module/couchdb/_meta/kibana/7/visualization/702584a0-b950-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,113 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Database Read/Writes [Metricbeat CouchDB] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "couchdb" + }, + "id": "48918790-b950-11e9-84ff-97e538653deb", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(226,115,0,1)", + "fill": "0.2", + "formatter": "number", + "id": "48918791-b950-11e9-84ff-97e538653deb", + "label": "database_writes", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.couchdb.database_writes", + "id": "48918792-b950-11e9-84ff-97e538653deb", + "type": "max" + }, + { + "field": "48918792-b950-11e9-84ff-97e538653deb", + "id": "48918794-b950-11e9-84ff-97e538653deb", + "type": "derivative", + "unit": "1s" + }, + { + "field": "48918794-b950-11e9-84ff-97e538653deb", + "id": "48918793-b950-11e9-84ff-97e538653deb", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(160,203,38,1)", + "fill": "0.2", + "formatter": "number", + "id": "7c71dd30-b950-11e9-bd31-d98b40ea3379", + "label": "database_reads", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.couchdb.database_reads", + "id": "7c71dd31-b950-11e9-bd31-d98b40ea3379", + "type": "max" + }, + { + "field": "7c71dd31-b950-11e9-bd31-d98b40ea3379", + "id": "7c71dd32-b950-11e9-bd31-d98b40ea3379", + "type": "derivative", + "unit": "1s" + }, + { + "field": "7c71dd32-b950-11e9-bd31-d98b40ea3379", + "id": "7c71dd33-b950-11e9-bd31-d98b40ea3379", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Database Read/Writes [Metricbeat CouchDB] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "702584a0-b950-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:06.496Z", + "version": "WzM3NTQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchdb/_meta/kibana/7/visualization/8e15ece0-b94e-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchdb/_meta/kibana/7/visualization/8e15ece0-b94e-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..99f2e594a3c7 --- /dev/null +++ b/metricbeat/module/couchdb/_meta/kibana/7/visualization/8e15ece0-b94e-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,384 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "HTTP Status Codes [Metricbeat CouchDB] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c8c0f520-b94d-11e9-8899-f736e404b0e7", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": "0.2", + "formatter": "number", + "id": "c8c0f521-b94d-11e9-8899-f736e404b0e7", + "label": "200 OK", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd_status_codes.200", + "id": "c8c0f522-b94d-11e9-8899-f736e404b0e7", + "type": "max" + }, + { + "field": "c8c0f522-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f524-b94d-11e9-8899-f736e404b0e7", + "type": "derivative", + "unit": "1s" + }, + { + "field": "c8c0f524-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f523-b94d-11e9-8899-f736e404b0e7", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#00B3A4", + "fill": "0.2", + "formatter": "number", + "id": "c8c0f529-b94d-11e9-8899-f736e404b0e7", + "label": "400 Bad Request", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd_status_codes.400", + "id": "c8c0f52a-b94d-11e9-8899-f736e404b0e7", + "type": "max" + }, + { + "field": "c8c0f52a-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f52c-b94d-11e9-8899-f736e404b0e7", + "type": "derivative", + "unit": "1s" + }, + { + "field": "c8c0f52c-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f52b-b94d-11e9-8899-f736e404b0e7", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#490092", + "fill": "0.2", + "formatter": "number", + "id": "c8c0f52d-b94d-11e9-8899-f736e404b0e7", + "label": "401 Unauthorized", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd_status_codes.401", + "id": "c8c0f52e-b94d-11e9-8899-f736e404b0e7", + "type": "max" + }, + { + "field": "c8c0f52e-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f530-b94d-11e9-8899-f736e404b0e7", + "type": "derivative", + "unit": "1s" + }, + { + "field": "c8c0f530-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f52f-b94d-11e9-8899-f736e404b0e7", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#461A0A", + "fill": "0.2", + "formatter": "number", + "id": "c8c0f541-b94d-11e9-8899-f736e404b0e7", + "label": "500 Internal Server Error", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd_status_codes.500", + "id": "c8c0f542-b94d-11e9-8899-f736e404b0e7", + "type": "max" + }, + { + "field": "c8c0f542-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f544-b94d-11e9-8899-f736e404b0e7", + "type": "derivative", + "unit": "1s" + }, + { + "field": "c8c0f544-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f543-b94d-11e9-8899-f736e404b0e7", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#FEB6DB", + "fill": "0.2", + "formatter": "number", + "id": "c8c0f531-b94d-11e9-8899-f736e404b0e7", + "label": "403 Forbidden", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd_status_codes.403", + "id": "c8c0f532-b94d-11e9-8899-f736e404b0e7", + "type": "max" + }, + { + "field": "c8c0f532-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f534-b94d-11e9-8899-f736e404b0e7", + "type": "derivative", + "unit": "1s" + }, + { + "field": "c8c0f534-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f533-b94d-11e9-8899-f736e404b0e7", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#E6C220", + "fill": "0.2", + "formatter": "number", + "id": "c8c0f535-b94d-11e9-8899-f736e404b0e7", + "label": "404 Not Found", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd_status_codes.404", + "id": "c8c0f536-b94d-11e9-8899-f736e404b0e7", + "type": "max" + }, + { + "field": "c8c0f536-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f538-b94d-11e9-8899-f736e404b0e7", + "type": "derivative", + "unit": "1s" + }, + { + "field": "c8c0f538-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f537-b94d-11e9-8899-f736e404b0e7", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#DB1374", + "fill": "0.2", + "formatter": "number", + "id": "c8c0f525-b94d-11e9-8899-f736e404b0e7", + "label": "202 Accepted", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd_status_codes.202", + "id": "c8c0f526-b94d-11e9-8899-f736e404b0e7", + "type": "max" + }, + { + "field": "c8c0f526-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f528-b94d-11e9-8899-f736e404b0e7", + "type": "derivative", + "unit": "1s" + }, + { + "field": "c8c0f528-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f527-b94d-11e9-8899-f736e404b0e7", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#BFA180", + "fill": "0.2", + "formatter": "number", + "id": "c8c0f539-b94d-11e9-8899-f736e404b0e7", + "label": "405 Method Not Allowed", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd_status_codes.405", + "id": "c8c0f53a-b94d-11e9-8899-f736e404b0e7", + "type": "max" + }, + { + "field": "c8c0f53a-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f53c-b94d-11e9-8899-f736e404b0e7", + "type": "derivative", + "unit": "1s" + }, + { + "field": "c8c0f53c-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f53b-b94d-11e9-8899-f736e404b0e7", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#F98510", + "fill": "0.2", + "formatter": "number", + "id": "c8c0f53d-b94d-11e9-8899-f736e404b0e7", + "label": "409 Conflict", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd_status_codes.409", + "id": "c8c0f53e-b94d-11e9-8899-f736e404b0e7", + "type": "max" + }, + { + "field": "c8c0f53e-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f540-b94d-11e9-8899-f736e404b0e7", + "type": "derivative", + "unit": "1s" + }, + { + "field": "c8c0f540-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f53f-b94d-11e9-8899-f736e404b0e7", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#920000", + "fill": "0.2", + "formatter": "number", + "id": "c8c0f545-b94d-11e9-8899-f736e404b0e7", + "label": "201 Created", + "line_width": "1", + "metrics": [ + { + "field": "couchdb.server.httpd_status_codes.201", + "id": "c8c0f546-b94d-11e9-8899-f736e404b0e7", + "type": "max" + }, + { + "field": "c8c0f546-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f548-b94d-11e9-8899-f736e404b0e7", + "type": "derivative", + "unit": "1s" + }, + { + "field": "c8c0f548-b94d-11e9-8899-f736e404b0e7", + "id": "c8c0f547-b94d-11e9-8899-f736e404b0e7", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "HTTP Status Codes [Metricbeat CouchDB] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8e15ece0-b94e-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:06.496Z", + "version": "WzM3NTEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchdb/_meta/kibana/7/visualization/abfaf130-b951-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchdb/_meta/kibana/7/visualization/abfaf130-b951-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..c2b9fd11f999 --- /dev/null +++ b/metricbeat/module/couchdb/_meta/kibana/7/visualization/abfaf130-b951-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Auth Cache Hit/Miss [Metricbeat CouchDB] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "couchdb" + }, + "id": "7ccd9c50-b951-11e9-8e1d-17d2519ede48", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(179,101,87,1)", + "fill": 0, + "formatter": "number", + "id": "7ccd9c51-b951-11e9-8e1d-17d2519ede48", + "label": "auth_cache_misses", + "line_width": 2, + "metrics": [ + { + "field": "couchdb.server.couchdb.auth_cache_misses", + "id": "7ccd9c52-b951-11e9-8e1d-17d2519ede48", + "type": "max" + }, + { + "field": "7ccd9c52-b951-11e9-8e1d-17d2519ede48", + "id": "7ccd9c54-b951-11e9-8e1d-17d2519ede48", + "type": "derivative", + "unit": "1s" + }, + { + "field": "7ccd9c54-b951-11e9-8e1d-17d2519ede48", + "id": "7ccd9c53-b951-11e9-8e1d-17d2519ede48", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(129,169,80,1)", + "fill": 0, + "formatter": "number", + "id": "7ccd9c55-b951-11e9-8e1d-17d2519ede48", + "label": "auth_cache_hits", + "line_width": 2, + "metrics": [ + { + "field": "couchdb.server.couchdb.auth_cache_hits", + "id": "7ccd9c56-b951-11e9-8e1d-17d2519ede48", + "type": "max" + }, + { + "field": "7ccd9c56-b951-11e9-8e1d-17d2519ede48", + "id": "7ccd9c58-b951-11e9-8e1d-17d2519ede48", + "type": "derivative", + "unit": "1s" + }, + { + "field": "7ccd9c58-b951-11e9-8e1d-17d2519ede48", + "id": "7ccd9c57-b951-11e9-8e1d-17d2519ede48", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Auth Cache Hit/Miss [Metricbeat CouchDB] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "abfaf130-b951-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:06.496Z", + "version": "WzM3NTUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/couchdb/_meta/kibana/7/visualization/f8c29f10-b94f-11e9-a579-f5c0a5d81340.json b/metricbeat/module/couchdb/_meta/kibana/7/visualization/f8c29f10-b94f-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..4a0cc2657326 --- /dev/null +++ b/metricbeat/module/couchdb/_meta/kibana/7/visualization/f8c29f10-b94f-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Open Databases [Metricbeat CouchDB] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "filter": { + "language": "kuery", + "query": "couchdb" + }, + "gauge_color_rules": [ + { + "id": "ef4c9800-b94f-11e9-bce6-47447dde021d" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "71dd6340-b94f-11e9-9f6f-832b64f4a79f", + "index_pattern": "metricbeat-*", + "interval": "auto", + "legend_position": "right", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(12,121,125,1)", + "fill": "0.1", + "formatter": "number", + "id": "71dd8a50-b94f-11e9-9f6f-832b64f4a79f", + "label": "Open Databases", + "line_width": 2, + "metrics": [ + { + "field": "couchdb.server.couchdb.open_databases", + "id": "71dd8a51-b94f-11e9-9f6f-832b64f4a79f", + "type": "max" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Open Databases [Metricbeat CouchDB] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f8c29f10-b94f-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:06.496Z", + "version": "WzM3NTMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/docker/_meta/kibana/7/dashboard/AV4REOpp5NkDleZmzKkE-ecs.json b/metricbeat/module/docker/_meta/kibana/7/dashboard/AV4REOpp5NkDleZmzKkE-ecs.json new file mode 100644 index 000000000000..cd43dfb4569b --- /dev/null +++ b/metricbeat/module/docker/_meta/kibana/7/dashboard/AV4REOpp5NkDleZmzKkE-ecs.json @@ -0,0 +1,204 @@ +{ + "attributes": { + "description": "Overview of docker containers", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": 1, + "direction": "asc" + } + } + } + }, + "gridData": { + "h": 20, + "i": "1", + "w": 28, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "2", + "w": 20, + "x": 28, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": true + } + }, + "gridData": { + "h": 12, + "i": "3", + "w": 8, + "x": 28, + "y": 8 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4", + "w": 24, + "x": 0, + "y": 20 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": true + } + }, + "gridData": { + "h": 12, + "i": "5", + "w": 24, + "x": 24, + "y": 20 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6", + "w": 48, + "x": 0, + "y": 32 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": true + } + }, + "gridData": { + "h": 12, + "i": "7", + "w": 12, + "x": 36, + "y": 8 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Docker] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "AV4REOpp5NkDleZmzKkE-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Docker-containers-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "Docker-Number-of-Containers-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "Docker-containers-per-host-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "Docker-CPU-usage-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "Docker-memory-usage-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "Docker-Network-IO-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "Docker-images-and-names-ecs", + "name": "7:panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:07.529Z", + "version": "WzM3NjYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/docker/_meta/kibana/7/dashboard/Metricbeat-docker-overview.ndjson b/metricbeat/module/docker/_meta/kibana/7/dashboard/Metricbeat-docker-overview.ndjson deleted file mode 100644 index 95abc75f1d61..000000000000 --- a/metricbeat/module/docker/_meta/kibana/7/dashboard/Metricbeat-docker-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module:docker\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Metricbeat Docker ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Metricbeat-Docker-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Docker containers [Metricbeat Docker] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 1, \"direction\": \"asc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Name\",\"field\":\"container.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"CPU usage (%)\",\"field\":\"docker.cpu.total.pct\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"DiskIO\",\"field\":\"docker.diskio.total\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Mem (%)\",\"field\":\"docker.memory.usage.pct\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Mem RSS\",\"field\":\"docker.memory.rss.total\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Number of Containers\",\"field\":\"container.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"perPage\":8,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Docker containers [Metricbeat Docker] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Docker-containers-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Docker-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Number of Containers [Metricbeat Docker] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Running\",\"field\":\"docker.info.containers.running\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Paused\",\"field\":\"docker.info.containers.paused\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Stopped\",\"field\":\"docker.info.containers.stopped\"},\"schema\":\"metric\",\"type\":\"max\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"36\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Number of Containers [Metricbeat Docker] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"Docker-Number-of-Containers-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Docker-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Docker containers per host [Metricbeat Docker] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Number of containers\",\"field\":\"container.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Hosts\",\"field\":\"agent.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Docker containers per host [Metricbeat Docker] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Docker-containers-per-host-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Docker-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module:docker AND metricset.name:cpu\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"CPU usage [Metricbeat Docker] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total CPU time\",\"field\":\"docker.cpu.total.pct\",\"percents\":[75]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Container name\",\"field\":\"container.name\",\"order\":\"desc\",\"orderBy\":\"1.75\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"top\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{}},\"title\":\"CPU usage [Metricbeat Docker] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Docker-CPU-usage-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module:docker AND metricset.name:memory\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Memory usage [Metricbeat Docker] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Memory\",\"field\":\"docker.memory.usage.total\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Container name\",\"field\":\"container.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"top\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{}},\"title\":\"Memory usage [Metricbeat Docker] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Docker-memory-usage-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module:docker AND metricset.name:network\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Network IO [Metricbeat Docker] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"IN bytes\",\"field\":\"docker.network.in.bytes\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Container name\",\"field\":\"container.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"OUT bytes\",\"field\":\"docker.network.out.bytes\"},\"schema\":\"metric\",\"type\":\"max\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"top\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{}},\"title\":\"Network IO [Metricbeat Docker] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Docker-Network-IO-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Docker images and names [Metricbeat Docker] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"container.image.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"container.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Docker images and names [Metricbeat Docker] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Docker-images-and-names-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Docker-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NjEsMV0="} -{"attributes":{"description":"Overview of docker containers","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"highlightAll\":true,\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":28,\"h\":20,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":1,\"direction\":\"asc\"}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":28,\"y\":0,\"w\":20,\"h\":8,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":28,\"y\":8,\"w\":8,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":24,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":20,\"w\":24,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":32,\"w\":48,\"h\":12,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":36,\"y\":8,\"w\":12,\"h\":12,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Metricbeat Docker] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"AV4REOpp5NkDleZmzKkE-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Docker-containers-ecs","name":"1:panel_1","type":"visualization"},{"id":"Docker-Number-of-Containers-ecs","name":"2:panel_2","type":"visualization"},{"id":"Docker-containers-per-host-ecs","name":"3:panel_3","type":"visualization"},{"id":"Docker-CPU-usage-ecs","name":"4:panel_4","type":"visualization"},{"id":"Docker-memory-usage-ecs","name":"5:panel_5","type":"visualization"},{"id":"Docker-Network-IO-ecs","name":"6:panel_6","type":"visualization"},{"id":"Docker-images-and-names-ecs","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:07.529Z","version":"WzM3NjYsMV0="} diff --git a/metricbeat/module/docker/_meta/kibana/7/search/Metricbeat-Docker-ecs.json b/metricbeat/module/docker/_meta/kibana/7/search/Metricbeat-Docker-ecs.json new file mode 100644 index 000000000000..16c7280a30a3 --- /dev/null +++ b/metricbeat/module/docker/_meta/kibana/7/search/Metricbeat-Docker-ecs.json @@ -0,0 +1,55 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.module:docker" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Metricbeat Docker ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Metricbeat-Docker-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:31:07.529Z", + "version": "WzM3NjUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-CPU-usage-ecs.json b/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-CPU-usage-ecs.json new file mode 100644 index 000000000000..1ae2020ecceb --- /dev/null +++ b/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-CPU-usage-ecs.json @@ -0,0 +1,167 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.module:docker AND metricset.name:cpu" + } + } + }, + "title": "CPU usage [Metricbeat Docker] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Total CPU time", + "field": "docker.cpu.total.pct", + "percents": [ + 75 + ] + }, + "schema": "metric", + "type": "percentiles" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Container name", + "field": "container.name", + "order": "desc", + "orderBy": "1.75", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "defaultYExtents": false, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "legendPosition": "top", + "mode": "stacked", + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "shareYAxis": true, + "smoothLines": true, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ], + "yAxis": {} + }, + "title": "CPU usage [Metricbeat Docker] ECS", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Docker-CPU-usage-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:07.529Z", + "version": "WzM3NjIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-Network-IO-ecs.json b/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-Network-IO-ecs.json new file mode 100644 index 000000000000..c93a18e3e3a3 --- /dev/null +++ b/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-Network-IO-ecs.json @@ -0,0 +1,174 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.module:docker AND metricset.name:network" + } + } + }, + "title": "Network IO [Metricbeat Docker] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "IN bytes", + "field": "docker.network.in.bytes" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Container name", + "field": "container.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "OUT bytes", + "field": "docker.network.out.bytes" + }, + "schema": "metric", + "type": "max" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "defaultYExtents": false, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "legendPosition": "top", + "mode": "stacked", + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "shareYAxis": true, + "smoothLines": true, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ], + "yAxis": {} + }, + "title": "Network IO [Metricbeat Docker] ECS", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Docker-Network-IO-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:07.529Z", + "version": "WzM3NjQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-Number-of-Containers-ecs.json b/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-Number-of-Containers-ecs.json new file mode 100644 index 000000000000..6227a1b9475f --- /dev/null +++ b/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-Number-of-Containers-ecs.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Number of Containers [Metricbeat Docker] ECS", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Running", + "field": "docker.info.containers.running" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Paused", + "field": "docker.info.containers.paused" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Stopped", + "field": "docker.info.containers.stopped" + }, + "schema": "metric", + "type": "max" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "fontSize": "36", + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "handleNoResults": true, + "type": "gauge" + }, + "title": "Number of Containers [Metricbeat Docker] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Docker-Number-of-Containers-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Metricbeat-Docker-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:07.529Z", + "version": "WzM3NTksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-containers-ecs.json b/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-containers-ecs.json new file mode 100644 index 000000000000..1c5bee9fd7fd --- /dev/null +++ b/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-containers-ecs.json @@ -0,0 +1,120 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Docker containers [Metricbeat Docker] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": 1, + "direction": "asc" + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Name", + "field": "container.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "CPU usage (%)", + "field": "docker.cpu.total.pct" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "DiskIO", + "field": "docker.diskio.total" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Mem (%)", + "field": "docker.memory.usage.pct" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "Mem RSS", + "field": "docker.memory.rss.total" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Number of Containers", + "field": "container.id" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "perPage": 8, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": true, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Docker containers [Metricbeat Docker] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Docker-containers-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Metricbeat-Docker-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:07.529Z", + "version": "WzM3NTgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-containers-per-host-ecs.json b/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-containers-per-host-ecs.json new file mode 100644 index 000000000000..4885780951fd --- /dev/null +++ b/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-containers-per-host-ecs.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Docker containers per host [Metricbeat Docker] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Number of containers", + "field": "container.id" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Hosts", + "field": "agent.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "shareYAxis": true + }, + "title": "Docker containers per host [Metricbeat Docker] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Docker-containers-per-host-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Metricbeat-Docker-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:07.529Z", + "version": "WzM3NjAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-images-and-names-ecs.json b/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-images-and-names-ecs.json new file mode 100644 index 000000000000..ea22a2a9f964 --- /dev/null +++ b/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-images-and-names-ecs.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Docker images and names [Metricbeat Docker] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "container.image.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "container.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "shareYAxis": true + }, + "title": "Docker images and names [Metricbeat Docker] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Docker-images-and-names-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Metricbeat-Docker-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:07.529Z", + "version": "WzM3NjEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-memory-usage-ecs.json b/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-memory-usage-ecs.json new file mode 100644 index 000000000000..2328ecab0e51 --- /dev/null +++ b/metricbeat/module/docker/_meta/kibana/7/visualization/Docker-memory-usage-ecs.json @@ -0,0 +1,164 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.module:docker AND metricset.name:memory" + } + } + }, + "title": "Memory usage [Metricbeat Docker] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Memory", + "field": "docker.memory.usage.total" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Container name", + "field": "container.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "defaultYExtents": false, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "legendPosition": "top", + "mode": "stacked", + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "shareYAxis": true, + "smoothLines": false, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ], + "yAxis": {} + }, + "title": "Memory usage [Metricbeat Docker] ECS", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Docker-memory-usage-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:07.529Z", + "version": "WzM3NjMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/docker/module.yml b/metricbeat/module/docker/module.yml index 59298dfa38ff..742882537503 100644 --- a/metricbeat/module/docker/module.yml +++ b/metricbeat/module/docker/module.yml @@ -1,3 +1,3 @@ dashboards: - id: AV4REOpp5NkDleZmzKkE - file: Metricbeat-docker-overview.ndjson + file: Metricbeat-docker-overview.json diff --git a/metricbeat/module/golang/_meta/kibana/7/dashboard/Metricbeat-golang-overview.ndjson b/metricbeat/module/golang/_meta/kibana/7/dashboard/Metricbeat-golang-overview.ndjson deleted file mode 100644 index 27dfc588ee98..000000000000 --- a/metricbeat/module/golang/_meta/kibana/7/dashboard/Metricbeat-golang-overview.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Heap Summary [Metricbeat Golang] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"expression\":\".es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.system.total\\\").label(\\\"System Total Memory\\\").yaxis(label=\\\"Bytes\\\",units=bytes),.es(index=\\\"metricbeat*\\\",metric=\\\"min:golang.heap.allocations.allocated\\\").label(\\\"Bytes Allocated(min)\\\").movingaverage(30),.es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.allocations.allocated\\\").label(\\\"Bytes Allocated(max)\\\").movingaverage(30),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.gc.next_gc_limit\\\").label(\\\"GC Limit\\\"),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.gc.pause.count\\\").condition(lt,1, null).points().label(\\\"GC Cycles(count)\\\").yaxis(2,label=\\\"Count\\\")\",\"interval\":\"10s\"},\"title\":\"Heap Summary [Metricbeat Golang] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"58000780-f529-11e6-844d-b170e2f0a07e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:15.764Z","version":"WzM4MjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Heap [Metricbeat Golang] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"expression\":\".es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.allocations.total\\\").label(\\\"Heap Total\\\").derivative().movingaverage(30).yaxis(label=\\\"Bytes\\\",units=bytes),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.allocations.active\\\").label(\\\"Heap Inuse\\\").movingaverage(30),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.allocations.allocated\\\").label(\\\"Heap Allocated\\\").movingaverage(30),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.allocations.idle\\\").label(\\\"Heap Idle\\\").movingaverage(30)\",\"interval\":\"10s\"},\"title\":\"Heap [Metricbeat Golang] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"95388680-f52a-11e6-969c-518c48c913e4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:15.764Z","version":"WzM4MjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Objects [Metricbeat Golang] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"expression\":\".es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.allocations.objects\\\").label(\\\"Object Count(avg)\\\").yaxis(1,label=\\\"Count\\\").movingaverage(30),.es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.allocations.total\\\").derivative().label(\\\"Allocation Rate\\\").yaxis(2,label=\\\"Rate\\\").movingaverage(30)\",\"interval\":\"10s\"},\"title\":\"Objects [Metricbeat Golang] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"b59a5200-f52a-11e6-969c-518c48c913e4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:15.764Z","version":"WzM4MjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"System [Metricbeat Golang] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"expression\":\".es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.system.total\\\").label(\\\"System Total\\\").yaxis(label=\\\"Bytes\\\",units=bytes),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.system.obtained\\\").label(\\\"System Obtained\\\"),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.system.stack\\\").label(\\\"System Stack\\\"),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.system.released\\\").label(\\\"System Released\\\")\",\"interval\":\"10s\"},\"title\":\"System [Metricbeat Golang] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"9a9a8bf0-f52a-11e6-969c-518c48c913e4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:15.764Z","version":"WzM4MjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"GC count [Metricbeat Golang] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"expression\":\".es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.gc.pause.count\\\").label(\\\"GC Count\\\").bars().yaxis(label=\\\"Count\\\"),.es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.gc.total_count\\\").label(\\\"GC Rate\\\").derivative().movingaverage(30),.es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.gc.cpu_fraction\\\").label(\\\"CPU Fraction\\\").yaxis(2,label=\\\"Fraction\\\")\",\"interval\":\"10s\"},\"title\":\"GC count [Metricbeat Golang] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"b046cb80-f52a-11e6-969c-518c48c913e4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:15.764Z","version":"WzM4MjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"GC durations [Metricbeat Golang] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"expression\":\".es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.gc.pause.sum.ns\\\").bars().label(\\\"sum of GC Pause durations(ns)\\\").yaxis(label=\\\"Durations(ns)\\\"),.es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.gc.total_pause.ns\\\").derivative().movingaverage(30).label(\\\"Total GC Pause(ns) Rate\\\"),.es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.gc.pause.max.ns\\\").label(\\\"Max GC Pause(ns)\\\").movingaverage(30),.es(index=\\\"metricbeat*\\\",metric=\\\"avg:golang.heap.gc.pause.avg.ns\\\").label(\\\"Avg GC Pause(ns)\\\").movingaverage(30),.es(index=\\\"metricbeat*\\\",metric=\\\"max:golang.heap.gc.pause.count\\\").condition(lt,1, null).label(\\\"GC Pause count\\\").points().yaxis(2,label=\\\"Count\\\")\",\"interval\":\"10s\"},\"title\":\"GC durations [Metricbeat Golang] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"ab226b50-f52a-11e6-969c-518c48c913e4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:15.764Z","version":"WzM4MjgsMV0="} -{"attributes":{"description":"Overview of Go profiling information","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":12,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":16,\"h\":16,\"i\":\"9\"},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":12,\"w\":16,\"h\":16,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":12,\"w\":16,\"h\":16,\"i\":\"11\"},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":28,\"w\":24,\"h\":16,\"i\":\"12\"},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":24,\"h\":16,\"i\":\"13\"},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"}]","timeRestore":false,"title":"[Metricbeat Golang] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"f2dc7320-f519-11e6-a3c9-9d1f7c42b045-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"58000780-f529-11e6-844d-b170e2f0a07e-ecs","name":"8:panel_8","type":"visualization"},{"id":"95388680-f52a-11e6-969c-518c48c913e4-ecs","name":"9:panel_9","type":"visualization"},{"id":"b59a5200-f52a-11e6-969c-518c48c913e4-ecs","name":"10:panel_10","type":"visualization"},{"id":"9a9a8bf0-f52a-11e6-969c-518c48c913e4-ecs","name":"11:panel_11","type":"visualization"},{"id":"b046cb80-f52a-11e6-969c-518c48c913e4-ecs","name":"12:panel_12","type":"visualization"},{"id":"ab226b50-f52a-11e6-969c-518c48c913e4-ecs","name":"13:panel_13","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:15.764Z","version":"WzM4MjksMV0="} diff --git a/metricbeat/module/golang/_meta/kibana/7/dashboard/f2dc7320-f519-11e6-a3c9-9d1f7c42b045-ecs.json b/metricbeat/module/golang/_meta/kibana/7/dashboard/f2dc7320-f519-11e6-a3c9-9d1f7c42b045-ecs.json new file mode 100644 index 000000000000..7a04b48680d7 --- /dev/null +++ b/metricbeat/module/golang/_meta/kibana/7/dashboard/f2dc7320-f519-11e6-a3c9-9d1f7c42b045-ecs.json @@ -0,0 +1,161 @@ +{ + "attributes": { + "description": "Overview of Go profiling information", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "8", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "9", + "w": 16, + "x": 0, + "y": 12 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "10", + "w": 16, + "x": 32, + "y": 12 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "11", + "w": 16, + "x": 16, + "y": 12 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "12", + "w": 24, + "x": 24, + "y": 28 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "13", + "w": 24, + "x": 0, + "y": 28 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Golang] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "f2dc7320-f519-11e6-a3c9-9d1f7c42b045-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "58000780-f529-11e6-844d-b170e2f0a07e-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "95388680-f52a-11e6-969c-518c48c913e4-ecs", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "b59a5200-f52a-11e6-969c-518c48c913e4-ecs", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "9a9a8bf0-f52a-11e6-969c-518c48c913e4-ecs", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "b046cb80-f52a-11e6-969c-518c48c913e4-ecs", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "ab226b50-f52a-11e6-969c-518c48c913e4-ecs", + "name": "13:panel_13", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:15.764Z", + "version": "WzM4MjksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/golang/_meta/kibana/7/visualization/58000780-f529-11e6-844d-b170e2f0a07e-ecs.json b/metricbeat/module/golang/_meta/kibana/7/visualization/58000780-f529-11e6-844d-b170e2f0a07e-ecs.json new file mode 100644 index 000000000000..f260483277aa --- /dev/null +++ b/metricbeat/module/golang/_meta/kibana/7/visualization/58000780-f529-11e6-844d-b170e2f0a07e-ecs.json @@ -0,0 +1,35 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Heap Summary [Metricbeat Golang] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "expression": ".es(index=\"metricbeat*\",metric=\"avg:golang.heap.system.total\").label(\"System Total Memory\").yaxis(label=\"Bytes\",units=bytes),.es(index=\"metricbeat*\",metric=\"min:golang.heap.allocations.allocated\").label(\"Bytes Allocated(min)\").movingaverage(30),.es(index=\"metricbeat*\",metric=\"max:golang.heap.allocations.allocated\").label(\"Bytes Allocated(max)\").movingaverage(30),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.gc.next_gc_limit\").label(\"GC Limit\"),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.gc.pause.count\").condition(lt,1, null).points().label(\"GC Cycles(count)\").yaxis(2,label=\"Count\")", + "interval": "10s" + }, + "title": "Heap Summary [Metricbeat Golang] ECS", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "58000780-f529-11e6-844d-b170e2f0a07e-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:15.764Z", + "version": "WzM4MjMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/golang/_meta/kibana/7/visualization/95388680-f52a-11e6-969c-518c48c913e4-ecs.json b/metricbeat/module/golang/_meta/kibana/7/visualization/95388680-f52a-11e6-969c-518c48c913e4-ecs.json new file mode 100644 index 000000000000..7671449b75b8 --- /dev/null +++ b/metricbeat/module/golang/_meta/kibana/7/visualization/95388680-f52a-11e6-969c-518c48c913e4-ecs.json @@ -0,0 +1,35 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Heap [Metricbeat Golang] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "expression": ".es(index=\"metricbeat*\",metric=\"avg:golang.heap.allocations.total\").label(\"Heap Total\").derivative().movingaverage(30).yaxis(label=\"Bytes\",units=bytes),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.allocations.active\").label(\"Heap Inuse\").movingaverage(30),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.allocations.allocated\").label(\"Heap Allocated\").movingaverage(30),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.allocations.idle\").label(\"Heap Idle\").movingaverage(30)", + "interval": "10s" + }, + "title": "Heap [Metricbeat Golang] ECS", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "95388680-f52a-11e6-969c-518c48c913e4-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:15.764Z", + "version": "WzM4MjQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/golang/_meta/kibana/7/visualization/9a9a8bf0-f52a-11e6-969c-518c48c913e4-ecs.json b/metricbeat/module/golang/_meta/kibana/7/visualization/9a9a8bf0-f52a-11e6-969c-518c48c913e4-ecs.json new file mode 100644 index 000000000000..8d86efd91cd0 --- /dev/null +++ b/metricbeat/module/golang/_meta/kibana/7/visualization/9a9a8bf0-f52a-11e6-969c-518c48c913e4-ecs.json @@ -0,0 +1,35 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "System [Metricbeat Golang] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "expression": ".es(index=\"metricbeat*\",metric=\"avg:golang.heap.system.total\").label(\"System Total\").yaxis(label=\"Bytes\",units=bytes),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.system.obtained\").label(\"System Obtained\"),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.system.stack\").label(\"System Stack\"),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.system.released\").label(\"System Released\")", + "interval": "10s" + }, + "title": "System [Metricbeat Golang] ECS", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9a9a8bf0-f52a-11e6-969c-518c48c913e4-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:15.764Z", + "version": "WzM4MjYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/golang/_meta/kibana/7/visualization/ab226b50-f52a-11e6-969c-518c48c913e4-ecs.json b/metricbeat/module/golang/_meta/kibana/7/visualization/ab226b50-f52a-11e6-969c-518c48c913e4-ecs.json new file mode 100644 index 000000000000..ca8c2a7221ea --- /dev/null +++ b/metricbeat/module/golang/_meta/kibana/7/visualization/ab226b50-f52a-11e6-969c-518c48c913e4-ecs.json @@ -0,0 +1,35 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "GC durations [Metricbeat Golang] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "expression": ".es(index=\"metricbeat*\",metric=\"max:golang.heap.gc.pause.sum.ns\").bars().label(\"sum of GC Pause durations(ns)\").yaxis(label=\"Durations(ns)\"),.es(index=\"metricbeat*\",metric=\"max:golang.heap.gc.total_pause.ns\").derivative().movingaverage(30).label(\"Total GC Pause(ns) Rate\"),.es(index=\"metricbeat*\",metric=\"max:golang.heap.gc.pause.max.ns\").label(\"Max GC Pause(ns)\").movingaverage(30),.es(index=\"metricbeat*\",metric=\"avg:golang.heap.gc.pause.avg.ns\").label(\"Avg GC Pause(ns)\").movingaverage(30),.es(index=\"metricbeat*\",metric=\"max:golang.heap.gc.pause.count\").condition(lt,1, null).label(\"GC Pause count\").points().yaxis(2,label=\"Count\")", + "interval": "10s" + }, + "title": "GC durations [Metricbeat Golang] ECS", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ab226b50-f52a-11e6-969c-518c48c913e4-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:15.764Z", + "version": "WzM4MjgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/golang/_meta/kibana/7/visualization/b046cb80-f52a-11e6-969c-518c48c913e4-ecs.json b/metricbeat/module/golang/_meta/kibana/7/visualization/b046cb80-f52a-11e6-969c-518c48c913e4-ecs.json new file mode 100644 index 000000000000..a247b761c53b --- /dev/null +++ b/metricbeat/module/golang/_meta/kibana/7/visualization/b046cb80-f52a-11e6-969c-518c48c913e4-ecs.json @@ -0,0 +1,35 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "GC count [Metricbeat Golang] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "expression": ".es(index=\"metricbeat*\",metric=\"max:golang.heap.gc.pause.count\").label(\"GC Count\").bars().yaxis(label=\"Count\"),.es(index=\"metricbeat*\",metric=\"max:golang.heap.gc.total_count\").label(\"GC Rate\").derivative().movingaverage(30),.es(index=\"metricbeat*\",metric=\"max:golang.heap.gc.cpu_fraction\").label(\"CPU Fraction\").yaxis(2,label=\"Fraction\")", + "interval": "10s" + }, + "title": "GC count [Metricbeat Golang] ECS", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b046cb80-f52a-11e6-969c-518c48c913e4-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:15.764Z", + "version": "WzM4MjcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/golang/_meta/kibana/7/visualization/b59a5200-f52a-11e6-969c-518c48c913e4-ecs.json b/metricbeat/module/golang/_meta/kibana/7/visualization/b59a5200-f52a-11e6-969c-518c48c913e4-ecs.json new file mode 100644 index 000000000000..8d052a8b2fc0 --- /dev/null +++ b/metricbeat/module/golang/_meta/kibana/7/visualization/b59a5200-f52a-11e6-969c-518c48c913e4-ecs.json @@ -0,0 +1,35 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Objects [Metricbeat Golang] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "expression": ".es(index=\"metricbeat*\",metric=\"max:golang.heap.allocations.objects\").label(\"Object Count(avg)\").yaxis(1,label=\"Count\").movingaverage(30),.es(index=\"metricbeat*\",metric=\"max:golang.heap.allocations.total\").derivative().label(\"Allocation Rate\").yaxis(2,label=\"Rate\").movingaverage(30)", + "interval": "10s" + }, + "title": "Objects [Metricbeat Golang] ECS", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b59a5200-f52a-11e6-969c-518c48c913e4-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:15.764Z", + "version": "WzM4MjUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/golang/module.yml b/metricbeat/module/golang/module.yml index 969828ed8875..11beeafaeb96 100644 --- a/metricbeat/module/golang/module.yml +++ b/metricbeat/module/golang/module.yml @@ -1,3 +1,3 @@ dashboards: - id: f2dc7320-f519-11e6-a3c9-9d1f7c42b045 - file: Metricbeat-golang-overview.ndjson + file: Metricbeat-golang-overview.json diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/0836a4b0-47bd-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/0836a4b0-47bd-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..e1f6cba378ed --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/0836a4b0-47bd-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,205 @@ +{ + "attributes": { + "description": "HAProxy HTTP backend metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "1", + "w": 16, + "x": 0, + "y": 20 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "2", + "w": 12, + "x": 36, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 24, + "x": 24, + "y": 8 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "4", + "w": 12, + "x": 24, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "5", + "w": 16, + "x": 16, + "y": 20 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "6", + "w": 16, + "x": 32, + "y": 20 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "7", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "8", + "w": 24, + "x": 0, + "y": 12 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat HAProxy] HTTP backend ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "0836a4b0-47bd-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "a64b4fd0-471c-11e8-bc13-1397384faad3-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "794b6cd0-471d-11e8-bc13-1397384faad3-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "bb0ab500-4735-11e8-bc13-1397384faad3-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "40bed190-473b-11e8-bc13-1397384faad3-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "0751ed00-479c-11e8-bc13-1397384faad3-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "b3463670-47a1-11e8-bc13-1397384faad3-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "981d1040-47be-11e8-bc13-1397384faad3-ecs", + "name": "8:panel_8", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:18.847Z", + "version": "WzM4MzIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/4b555c30-47dd-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/4b555c30-47dd-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..41caaf781ff1 --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/4b555c30-47dd-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,124 @@ +{ + "attributes": { + "description": "HAProxy overview", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 24, + "i": "2", + "w": 16, + "x": 32, + "y": 8 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Servers", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 24, + "i": "3", + "w": 16, + "x": 16, + "y": 8 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Backends", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 24, + "i": "4", + "w": 16, + "x": 0, + "y": 8 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "Frontends", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "5", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat HAProxy] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "4b555c30-47dd-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "79350d50-47db-11e8-bc13-1397384faad3-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "8c8f0300-47dc-11e8-bc13-1397384faad3-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "f1e27ed0-47dc-11e8-bc13-1397384faad3-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "a64b4fd0-471c-11e8-bc13-1397384faad3-ecs", + "name": "5:panel_5", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:21.953Z", + "version": "WzM4MzUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/8cc50a50-47e0-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/8cc50a50-47e0-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..2161d994e44a --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/8cc50a50-47e0-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,163 @@ +{ + "attributes": { + "description": "HAProxy metrics for HTTP mode", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "5", + "w": 24, + "x": 0, + "y": 20 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "6", + "w": 24, + "x": 24, + "y": 12 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "7", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "8", + "w": 24, + "x": 0, + "y": 12 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "10", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "11", + "w": 24, + "x": 24, + "y": 20 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat HAProxy] HTTP server ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "8cc50a50-47e0-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "0751ed00-479c-11e8-bc13-1397384faad3-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "b3463670-47a1-11e8-bc13-1397384faad3-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "981d1040-47be-11e8-bc13-1397384faad3-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "72e84b00-47e1-11e8-bc13-1397384faad3-ecs", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "976b0910-47e4-11e8-bc13-1397384faad3-ecs", + "name": "11:panel_11", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:20.914Z", + "version": "WzM4MzQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/9151c900-471d-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/9151c900-471d-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..10efea1c1dc2 --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/9151c900-471d-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,163 @@ +{ + "attributes": { + "description": "HAProxy backend metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "1", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "2", + "w": 12, + "x": 24, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "3", + "w": 24, + "x": 24, + "y": 8 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "4", + "w": 12, + "x": 36, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "5", + "w": 24, + "x": 0, + "y": 8 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "6", + "w": 24, + "x": 0, + "y": 16 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat HAProxy] Backend ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "9151c900-471d-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "a64b4fd0-471c-11e8-bc13-1397384faad3-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "794b6cd0-471d-11e8-bc13-1397384faad3-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "bb0ab500-4735-11e8-bc13-1397384faad3-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "40bed190-473b-11e8-bc13-1397384faad3-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "0751ed00-479c-11e8-bc13-1397384faad3-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "b3463670-47a1-11e8-bc13-1397384faad3-ecs", + "name": "6:panel_6", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:16.802Z", + "version": "WzM4MzAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-backend.ndjson b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-backend.ndjson deleted file mode 100644 index 107afbd71c7f..000000000000 --- a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-backend.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"4e35d500-471b-11e8-a520-3f46123ab5eb\"}],\"bar_color_rules\":[{\"id\":\"69899960-4719-11e8-a520-3f46123ab5eb\"}],\"filter\":{\"query\":\"haproxy.stat.component_type:(0 OR 1)\",\"language\":\"lucene\"},\"gauge_color_rules\":[{\"id\":\"6f171ba0-4719-11e8-a520-3f46123ab5eb\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of connections\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"41ff3940-4719-11e8-a520-3f46123ab5eb\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"41ff3940-4719-11e8-a520-3f46123ab5eb\",\"id\":\"456a5fa0-4738-11e8-8633-8f8b3acf1566\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"0ceb7740-471a-11e8-a520-3f46123ab5eb\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy connections ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a64b4fd0-471c-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Active servers in backend [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"color\":\"rgba(255,0,6,1)\",\"id\":\"1ec0dde0-471d-11e8-9876-09cc6c85f5f2\",\"operator\":\"lte\",\"value\":0},{\"color\":\"rgba(255,0,6,1)\",\"id\":\"8d345723-dc15-424c-a8df-0777fe7a4ffa\",\"operator\":\"empty\",\"value\":null}],\"bar_color_rules\":[{\"id\":\"297160c0-471d-11e8-9876-09cc6c85f5f2\"}],\"filter\":{\"query\":\"haproxy.stat.component_type:(2 OR 3)\",\"language\":\"lucene\"},\"gauge_color_rules\":[{\"gauge\":\"rgba(255,0,5,1)\",\"id\":\"4ce156a0-471d-11e8-9876-09cc6c85f5f2\",\"operator\":\"lte\",\"text\":null,\"value\":0},{\"gauge\":\"rgba(255,196,0,1)\",\"id\":\"f8458a80-4721-11e8-b854-2f6d2b452362\",\"operator\":\"lte\",\"value\":0.5},{\"gauge\":\"rgba(255,0,5,1)\",\"id\":\"99d5e990-9b29-45c9-b191-e8034fb39ec5\",\"operator\":\"empty\",\"text\":null,\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"haproxy.stat.status:UP\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Active servers\",\"line_width\":1,\"metrics\":[{\"denominator\":\"*\",\"field\":\"haproxy.stat.server.id\",\"id\":\"b754d060-471e-11e8-9876-09cc6c85f5f2\",\"metric_agg\":\"count\",\"numerator\":\"*\",\"script\":\"params.up / (params.down + params.up)\",\"type\":\"cardinality\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"cfd51780-471e-11e8-9d35-6baabcdce3dc\",\"name\":\"down\"},{\"field\":\"a049c420-471e-11e8-9876-09cc6c85f5f2\",\"id\":\"45e6ec00-471f-11e8-9d35-6baabcdce3dc\",\"name\":\"up\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"2cba9420-4724-11e8-b854-2f6d2b452362\",\"label\":\"Total servers\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.server.id\",\"id\":\"2cba9421-4724-11e8-b854-2f6d2b452362\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy active servers in backend ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"794b6cd0-471d-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections per server [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"978f2660-4735-11e8-b619-8f82b8185e96\"}],\"drilldown_url\":\"../app/kibana#/dashboard/8cc50a50-47e0-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.service_name:\\\"{{ key }}\\\"'))\",\"filter\":{\"query\":\"haproxy.stat.component_type:(2 OR 3)\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Connections per server\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3ea29000-4735-11e8-b619-8f82b8185e96\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.service_name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy connections per server ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bb0ab500-4735-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Downtime seconds [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"c86b8e00-4739-11e8-8953-55bbe33e1362\"}],\"filter\":{\"query\":\"haproxy.stat.component_type:1\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,0,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Downtime\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.downtime\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"91aa6a20-473a-11e8-8953-55bbe33e1362\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"91aa6a20-473a-11e8-8953-55bbe33e1362\",\"id\":\"a8ce7ca0-473a-11e8-8953-55bbe33e1362\",\"sigma\":\"\",\"type\":\"sum_bucket\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\",\"value_template\":\"{{value}}s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy downtime seconds ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"40bed190-473b-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average connection time [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Percentile\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"haproxy.stat.connection.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"percentiles\":[{\"id\":\"9fa517e0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"},{\"id\":\"daafd6e0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"90\"},{\"id\":\"e006b8c0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"}],\"type\":\"percentile\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.service_name\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy average connection time ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0751ed00-479c-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average time in queue [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average time in queue\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.queue.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy average time in queue ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b3463670-47a1-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDAsMV0="} -{"attributes":{"description":"HAProxy backend metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":8,\"x\":0,\"y\":0,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":8,\"x\":24,\"y\":0,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":16,\"x\":24,\"y\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":8,\"x\":36,\"y\":0,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":8,\"x\":0,\"y\":8,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":8,\"x\":0,\"y\":16,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Metricbeat HAProxy] Backend ECS","version":1},"coreMigrationVersion":"8.0.0","id":"9151c900-471d-11e8-bc13-1397384faad3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a64b4fd0-471c-11e8-bc13-1397384faad3-ecs","name":"1:panel_1","type":"visualization"},{"id":"794b6cd0-471d-11e8-bc13-1397384faad3-ecs","name":"2:panel_2","type":"visualization"},{"id":"bb0ab500-4735-11e8-bc13-1397384faad3-ecs","name":"3:panel_3","type":"visualization"},{"id":"40bed190-473b-11e8-bc13-1397384faad3-ecs","name":"4:panel_4","type":"visualization"},{"id":"0751ed00-479c-11e8-bc13-1397384faad3-ecs","name":"5:panel_5","type":"visualization"},{"id":"b3463670-47a1-11e8-bc13-1397384faad3-ecs","name":"6:panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:16.802Z","version":"WzM4MzAsMV0="} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-frontend.ndjson b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-frontend.ndjson deleted file mode 100644 index 5dac6e0738fc..000000000000 --- a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-frontend.ndjson +++ /dev/null @@ -1,3 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"4e35d500-471b-11e8-a520-3f46123ab5eb\"}],\"bar_color_rules\":[{\"id\":\"69899960-4719-11e8-a520-3f46123ab5eb\"}],\"filter\":{\"query\":\"haproxy.stat.component_type:(0 OR 1)\",\"language\":\"lucene\"},\"gauge_color_rules\":[{\"id\":\"6f171ba0-4719-11e8-a520-3f46123ab5eb\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of connections\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"41ff3940-4719-11e8-a520-3f46123ab5eb\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"41ff3940-4719-11e8-a520-3f46123ab5eb\",\"id\":\"456a5fa0-4738-11e8-8633-8f8b3acf1566\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"0ceb7740-471a-11e8-a520-3f46123ab5eb\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy connections ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a64b4fd0-471c-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Traffic volume [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Incoming\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"haproxy.stat.in.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"9814c420-47c4-11e8-994c-81d2daeb7c86\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":\"1\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(25,77,51,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"c89d1520-47c4-11e8-994c-81d2daeb7c86\",\"label\":\"Outgoing\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"haproxy.stat.out.bytes\",\"id\":\"c89d6340-47c4-11e8-994c-81d2daeb7c86\",\"type\":\"sum\"},{\"field\":\"c89d6340-47c4-11e8-994c-81d2daeb7c86\",\"id\":\"c89d6341-47c4-11e8-994c-81d2daeb7c86\",\"type\":\"derivative\",\"unit\":\"\"}],\"override_index_pattern\":0,\"point_size\":\"1\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy traffic volume ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"86159190-47c5-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDEsMV0="} -{"attributes":{"description":"HAProxy frontend metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":0,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":0,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Metricbeat HAProxy] Frontend ECS","version":1},"coreMigrationVersion":"8.0.0","id":"d5878d00-47c5-11e8-bc13-1397384faad3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a64b4fd0-471c-11e8-bc13-1397384faad3-ecs","name":"2:panel_2","type":"visualization"},{"id":"86159190-47c5-11e8-bc13-1397384faad3-ecs","name":"3:panel_3","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:17.859Z","version":"WzM4MzEsMV0="} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-backend.ndjson b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-backend.ndjson deleted file mode 100644 index 9bcee53062ad..000000000000 --- a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-backend.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"4e35d500-471b-11e8-a520-3f46123ab5eb\"}],\"bar_color_rules\":[{\"id\":\"69899960-4719-11e8-a520-3f46123ab5eb\"}],\"filter\":{\"query\":\"haproxy.stat.component_type:(0 OR 1)\",\"language\":\"lucene\"},\"gauge_color_rules\":[{\"id\":\"6f171ba0-4719-11e8-a520-3f46123ab5eb\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of connections\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"41ff3940-4719-11e8-a520-3f46123ab5eb\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"41ff3940-4719-11e8-a520-3f46123ab5eb\",\"id\":\"456a5fa0-4738-11e8-8633-8f8b3acf1566\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"0ceb7740-471a-11e8-a520-3f46123ab5eb\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy connections ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a64b4fd0-471c-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Active servers in backend [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"color\":\"rgba(255,0,6,1)\",\"id\":\"1ec0dde0-471d-11e8-9876-09cc6c85f5f2\",\"operator\":\"lte\",\"value\":0},{\"color\":\"rgba(255,0,6,1)\",\"id\":\"8d345723-dc15-424c-a8df-0777fe7a4ffa\",\"operator\":\"empty\",\"value\":null}],\"bar_color_rules\":[{\"id\":\"297160c0-471d-11e8-9876-09cc6c85f5f2\"}],\"filter\":{\"query\":\"haproxy.stat.component_type:(2 OR 3)\",\"language\":\"lucene\"},\"gauge_color_rules\":[{\"gauge\":\"rgba(255,0,5,1)\",\"id\":\"4ce156a0-471d-11e8-9876-09cc6c85f5f2\",\"operator\":\"lte\",\"text\":null,\"value\":0},{\"gauge\":\"rgba(255,196,0,1)\",\"id\":\"f8458a80-4721-11e8-b854-2f6d2b452362\",\"operator\":\"lte\",\"value\":0.5},{\"gauge\":\"rgba(255,0,5,1)\",\"id\":\"99d5e990-9b29-45c9-b191-e8034fb39ec5\",\"operator\":\"empty\",\"text\":null,\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"haproxy.stat.status:UP\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Active servers\",\"line_width\":1,\"metrics\":[{\"denominator\":\"*\",\"field\":\"haproxy.stat.server.id\",\"id\":\"b754d060-471e-11e8-9876-09cc6c85f5f2\",\"metric_agg\":\"count\",\"numerator\":\"*\",\"script\":\"params.up / (params.down + params.up)\",\"type\":\"cardinality\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"cfd51780-471e-11e8-9d35-6baabcdce3dc\",\"name\":\"down\"},{\"field\":\"a049c420-471e-11e8-9876-09cc6c85f5f2\",\"id\":\"45e6ec00-471f-11e8-9d35-6baabcdce3dc\",\"name\":\"up\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"2cba9420-4724-11e8-b854-2f6d2b452362\",\"label\":\"Total servers\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.server.id\",\"id\":\"2cba9421-4724-11e8-b854-2f6d2b452362\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy active servers in backend ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"794b6cd0-471d-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections per server [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"978f2660-4735-11e8-b619-8f82b8185e96\"}],\"drilldown_url\":\"../app/kibana#/dashboard/8cc50a50-47e0-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.service_name:\\\"{{ key }}\\\"'))\",\"filter\":{\"query\":\"haproxy.stat.component_type:(2 OR 3)\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Connections per server\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3ea29000-4735-11e8-b619-8f82b8185e96\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.service_name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy connections per server ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bb0ab500-4735-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Downtime seconds [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"c86b8e00-4739-11e8-8953-55bbe33e1362\"}],\"filter\":{\"query\":\"haproxy.stat.component_type:1\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,0,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Downtime\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.downtime\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"91aa6a20-473a-11e8-8953-55bbe33e1362\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"91aa6a20-473a-11e8-8953-55bbe33e1362\",\"id\":\"a8ce7ca0-473a-11e8-8953-55bbe33e1362\",\"sigma\":\"\",\"type\":\"sum_bucket\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\",\"value_template\":\"{{value}}s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy downtime seconds ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"40bed190-473b-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average connection time [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Percentile\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"haproxy.stat.connection.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"percentiles\":[{\"id\":\"9fa517e0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"},{\"id\":\"daafd6e0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"90\"},{\"id\":\"e006b8c0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"}],\"type\":\"percentile\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.service_name\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy average connection time ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0751ed00-479c-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average time in queue [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average time in queue\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.queue.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy average time in queue ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b3463670-47a1-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"HTTP response codes [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"200s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.2xx\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"973a6de0-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"973a6de0-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"4971d580-47e5-11e8-b45e-f10c3845381c\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(64,240,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"aafd05e0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"300s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.3xx\",\"id\":\"aafd05e1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"aafd05e1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"aafd05e2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,246,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c77191a0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"400s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.4xx\",\"id\":\"c77191a1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"c77191a1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"c77191a2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,0,4,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"d574e900-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"500s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.5xx\",\"id\":\"d574e901-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"d574e901-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"d5753720-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,251,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e3b8a4c0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"Other\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.other\",\"id\":\"e3b8a4c1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"e3b8a4c1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"e3b8a4c2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(15,20,25,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"f9217d40-47be-11e8-b7ab-dff70b15977c\",\"label\":\"Response errors\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.errors\",\"id\":\"f9217d41-47be-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"f9217d41-47be-11e8-b7ab-dff70b15977c\",\"id\":\"1b7d4400-47bf-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy HTTP response codes ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average response time [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"ms,ms,0\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average response time\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}ms\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy average response time ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"981d1040-47be-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDMsMV0="} -{"attributes":{"description":"HAProxy HTTP backend metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":8,\"x\":0,\"y\":20,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":8,\"x\":36,\"y\":0,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":8,\"x\":24,\"y\":0,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":8,\"x\":16,\"y\":20,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":8,\"x\":32,\"y\":20,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":0,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":8,\"x\":0,\"y\":12,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Metricbeat HAProxy] HTTP backend ECS","version":1},"coreMigrationVersion":"8.0.0","id":"0836a4b0-47bd-11e8-bc13-1397384faad3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a64b4fd0-471c-11e8-bc13-1397384faad3-ecs","name":"1:panel_1","type":"visualization"},{"id":"794b6cd0-471d-11e8-bc13-1397384faad3-ecs","name":"2:panel_2","type":"visualization"},{"id":"bb0ab500-4735-11e8-bc13-1397384faad3-ecs","name":"3:panel_3","type":"visualization"},{"id":"40bed190-473b-11e8-bc13-1397384faad3-ecs","name":"4:panel_4","type":"visualization"},{"id":"0751ed00-479c-11e8-bc13-1397384faad3-ecs","name":"5:panel_5","type":"visualization"},{"id":"b3463670-47a1-11e8-bc13-1397384faad3-ecs","name":"6:panel_6","type":"visualization"},{"id":"fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs","name":"7:panel_7","type":"visualization"},{"id":"981d1040-47be-11e8-bc13-1397384faad3-ecs","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:18.847Z","version":"WzM4MzIsMV0="} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-frontend.ndjson b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-frontend.ndjson deleted file mode 100644 index 85f536a474fa..000000000000 --- a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-frontend.ndjson +++ /dev/null @@ -1,4 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Traffic volume [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Incoming\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"haproxy.stat.in.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"9814c420-47c4-11e8-994c-81d2daeb7c86\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":\"1\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(25,77,51,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"c89d1520-47c4-11e8-994c-81d2daeb7c86\",\"label\":\"Outgoing\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"haproxy.stat.out.bytes\",\"id\":\"c89d6340-47c4-11e8-994c-81d2daeb7c86\",\"type\":\"sum\"},{\"field\":\"c89d6340-47c4-11e8-994c-81d2daeb7c86\",\"id\":\"c89d6341-47c4-11e8-994c-81d2daeb7c86\",\"type\":\"derivative\",\"unit\":\"\"}],\"override_index_pattern\":0,\"point_size\":\"1\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy traffic volume ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"86159190-47c5-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"HTTP response codes [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"200s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.2xx\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"973a6de0-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"973a6de0-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"4971d580-47e5-11e8-b45e-f10c3845381c\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(64,240,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"aafd05e0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"300s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.3xx\",\"id\":\"aafd05e1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"aafd05e1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"aafd05e2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,246,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c77191a0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"400s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.4xx\",\"id\":\"c77191a1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"c77191a1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"c77191a2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,0,4,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"d574e900-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"500s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.5xx\",\"id\":\"d574e901-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"d574e901-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"d5753720-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,251,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e3b8a4c0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"Other\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.other\",\"id\":\"e3b8a4c1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"e3b8a4c1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"e3b8a4c2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(15,20,25,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"f9217d40-47be-11e8-b7ab-dff70b15977c\",\"label\":\"Response errors\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.errors\",\"id\":\"f9217d41-47be-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"f9217d41-47be-11e8-b7ab-dff70b15977c\",\"id\":\"1b7d4400-47bf-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy HTTP response codes ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Requests [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Requests\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.request.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"ad38e2c0-47d6-11e8-994c-81d2daeb7c86\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"ad38e2c0-47d6-11e8-994c-81d2daeb7c86\",\"id\":\"b1ca03a0-47d6-11e8-994c-81d2daeb7c86\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,0,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c2f30500-47d6-11e8-994c-81d2daeb7c86\",\"label\":\"Request errors\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.request.errors\",\"id\":\"c2f30501-47d6-11e8-994c-81d2daeb7c86\",\"type\":\"max\"},{\"field\":\"c2f30501-47d6-11e8-994c-81d2daeb7c86\",\"id\":\"c2f30502-47d6-11e8-994c-81d2daeb7c86\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"c2f30502-47d6-11e8-994c-81d2daeb7c86\",\"id\":\"c2f30503-47d6-11e8-994c-81d2daeb7c86\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,0,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"11968ce0-47d7-11e8-994c-81d2daeb7c86\",\"label\":\"Denied requests\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.request.denied\",\"id\":\"11968ce1-47d7-11e8-994c-81d2daeb7c86\",\"type\":\"max\"},{\"field\":\"11968ce1-47d7-11e8-994c-81d2daeb7c86\",\"id\":\"11968ce2-47d7-11e8-994c-81d2daeb7c86\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"11968ce2-47d7-11e8-994c-81d2daeb7c86\",\"id\":\"11968ce3-47d7-11e8-994c-81d2daeb7c86\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy requests ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"30956d00-47d7-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDQsMV0="} -{"attributes":{"description":"HAProxy frontend metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":48,\"h\":12,\"x\":0,\"y\":0,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Metricbeat HAProxy] HTTP frontend ECS","version":1},"coreMigrationVersion":"8.0.0","id":"e9057ae0-47c5-11e8-bc13-1397384faad3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"86159190-47c5-11e8-bc13-1397384faad3-ecs","name":"3:panel_3","type":"visualization"},{"id":"fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs","name":"4:panel_4","type":"visualization"},{"id":"30956d00-47d7-11e8-bc13-1397384faad3-ecs","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:19.873Z","version":"WzM4MzMsMV0="} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-server.ndjson b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-server.ndjson deleted file mode 100644 index 16b546de7a5f..000000000000 --- a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-http-server.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average connection time [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Percentile\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"haproxy.stat.connection.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"percentiles\":[{\"id\":\"9fa517e0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"},{\"id\":\"daafd6e0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"90\"},{\"id\":\"e006b8c0-479b-11e8-9590-e34c5ed2dd95\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"}],\"type\":\"percentile\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.service_name\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy average connection time ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0751ed00-479c-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average time in queue [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average time in queue\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.queue.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy average time in queue ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b3463670-47a1-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"HTTP response codes [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"200s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.2xx\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"973a6de0-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"973a6de0-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"4971d580-47e5-11e8-b45e-f10c3845381c\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(64,240,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"aafd05e0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"300s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.3xx\",\"id\":\"aafd05e1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"aafd05e1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"aafd05e2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,246,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c77191a0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"400s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.4xx\",\"id\":\"c77191a1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"c77191a1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"c77191a2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,0,4,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"d574e900-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"500s\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.5xx\",\"id\":\"d574e901-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"d574e901-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"d5753720-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,251,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e3b8a4c0-47bd-11e8-b7ab-dff70b15977c\",\"label\":\"Other\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.http.other\",\"id\":\"e3b8a4c1-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"e3b8a4c1-47bd-11e8-b7ab-dff70b15977c\",\"id\":\"e3b8a4c2-47bd-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(15,20,25,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"f9217d40-47be-11e8-b7ab-dff70b15977c\",\"label\":\"Response errors\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.errors\",\"id\":\"f9217d41-47be-11e8-b7ab-dff70b15977c\",\"type\":\"sum\"},{\"field\":\"f9217d41-47be-11e8-b7ab-dff70b15977c\",\"id\":\"1b7d4400-47bf-11e8-b7ab-dff70b15977c\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy HTTP response codes ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average response time [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"ms,ms,0\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average response time\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.response.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}ms\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy average response time ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"981d1040-47be-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of server connections [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"haproxy.stat.component_type:(2 OR 3)\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of connections\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"22668d40-47e1-11e8-96ee-d767c73d008a\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"22668d40-47e1-11e8-96ee-d767c73d008a\",\"id\":\"2a1d0a00-47e1-11e8-96ee-d767c73d008a\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.service_name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy number of server connections ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"72e84b00-47e1-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Healthcheck [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,0,4,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"198f56e0-47e4-11e8-b45e-f10c3845381c\",\"label\":\"Down\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.downtime\",\"id\":\"198f56e1-47e4-11e8-b45e-f10c3845381c\",\"type\":\"sum\"},{\"field\":\"198f56e1-47e4-11e8-b45e-f10c3845381c\",\"id\":\"dbf38560-47e6-11e8-b45e-f10c3845381c\",\"sigma\":\"\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"dbf38560-47e6-11e8-b45e-f10c3845381c\",\"id\":\"62274b80-47e7-11e8-b45e-f10c3845381c\",\"type\":\"positive_only\",\"unit\":\"\"},{\"id\":\"7b7a7300-47e7-11e8-b45e-f10c3845381c\",\"script\":\"(params.down > 0) ? 1 : 0\",\"type\":\"calculation\",\"variables\":[{\"field\":\"62274b80-47e7-11e8-b45e-f10c3845381c\",\"id\":\"7e577b40-47e7-11e8-b45e-f10c3845381c\",\"name\":\"down\"}]}],\"point_size\":1,\"seperate_axis\":1,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(255,218,0,1)\",\"fill\":0.5,\"formatter\":\"ms,ms,0\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Duration (ms)\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.check.duration\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy healthcheck ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"976b0910-47e4-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDcsMV0="} -{"attributes":{"description":"HAProxy metrics for HTTP mode","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":8,\"x\":0,\"y\":20,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":8,\"x\":24,\"y\":12,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":0,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":8,\"x\":0,\"y\":12,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":0,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":8,\"x\":24,\"y\":20,\"i\":\"11\"},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"}]","timeRestore":false,"title":"[Metricbeat HAProxy] HTTP server ECS","version":1},"coreMigrationVersion":"8.0.0","id":"8cc50a50-47e0-11e8-bc13-1397384faad3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"0751ed00-479c-11e8-bc13-1397384faad3-ecs","name":"5:panel_5","type":"visualization"},{"id":"b3463670-47a1-11e8-bc13-1397384faad3-ecs","name":"6:panel_6","type":"visualization"},{"id":"fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs","name":"7:panel_7","type":"visualization"},{"id":"981d1040-47be-11e8-bc13-1397384faad3-ecs","name":"8:panel_8","type":"visualization"},{"id":"72e84b00-47e1-11e8-bc13-1397384faad3-ecs","name":"10:panel_10","type":"visualization"},{"id":"976b0910-47e4-11e8-bc13-1397384faad3-ecs","name":"11:panel_11","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:20.914Z","version":"WzM4MzQsMV0="} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-overview.ndjson b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-overview.ndjson deleted file mode 100644 index 2b4b8371405f..000000000000 --- a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/Metricbeat-haproxy-overview.ndjson +++ /dev/null @@ -1,5 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Servers per connection [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"50830800-47d9-11e8-9db9-274c7a5e25e4\"}],\"drilldown_url\":\"../app/kibana#/dashboard/8cc50a50-47e0-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.service_name:\\\"{{ key }}\\\"'))\",\"filter\":\"\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"markdown\":\"{{#each _all}}\\n{{ label }}\\n\\n{{/each}}\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"haproxy.stat.component_type:(2 OR 3)\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Servers\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.service_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"20\",\"var_name\":\"\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy servers per connection ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"79350d50-47db-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Backends per connection [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"4aeddd40-47dc-11e8-9db9-274c7a5e25e4\"}],\"drilldown_url\":\"../app/kibana#/dashboard/0836a4b0-47bd-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.proxy.name:\\\"{{ key }}\\\"'))\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"haproxy.stat.component_type:1\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Backends\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"20\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy backends per connection ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8c8f0300-47dc-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Frontends per connection [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"b81d8640-47dc-11e8-9a25-99b107967d82\"}],\"drilldown_url\":\"../app/kibana#/dashboard/e9057ae0-47c5-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.proxy.name:\\\"{{ key }}\\\"'))\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"haproxy.stat.component_type:0\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Frontends\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"20\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"HAProxy frontends per connection ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f1e27ed0-47dc-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4NTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections [Metricbeat HAProxy] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"4e35d500-471b-11e8-a520-3f46123ab5eb\"}],\"bar_color_rules\":[{\"id\":\"69899960-4719-11e8-a520-3f46123ab5eb\"}],\"filter\":{\"query\":\"haproxy.stat.component_type:(0 OR 1)\",\"language\":\"lucene\"},\"gauge_color_rules\":[{\"id\":\"6f171ba0-4719-11e8-a520-3f46123ab5eb\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of connections\",\"line_width\":1,\"metrics\":[{\"field\":\"haproxy.stat.connection.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"41ff3940-4719-11e8-a520-3f46123ab5eb\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"41ff3940-4719-11e8-a520-3f46123ab5eb\",\"id\":\"456a5fa0-4738-11e8-8633-8f8b3acf1566\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"0ceb7740-471a-11e8-a520-3f46123ab5eb\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"haproxy.stat.proxy.name\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HAProxy connections ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a64b4fd0-471c-11e8-bc13-1397384faad3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:22.960Z","version":"WzM4MzYsMV0="} -{"attributes":{"description":"HAProxy overview","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":24,\"x\":32,\"y\":8,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Servers\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":24,\"x\":16,\"y\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Backends\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":16,\"h\":24,\"x\":0,\"y\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Frontends\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":48,\"h\":8,\"x\":0,\"y\":0,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Metricbeat HAProxy] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"4b555c30-47dd-11e8-bc13-1397384faad3-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"79350d50-47db-11e8-bc13-1397384faad3-ecs","name":"2:panel_2","type":"visualization"},{"id":"8c8f0300-47dc-11e8-bc13-1397384faad3-ecs","name":"3:panel_3","type":"visualization"},{"id":"f1e27ed0-47dc-11e8-bc13-1397384faad3-ecs","name":"4:panel_4","type":"visualization"},{"id":"a64b4fd0-471c-11e8-bc13-1397384faad3-ecs","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:21.953Z","version":"WzM4MzUsMV0="} diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/d5878d00-47c5-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/d5878d00-47c5-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..888a25a8e0fe --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/d5878d00-47c5-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "HAProxy frontend metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat HAProxy] Frontend ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "d5878d00-47c5-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "a64b4fd0-471c-11e8-bc13-1397384faad3-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "86159190-47c5-11e8-bc13-1397384faad3-ecs", + "name": "3:panel_3", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:17.859Z", + "version": "WzM4MzEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/dashboard/e9057ae0-47c5-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/e9057ae0-47c5-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..f195e1be785d --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/dashboard/e9057ae0-47c5-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,100 @@ +{ + "attributes": { + "description": "HAProxy frontend metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 24, + "x": 24, + "y": 12 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "5", + "w": 24, + "x": 0, + "y": 12 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat HAProxy] HTTP frontend ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "e9057ae0-47c5-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "86159190-47c5-11e8-bc13-1397384faad3-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "30956d00-47d7-11e8-bc13-1397384faad3-ecs", + "name": "5:panel_5", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:19.873Z", + "version": "WzM4MzMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/visualization/0751ed00-479c-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/visualization/0751ed00-479c-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..8461a647a5ed --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/visualization/0751ed00-479c-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Average connection time [Metricbeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0.1", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Percentile", + "line_width": "1", + "metrics": [ + { + "field": "haproxy.stat.connection.time.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "percentiles": [ + { + "id": "9fa517e0-479b-11e8-9590-e34c5ed2dd95", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + }, + { + "id": "daafd6e0-479b-11e8-9590-e34c5ed2dd95", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "90" + }, + { + "id": "e006b8c0-479b-11e8-9590-e34c5ed2dd95", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "50" + } + ], + "type": "percentile" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "haproxy.stat.service_name" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "HAProxy average connection time ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0751ed00-479c-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:22.960Z", + "version": "WzM4NDUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/visualization/30956d00-47d7-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/visualization/30956d00-47d7-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..bf6c5d825857 --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/visualization/30956d00-47d7-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,141 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Requests [Metricbeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Requests", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.request.total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "ad38e2c0-47d6-11e8-994c-81d2daeb7c86", + "type": "derivative", + "unit": "" + }, + { + "field": "ad38e2c0-47d6-11e8-994c-81d2daeb7c86", + "id": "b1ca03a0-47d6-11e8-994c-81d2daeb7c86", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(255,0,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "c2f30500-47d6-11e8-994c-81d2daeb7c86", + "label": "Request errors", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.request.errors", + "id": "c2f30501-47d6-11e8-994c-81d2daeb7c86", + "type": "max" + }, + { + "field": "c2f30501-47d6-11e8-994c-81d2daeb7c86", + "id": "c2f30502-47d6-11e8-994c-81d2daeb7c86", + "type": "derivative", + "unit": "" + }, + { + "field": "c2f30502-47d6-11e8-994c-81d2daeb7c86", + "id": "c2f30503-47d6-11e8-994c-81d2daeb7c86", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,0,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "11968ce0-47d7-11e8-994c-81d2daeb7c86", + "label": "Denied requests", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.request.denied", + "id": "11968ce1-47d7-11e8-994c-81d2daeb7c86", + "type": "max" + }, + { + "field": "11968ce1-47d7-11e8-994c-81d2daeb7c86", + "id": "11968ce2-47d7-11e8-994c-81d2daeb7c86", + "type": "derivative", + "unit": "" + }, + { + "field": "11968ce2-47d7-11e8-994c-81d2daeb7c86", + "id": "11968ce3-47d7-11e8-994c-81d2daeb7c86", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "HAProxy requests ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "30956d00-47d7-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:22.960Z", + "version": "WzM4NDQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/visualization/40bed190-473b-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/visualization/40bed190-473b-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..bef97a81af55 --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/visualization/40bed190-473b-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Downtime seconds [Metricbeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "c86b8e00-4739-11e8-8953-55bbe33e1362" + } + ], + "filter": { + "language": "lucene", + "query": "haproxy.stat.component_type:1" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(255,0,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Downtime", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.downtime", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "91aa6a20-473a-11e8-8953-55bbe33e1362", + "type": "derivative", + "unit": "" + }, + { + "field": "91aa6a20-473a-11e8-8953-55bbe33e1362", + "id": "a8ce7ca0-473a-11e8-8953-55bbe33e1362", + "sigma": "", + "type": "sum_bucket" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "haproxy.stat.proxy.name", + "value_template": "{{value}}s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "HAProxy downtime seconds ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "40bed190-473b-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:22.960Z", + "version": "WzM4MzksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/visualization/72e84b00-47e1-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/visualization/72e84b00-47e1-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..b8d4f9966995 --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/visualization/72e84b00-47e1-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Number of server connections [Metricbeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "lucene", + "query": "haproxy.stat.component_type:(2 OR 3)" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Number of connections", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.connection.total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "22668d40-47e1-11e8-96ee-d767c73d008a", + "type": "derivative", + "unit": "" + }, + { + "field": "22668d40-47e1-11e8-96ee-d767c73d008a", + "id": "2a1d0a00-47e1-11e8-96ee-d767c73d008a", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "haproxy.stat.service_name" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "HAProxy number of server connections ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "72e84b00-47e1-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:22.960Z", + "version": "WzM4NDYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/visualization/79350d50-47db-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/visualization/79350d50-47db-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..93076cfc2039 --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/visualization/79350d50-47db-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Servers per connection [Metricbeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "id": "50830800-47d9-11e8-9db9-274c7a5e25e4" + } + ], + "drilldown_url": "../app/kibana#/dashboard/8cc50a50-47e0-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.service_name:\"{{ key }}\"'))", + "filter": "", + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": "auto", + "markdown": "{{#each _all}}\n{{ label }}\n\n{{/each}}", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "lucene", + "query": "haproxy.stat.component_type:(2 OR 3)" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Servers", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.connection.total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "haproxy.stat.service_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "20", + "var_name": "" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "HAProxy servers per connection ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "79350d50-47db-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:22.960Z", + "version": "WzM4NDgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/visualization/794b6cd0-471d-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/visualization/794b6cd0-471d-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..761c30c83fd6 --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/visualization/794b6cd0-471d-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,154 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Active servers in backend [Metricbeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "color": "rgba(255,0,6,1)", + "id": "1ec0dde0-471d-11e8-9876-09cc6c85f5f2", + "operator": "lte", + "value": 0 + }, + { + "color": "rgba(255,0,6,1)", + "id": "8d345723-dc15-424c-a8df-0777fe7a4ffa", + "operator": "empty", + "value": null + } + ], + "bar_color_rules": [ + { + "id": "297160c0-471d-11e8-9876-09cc6c85f5f2" + } + ], + "filter": { + "language": "lucene", + "query": "haproxy.stat.component_type:(2 OR 3)" + }, + "gauge_color_rules": [ + { + "gauge": "rgba(255,0,5,1)", + "id": "4ce156a0-471d-11e8-9876-09cc6c85f5f2", + "operator": "lte", + "text": null, + "value": 0 + }, + { + "gauge": "rgba(255,196,0,1)", + "id": "f8458a80-4721-11e8-b854-2f6d2b452362", + "operator": "lte", + "value": 0.5 + }, + { + "gauge": "rgba(255,0,5,1)", + "id": "99d5e990-9b29-45c9-b191-e8034fb39ec5", + "operator": "empty", + "text": null, + "value": null + } + ], + "gauge_inner_width": 10, + "gauge_max": "1", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "lucene", + "query": "haproxy.stat.status:UP" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Active servers", + "line_width": 1, + "metrics": [ + { + "denominator": "*", + "field": "haproxy.stat.server.id", + "id": "b754d060-471e-11e8-9876-09cc6c85f5f2", + "metric_agg": "count", + "numerator": "*", + "script": "params.up / (params.down + params.up)", + "type": "cardinality", + "variables": [ + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "cfd51780-471e-11e8-9d35-6baabcdce3dc", + "name": "down" + }, + { + "field": "a049c420-471e-11e8-9876-09cc6c85f5f2", + "id": "45e6ec00-471f-11e8-9d35-6baabcdce3dc", + "name": "up" + } + ] + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "haproxy.stat.proxy.name" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "2cba9420-4724-11e8-b854-2f6d2b452362", + "label": "Total servers", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.server.id", + "id": "2cba9421-4724-11e8-b854-2f6d2b452362", + "type": "cardinality" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "HAProxy active servers in backend ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "794b6cd0-471d-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:22.960Z", + "version": "WzM4MzcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/visualization/86159190-47c5-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/visualization/86159190-47c5-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..f70e1c7b2e1a --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/visualization/86159190-47c5-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,96 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Traffic volume [Metricbeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": "0.5", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Incoming", + "line_width": "1", + "metrics": [ + { + "field": "haproxy.stat.in.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "9814c420-47c4-11e8-994c-81d2daeb7c86", + "type": "derivative", + "unit": "" + } + ], + "point_size": "1", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(25,77,51,1)", + "fill": "0.5", + "formatter": "bytes", + "id": "c89d1520-47c4-11e8-994c-81d2daeb7c86", + "label": "Outgoing", + "line_width": "1", + "metrics": [ + { + "field": "haproxy.stat.out.bytes", + "id": "c89d6340-47c4-11e8-994c-81d2daeb7c86", + "type": "sum" + }, + { + "field": "c89d6340-47c4-11e8-994c-81d2daeb7c86", + "id": "c89d6341-47c4-11e8-994c-81d2daeb7c86", + "type": "derivative", + "unit": "" + } + ], + "override_index_pattern": 0, + "point_size": "1", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "HAProxy traffic volume ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "86159190-47c5-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:22.960Z", + "version": "WzM4NDEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/visualization/8c8f0300-47dc-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/visualization/8c8f0300-47dc-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..a7cabcbfffea --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/visualization/8c8f0300-47dc-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,75 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Backends per connection [Metricbeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "id": "4aeddd40-47dc-11e8-9db9-274c7a5e25e4" + } + ], + "drilldown_url": "../app/kibana#/dashboard/0836a4b0-47bd-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.proxy.name:\"{{ key }}\"'))", + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "lucene", + "query": "haproxy.stat.component_type:1" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Backends", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.connection.total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "haproxy.stat.proxy.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "20" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "HAProxy backends per connection ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8c8f0300-47dc-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:22.960Z", + "version": "WzM4NDksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/visualization/976b0910-47e4-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/visualization/976b0910-47e4-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..43941e951714 --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/visualization/976b0910-47e4-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Healthcheck [Metricbeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(255,0,4,1)", + "fill": 0.5, + "formatter": "number", + "id": "198f56e0-47e4-11e8-b45e-f10c3845381c", + "label": "Down", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.downtime", + "id": "198f56e1-47e4-11e8-b45e-f10c3845381c", + "type": "sum" + }, + { + "field": "198f56e1-47e4-11e8-b45e-f10c3845381c", + "id": "dbf38560-47e6-11e8-b45e-f10c3845381c", + "sigma": "", + "type": "derivative", + "unit": "" + }, + { + "field": "dbf38560-47e6-11e8-b45e-f10c3845381c", + "id": "62274b80-47e7-11e8-b45e-f10c3845381c", + "type": "positive_only", + "unit": "" + }, + { + "id": "7b7a7300-47e7-11e8-b45e-f10c3845381c", + "script": "(params.down > 0) ? 1 : 0", + "type": "calculation", + "variables": [ + { + "field": "62274b80-47e7-11e8-b45e-f10c3845381c", + "id": "7e577b40-47e7-11e8-b45e-f10c3845381c", + "name": "down" + } + ] + } + ], + "point_size": 1, + "seperate_axis": 1, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(255,218,0,1)", + "fill": 0.5, + "formatter": "ms,ms,0", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Duration (ms)", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.check.duration", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "HAProxy healthcheck ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "976b0910-47e4-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:22.960Z", + "version": "WzM4NDcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/visualization/981d1040-47be-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/visualization/981d1040-47be-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..4927fbd51e6e --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/visualization/981d1040-47be-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,62 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Average response time [Metricbeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "ms,ms,0", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Average response time", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.response.time.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}ms" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "HAProxy average response time ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "981d1040-47be-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:22.960Z", + "version": "WzM4NDMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/visualization/a64b4fd0-471c-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/visualization/a64b4fd0-471c-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..9c0265a472e8 --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/visualization/a64b4fd0-471c-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,104 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Connections [Metricbeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "4e35d500-471b-11e8-a520-3f46123ab5eb" + } + ], + "bar_color_rules": [ + { + "id": "69899960-4719-11e8-a520-3f46123ab5eb" + } + ], + "filter": { + "language": "lucene", + "query": "haproxy.stat.component_type:(0 OR 1)" + }, + "gauge_color_rules": [ + { + "id": "6f171ba0-4719-11e8-a520-3f46123ab5eb" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": "", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Number of connections", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.connection.total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "41ff3940-4719-11e8-a520-3f46123ab5eb", + "type": "derivative", + "unit": "" + }, + { + "field": "41ff3940-4719-11e8-a520-3f46123ab5eb", + "id": "456a5fa0-4738-11e8-8633-8f8b3acf1566", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "series_drop_last_bucket": 1, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "id": "0ceb7740-471a-11e8-a520-3f46123ab5eb" + } + ], + "split_mode": "terms", + "stacked": "none", + "terms_field": "haproxy.stat.proxy.name" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "HAProxy connections ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a64b4fd0-471c-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:22.960Z", + "version": "WzM4MzYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/visualization/b3463670-47a1-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/visualization/b3463670-47a1-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..245d099c9f00 --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/visualization/b3463670-47a1-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,61 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Average time in queue [Metricbeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Average time in queue", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.queue.time.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "HAProxy average time in queue ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b3463670-47a1-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:22.960Z", + "version": "WzM4NDAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/visualization/bb0ab500-4735-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/visualization/bb0ab500-4735-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..16ebbdcff136 --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/visualization/bb0ab500-4735-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Connections per server [Metricbeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "id": "978f2660-4735-11e8-b619-8f82b8185e96" + } + ], + "drilldown_url": "../app/kibana#/dashboard/8cc50a50-47e0-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.service_name:\"{{ key }}\"'))", + "filter": { + "language": "lucene", + "query": "haproxy.stat.component_type:(2 OR 3)" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Connections per server", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.connection.total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "3ea29000-4735-11e8-b619-8f82b8185e96", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "haproxy.stat.service_name" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "HAProxy connections per server ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bb0ab500-4735-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:22.960Z", + "version": "WzM4MzgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/visualization/f1e27ed0-47dc-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/visualization/f1e27ed0-47dc-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..c7d935f69148 --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/visualization/f1e27ed0-47dc-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,75 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Frontends per connection [Metricbeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "id": "b81d8640-47dc-11e8-9a25-99b107967d82" + } + ], + "drilldown_url": "../app/kibana#/dashboard/e9057ae0-47c5-11e8-bc13-1397384faad3-ecs?_a=(query:(language:kuery,query:'haproxy.stat.proxy.name:\"{{ key }}\"'))", + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "lucene", + "query": "haproxy.stat.component_type:0" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Frontends", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.connection.total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "haproxy.stat.proxy.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "20" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "HAProxy frontends per connection ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f1e27ed0-47dc-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:22.960Z", + "version": "WzM4NTAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/_meta/kibana/7/visualization/fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs.json b/metricbeat/module/haproxy/_meta/kibana/7/visualization/fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs.json new file mode 100644 index 000000000000..7f15c42ea576 --- /dev/null +++ b/metricbeat/module/haproxy/_meta/kibana/7/visualization/fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs.json @@ -0,0 +1,213 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "HTTP response codes [Metricbeat HAProxy] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "200s", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.response.http.2xx", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "973a6de0-47bd-11e8-b7ab-dff70b15977c", + "type": "derivative", + "unit": "" + }, + { + "field": "973a6de0-47bd-11e8-b7ab-dff70b15977c", + "id": "4971d580-47e5-11e8-b45e-f10c3845381c", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(64,240,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "aafd05e0-47bd-11e8-b7ab-dff70b15977c", + "label": "300s", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.response.http.3xx", + "id": "aafd05e1-47bd-11e8-b7ab-dff70b15977c", + "type": "sum" + }, + { + "field": "aafd05e1-47bd-11e8-b7ab-dff70b15977c", + "id": "aafd05e2-47bd-11e8-b7ab-dff70b15977c", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(255,246,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "c77191a0-47bd-11e8-b7ab-dff70b15977c", + "label": "400s", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.response.http.4xx", + "id": "c77191a1-47bd-11e8-b7ab-dff70b15977c", + "type": "sum" + }, + { + "field": "c77191a1-47bd-11e8-b7ab-dff70b15977c", + "id": "c77191a2-47bd-11e8-b7ab-dff70b15977c", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(255,0,4,1)", + "fill": 0.5, + "formatter": "number", + "id": "d574e900-47bd-11e8-b7ab-dff70b15977c", + "label": "500s", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.response.http.5xx", + "id": "d574e901-47bd-11e8-b7ab-dff70b15977c", + "type": "sum" + }, + { + "field": "d574e901-47bd-11e8-b7ab-dff70b15977c", + "id": "d5753720-47bd-11e8-b7ab-dff70b15977c", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,251,255,1)", + "fill": 0.5, + "formatter": "number", + "id": "e3b8a4c0-47bd-11e8-b7ab-dff70b15977c", + "label": "Other", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.response.http.other", + "id": "e3b8a4c1-47bd-11e8-b7ab-dff70b15977c", + "type": "sum" + }, + { + "field": "e3b8a4c1-47bd-11e8-b7ab-dff70b15977c", + "id": "e3b8a4c2-47bd-11e8-b7ab-dff70b15977c", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(15,20,25,1)", + "fill": 0.5, + "formatter": "number", + "id": "f9217d40-47be-11e8-b7ab-dff70b15977c", + "label": "Response errors", + "line_width": 1, + "metrics": [ + { + "field": "haproxy.stat.response.errors", + "id": "f9217d41-47be-11e8-b7ab-dff70b15977c", + "type": "sum" + }, + { + "field": "f9217d41-47be-11e8-b7ab-dff70b15977c", + "id": "1b7d4400-47bf-11e8-b7ab-dff70b15977c", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "HAProxy HTTP response codes ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fcbdfa60-47bd-11e8-bc13-1397384faad3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:22.960Z", + "version": "WzM4NDIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/haproxy/module.yml b/metricbeat/module/haproxy/module.yml index 9e44bdf65027..c833a31c5003 100644 --- a/metricbeat/module/haproxy/module.yml +++ b/metricbeat/module/haproxy/module.yml @@ -1,13 +1,13 @@ dashboards: - id: 9151c900-471d-11e8-bc13-1397384faad3 - file: Metricbeat-haproxy-backend.ndjson + file: Metricbeat-haproxy-backend.json - id: d5878d00-47c5-11e8-bc13-1397384faad3 - file: Metricbeat-haproxy-frontend.ndjson + file: Metricbeat-haproxy-frontend.json - id: 0836a4b0-47bd-11e8-bc13-1397384faad3 - file: Metricbeat-haproxy-http-backend.ndjson + file: Metricbeat-haproxy-http-backend.json - id: e9057ae0-47c5-11e8-bc13-1397384faad3 - file: Metricbeat-haproxy-http-frontend.ndjson + file: Metricbeat-haproxy-http-frontend.json - id: 8cc50a50-47e0-11e8-bc13-1397384faad3 - file: Metricbeat-haproxy-http-server.ndjson + file: Metricbeat-haproxy-http-server.json - id: 4b555c30-47dd-11e8-bc13-1397384faad3 - file: Metricbeat-haproxy-overview.ndjson + file: Metricbeat-haproxy-overview.json diff --git a/metricbeat/module/kafka/_meta/kibana/7/dashboard/Metricbeat-kafka-overview.ndjson b/metricbeat/module/kafka/_meta/kibana/7/dashboard/Metricbeat-kafka-overview.ndjson deleted file mode 100644 index 2b1b44436b66..000000000000 --- a/metricbeat/module/kafka/_meta/kibana/7/dashboard/Metricbeat-kafka-overview.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Kafka Topic & Consumer Offsets [Metricbeat Kafka] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"8b27e6a0-8e61-11e8-b741-c3e458b74a68\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"NOT kafka.topic.name:__consumer_offsets\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0.1\",\"filter\":{\"language\":\"lucene\",\"query\":\"metricset.name: partition AND kafka.partition.partition.is_leader: true\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Topic Offsets\",\"line_width\":\"0.5\",\"metrics\":[{\"field\":\"kafka.partition.offset.newest\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kafka.topic.name\",\"terms_order_by\":\"_term\",\"value_template\":\"{{value}}\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,0.52)\",\"fill\":\"0\",\"filter\":{\"language\":\"lucene\",\"query\":\"metricset.name: consumergroup\"},\"formatter\":\"number\",\"id\":\"d43034c0-8f1e-11e8-8784-cd0acd161a28\",\"label\":\"Consumer Offsets\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"kafka.consumergroup.offset\",\"id\":\"d43034c1-8f1e-11e8-8784-cd0acd161a28\",\"type\":\"sum\"}],\"point_size\":\"1.5\",\"seperate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"dd41ada0-8f1e-11e8-8784-cd0acd161a28\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kafka.consumergroup.id\",\"terms_order_by\":\"_term\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Kafka Topic & Consumer Offsets [Metricbeat Kafka] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b9d12c80-8e63-11e8-8fa2-3d5f811fbd0f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5ODksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Kafka Controls [Metricbeat Kafka] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"kafka.topic.name\",\"id\":\"1532342651170\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Topic Name\",\"options\":{\"multiselect\":true,\"order\":\"desc\",\"size\":10,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"kafka.partition.id\",\"id\":\"1539799686678\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Partition\",\"options\":{\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"1532342651170\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Kafka Controls [Metricbeat Kafka] ECS\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"8d2f79a0-8e65-11e8-8fa2-3d5f811fbd0f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5OTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Kafka Consumer Group Lag vs Time [Metricbeat Kafka] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"1966adf0-1298-11ea-abd7-b5bb8e05b5d6\"}],\"bar_color_rules\":[{\"id\":\"1dbe6f50-1298-11ea-abd7-b5bb8e05b5d6\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"(metricset.name: consumergroup) AND NOT kafka.consumergroup.topic.name:__consumer_offsets\"},\"gauge_color_rules\":[{\"id\":\"1eee15b0-1298-11ea-abd7-b5bb8e05b5d6\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"0dcb8020-8e6d-11e8-bfab-6f29bad3a6f2\",\"label\":\"Consumer Groups\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.consumergroup.consumer_lag\",\"id\":\"0dcb8021-8e6d-11e8-bfab-6f29bad3a6f2\",\"type\":\"max\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kafka.consumergroup.topic\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Kafka Consumer Group Lag vs Time [Metricbeat Kafka] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"944188f0-8e79-11e8-8fa2-3d5f811fbd0f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5OTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": \"Partition Metricset\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"metricset.name\", \"negate\": false, \"params\": {\"query\": \"partition\", \"type\": \"phrase\"}, \"type\": \"phrase\", \"value\": \"partition\"}, \"query\": {\"match\": {\"metricset.name\": {\"query\": \"partition\", \"type\": \"phrase\"}}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"kafka.topic.name\", \"negate\": true, \"params\": {\"query\": \"__consumer_offsets\", \"type\": \"phrase\"}, \"type\": \"phrase\", \"value\": \"__consumer_offsets\"}, \"query\": {\"match\": {\"kafka.topic.name\": {\"query\": \"__consumer_offsets\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Kafka Metrics [Metricbeat Kafka] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Topics\",\"field\":\"kafka.topic.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Brokers\",\"field\":\"kafka.partition.broker.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Partitions\",\"field\":\"kafka.partition.topic_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Replicas\",\"field\":\"kafka.partition.topic_broker_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":32,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Kafka Metrics [Metricbeat Kafka] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"dc89f8d0-8e8e-11e8-8fa2-3d5f811fbd0f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5OTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Consumer Partition Reassignments [Metricbeat Kafka] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_max\":\"1\",\"axis_min\":\"-1\",\"axis_position\":\"right\",\"filter\":{\"language\":\"lucene\",\"query\":\"NOT kafka.topic.name:__consumer_offsets\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Consumer -> Partition Reassignment\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"kafka.consumergroup.partition\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"6b69c760-8f20-11e8-8927-d7e991b5b6ab\",\"type\":\"derivative\",\"unit\":\"\"},{\"id\":\"976f9d80-8f20-11e8-8927-d7e991b5b6ab\",\"script\":\"if (params.sum_partition < 0) { return -1 } else if (params.sum_partition > 0) { return 1 }\",\"type\":\"calculation\",\"variables\":[{\"field\":\"6b69c760-8f20-11e8-8927-d7e991b5b6ab\",\"id\":\"99cc2b20-8f20-11e8-8927-d7e991b5b6ab\",\"name\":\"sum_partition\"}]}],\"point_size\":\"20\",\"seperate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kafka.consumergroup.id\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Consumer Partition Reassignments [Metricbeat Kafka] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"587f2360-8f21-11e8-8fa2-3d5f811fbd0f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5OTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"kafka.topic.name\", \"negate\": true, \"params\": {\"query\": \"__consumer_offsets\", \"type\": \"phrase\"}, \"type\": \"phrase\", \"value\": \"__consumer_offsets\"}, \"query\": {\"match\": {\"kafka.topic.name\": {\"query\": \"__consumer_offsets\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Consumer Metrics [Metricbeat Kafka] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Consumer Groups\",\"field\":\"kafka.consumergroup.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":32,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Consumer Metrics [Metricbeat Kafka] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"1681f1a0-90e7-11e8-8fa2-3d5f811fbd0f-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5OTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Kafka Consumer Group Clients [Metricbeat Kafka] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Newest Offset\",\"field\":\"kafka.consumergroup.offset\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Consumer group client\",\"field\":\"kafka.consumergroup.client.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_term\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":64},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Topic\",\"field\":\"kafka.topic.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":64},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Partition\",\"field\":\"kafka.partition.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":256},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Kafka Consumer Group Clients [Metricbeat Kafka] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"9a7576e0-d231-11e8-8766-dbbdc39e7ba9-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5OTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Kafka Broker Details [Metricbeat Kafka] ECS","uiStateJSON":"{\"table\": {\"sort\": {\"column\": \"cf09c940-d2ec-11e8-88c8-af5b2a9ee6b2\", \"order\": \"asc\"}}}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"7fb31e00-d2ec-11e8-88c8-af5b2a9ee6b2\"}],\"filter\":\"\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"pivot_id\":\"kafka.partition.partition.replica\",\"pivot_label\":\"Broker ID\",\"pivot_rows\":\"256\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Topics\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.topic.name\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kafka.broker.id\",\"terms_size\":\"100\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"7e9ee780-d2ef-11e8-9dd4-c5f03280d7b0\"}],\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\"kafka.partition.partition.is_leader: true\"},\"formatter\":\"number\",\"id\":\"b38e91a0-d2ec-11e8-88c8-af5b2a9ee6b2\",\"label\":\"Leader Partitions\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.partition.topic_id\",\"id\":\"b38eb8b0-d2ec-11e8-88c8-af5b2a9ee6b2\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"d4d9d2c0-d2ec-11e8-88c8-af5b2a9ee6b2\"}],\"fill\":0.5,\"filter\":\"\",\"formatter\":\"number\",\"id\":\"cf09c940-d2ec-11e8-88c8-af5b2a9ee6b2\",\"label\":\"Replicas\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.partition.topic_broker_id\",\"id\":\"cf09f050-d2ec-11e8-88c8-af5b2a9ee6b2\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"table\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Kafka Broker Details [Metricbeat Kafka] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"27dd5960-d2ed-11e8-8766-dbbdc39e7ba9-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5OTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Kafka Topic Details [Metricbeat Kafka] ECS","uiStateJSON":"{\"table\": {\"sort\": {\"column\": \"_default_\", \"order\": \"asc\"}}}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"f81e47a0-d2f3-11e8-9dd4-c5f03280d7b0\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"NOT kafka.topic.name: __consumer_offsets\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"pivot_id\":\"kafka.topic.name\",\"pivot_label\":\"Topic Name\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"f07881d0-d2f5-11e8-95b9-eb9260148efc\"}],\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\" metricset.name: partition\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Brokers\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.broker.id\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"fb759e10-d2f5-11e8-95b9-eb9260148efc\"}],\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\" metricset.name: partition\"},\"formatter\":\"number\",\"id\":\"7d640440-d2f4-11e8-9dd4-c5f03280d7b0\",\"label\":\"Partitions\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.partition.id\",\"id\":\"7d640441-d2f4-11e8-9dd4-c5f03280d7b0\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"fdb1ab60-d2f5-11e8-95b9-eb9260148efc\"}],\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\" metricset.name: partition\"},\"formatter\":\"number\",\"id\":\"ad26e260-d2f4-11e8-9dd4-c5f03280d7b0\",\"label\":\"Replicas\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.partition.topic_broker_id\",\"id\":\"ad26e261-d2f4-11e8-9dd4-c5f03280d7b0\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"ff90f2b0-d2f5-11e8-95b9-eb9260148efc\"}],\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\" metricset.name: consumergroup\"},\"formatter\":\"number\",\"id\":\"26d2cd90-d2f5-11e8-9dd4-c5f03280d7b0\",\"label\":\"Consumers\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.consumergroup.client.id\",\"id\":\"26d2cd91-d2f5-11e8-9dd4-c5f03280d7b0\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"ea4984e0-d2f4-11e8-9dd4-c5f03280d7b0\"}],\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\" metricset.name: partition\"},\"formatter\":\"number\",\"id\":\"dc390e20-d2f4-11e8-9dd4-c5f03280d7b0\",\"label\":\"Newest Offset\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.partition.offset.newest\",\"id\":\"dc393530-d2f4-11e8-9dd4-c5f03280d7b0\",\"type\":\"max\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"043b67f0-d2f6-11e8-95b9-eb9260148efc\"}],\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\" metricset.name: partition\"},\"formatter\":\"number\",\"id\":\"11366c80-d2f5-11e8-9dd4-c5f03280d7b0\",\"label\":\"Oldest Offset\",\"line_width\":1,\"metrics\":[{\"field\":\"kafka.partition.offset.oldest\",\"id\":\"11366c81-d2f5-11e8-9dd4-c5f03280d7b0\",\"type\":\"min\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"table\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Kafka Topic Details [Metricbeat Kafka] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"491fee50-d2f5-11e8-8766-dbbdc39e7ba9-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5OTcsMV0="} -{"attributes":{"description":"Kafka analysis of topics and consumer groups","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":20},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Kafka Topic & Consumer Offsets\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"3\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Kafka Controls\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":6},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Consumer Group Lag by Topic\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"10\",\"w\":25,\"x\":16,\"y\":0},\"panelIndex\":\"10\",\"embeddableConfig\":{\"spy\":null,\"enhancements\":{}},\"title\":\"Kafka Metrics\",\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"12\",\"w\":24,\"x\":0,\"y\":33},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Consumer Partition Reassignments\",\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"13\",\"w\":7,\"x\":41,\"y\":0},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Consumer Metrics\",\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"14\",\"w\":24,\"x\":24,\"y\":27},\"panelIndex\":\"14\",\"embeddableConfig\":{\"spy\":null,\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"title\":\"Kafka Consumer Group Clients\",\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"15\",\"w\":24,\"x\":24,\"y\":6},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Kafka Brokers\",\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"16\",\"w\":24,\"x\":24,\"y\":16},\"panelIndex\":\"16\",\"embeddableConfig\":{\"table\":{\"sort\":{\"column\":\"26d2cd90-d2f5-11e8-9dd4-c5f03280d7b0\",\"order\":\"desc\"}},\"enhancements\":{}},\"title\":\"Kafka Topic Details\",\"panelRefName\":\"panel_16\"}]","timeRestore":false,"title":"[Metricbeat Kafka] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"ea488d90-8e63-11e8-8fa2-3d5f811fbd0f-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"b9d12c80-8e63-11e8-8fa2-3d5f811fbd0f-ecs","name":"1:panel_1","type":"visualization"},{"id":"8d2f79a0-8e65-11e8-8fa2-3d5f811fbd0f-ecs","name":"3:panel_3","type":"visualization"},{"id":"944188f0-8e79-11e8-8fa2-3d5f811fbd0f-ecs","name":"6:panel_6","type":"visualization"},{"id":"dc89f8d0-8e8e-11e8-8fa2-3d5f811fbd0f-ecs","name":"10:panel_10","type":"visualization"},{"id":"587f2360-8f21-11e8-8fa2-3d5f811fbd0f-ecs","name":"12:panel_12","type":"visualization"},{"id":"1681f1a0-90e7-11e8-8fa2-3d5f811fbd0f-ecs","name":"13:panel_13","type":"visualization"},{"id":"9a7576e0-d231-11e8-8766-dbbdc39e7ba9-ecs","name":"14:panel_14","type":"visualization"},{"id":"27dd5960-d2ed-11e8-8766-dbbdc39e7ba9-ecs","name":"15:panel_15","type":"visualization"},{"id":"491fee50-d2f5-11e8-8766-dbbdc39e7ba9-ecs","name":"16:panel_16","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:34.185Z","version":"WzM5ODgsMV0="} diff --git a/metricbeat/module/kafka/_meta/kibana/7/dashboard/ea488d90-8e63-11e8-8fa2-3d5f811fbd0f-ecs.json b/metricbeat/module/kafka/_meta/kibana/7/dashboard/ea488d90-8e63-11e8-8fa2-3d5f811fbd0f-ecs.json new file mode 100644 index 000000000000..904702f52751 --- /dev/null +++ b/metricbeat/module/kafka/_meta/kibana/7/dashboard/ea488d90-8e63-11e8-8fa2-3d5f811fbd0f-ecs.json @@ -0,0 +1,251 @@ +{ + "attributes": { + "description": "Kafka analysis of topics and consumer groups", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "1", + "w": 24, + "x": 0, + "y": 20 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Kafka Topic & Consumer Offsets", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "3", + "w": 16, + "x": 0, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Kafka Controls", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "6", + "w": 24, + "x": 0, + "y": 6 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Consumer Group Lag by Topic", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "spy": null + }, + "gridData": { + "h": 6, + "i": "10", + "w": 25, + "x": 16, + "y": 0 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "title": "Kafka Metrics", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "12", + "w": 24, + "x": 0, + "y": 33 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "title": "Consumer Partition Reassignments", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "13", + "w": 7, + "x": 41, + "y": 0 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "title": "Consumer Metrics", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "spy": null, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 13, + "i": "14", + "w": 24, + "x": 24, + "y": 27 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "title": "Kafka Consumer Group Clients", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "15", + "w": 24, + "x": 24, + "y": 6 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "title": "Kafka Brokers", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "table": { + "sort": { + "column": "26d2cd90-d2f5-11e8-9dd4-c5f03280d7b0", + "order": "desc" + } + } + }, + "gridData": { + "h": 11, + "i": "16", + "w": 24, + "x": 24, + "y": 16 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "title": "Kafka Topic Details", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Kafka] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "ea488d90-8e63-11e8-8fa2-3d5f811fbd0f-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "b9d12c80-8e63-11e8-8fa2-3d5f811fbd0f-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "8d2f79a0-8e65-11e8-8fa2-3d5f811fbd0f-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "944188f0-8e79-11e8-8fa2-3d5f811fbd0f-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "dc89f8d0-8e8e-11e8-8fa2-3d5f811fbd0f-ecs", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "587f2360-8f21-11e8-8fa2-3d5f811fbd0f-ecs", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "1681f1a0-90e7-11e8-8fa2-3d5f811fbd0f-ecs", + "name": "13:panel_13", + "type": "visualization" + }, + { + "id": "9a7576e0-d231-11e8-8766-dbbdc39e7ba9-ecs", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "27dd5960-d2ed-11e8-8766-dbbdc39e7ba9-ecs", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "491fee50-d2f5-11e8-8766-dbbdc39e7ba9-ecs", + "name": "16:panel_16", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:34.185Z", + "version": "WzM5ODgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kafka/_meta/kibana/7/visualization/1681f1a0-90e7-11e8-8fa2-3d5f811fbd0f-ecs.json b/metricbeat/module/kafka/_meta/kibana/7/visualization/1681f1a0-90e7-11e8-8fa2-3d5f811fbd0f-ecs.json new file mode 100644 index 000000000000..9588fe9cf2cc --- /dev/null +++ b/metricbeat/module/kafka/_meta/kibana/7/visualization/1681f1a0-90e7-11e8-8fa2-3d5f811fbd0f-ecs.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "kafka.topic.name", + "negate": true, + "params": { + "query": "__consumer_offsets", + "type": "phrase" + }, + "type": "phrase", + "value": "__consumer_offsets" + }, + "query": { + "match": { + "kafka.topic.name": { + "query": "__consumer_offsets", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Consumer Metrics [Metricbeat Kafka] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Consumer Groups", + "field": "kafka.consumergroup.id" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 32, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Consumer Metrics [Metricbeat Kafka] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1681f1a0-90e7-11e8-8fa2-3d5f811fbd0f-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:34.185Z", + "version": "WzM5OTQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kafka/_meta/kibana/7/visualization/27dd5960-d2ed-11e8-8766-dbbdc39e7ba9-ecs.json b/metricbeat/module/kafka/_meta/kibana/7/visualization/27dd5960-d2ed-11e8-8766-dbbdc39e7ba9-ecs.json new file mode 100644 index 000000000000..d20e1a1c23f8 --- /dev/null +++ b/metricbeat/module/kafka/_meta/kibana/7/visualization/27dd5960-d2ed-11e8-8766-dbbdc39e7ba9-ecs.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Kafka Broker Details [Metricbeat Kafka] ECS", + "uiStateJSON": { + "table": { + "sort": { + "column": "cf09c940-d2ec-11e8-88c8-af5b2a9ee6b2", + "order": "asc" + } + } + }, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "id": "7fb31e00-d2ec-11e8-88c8-af5b2a9ee6b2" + } + ], + "filter": "", + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "pivot_id": "kafka.partition.partition.replica", + "pivot_label": "Broker ID", + "pivot_rows": "256", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Topics", + "line_width": 1, + "metrics": [ + { + "field": "kafka.topic.name", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "cardinality" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "kafka.broker.id", + "terms_size": "100" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "color_rules": [ + { + "id": "7e9ee780-d2ef-11e8-9dd4-c5f03280d7b0" + } + ], + "fill": 0.5, + "filter": { + "language": "lucene", + "query": "kafka.partition.partition.is_leader: true" + }, + "formatter": "number", + "id": "b38e91a0-d2ec-11e8-88c8-af5b2a9ee6b2", + "label": "Leader Partitions", + "line_width": 1, + "metrics": [ + { + "field": "kafka.partition.topic_id", + "id": "b38eb8b0-d2ec-11e8-88c8-af5b2a9ee6b2", + "type": "cardinality" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "color_rules": [ + { + "id": "d4d9d2c0-d2ec-11e8-88c8-af5b2a9ee6b2" + } + ], + "fill": 0.5, + "filter": "", + "formatter": "number", + "id": "cf09c940-d2ec-11e8-88c8-af5b2a9ee6b2", + "label": "Replicas", + "line_width": 1, + "metrics": [ + { + "field": "kafka.partition.topic_broker_id", + "id": "cf09f050-d2ec-11e8-88c8-af5b2a9ee6b2", + "type": "cardinality" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "table", + "use_kibana_indexes": false + }, + "title": "Kafka Broker Details [Metricbeat Kafka] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "27dd5960-d2ed-11e8-8766-dbbdc39e7ba9-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:34.185Z", + "version": "WzM5OTYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kafka/_meta/kibana/7/visualization/491fee50-d2f5-11e8-8766-dbbdc39e7ba9-ecs.json b/metricbeat/module/kafka/_meta/kibana/7/visualization/491fee50-d2f5-11e8-8766-dbbdc39e7ba9-ecs.json new file mode 100644 index 000000000000..66b02c3aae95 --- /dev/null +++ b/metricbeat/module/kafka/_meta/kibana/7/visualization/491fee50-d2f5-11e8-8766-dbbdc39e7ba9-ecs.json @@ -0,0 +1,244 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Kafka Topic Details [Metricbeat Kafka] ECS", + "uiStateJSON": { + "table": { + "sort": { + "column": "_default_", + "order": "asc" + } + } + }, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "id": "f81e47a0-d2f3-11e8-9dd4-c5f03280d7b0" + } + ], + "filter": { + "language": "lucene", + "query": "NOT kafka.topic.name: __consumer_offsets" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "pivot_id": "kafka.topic.name", + "pivot_label": "Topic Name", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "color_rules": [ + { + "id": "f07881d0-d2f5-11e8-95b9-eb9260148efc" + } + ], + "fill": 0.5, + "filter": { + "language": "lucene", + "query": " metricset.name: partition" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Brokers", + "line_width": 1, + "metrics": [ + { + "field": "kafka.broker.id", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "cardinality" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "color_rules": [ + { + "id": "fb759e10-d2f5-11e8-95b9-eb9260148efc" + } + ], + "fill": 0.5, + "filter": { + "language": "lucene", + "query": " metricset.name: partition" + }, + "formatter": "number", + "id": "7d640440-d2f4-11e8-9dd4-c5f03280d7b0", + "label": "Partitions", + "line_width": 1, + "metrics": [ + { + "field": "kafka.partition.id", + "id": "7d640441-d2f4-11e8-9dd4-c5f03280d7b0", + "type": "cardinality" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "color_rules": [ + { + "id": "fdb1ab60-d2f5-11e8-95b9-eb9260148efc" + } + ], + "fill": 0.5, + "filter": { + "language": "lucene", + "query": " metricset.name: partition" + }, + "formatter": "number", + "id": "ad26e260-d2f4-11e8-9dd4-c5f03280d7b0", + "label": "Replicas", + "line_width": 1, + "metrics": [ + { + "field": "kafka.partition.topic_broker_id", + "id": "ad26e261-d2f4-11e8-9dd4-c5f03280d7b0", + "type": "cardinality" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "color_rules": [ + { + "id": "ff90f2b0-d2f5-11e8-95b9-eb9260148efc" + } + ], + "fill": 0.5, + "filter": { + "language": "lucene", + "query": " metricset.name: consumergroup" + }, + "formatter": "number", + "id": "26d2cd90-d2f5-11e8-9dd4-c5f03280d7b0", + "label": "Consumers", + "line_width": 1, + "metrics": [ + { + "field": "kafka.consumergroup.client.id", + "id": "26d2cd91-d2f5-11e8-9dd4-c5f03280d7b0", + "type": "cardinality" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "color_rules": [ + { + "id": "ea4984e0-d2f4-11e8-9dd4-c5f03280d7b0" + } + ], + "fill": 0.5, + "filter": { + "language": "lucene", + "query": " metricset.name: partition" + }, + "formatter": "number", + "id": "dc390e20-d2f4-11e8-9dd4-c5f03280d7b0", + "label": "Newest Offset", + "line_width": 1, + "metrics": [ + { + "field": "kafka.partition.offset.newest", + "id": "dc393530-d2f4-11e8-9dd4-c5f03280d7b0", + "type": "max" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "color_rules": [ + { + "id": "043b67f0-d2f6-11e8-95b9-eb9260148efc" + } + ], + "fill": 0.5, + "filter": { + "language": "lucene", + "query": " metricset.name: partition" + }, + "formatter": "number", + "id": "11366c80-d2f5-11e8-9dd4-c5f03280d7b0", + "label": "Oldest Offset", + "line_width": 1, + "metrics": [ + { + "field": "kafka.partition.offset.oldest", + "id": "11366c81-d2f5-11e8-9dd4-c5f03280d7b0", + "type": "min" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "table", + "use_kibana_indexes": false + }, + "title": "Kafka Topic Details [Metricbeat Kafka] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "491fee50-d2f5-11e8-8766-dbbdc39e7ba9-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:34.185Z", + "version": "WzM5OTcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kafka/_meta/kibana/7/visualization/587f2360-8f21-11e8-8fa2-3d5f811fbd0f-ecs.json b/metricbeat/module/kafka/_meta/kibana/7/visualization/587f2360-8f21-11e8-8fa2-3d5f811fbd0f-ecs.json new file mode 100644 index 000000000000..9a4d6c5a22d9 --- /dev/null +++ b/metricbeat/module/kafka/_meta/kibana/7/visualization/587f2360-8f21-11e8-8fa2-3d5f811fbd0f-ecs.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Consumer Partition Reassignments [Metricbeat Kafka] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_max": "1", + "axis_min": "-1", + "axis_position": "right", + "filter": { + "language": "lucene", + "query": "NOT kafka.topic.name:__consumer_offsets" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "hide_in_legend": 0, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Consumer -> Partition Reassignment", + "line_width": "1", + "metrics": [ + { + "field": "kafka.consumergroup.partition", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "6b69c760-8f20-11e8-8927-d7e991b5b6ab", + "type": "derivative", + "unit": "" + }, + { + "id": "976f9d80-8f20-11e8-8927-d7e991b5b6ab", + "script": "if (params.sum_partition < 0) { return -1 } else if (params.sum_partition > 0) { return 1 }", + "type": "calculation", + "variables": [ + { + "field": "6b69c760-8f20-11e8-8927-d7e991b5b6ab", + "id": "99cc2b20-8f20-11e8-8927-d7e991b5b6ab", + "name": "sum_partition" + } + ] + } + ], + "point_size": "20", + "seperate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "kafka.consumergroup.id", + "value_template": "" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Consumer Partition Reassignments [Metricbeat Kafka] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "587f2360-8f21-11e8-8fa2-3d5f811fbd0f-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:34.185Z", + "version": "WzM5OTMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kafka/_meta/kibana/7/visualization/8d2f79a0-8e65-11e8-8fa2-3d5f811fbd0f-ecs.json b/metricbeat/module/kafka/_meta/kibana/7/visualization/8d2f79a0-8e65-11e8-8fa2-3d5f811fbd0f-ecs.json new file mode 100644 index 000000000000..b9ca624b5173 --- /dev/null +++ b/metricbeat/module/kafka/_meta/kibana/7/visualization/8d2f79a0-8e65-11e8-8fa2-3d5f811fbd0f-ecs.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Kafka Controls [Metricbeat Kafka] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "kafka.topic.name", + "id": "1532342651170", + "indexPatternRefName": "control_0_index_pattern", + "label": "Topic Name", + "options": { + "multiselect": true, + "order": "desc", + "size": 10, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "kafka.partition.id", + "id": "1539799686678", + "indexPatternRefName": "control_1_index_pattern", + "label": "Partition", + "options": { + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "1532342651170", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "Kafka Controls [Metricbeat Kafka] ECS", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8d2f79a0-8e65-11e8-8fa2-3d5f811fbd0f-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:34.185Z", + "version": "WzM5OTAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kafka/_meta/kibana/7/visualization/944188f0-8e79-11e8-8fa2-3d5f811fbd0f-ecs.json b/metricbeat/module/kafka/_meta/kibana/7/visualization/944188f0-8e79-11e8-8fa2-3d5f811fbd0f-ecs.json new file mode 100644 index 000000000000..797b1a4fce88 --- /dev/null +++ b/metricbeat/module/kafka/_meta/kibana/7/visualization/944188f0-8e79-11e8-8fa2-3d5f811fbd0f-ecs.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Kafka Consumer Group Lag vs Time [Metricbeat Kafka] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "1966adf0-1298-11ea-abd7-b5bb8e05b5d6" + } + ], + "bar_color_rules": [ + { + "id": "1dbe6f50-1298-11ea-abd7-b5bb8e05b5d6" + } + ], + "filter": { + "language": "lucene", + "query": "(metricset.name: consumergroup) AND NOT kafka.consumergroup.topic.name:__consumer_offsets" + }, + "gauge_color_rules": [ + { + "id": "1eee15b0-1298-11ea-abd7-b5bb8e05b5d6" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0.2", + "formatter": "number", + "id": "0dcb8020-8e6d-11e8-bfab-6f29bad3a6f2", + "label": "Consumer Groups", + "line_width": 1, + "metrics": [ + { + "field": "kafka.consumergroup.consumer_lag", + "id": "0dcb8021-8e6d-11e8-bfab-6f29bad3a6f2", + "type": "max" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "kafka.consumergroup.topic", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Kafka Consumer Group Lag vs Time [Metricbeat Kafka] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "944188f0-8e79-11e8-8fa2-3d5f811fbd0f-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:34.185Z", + "version": "WzM5OTEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kafka/_meta/kibana/7/visualization/9a7576e0-d231-11e8-8766-dbbdc39e7ba9-ecs.json b/metricbeat/module/kafka/_meta/kibana/7/visualization/9a7576e0-d231-11e8-8766-dbbdc39e7ba9-ecs.json new file mode 100644 index 000000000000..0fd4ca2e1099 --- /dev/null +++ b/metricbeat/module/kafka/_meta/kibana/7/visualization/9a7576e0-d231-11e8-8766-dbbdc39e7ba9-ecs.json @@ -0,0 +1,121 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Kafka Consumer Group Clients [Metricbeat Kafka] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Newest Offset", + "field": "kafka.consumergroup.offset" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Consumer group client", + "field": "kafka.consumergroup.client.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_term", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 64 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Topic", + "field": "kafka.topic.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 64 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Partition", + "field": "kafka.partition.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 256 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Kafka Consumer Group Clients [Metricbeat Kafka] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9a7576e0-d231-11e8-8766-dbbdc39e7ba9-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:34.185Z", + "version": "WzM5OTUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kafka/_meta/kibana/7/visualization/b9d12c80-8e63-11e8-8fa2-3d5f811fbd0f-ecs.json b/metricbeat/module/kafka/_meta/kibana/7/visualization/b9d12c80-8e63-11e8-8fa2-3d5f811fbd0f-ecs.json new file mode 100644 index 000000000000..6d93c38faff7 --- /dev/null +++ b/metricbeat/module/kafka/_meta/kibana/7/visualization/b9d12c80-8e63-11e8-8fa2-3d5f811fbd0f-ecs.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Kafka Topic & Consumer Offsets [Metricbeat Kafka] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "8b27e6a0-8e61-11e8-b741-c3e458b74a68" + } + ], + "filter": { + "language": "lucene", + "query": "NOT kafka.topic.name:__consumer_offsets" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "rgba(244,78,59,1)", + "fill": "0.1", + "filter": { + "language": "lucene", + "query": "metricset.name: partition AND kafka.partition.partition.is_leader: true" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Topic Offsets", + "line_width": "0.5", + "metrics": [ + { + "field": "kafka.partition.offset.newest", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "kafka.topic.name", + "terms_order_by": "_term", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,0.52)", + "fill": "0", + "filter": { + "language": "lucene", + "query": "metricset.name: consumergroup" + }, + "formatter": "number", + "id": "d43034c0-8f1e-11e8-8784-cd0acd161a28", + "label": "Consumer Offsets", + "line_width": "1", + "metrics": [ + { + "field": "kafka.consumergroup.offset", + "id": "d43034c1-8f1e-11e8-8784-cd0acd161a28", + "type": "sum" + } + ], + "point_size": "1.5", + "seperate_axis": 0, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "id": "dd41ada0-8f1e-11e8-8784-cd0acd161a28" + } + ], + "split_mode": "terms", + "stacked": "none", + "terms_field": "kafka.consumergroup.id", + "terms_order_by": "_term", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Kafka Topic & Consumer Offsets [Metricbeat Kafka] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b9d12c80-8e63-11e8-8fa2-3d5f811fbd0f-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:34.185Z", + "version": "WzM5ODksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kafka/_meta/kibana/7/visualization/dc89f8d0-8e8e-11e8-8fa2-3d5f811fbd0f-ecs.json b/metricbeat/module/kafka/_meta/kibana/7/visualization/dc89f8d0-8e8e-11e8-8fa2-3d5f811fbd0f-ecs.json new file mode 100644 index 000000000000..7d6d78123ae0 --- /dev/null +++ b/metricbeat/module/kafka/_meta/kibana/7/visualization/dc89f8d0-8e8e-11e8-8fa2-3d5f811fbd0f-ecs.json @@ -0,0 +1,170 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": "Partition Metricset", + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "metricset.name", + "negate": false, + "params": { + "query": "partition", + "type": "phrase" + }, + "type": "phrase", + "value": "partition" + }, + "query": { + "match": { + "metricset.name": { + "query": "partition", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "kafka.topic.name", + "negate": true, + "params": { + "query": "__consumer_offsets", + "type": "phrase" + }, + "type": "phrase", + "value": "__consumer_offsets" + }, + "query": { + "match": { + "kafka.topic.name": { + "query": "__consumer_offsets", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Kafka Metrics [Metricbeat Kafka] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Topics", + "field": "kafka.topic.name" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Brokers", + "field": "kafka.partition.broker.id" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Partitions", + "field": "kafka.partition.topic_id" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "Replicas", + "field": "kafka.partition.topic_broker_id" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 32, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Kafka Metrics [Metricbeat Kafka] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dc89f8d0-8e8e-11e8-8fa2-3d5f811fbd0f-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:34.185Z", + "version": "WzM5OTIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/5e649d60-9901-11e9-ba57-b7ab4e2d4b58.json b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/5e649d60-9901-11e9-ba57-b7ab4e2d4b58.json new file mode 100644 index 000000000000..b3710dfe9dc6 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/5e649d60-9901-11e9-ba57-b7ab4e2d4b58.json @@ -0,0 +1,212 @@ +{ + "attributes": { + "description": "Kubernetes Proxy metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "kubernetes.proxy" + }, + "type": "phrase", + "value": "kubernetes.proxy" + }, + "query": { + "match": { + "event.dataset": { + "query": "kubernetes.proxy", + "type": "phrase" + } + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 23, + "x": 0, + "y": 12 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 25, + "x": 23, + "y": 12 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 9, + "x": 12, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4", + "w": 27, + "x": 21, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "5", + "w": 48, + "x": 0, + "y": 24 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "6", + "w": 48, + "x": 0, + "y": 37 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "7", + "w": 12, + "x": 0, + "y": 0 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Kubernetes] Proxy", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "5e649d60-9901-11e9-ba57-b7ab4e2d4b58", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "e0ddd3e0-98fe-11e9-ba57-b7ab4e2d4b58", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "cac89fb0-9906-11e9-ba57-b7ab4e2d4b58", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "09b404f0-99af-11e9-ba57-b7ab4e2d4b58", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "8c6c2690-9bd8-11e9-9dc8-fd27291d427f", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "b8a24790-9bf0-11e9-9dc8-fd27291d427f", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "ba7bf750-9bf5-11e9-9dc8-fd27291d427f", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "bcb194a0-9bf8-11e9-9dc8-fd27291d427f", + "name": "7:panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:38.365Z", + "version": "WzQwMjcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/97312060-9c1b-11e9-9dc8-fd27291d427f.json b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/97312060-9c1b-11e9-9dc8-fd27291d427f.json new file mode 100644 index 000000000000..5637bb1a8a85 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/97312060-9c1b-11e9-9dc8-fd27291d427f.json @@ -0,0 +1,254 @@ +{ + "attributes": { + "description": "Kubernetes Controller Manager metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "kubernetes.controllermanager" + }, + "type": "phrase", + "value": "kubernetes.controllermanager" + }, + "query": { + "match": { + "event.dataset": { + "query": "kubernetes.controllermanager", + "type": "phrase" + } + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "1", + "w": 11, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "2", + "w": 11, + "x": 11, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "3", + "w": 26, + "x": 22, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "5", + "w": 24, + "x": 0, + "y": 39 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6", + "w": 24, + "x": 24, + "y": 39 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "7", + "w": 24, + "x": 24, + "y": 14 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "8", + "w": 24, + "x": 0, + "y": 27 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "9", + "w": 24, + "x": 24, + "y": 27 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "10", + "w": 24, + "x": 0, + "y": 14 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Kubernetes] Controller Manager", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "97312060-9c1b-11e9-9dc8-fd27291d427f", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "bcb194a0-9bf8-11e9-9dc8-fd27291d427f", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "3dbf6230-9c20-11e9-9dc8-fd27291d427f", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "d86b2da0-9c20-11e9-9dc8-fd27291d427f", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "0ca95350-9c24-11e9-9dc8-fd27291d427f", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "3e1e1fd0-9c27-11e9-9dc8-fd27291d427f", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "2ba628e0-9c2a-11e9-9dc8-fd27291d427f", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "8a95de50-9c38-11e9-9dc8-fd27291d427f", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "485c8550-9c3a-11e9-9dc8-fd27291d427f", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "7d80f790-9d96-11e9-b2ae-49acc4cbcea9", + "name": "10:panel_10", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:36.329Z", + "version": "WzQwMDIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-apiserver.ndjson b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-apiserver.ndjson deleted file mode 100644 index 2ff10e78830e..000000000000 --- a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-apiserver.ndjson +++ /dev/null @@ -1,4 +0,0 @@ -{"attributes":{"description":"Overview of Kubernetes API Server","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"API Server Top clients by number of requests [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"61a13010-5794-11e8-8bd0-2180975e72dd\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Top clients by number of requests (5m)\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.apiserver.request.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"0e6ff4a0-5792-11e8-8bd0-2180975e72dd\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"9e4b8030-5792-11e8-8bd0-2180975e72dd\"}],\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"kubernetes.apiserver.request.client\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"10\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"API Server Top clients by number of requests [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7cbeb750-5794-11e8-afa2-e9067ea62228-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:35.256Z","version":"WzM5OTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"API Server Requests [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(159,5,0,1)\",\"fill\":\"0\",\"filter\":{\"query\":\"NOT (kubernetes.apiserver.request.verb: WATCH or kubernetes.apiserver.request.verb: CONNECT)\",\"language\":\"lucene\"},\"formatter\":\"us,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Avg response time\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.apiserver.request.latency.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"kubernetes.apiserver.request.count\",\"id\":\"a2185e50-57a0-11e8-af57-a1d645d2b569\",\"type\":\"max\"},{\"id\":\"b09133d0-57a0-11e8-af57-a1d645d2b569\",\"script\":\"params.sum / params.count\",\"type\":\"calculation\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"b27c8910-57a0-11e8-af57-a1d645d2b569\",\"name\":\"sum\"},{\"field\":\"a2185e50-57a0-11e8-af57-a1d645d2b569\",\"id\":\"b5fc8810-57a0-11e8-af57-a1d645d2b569\",\"name\":\"count\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} ms\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c0019340-57a1-11e8-a049-ff54cef064a2\",\"label\":\"Requests rate\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.apiserver.request.count\",\"id\":\"c001ba50-57a1-11e8-a049-ff54cef064a2\",\"type\":\"max\"},{\"field\":\"c001ba50-57a1-11e8-a049-ff54cef064a2\",\"id\":\"dc83b390-57a1-11e8-a049-ff54cef064a2\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":1,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"API Server Requests [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ec360ff0-57a0-11e8-afa2-e9067ea62228-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:35.256Z","version":"WzM5OTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"API Server Top clients by resource [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"61a13010-5794-11e8-8bd0-2180975e72dd\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Top clients by number of requests (5m)\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.apiserver.request.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"0e6ff4a0-5792-11e8-8bd0-2180975e72dd\",\"type\":\"derivative\",\"unit\":\"\"}],\"override_index_pattern\":0,\"point_size\":1,\"seperate_axis\":0,\"series_drop_last_bucket\":1,\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"9e4b8030-5792-11e8-8bd0-2180975e72dd\"}],\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"kubernetes.apiserver.request.resource\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"10\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"API Server Top clients by resource [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"95a7f110-57a2-11e8-afa2-e9067ea62228-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:35.256Z","version":"WzQwMDAsMV0="} -{"attributes":{"description":"Kubernetes API server metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":24,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":22},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":22,\"i\":\"3\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":24,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":22},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Metricbeat Kubernetes] API server ECS","version":1},"coreMigrationVersion":"8.0.0","id":"af7225b0-5794-11e8-afa2-e9067ea62228-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"7cbeb750-5794-11e8-afa2-e9067ea62228-ecs","name":"1:panel_1","type":"visualization"},{"id":"ec360ff0-57a0-11e8-afa2-e9067ea62228-ecs","name":"3:panel_3","type":"visualization"},{"id":"95a7f110-57a2-11e8-afa2-e9067ea62228-ecs","name":"4:panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:35.256Z","version":"WzQwMDEsMV0="} diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-controller-manager.ndjson b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-controller-manager.ndjson deleted file mode 100644 index b11a731f52fd..000000000000 --- a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-controller-manager.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Host selector [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"host.hostname\",\"id\":\"1561982488150\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Hostname\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"service.address\",\"id\":\"1561982723711\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Service address\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Host selector [Metricbeat Kubernetes]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"bcb194a0-9bf8-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwMzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Controller Process [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":1,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"30s\",\"markdown\":\"| | |\\n|---|---|\\n|**Days running**|{{ math.started.last.raw }}|\\n|**File descriptors open**|{{ average_of_kubernetes_controllermanager_process_fds_open_count.fds.last.raw }}|\\n|**Resident Memory**|{{ average_of_kubernetes_controllermanager_process_memory_resident_bytes.resident_memory.last.formatted }}|\\n|**Virtual Memory**|{{ average_of_kubernetes_controllermanager_process_memory_virtual_bytes.virtual_memory.last.formatted }}|\\n\",\"markdown_css\":\"#markdown-61ca57f0-469d-11e7-af02-69e470af7417 table,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 tr,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 td,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 th{border:none}\",\"markdown_less\":\"\\ntable, tr, td, th {\\n border: none;\\n}\\n\\n\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.process.started.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"id\":\"ebfdb1c0-9c1c-11e9-b29f-d55be9348723\",\"script\":\"round( (params._timestamp /1000 - params.started) / 86400, 2)\",\"type\":\"math\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"ef30a230-9c1c-11e9-b29f-d55be9348723\",\"name\":\"started\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"started\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"1212ba80-9c1e-11e9-b29f-d55be9348723\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.process.fds.open.count\",\"id\":\"1212ba81-9c1e-11e9-b29f-d55be9348723\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"fds\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"3f3b17a0-9c1e-11e9-b29f-d55be9348723\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.process.memory.resident.bytes\",\"id\":\"3f3b17a1-9c1e-11e9-b29f-d55be9348723\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"resident_memory\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"b1a01b50-9c1f-11e9-b29f-d55be9348723\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.process.memory.virtual.bytes\",\"id\":\"b1a01b51-9c1f-11e9-b29f-d55be9348723\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"virtual_memory\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"markdown\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Controller Process [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3dbf6230-9c20-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Controller HTTP request duration [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(165,228,85,1)\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"P99\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.http.request.duration.us.percentile.99\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"24fb4960-9c22-11e9-b29f-d55be9348723\",\"label\":\"P90\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.http.request.duration.us.percentile.90\",\"id\":\"24fb4961-9c22-11e9-b29f-d55be9348723\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(65,117,0,1)\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"2e397790-9c22-11e9-b29f-d55be9348723\",\"label\":\"P50\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.http.request.duration.us.percentile.50\",\"id\":\"2e397791-9c22-11e9-b29f-d55be9348723\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Controller HTTP request duration [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d86b2da0-9c20-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Controller Longest running processor [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.workqueue.longestrunning.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_direction\":\"desc\",\"terms_field\":\"kubernetes.controllermanager.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Controller Longest running processor [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0ca95350-9c24-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Controller Unfinished jobs sec [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.workqueue.unfinished.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.controllermanager.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Controller Unfinished jobs sec [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3e1e1fd0-9c27-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Controller Memory [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Resident\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.process.memory.resident.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"ac896b30-9c29-11e9-92c1-f7d03186c592\",\"label\":\"Virtual\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.process.memory.virtual.bytes\",\"id\":\"ac896b31-9c29-11e9-92c1-f7d03186c592\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Controller Memory [Metricset Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2ba628e0-9c2a-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Controller Workqueue adds [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.workqueue.adds.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"9b5d85d0-9c38-11e9-92c1-f7d03186c592\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.controllermanager.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Controller Workqueue adds [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8a95de50-9c38-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Controller Workqueue retries [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.workqueue.retries.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"b3107560-9c39-11e9-92c1-f7d03186c592\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_direction\":\"desc\",\"terms_field\":\"kubernetes.controllermanager.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Controller Workqueue retries [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"485c8550-9c3a-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Controller CPU [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"CPU time\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.controllermanager.process.cpu.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"47731390-9d96-11e9-9e81-115d18bcfeaa\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Controller CPU [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7d80f790-9d96-11e9-b2ae-49acc4cbcea9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMTEsMV0="} -{"attributes":{"description":"Kubernetes Controller Manager metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"kubernetes.controllermanager\"},\"type\":\"phrase\",\"value\":\"kubernetes.controllermanager\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"kubernetes.controllermanager\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"1\",\"w\":11,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"2\",\"w\":11,\"x\":11,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"3\",\"w\":26,\"x\":22,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":39},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":39},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":14},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"8\",\"w\":24,\"x\":0,\"y\":27},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"9\",\"w\":24,\"x\":24,\"y\":27},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"10\",\"w\":24,\"x\":0,\"y\":14},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"}]","timeRestore":false,"title":"[Metricbeat Kubernetes] Controller Manager","version":1},"coreMigrationVersion":"8.0.0","id":"97312060-9c1b-11e9-9dc8-fd27291d427f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"bcb194a0-9bf8-11e9-9dc8-fd27291d427f","name":"1:panel_1","type":"visualization"},{"id":"3dbf6230-9c20-11e9-9dc8-fd27291d427f","name":"2:panel_2","type":"visualization"},{"id":"d86b2da0-9c20-11e9-9dc8-fd27291d427f","name":"3:panel_3","type":"visualization"},{"id":"0ca95350-9c24-11e9-9dc8-fd27291d427f","name":"5:panel_5","type":"visualization"},{"id":"3e1e1fd0-9c27-11e9-9dc8-fd27291d427f","name":"6:panel_6","type":"visualization"},{"id":"2ba628e0-9c2a-11e9-9dc8-fd27291d427f","name":"7:panel_7","type":"visualization"},{"id":"8a95de50-9c38-11e9-9dc8-fd27291d427f","name":"8:panel_8","type":"visualization"},{"id":"485c8550-9c3a-11e9-9dc8-fd27291d427f","name":"9:panel_9","type":"visualization"},{"id":"7d80f790-9d96-11e9-b2ae-49acc4cbcea9","name":"10:panel_10","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:36.329Z","version":"WzQwMDIsMV0="} diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-overview.ndjson b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-overview.ndjson deleted file mode 100644 index 3746eaf629b2..000000000000 --- a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-overview.ndjson +++ /dev/null @@ -1,15 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Available pods per deployment [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:state_deployment\"},\"id\":\"117fadf0-30df-11e7-8df8-6d3604a72912\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"64456840-30df-11e7-8df8-6d3604a72912\",\"label\":\"Available pods\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.deployment.replicas.available\",\"id\":\"64456841-30df-11e7-8df8-6d3604a72912\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"53d35ad0-30df-11e7-8df8-6d3604a72912\"}],\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"kubernetes.deployment.name\",\"terms_size\":\"10000\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Available pods per deployment [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"022a54c0-2bf5-11e7-859b-f78b612cde28-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"CPU usage by node [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"12c1f2f0-2bf2-11e7-859b-f78b612cde28\"}],\"bar_color_rules\":[{\"id\":\"1373ddd0-2bf2-11e7-859b-f78b612cde28\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND (metricset.name:container OR metricset.name:state_node)\"},\"gauge_color_rules\":[{\"id\":\"140e4910-2bf2-11e7-859b-f78b612cde28\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"0d5c6b10-2bf2-11e7-859b-f78b612cde28\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.5\",\"formatter\":\"0.0a\",\"id\":\"0d5c9220-2bf2-11e7-859b-f78b612cde28\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.container.cpu.usage.nanocores\",\"id\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"type\":\"sum\"},{\"field\":\"metricset.period\",\"id\":\"8b346300-bf95-11ea-a07c-851701f0d645\",\"type\":\"avg\"},{\"id\":\"25ae6580-bf95-11ea-a07c-851701f0d645\",\"script\":\"params.sum_nanocores / (params._interval / params.avg_period)\",\"type\":\"calculation\",\"variables\":[{\"field\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"id\":\"39e40aa0-bf95-11ea-a07c-851701f0d645\",\"name\":\"sum_nanocores\"},{\"field\":\"8b346300-bf95-11ea-a07c-851701f0d645\",\"id\":\"85213600-bf95-11ea-a07c-851701f0d645\",\"name\":\"avg_period\"}]}],\"override_index_pattern\":0,\"point_size\":1,\"seperate_axis\":0,\"series_interval\":\"10s\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.node.name\",\"terms_order_by\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"terms_size\":\"10000\",\"value_template\":\"{{value}} nanocores\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0\",\"formatter\":\"0.0a\",\"hide_in_legend\":1,\"id\":\"22f65d40-31a7-11e7-84cc-096d2b38e6e5\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.node.cpu.capacity.cores\",\"id\":\"22f65d41-31a7-11e7-84cc-096d2b38e6e5\",\"type\":\"avg\"},{\"id\":\"4af4c390-34d6-11e7-be88-cb6a123dc1bb\",\"script\":\"params.cores * 1000000000\",\"type\":\"calculation\",\"variables\":[{\"field\":\"22f65d41-31a7-11e7-84cc-096d2b38e6e5\",\"id\":\"4cd32080-34d6-11e7-be88-cb6a123dc1bb\",\"name\":\"cores\"}]}],\"override_index_pattern\":0,\"point_size\":\"0\",\"seperate_axis\":0,\"series_interval\":\"10s\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.node.name\",\"terms_order_by\":\"22f65d41-31a7-11e7-84cc-096d2b38e6e5\",\"terms_size\":\"10000\",\"value_template\":\"{{value}} nanocores\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"CPU usage by node [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"44f12b40-2bf4-11e7-859b-f78b612cde28-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Deployments [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"67ee7da0-30e0-11e7-8df8-6d3604a72912\"}],\"bar_color_rules\":[{\"id\":\"68cdba10-30e0-11e7-8df8-6d3604a72912\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:state_deployment\"},\"gauge_color_rules\":[{\"id\":\"69765620-30e0-11e7-8df8-6d3604a72912\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"hide_last_value_indicator\":true,\"id\":\"4c4690b0-30e0-11e7-8df8-6d3604a72912\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"4c4690b1-30e0-11e7-8df8-6d3604a72912\",\"label\":\"Deployments\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.deployment.name\",\"id\":\"4c4690b2-30e0-11e7-8df8-6d3604a72912\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.deployment.name\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"Deployments [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cd059410-2bfb-11e7-859b-f78b612cde28-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Desired pods [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"508ffb30-30d5-11e7-8df8-6d3604a72912\"}],\"bar_color_rules\":[{\"id\":\"674d83b0-30d5-11e7-8df8-6d3604a72912\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:state_deployment\"},\"gauge_color_rules\":[{\"id\":\"50f9b980-30d5-11e7-8df8-6d3604a72912\"}],\"gauge_inner_width\":\"10\",\"gauge_max\":\"5\",\"gauge_style\":\"half\",\"gauge_width\":\"10\",\"hide_last_value_indicator\":true,\"id\":\"2fe9d3b0-30d5-11e7-8df8-6d3604a72912\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"2fe9d3b1-30d5-11e7-8df8-6d3604a72912\",\"label\":\"Desired Pods\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.deployment.replicas.desired\",\"id\":\"54cf79a0-30d5-11e7-8df8-6d3604a72912\",\"type\":\"sum\"}],\"override_index_pattern\":1,\"point_size\":1,\"seperate_axis\":0,\"series_interval\":\"10s\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"Desired pods [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e1018b90-2bfb-11e7-859b-f78b612cde28-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory usage by node [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"12c1f2f0-2bf2-11e7-859b-f78b612cde28\"}],\"bar_color_rules\":[{\"id\":\"1373ddd0-2bf2-11e7-859b-f78b612cde28\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND (metricset.name:container OR metricset.name:state_node)\"},\"gauge_color_rules\":[{\"id\":\"140e4910-2bf2-11e7-859b-f78b612cde28\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"0d5c6b10-2bf2-11e7-859b-f78b612cde28\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"0d5c9220-2bf2-11e7-859b-f78b612cde28\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.container.memory.usage.bytes\",\"id\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"type\":\"sum\"},{\"field\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"id\":\"9f0cf900-1ffb-11e8-81f2-43be86397500\",\"type\":\"cumulative_sum\"},{\"field\":\"9f0cf900-1ffb-11e8-81f2-43be86397500\",\"id\":\"a926e130-1ffb-11e8-81f2-43be86397500\",\"type\":\"derivative\",\"unit\":\"10s\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.node.name\",\"terms_order_by\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"terms_size\":\"10000\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"hide_in_legend\":1,\"id\":\"8ba3b270-31a7-11e7-84cc-096d2b38e6e5\",\"label\":\"Node capacity\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.node.memory.capacity.bytes\",\"id\":\"8ba3b271-31a7-11e7-84cc-096d2b38e6e5\",\"type\":\"sum\"},{\"field\":\"8ba3b271-31a7-11e7-84cc-096d2b38e6e5\",\"id\":\"d1fb2670-1ffb-11e8-81f2-43be86397500\",\"type\":\"cumulative_sum\"},{\"field\":\"d1fb2670-1ffb-11e8-81f2-43be86397500\",\"id\":\"dc8b01f0-1ffb-11e8-81f2-43be86397500\",\"type\":\"derivative\",\"unit\":\"10s\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.node.name\",\"terms_order_by\":\"8ba3b271-31a7-11e7-84cc-096d2b38e6e5\",\"terms_size\":\"10000\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Memory usage by node [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d6564360-2bfc-11e7-859b-f78b612cde28-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Network in by node [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"12c1f2f0-2bf2-11e7-859b-f78b612cde28\"}],\"bar_color_rules\":[{\"id\":\"1373ddd0-2bf2-11e7-859b-f78b612cde28\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:pod\"},\"gauge_color_rules\":[{\"id\":\"140e4910-2bf2-11e7-859b-f78b612cde28\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"0d5c6b10-2bf2-11e7-859b-f78b612cde28\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"0d5c9220-2bf2-11e7-859b-f78b612cde28\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.pod.network.rx.bytes\",\"id\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"type\":\"max\"},{\"field\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"id\":\"494fc310-2bf7-11e7-859b-f78b612cde28\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"494fc310-2bf7-11e7-859b-f78b612cde28\",\"id\":\"37c72a70-3598-11e7-aa4a-8313a0c92a88\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"kubernetes.node.name\",\"terms_order_by\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"terms_size\":\"100000\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Network in by node [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"16fa4470-2bfd-11e7-859b-f78b612cde28-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Network out by node [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"12c1f2f0-2bf2-11e7-859b-f78b612cde28\"}],\"bar_color_rules\":[{\"id\":\"1373ddd0-2bf2-11e7-859b-f78b612cde28\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:pod\"},\"gauge_color_rules\":[{\"id\":\"140e4910-2bf2-11e7-859b-f78b612cde28\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"0d5c6b10-2bf2-11e7-859b-f78b612cde28\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"0d5c9220-2bf2-11e7-859b-f78b612cde28\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.pod.network.tx.bytes\",\"id\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"type\":\"max\"},{\"field\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"id\":\"494fc310-2bf7-11e7-859b-f78b612cde28\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"494fc310-2bf7-11e7-859b-f78b612cde28\",\"id\":\"244c70e0-3598-11e7-aa4a-8313a0c92a88\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"kubernetes.node.name\",\"terms_order_by\":\"0d5c9221-2bf2-11e7-859b-f78b612cde28\",\"terms_size\":\"10000\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Network out by node [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"294546b0-30d6-11e7-8df8-6d3604a72912-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Nodes [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"67ee7da0-30e0-11e7-8df8-6d3604a72912\"}],\"bar_color_rules\":[{\"id\":\"68cdba10-30e0-11e7-8df8-6d3604a72912\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:state_node\"},\"gauge_color_rules\":[{\"id\":\"69765620-30e0-11e7-8df8-6d3604a72912\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"hide_last_value_indicator\":true,\"id\":\"4c4690b0-30e0-11e7-8df8-6d3604a72912\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"4c4690b1-30e0-11e7-8df8-6d3604a72912\",\"label\":\"Nodes\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.node.name\",\"id\":\"4c4690b2-30e0-11e7-8df8-6d3604a72912\",\"type\":\"cardinality\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.deployment.name\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"Nodes [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"408fccf0-30d6-11e7-8df8-6d3604a72912-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top CPU intensive pods [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"802104d0-2bfc-11e7-859b-f78b612cde28\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:container\"},\"hide_last_value_indicator\":true,\"id\":\"5d3692a0-2bfc-11e7-859b-f78b612cde28\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"0.0 a\",\"id\":\"5d3692a1-2bfc-11e7-859b-f78b612cde28\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.container.cpu.usage.core.ns\",\"id\":\"5d3692a2-2bfc-11e7-859b-f78b612cde28\",\"type\":\"max\"},{\"field\":\"5d3692a2-2bfc-11e7-859b-f78b612cde28\",\"id\":\"6c905240-2bfc-11e7-859b-f78b612cde28\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"6c905240-2bfc-11e7-859b-f78b612cde28\",\"id\":\"9a51f710-359d-11e7-aa4a-8313a0c92a88\",\"type\":\"positive_only\",\"unit\":\"\"}],\"offset_time\":\"\",\"override_index_pattern\":0,\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.pod.name\",\"terms_order_by\":\"5d3692a2-2bfc-11e7-859b-f78b612cde28\",\"value_template\":\"{{value}} ns\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false},\"title\":\"Top CPU intensive pods [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"58e644f0-30d6-11e7-8df8-6d3604a72912-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top memory intensive pods [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"802104d0-2bfc-11e7-859b-f78b612cde28\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:container\"},\"hide_last_value_indicator\":true,\"id\":\"5d3692a0-2bfc-11e7-859b-f78b612cde28\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"5d3692a1-2bfc-11e7-859b-f78b612cde28\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.container.memory.usage.bytes\",\"id\":\"5d3692a2-2bfc-11e7-859b-f78b612cde28\",\"type\":\"sum\"},{\"field\":\"5d3692a2-2bfc-11e7-859b-f78b612cde28\",\"id\":\"3972e9f0-256f-11e8-84e6-87221f87ae3b\",\"type\":\"cumulative_sum\"},{\"field\":\"3972e9f0-256f-11e8-84e6-87221f87ae3b\",\"id\":\"3e9fd5a0-256f-11e8-84e6-87221f87ae3b\",\"type\":\"derivative\",\"unit\":\"10s\"}],\"offset_time\":\"\",\"override_index_pattern\":0,\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.pod.name\",\"terms_order_by\":\"5d3692a2-2bfc-11e7-859b-f78b612cde28\",\"terms_size\":\"10\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false},\"title\":\"Top memory intensive pods [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a4c9d360-30df-11e7-8df8-6d3604a72912-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Unavailable pods [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"508ffb30-30d5-11e7-8df8-6d3604a72912\"}],\"bar_color_rules\":[{\"id\":\"674d83b0-30d5-11e7-8df8-6d3604a72912\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:state_deployment\"},\"gauge_color_rules\":[{\"id\":\"50f9b980-30d5-11e7-8df8-6d3604a72912\"}],\"gauge_inner_width\":\"10\",\"gauge_max\":\"\",\"gauge_style\":\"half\",\"gauge_width\":\"10\",\"hide_last_value_indicator\":true,\"id\":\"2fe9d3b0-30d5-11e7-8df8-6d3604a72912\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"2fe9d3b1-30d5-11e7-8df8-6d3604a72912\",\"label\":\"Unavailable Pods\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.deployment.replicas.unavailable\",\"id\":\"54cf79a0-30d5-11e7-8df8-6d3604a72912\",\"type\":\"sum\"}],\"override_index_pattern\":1,\"point_size\":1,\"seperate_axis\":0,\"series_interval\":\"10s\",\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"Unavailable pods [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"174a6ad0-30e0-11e7-8df8-6d3604a72912-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Unavailable pods per deployment [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:state_deployment\"},\"id\":\"117fadf0-30df-11e7-8df8-6d3604a72912\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"64456840-30df-11e7-8df8-6d3604a72912\",\"label\":\"Unavailable pods\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.deployment.replicas.unavailable\",\"id\":\"64456841-30df-11e7-8df8-6d3604a72912\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"53d35ad0-30df-11e7-8df8-6d3604a72912\"}],\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"kubernetes.deployment.name\",\"terms_size\":\"10000\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Unavailable pods per deployment [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7aac4fd0-30e0-11e7-8df8-6d3604a72912-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Available pods [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"508ffb30-30d5-11e7-8df8-6d3604a72912\"}],\"bar_color_rules\":[{\"id\":\"674d83b0-30d5-11e7-8df8-6d3604a72912\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:kubernetes AND metricset.name:state_deployment\"},\"gauge_color_rules\":[{\"id\":\"50f9b980-30d5-11e7-8df8-6d3604a72912\"}],\"gauge_inner_width\":\"10\",\"gauge_max\":\"5\",\"gauge_style\":\"half\",\"gauge_width\":\"10\",\"hide_last_value_indicator\":true,\"id\":\"2fe9d3b0-30d5-11e7-8df8-6d3604a72912\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"2fe9d3b1-30d5-11e7-8df8-6d3604a72912\",\"label\":\"Available Pods\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.deployment.replicas.available\",\"id\":\"54cf79a0-30d5-11e7-8df8-6d3604a72912\",\"type\":\"sum\"}],\"override_index_pattern\":1,\"point_size\":1,\"seperate_axis\":0,\"series_index_pattern\":\"*\",\"series_interval\":\"10s\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"Available pods [Metricbeat Kubernetes] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"da1ff7c0-30ed-11e7-b9e5-2b5b07213ab3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Cluster Filter [Metricbeat Kubernetes] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"orchestrator.cluster.name\",\"id\":\"1626269001600\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Cluster Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Cluster Filter [Metricbeat Kubernetes] ECS\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"d54c65f0-e4a6-11eb-9d53-3b3d1d47c519","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMjYsMV0="} -{"attributes":{"description":"Overview of Kubernetes cluster metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false, \"useMargins\": false}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"1\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"1\",\"panelRefName\":\"panel_1\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"2\",\"w\":24,\"x\":0,\"y\":24},\"panelIndex\":\"2\",\"panelRefName\":\"panel_2\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"5\",\"w\":7,\"x\":9,\"y\":0},\"panelIndex\":\"5\",\"panelRefName\":\"panel_5\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"6\",\"w\":8,\"x\":0,\"y\":12},\"panelIndex\":\"6\",\"panelRefName\":\"panel_6\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":24},\"panelIndex\":\"7\",\"panelRefName\":\"panel_7\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":36},\"panelIndex\":\"8\",\"panelRefName\":\"panel_8\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"9\",\"w\":24,\"x\":0,\"y\":36},\"panelIndex\":\"9\",\"panelRefName\":\"panel_9\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"10\",\"w\":8,\"x\":16,\"y\":0},\"panelIndex\":\"10\",\"panelRefName\":\"panel_10\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"11\",\"w\":24,\"x\":0,\"y\":48},\"panelIndex\":\"11\",\"panelRefName\":\"panel_11\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"12\",\"w\":24,\"x\":24,\"y\":48},\"panelIndex\":\"12\",\"panelRefName\":\"panel_12\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"13\",\"w\":8,\"x\":16,\"y\":12},\"panelIndex\":\"13\",\"panelRefName\":\"panel_13\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"14\",\"w\":24,\"x\":24,\"y\":12},\"panelIndex\":\"14\",\"panelRefName\":\"panel_14\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"15\",\"w\":8,\"x\":8,\"y\":12},\"panelIndex\":\"15\",\"panelRefName\":\"panel_15\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":12,\"i\":\"43e2c937-a06e-4f6c-9e01-e2669110f160\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"43e2c937-a06e-4f6c-9e01-e2669110f160\",\"panelRefName\":\"panel_43e2c937-a06e-4f6c-9e01-e2669110f160\",\"type\":\"visualization\",\"version\":\"7.11.0\"}]","timeRestore":false,"title":"[Metricbeat Kubernetes] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"e0381d10-e4a6-11eb-9d53-3b3d1d47c519","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"022a54c0-2bf5-11e7-859b-f78b612cde28-ecs","name":"1:panel_1","type":"visualization"},{"id":"44f12b40-2bf4-11e7-859b-f78b612cde28-ecs","name":"2:panel_2","type":"visualization"},{"id":"cd059410-2bfb-11e7-859b-f78b612cde28-ecs","name":"5:panel_5","type":"visualization"},{"id":"e1018b90-2bfb-11e7-859b-f78b612cde28-ecs","name":"6:panel_6","type":"visualization"},{"id":"d6564360-2bfc-11e7-859b-f78b612cde28-ecs","name":"7:panel_7","type":"visualization"},{"id":"16fa4470-2bfd-11e7-859b-f78b612cde28-ecs","name":"8:panel_8","type":"visualization"},{"id":"294546b0-30d6-11e7-8df8-6d3604a72912-ecs","name":"9:panel_9","type":"visualization"},{"id":"408fccf0-30d6-11e7-8df8-6d3604a72912-ecs","name":"10:panel_10","type":"visualization"},{"id":"58e644f0-30d6-11e7-8df8-6d3604a72912-ecs","name":"11:panel_11","type":"visualization"},{"id":"a4c9d360-30df-11e7-8df8-6d3604a72912-ecs","name":"12:panel_12","type":"visualization"},{"id":"174a6ad0-30e0-11e7-8df8-6d3604a72912-ecs","name":"13:panel_13","type":"visualization"},{"id":"7aac4fd0-30e0-11e7-8df8-6d3604a72912-ecs","name":"14:panel_14","type":"visualization"},{"id":"da1ff7c0-30ed-11e7-b9e5-2b5b07213ab3-ecs","name":"15:panel_15","type":"visualization"},{"id":"d54c65f0-e4a6-11eb-9d53-3b3d1d47c519","name":"43e2c937-a06e-4f6c-9e01-e2669110f160:panel_43e2c937-a06e-4f6c-9e01-e2669110f160","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:37.319Z","version":"WzQwMTIsMV0="} diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-proxy.ndjson b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-proxy.ndjson deleted file mode 100644 index b76b81a09fc1..000000000000 --- a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-proxy.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Proxy CPU [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"CPU time\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.process.cpu.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"35da60d0-98fe-11e9-b4e1-6dc893538542\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Proxy CPU [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e0ddd3e0-98fe-11e9-ba57-b7ab4e2d4b58","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:38.365Z","version":"WzQwMjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Proxy memory [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Resident\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.process.memory.resident.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"1ea6cee0-9907-11e9-b4e1-6dc893538542\",\"label\":\"Virtual\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.process.memory.virtual.bytes\",\"id\":\"1ea6cee1-9907-11e9-b4e1-6dc893538542\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Proxy memory [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cac89fb0-9906-11e9-ba57-b7ab4e2d4b58","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:38.365Z","version":"WzQwMjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Proxy process [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"30s\",\"markdown\":\"\\n| | |\\n|---|---|\\n|**Days running**|{{ math.started.last.raw }}|\\n|**File descriptors open**|{{ average_of_kubernetes_proxy_process_fds_open_count.fds.last.raw }}|\\n|**Resident Memory**|{{ average_of_kubernetes_proxy_process_memory_resident_bytes.resident_memory.last.formatted }}|\\n|**Virtual Memory**|{{ average_of_kubernetes_proxy_process_memory_virtual_bytes.virtual_memory.last.formatted }}|\\n\\n\",\"markdown_css\":\"#markdown-61ca57f0-469d-11e7-af02-69e470af7417 table,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 tr,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 td,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 th{border:none}\",\"markdown_less\":\"\\ntable, tr, td, th {\\n border: none;\\n}\\n\\n\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.process.started.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"script\":\"\",\"type\":\"max\",\"variables\":[{\"id\":\"1bbc4a20-99ac-11e9-8beb-c3bf9b9dfc43\",\"name\":\"v\"}]},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"1f34f620-99ac-11e9-8beb-c3bf9b9dfc43\",\"script\":\"round( (params._timestamp /1000 - params.started) / 86400, 2)\",\"type\":\"math\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"1f371900-99ac-11e9-8beb-c3bf9b9dfc43\",\"name\":\"started\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"started\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"cc3b1700-99ac-11e9-8beb-c3bf9b9dfc43\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.process.fds.open.count\",\"id\":\"cc3b1701-99ac-11e9-8beb-c3bf9b9dfc43\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"fds\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"da1b1270-99ad-11e9-8beb-c3bf9b9dfc43\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.process.memory.resident.bytes\",\"id\":\"da1b1271-99ad-11e9-8beb-c3bf9b9dfc43\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"resident_memory\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"50f54000-99ae-11e9-8beb-c3bf9b9dfc43\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.process.memory.virtual.bytes\",\"id\":\"50f54001-99ae-11e9-8beb-c3bf9b9dfc43\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"virtual_memory\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"markdown\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Proxy process [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"09b404f0-99af-11e9-ba57-b7ab4e2d4b58","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:38.365Z","version":"WzQwMzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Proxy HTTP request duration [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(165,228,85,1)\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"05a03f20-9bd8-11e9-871d-d3c7d4c337ef\",\"label\":\"P99\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.http.request.duration.us.percentile.99\",\"id\":\"05a06630-9bd8-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"dc0faec0-9bd7-11e9-871d-d3c7d4c337ef\",\"label\":\"P90\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.http.request.duration.us.percentile.90\",\"id\":\"dc0faec1-9bd7-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(65,117,0,1)\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"P50\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.http.request.duration.us.percentile.50\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Proxy HTTP request duration [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8c6c2690-9bd8-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:38.365Z","version":"WzQwMzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Proxy network programming [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4fb3cbb0-9be5-11e9-871d-d3c7d4c337ef\"}],\"bar_color_rules\":[{\"id\":\"4b459c20-9be5-11e9-871d-d3c7d4c337ef\"}],\"gauge_color_rules\":[{\"id\":\"4de1cad0-9be5-11e9-871d-d3c7d4c337ef\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(63,112,2,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Under 16ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.networkprogramming.duration.us.bucket.16000\",\"id\":\"4dbb3a90-9be6-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"},{\"field\":\"4dbb3a90-9be6-11e9-871d-d3c7d4c337ef\",\"id\":\"189688a0-9be7-11e9-871d-d3c7d4c337ef\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(138,223,24,1)\",\"fill\":\"0.4\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"a60dbe60-9be7-11e9-871d-d3c7d4c337ef\",\"label\":\"Under 512ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.networkprogramming.duration.us.bucket.512000\",\"id\":\"a60dbe61-9be7-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"},{\"field\":\"a60dbe61-9be7-11e9-871d-d3c7d4c337ef\",\"id\":\"b55a1080-9be7-11e9-871d-d3c7d4c337ef\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":\"0.4\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"c5cc4f90-9be8-11e9-871d-d3c7d4c337ef\",\"label\":\"Under 1024 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.networkprogramming.duration.us.bucket.1024000\",\"id\":\"c5cc4f91-9be8-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"},{\"field\":\"c5cc4f91-9be8-11e9-871d-d3c7d4c337ef\",\"id\":\"f17cb2b0-9be8-11e9-871d-d3c7d4c337ef\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"e0901380-9be7-11e9-871d-d3c7d4c337ef\",\"label\":\"Under 4096 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.networkprogramming.duration.us.bucket.4096000\",\"id\":\"e0901381-9be7-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"},{\"field\":\"e0901381-9be7-11e9-871d-d3c7d4c337ef\",\"id\":\"f2b6fce0-9be7-11e9-871d-d3c7d4c337ef\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"882fa5a0-9be9-11e9-871d-d3c7d4c337ef\",\"label\":\"Under 8192 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.networkprogramming.duration.us.bucket.8192000\",\"id\":\"882fccb0-9be9-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"},{\"field\":\"882fccb0-9be9-11e9-871d-d3c7d4c337ef\",\"id\":\"9adb9d80-9be9-11e9-871d-d3c7d4c337ef\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(209,119,103,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"86549550-9bef-11e9-871d-d3c7d4c337ef\",\"label\":\"Under 16384 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.networkprogramming.duration.us.bucket.16384000\",\"id\":\"86549551-9bef-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"},{\"field\":\"86549551-9bef-11e9-871d-d3c7d4c337ef\",\"id\":\"86549552-9bef-11e9-871d-d3c7d4c337ef\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c66bf580-9be9-11e9-871d-d3c7d4c337ef\",\"label\":\"All\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.networkprogramming.duration.us.bucket.+Inf\",\"id\":\"c66bf581-9be9-11e9-871d-d3c7d4c337ef\",\"type\":\"avg\"},{\"field\":\"c66bf581-9be9-11e9-871d-d3c7d4c337ef\",\"id\":\"d48b3950-9be9-11e9-871d-d3c7d4c337ef\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Proxy network programming [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b8a24790-9bf0-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:38.365Z","version":"WzQwMzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Proxy sync rules [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(63,112,2,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Under 16 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.rules.duration.us.bucket.16000\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"038a94d0-9bf4-11e9-9f03-d58417b2a60d\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(138,223,24,1)\",\"fill\":\"0.4\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"250daed0-9bf4-11e9-9f03-d58417b2a60d\",\"label\":\"Under 512 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.rules.duration.us.bucket.512000\",\"id\":\"250dd5e0-9bf4-11e9-9f03-d58417b2a60d\",\"type\":\"avg\"},{\"field\":\"250dd5e0-9bf4-11e9-9f03-d58417b2a60d\",\"id\":\"250dd5e1-9bf4-11e9-9f03-d58417b2a60d\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"744141b0-9bf4-11e9-9f03-d58417b2a60d\",\"label\":\"Under 1024 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.rules.duration.us.bucket.1024000\",\"id\":\"744141b1-9bf4-11e9-9f03-d58417b2a60d\",\"type\":\"avg\"},{\"field\":\"744141b1-9bf4-11e9-9f03-d58417b2a60d\",\"id\":\"744141b2-9bf4-11e9-9f03-d58417b2a60d\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"e4454060-9bf4-11e9-9f03-d58417b2a60d\",\"label\":\"Under 4096 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.rules.duration.us.bucket.4096000\",\"id\":\"e4454061-9bf4-11e9-9f03-d58417b2a60d\",\"type\":\"avg\"},{\"field\":\"e4454061-9bf4-11e9-9f03-d58417b2a60d\",\"id\":\"e4456770-9bf4-11e9-9f03-d58417b2a60d\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0.1\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"1ac14f80-9bf5-11e9-9f03-d58417b2a60d\",\"label\":\"Under 8192 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.rules.duration.us.bucket.8192000\",\"id\":\"1ac17690-9bf5-11e9-9f03-d58417b2a60d\",\"type\":\"avg\"},{\"field\":\"1ac17690-9bf5-11e9-9f03-d58417b2a60d\",\"id\":\"1ac17691-9bf5-11e9-9f03-d58417b2a60d\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(209,119,103,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"3cbf17c0-9bf5-11e9-9f03-d58417b2a60d\",\"label\":\"Under 16384 ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.rules.duration.us.bucket.16384000\",\"id\":\"3cbf17c1-9bf5-11e9-9f03-d58417b2a60d\",\"type\":\"avg\"},{\"field\":\"3cbf17c1-9bf5-11e9-9f03-d58417b2a60d\",\"id\":\"3cbf17c2-9bf5-11e9-9f03-d58417b2a60d\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"58fb7c80-9bf5-11e9-9f03-d58417b2a60d\",\"label\":\"All\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.proxy.sync.rules.duration.us.bucket.+Inf\",\"id\":\"58fb7c81-9bf5-11e9-9f03-d58417b2a60d\",\"type\":\"avg\"},{\"field\":\"58fb7c81-9bf5-11e9-9f03-d58417b2a60d\",\"id\":\"58fb7c82-9bf5-11e9-9f03-d58417b2a60d\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Proxy sync rules [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ba7bf750-9bf5-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:38.365Z","version":"WzQwMzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Host selector [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"host.hostname\",\"id\":\"1561982488150\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Hostname\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"service.address\",\"id\":\"1561982723711\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Service address\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Host selector [Metricbeat Kubernetes]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"bcb194a0-9bf8-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwMzYsMV0="} -{"attributes":{"description":"Kubernetes Proxy metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"kubernetes.proxy\"},\"type\":\"phrase\",\"value\":\"kubernetes.proxy\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"kubernetes.proxy\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"1\",\"w\":23,\"x\":0,\"y\":12},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"2\",\"w\":25,\"x\":23,\"y\":12},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":9,\"x\":12,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"4\",\"w\":27,\"x\":21,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":24},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":37},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"7\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Metricbeat Kubernetes] Proxy","version":1},"coreMigrationVersion":"8.0.0","id":"5e649d60-9901-11e9-ba57-b7ab4e2d4b58","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"e0ddd3e0-98fe-11e9-ba57-b7ab4e2d4b58","name":"1:panel_1","type":"visualization"},{"id":"cac89fb0-9906-11e9-ba57-b7ab4e2d4b58","name":"2:panel_2","type":"visualization"},{"id":"09b404f0-99af-11e9-ba57-b7ab4e2d4b58","name":"3:panel_3","type":"visualization"},{"id":"8c6c2690-9bd8-11e9-9dc8-fd27291d427f","name":"4:panel_4","type":"visualization"},{"id":"b8a24790-9bf0-11e9-9dc8-fd27291d427f","name":"5:panel_5","type":"visualization"},{"id":"ba7bf750-9bf5-11e9-9dc8-fd27291d427f","name":"6:panel_6","type":"visualization"},{"id":"bcb194a0-9bf8-11e9-9dc8-fd27291d427f","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:38.365Z","version":"WzQwMjcsMV0="} diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-scheduler.ndjson b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-scheduler.ndjson deleted file mode 100644 index f4e931562cdd..000000000000 --- a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/Metricbeat-kubernetes-scheduler.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Host selector [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"host.hostname\",\"id\":\"1561982488150\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Hostname\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"service.address\",\"id\":\"1561982723711\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Service address\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Host selector [Metricbeat Kubernetes]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"bcb194a0-9bf8-11e9-9dc8-fd27291d427f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwMzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Process summary [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":1,\"filter\":{\"query\":\"_exists_:\\\"kubernetes.scheduler.process.started.sec\\\"\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"30s\",\"markdown\":\"| | |\\n|---|---|\\n|**Days running**|{{ math.started.last.raw }}|\\n|**File descriptors open**|{{ max_of_kubernetes_scheduler_process_fds_open_count.fds.last.raw }}|\\n|**Resident Memory**|{{ max_of_kubernetes_scheduler_process_memory_resident_bytes.resident_memory.last.formatted }}|\\n|**Virtual Memory**|{{ max_of_kubernetes_scheduler_process_memory_virtual_bytes.virtual_memory.last.formatted }}|\\n\",\"markdown_css\":\"#markdown-61ca57f0-469d-11e7-af02-69e470af7417 table,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 tr,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 td,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 th{border:none}\",\"markdown_less\":\"\\ntable, tr, td, th {\\n border: none;\\n}\\n\\n\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.process.started.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"id\":\"94b52370-9c95-11e9-87bc-455cc45f013a\",\"script\":\"round( (params._timestamp /1000 - params.started) / 86400, 2)\",\"type\":\"math\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"97cc0060-9c95-11e9-87bc-455cc45f013a\",\"name\":\"started\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"started\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a8475ca0-9c95-11e9-87bc-455cc45f013a\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.process.fds.open.count\",\"id\":\"a8475ca1-9c95-11e9-87bc-455cc45f013a\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"fds\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"cdc6d190-9c95-11e9-87bc-455cc45f013a\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.process.memory.resident.bytes\",\"id\":\"cdc6d191-9c95-11e9-87bc-455cc45f013a\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"resident_memory\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"dfa0fa80-9c95-11e9-87bc-455cc45f013a\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.process.memory.virtual.bytes\",\"id\":\"dfa0fa81-9c95-11e9-87bc-455cc45f013a\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"var_name\":\"virtual_memory\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"markdown\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Process summary [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"826d80c0-9c97-11e9-94fd-c91206cd5249","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwMzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Scheduler HTTP request duration [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(165,228,85,1)\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"P99\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.http.request.duration.us.percentile.99\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"708a5a50-9c9b-11e9-b248-53caaa33a2c5\",\"label\":\"P90\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.http.request.duration.us.percentile.90\",\"id\":\"708a8160-9c9b-11e9-b248-53caaa33a2c5\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(65,117,0,1)\",\"fill\":0.5,\"formatter\":\"us,ms,2\",\"id\":\"9ba449d0-9c9b-11e9-b248-53caaa33a2c5\",\"label\":\"P50\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.http.request.duration.us.percentile.50\",\"id\":\"9ba449d1-9c9b-11e9-b248-53caaa33a2c5\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Scheduler HTTP request duration [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"15bd4420-9c9b-11e9-94fd-c91206cd5249","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwMzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Scheduler end to end scheduling duration [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(63,112,2,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Under 16ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.scheduling.e2e.duration.us.bucket.16000\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"2a21d690-9c9d-11e9-8174-4589c2c40897\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(138,223,24,1)\",\"fill\":\"0.4\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"a0344a80-9ca1-11e9-9b2f-4dae0cc2bdf1\",\"label\":\"Under 512ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.scheduling.e2e.duration.us.bucket.512000\",\"id\":\"a0347190-9ca1-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"avg\"},{\"field\":\"a0347190-9ca1-11e9-9b2f-4dae0cc2bdf1\",\"id\":\"9a865d10-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"c456c780-9ca1-11e9-9b2f-4dae0cc2bdf1\",\"label\":\"Under 1024ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.scheduling.e2e.duration.us.bucket.1024000\",\"id\":\"c456c781-9ca1-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"avg\"},{\"field\":\"c456c781-9ca1-11e9-9b2f-4dae0cc2bdf1\",\"id\":\"a77cd850-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"127a9810-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"label\":\"Under 4096ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.scheduling.e2e.duration.us.bucket.4096000\",\"id\":\"127a9811-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"avg\"},{\"field\":\"127a9811-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"id\":\"b48a0fe0-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0.1\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"6a2ba130-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"label\":\"Under 8192ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.scheduling.e2e.duration.us.bucket.8192000\",\"id\":\"6a2ba131-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"avg\"},{\"field\":\"6a2ba131-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"id\":\"c727fe00-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(209,119,103,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"f93a66e0-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"label\":\"Under 16384ms\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.scheduling.e2e.duration.us.bucket.16384000\",\"id\":\"f93a66e1-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"avg\"},{\"field\":\"f93a66e1-9ca2-11e9-9b2f-4dae0cc2bdf1\",\"id\":\"ce42d700-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"310452c0-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"label\":\"All\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.scheduling.e2e.duration.us.bucket.+Inf\",\"id\":\"310452c1-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"avg\"},{\"field\":\"310452c1-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"id\":\"e0692420-9ca3-11e9-9b2f-4dae0cc2bdf1\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Scheduler end to end scheduling duration [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d9fc1b80-9c9c-11e9-94fd-c91206cd5249","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwMzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Scheduler scheduling attempts [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Attempts\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.scheduling.pod.attempts.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"18aae5d0-9ca9-11e9-b8ef-3ddf5d748ddb\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"kubernetes.scheduler.result\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Scheduler scheduling attempts [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"95595810-9ca8-11e9-94fd-c91206cd5249","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwNDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Scheduler CPU [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"CPU time\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.process.cpu.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"11331120-9d98-11e9-9e81-115d18bcfeaa\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Scheduler CPU [Metricbeat Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"382ace30-9d98-11e9-b2ae-49acc4cbcea9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwNDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Scheduler Memory [Metricbeat Kubernetes]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Resident\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.process.memory.resident.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"a14defa0-9d98-11e9-9e81-115d18bcfeaa\",\"label\":\"Virtual\",\"line_width\":1,\"metrics\":[{\"field\":\"kubernetes.scheduler.process.memory.virtual.bytes\",\"id\":\"a14defa1-9d98-11e9-9e81-115d18bcfeaa\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Scheduler Memory [Metricset Kubernetes]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"84d9b200-9d98-11e9-b2ae-49acc4cbcea9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwNDIsMV0="} -{"attributes":{"description":"Kubernetes Scheduler metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"kubernetes.scheduler\"},\"type\":\"phrase\",\"value\":\"kubernetes.scheduler\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"kubernetes.scheduler\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"1\",\"w\":14,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"2\",\"w\":11,\"x\":14,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"3\",\"w\":23,\"x\":25,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"4\",\"w\":24,\"x\":0,\"y\":29},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":29},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":14},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":14},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Metricbeat Kubernetes] Scheduler","version":1},"coreMigrationVersion":"8.0.0","id":"f5ab5510-9c94-11e9-94fd-c91206cd5249","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"bcb194a0-9bf8-11e9-9dc8-fd27291d427f","name":"1:panel_1","type":"visualization"},{"id":"826d80c0-9c97-11e9-94fd-c91206cd5249","name":"2:panel_2","type":"visualization"},{"id":"15bd4420-9c9b-11e9-94fd-c91206cd5249","name":"3:panel_3","type":"visualization"},{"id":"d9fc1b80-9c9c-11e9-94fd-c91206cd5249","name":"4:panel_4","type":"visualization"},{"id":"95595810-9ca8-11e9-94fd-c91206cd5249","name":"5:panel_5","type":"visualization"},{"id":"382ace30-9d98-11e9-b2ae-49acc4cbcea9","name":"6:panel_6","type":"visualization"},{"id":"84d9b200-9d98-11e9-b2ae-49acc4cbcea9","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:39.447Z","version":"WzQwMzUsMV0="} diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/af7225b0-5794-11e8-afa2-e9067ea62228-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/af7225b0-5794-11e8-afa2-e9067ea62228-ecs.json new file mode 100644 index 000000000000..421c4780890d --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/af7225b0-5794-11e8-afa2-e9067ea62228-ecs.json @@ -0,0 +1,100 @@ +{ + "attributes": { + "description": "Kubernetes API server metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 24, + "i": "1", + "w": 24, + "x": 0, + "y": 22 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 22, + "i": "3", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 24, + "i": "4", + "w": 24, + "x": 24, + "y": 22 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Kubernetes] API server ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "af7225b0-5794-11e8-afa2-e9067ea62228-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "7cbeb750-5794-11e8-afa2-e9067ea62228-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "ec360ff0-57a0-11e8-afa2-e9067ea62228-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "95a7f110-57a2-11e8-afa2-e9067ea62228-ecs", + "name": "4:panel_4", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:35.256Z", + "version": "WzQwMDEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/e0381d10-e4a6-11eb-9d53-3b3d1d47c519.json b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/e0381d10-e4a6-11eb-9d53-3b3d1d47c519.json new file mode 100644 index 000000000000..5cd115dd930d --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/e0381d10-e4a6-11eb-9d53-3b3d1d47c519.json @@ -0,0 +1,330 @@ +{ + "attributes": { + "description": "Overview of Kubernetes cluster metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "useMargins": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 24, + "x": 0, + "y": 24 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "5", + "w": 7, + "x": 9, + "y": 0 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6", + "w": 8, + "x": 0, + "y": 12 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "7", + "w": 24, + "x": 24, + "y": 24 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "8", + "w": 24, + "x": 24, + "y": 36 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "9", + "w": 24, + "x": 0, + "y": 36 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "10", + "w": 8, + "x": 16, + "y": 0 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "11", + "w": 24, + "x": 0, + "y": 48 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "12", + "w": 24, + "x": 24, + "y": 48 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "13", + "w": 8, + "x": 16, + "y": 12 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "14", + "w": 24, + "x": 24, + "y": 12 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "15", + "w": 8, + "x": 8, + "y": 12 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "43e2c937-a06e-4f6c-9e01-e2669110f160", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "43e2c937-a06e-4f6c-9e01-e2669110f160", + "panelRefName": "panel_43e2c937-a06e-4f6c-9e01-e2669110f160", + "type": "visualization", + "version": "7.11.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Kubernetes] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "e0381d10-e4a6-11eb-9d53-3b3d1d47c519", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "022a54c0-2bf5-11e7-859b-f78b612cde28-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "44f12b40-2bf4-11e7-859b-f78b612cde28-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "cd059410-2bfb-11e7-859b-f78b612cde28-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "e1018b90-2bfb-11e7-859b-f78b612cde28-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "d6564360-2bfc-11e7-859b-f78b612cde28-ecs", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "16fa4470-2bfd-11e7-859b-f78b612cde28-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "294546b0-30d6-11e7-8df8-6d3604a72912-ecs", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "408fccf0-30d6-11e7-8df8-6d3604a72912-ecs", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "58e644f0-30d6-11e7-8df8-6d3604a72912-ecs", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "a4c9d360-30df-11e7-8df8-6d3604a72912-ecs", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "174a6ad0-30e0-11e7-8df8-6d3604a72912-ecs", + "name": "13:panel_13", + "type": "visualization" + }, + { + "id": "7aac4fd0-30e0-11e7-8df8-6d3604a72912-ecs", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "da1ff7c0-30ed-11e7-b9e5-2b5b07213ab3-ecs", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "d54c65f0-e4a6-11eb-9d53-3b3d1d47c519", + "name": "43e2c937-a06e-4f6c-9e01-e2669110f160:panel_43e2c937-a06e-4f6c-9e01-e2669110f160", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:37.319Z", + "version": "WzQwMTIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/f5ab5510-9c94-11e9-94fd-c91206cd5249.json b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/f5ab5510-9c94-11e9-94fd-c91206cd5249.json new file mode 100644 index 000000000000..fe89399451c3 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/dashboard/f5ab5510-9c94-11e9-94fd-c91206cd5249.json @@ -0,0 +1,212 @@ +{ + "attributes": { + "description": "Kubernetes Scheduler metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "kubernetes.scheduler" + }, + "type": "phrase", + "value": "kubernetes.scheduler" + }, + "query": { + "match": { + "event.dataset": { + "query": "kubernetes.scheduler", + "type": "phrase" + } + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "1", + "w": 14, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "2", + "w": 11, + "x": 14, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "3", + "w": 23, + "x": 25, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "4", + "w": 24, + "x": 0, + "y": 29 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "5", + "w": 24, + "x": 24, + "y": 29 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "6", + "w": 24, + "x": 0, + "y": 14 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "7", + "w": 24, + "x": 24, + "y": 14 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Kubernetes] Scheduler", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "f5ab5510-9c94-11e9-94fd-c91206cd5249", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "bcb194a0-9bf8-11e9-9dc8-fd27291d427f", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "826d80c0-9c97-11e9-94fd-c91206cd5249", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "15bd4420-9c9b-11e9-94fd-c91206cd5249", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "d9fc1b80-9c9c-11e9-94fd-c91206cd5249", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "95595810-9ca8-11e9-94fd-c91206cd5249", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "382ace30-9d98-11e9-b2ae-49acc4cbcea9", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "84d9b200-9d98-11e9-b2ae-49acc4cbcea9", + "name": "7:panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:39.447Z", + "version": "WzQwMzUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/022a54c0-2bf5-11e7-859b-f78b612cde28-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/022a54c0-2bf5-11e7-859b-f78b612cde28-ecs.json new file mode 100644 index 000000000000..b5ef6878cca9 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/022a54c0-2bf5-11e7-859b-f78b612cde28-ecs.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Available pods per deployment [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "filter": { + "language": "lucene", + "query": "event.module:kubernetes AND metricset.name:state_deployment" + }, + "id": "117fadf0-30df-11e7-8df8-6d3604a72912", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "64456840-30df-11e7-8df8-6d3604a72912", + "label": "Available pods", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.deployment.replicas.available", + "id": "64456841-30df-11e7-8df8-6d3604a72912", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "id": "53d35ad0-30df-11e7-8df8-6d3604a72912" + } + ], + "split_mode": "terms", + "stacked": "stacked", + "terms_field": "kubernetes.deployment.name", + "terms_size": "10000" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Available pods per deployment [Metricbeat Kubernetes] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "022a54c0-2bf5-11e7-859b-f78b612cde28-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:37.319Z", + "version": "WzQwMTMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/09b404f0-99af-11e9-ba57-b7ab4e2d4b58.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/09b404f0-99af-11e9-ba57-b7ab4e2d4b58.json new file mode 100644 index 000000000000..b21d603c3025 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/09b404f0-99af-11e9-ba57-b7ab4e2d4b58.json @@ -0,0 +1,156 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Proxy process [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "30s", + "markdown": "\n| | |\n|---|---|\n|**Days running**|{{ math.started.last.raw }}|\n|**File descriptors open**|{{ average_of_kubernetes_proxy_process_fds_open_count.fds.last.raw }}|\n|**Resident Memory**|{{ average_of_kubernetes_proxy_process_memory_resident_bytes.resident_memory.last.formatted }}|\n|**Virtual Memory**|{{ average_of_kubernetes_proxy_process_memory_virtual_bytes.virtual_memory.last.formatted }}|\n\n", + "markdown_css": "#markdown-61ca57f0-469d-11e7-af02-69e470af7417 table,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 tr,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 td,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 th{border:none}", + "markdown_less": "\ntable, tr, td, th {\n border: none;\n}\n\n", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.process.started.sec", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "script": "", + "type": "max", + "variables": [ + { + "id": "1bbc4a20-99ac-11e9-8beb-c3bf9b9dfc43", + "name": "v" + } + ] + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "1f34f620-99ac-11e9-8beb-c3bf9b9dfc43", + "script": "round( (params._timestamp /1000 - params.started) / 86400, 2)", + "type": "math", + "variables": [ + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "1f371900-99ac-11e9-8beb-c3bf9b9dfc43", + "name": "started" + } + ] + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "var_name": "started" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "cc3b1700-99ac-11e9-8beb-c3bf9b9dfc43", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.process.fds.open.count", + "id": "cc3b1701-99ac-11e9-8beb-c3bf9b9dfc43", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "var_name": "fds" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "da1b1270-99ad-11e9-8beb-c3bf9b9dfc43", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.process.memory.resident.bytes", + "id": "da1b1271-99ad-11e9-8beb-c3bf9b9dfc43", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "var_name": "resident_memory" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "50f54000-99ae-11e9-8beb-c3bf9b9dfc43", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.process.memory.virtual.bytes", + "id": "50f54001-99ae-11e9-8beb-c3bf9b9dfc43", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "var_name": "virtual_memory" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "markdown", + "use_kibana_indexes": false + }, + "title": "Proxy process [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "09b404f0-99af-11e9-ba57-b7ab4e2d4b58", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:38.365Z", + "version": "WzQwMzAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/0ca95350-9c24-11e9-9dc8-fd27291d427f.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/0ca95350-9c24-11e9-9dc8-fd27291d427f.json new file mode 100644 index 000000000000..6e14a92c191d --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/0ca95350-9c24-11e9-9dc8-fd27291d427f.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Controller Longest running processor [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.controllermanager.workqueue.longestrunning.sec", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_direction": "desc", + "terms_field": "kubernetes.controllermanager.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Controller Longest running processor [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0ca95350-9c24-11e9-9dc8-fd27291d427f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:36.329Z", + "version": "WzQwMDYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/15bd4420-9c9b-11e9-94fd-c91206cd5249.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/15bd4420-9c9b-11e9-94fd-c91206cd5249.json new file mode 100644 index 000000000000..393998266728 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/15bd4420-9c9b-11e9-94fd-c91206cd5249.json @@ -0,0 +1,106 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Scheduler HTTP request duration [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(165,228,85,1)", + "fill": 0.5, + "formatter": "us,ms,2", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "P99", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.http.request.duration.us.percentile.99", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "us,ms,2", + "id": "708a5a50-9c9b-11e9-b248-53caaa33a2c5", + "label": "P90", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.http.request.duration.us.percentile.90", + "id": "708a8160-9c9b-11e9-b248-53caaa33a2c5", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(65,117,0,1)", + "fill": 0.5, + "formatter": "us,ms,2", + "id": "9ba449d0-9c9b-11e9-b248-53caaa33a2c5", + "label": "P50", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.http.request.duration.us.percentile.50", + "id": "9ba449d1-9c9b-11e9-b248-53caaa33a2c5", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Scheduler HTTP request duration [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "15bd4420-9c9b-11e9-94fd-c91206cd5249", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:39.447Z", + "version": "WzQwMzgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/16fa4470-2bfd-11e7-859b-f78b612cde28-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/16fa4470-2bfd-11e7-859b-f78b612cde28-ecs.json new file mode 100644 index 000000000000..49dc5a017623 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/16fa4470-2bfd-11e7-859b-f78b612cde28-ecs.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Network in by node [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "12c1f2f0-2bf2-11e7-859b-f78b612cde28" + } + ], + "bar_color_rules": [ + { + "id": "1373ddd0-2bf2-11e7-859b-f78b612cde28" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:kubernetes AND metricset.name:pod" + }, + "gauge_color_rules": [ + { + "id": "140e4910-2bf2-11e7-859b-f78b612cde28" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "0d5c6b10-2bf2-11e7-859b-f78b612cde28", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "0d5c9220-2bf2-11e7-859b-f78b612cde28", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.pod.network.rx.bytes", + "id": "0d5c9221-2bf2-11e7-859b-f78b612cde28", + "type": "max" + }, + { + "field": "0d5c9221-2bf2-11e7-859b-f78b612cde28", + "id": "494fc310-2bf7-11e7-859b-f78b612cde28", + "type": "derivative", + "unit": "" + }, + { + "field": "494fc310-2bf7-11e7-859b-f78b612cde28", + "id": "37c72a70-3598-11e7-aa4a-8313a0c92a88", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "stacked", + "terms_field": "kubernetes.node.name", + "terms_order_by": "0d5c9221-2bf2-11e7-859b-f78b612cde28", + "terms_size": "100000" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Network in by node [Metricbeat Kubernetes] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "16fa4470-2bfd-11e7-859b-f78b612cde28-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:37.319Z", + "version": "WzQwMTgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/174a6ad0-30e0-11e7-8df8-6d3604a72912-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/174a6ad0-30e0-11e7-8df8-6d3604a72912-ecs.json new file mode 100644 index 000000000000..12a7a5a03b62 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/174a6ad0-30e0-11e7-8df8-6d3604a72912-ecs.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Unavailable pods [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "508ffb30-30d5-11e7-8df8-6d3604a72912" + } + ], + "bar_color_rules": [ + { + "id": "674d83b0-30d5-11e7-8df8-6d3604a72912" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:kubernetes AND metricset.name:state_deployment" + }, + "gauge_color_rules": [ + { + "id": "50f9b980-30d5-11e7-8df8-6d3604a72912" + } + ], + "gauge_inner_width": "10", + "gauge_max": "", + "gauge_style": "half", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "2fe9d3b0-30d5-11e7-8df8-6d3604a72912", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "2fe9d3b1-30d5-11e7-8df8-6d3604a72912", + "label": "Unavailable Pods", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.deployment.replicas.unavailable", + "id": "54cf79a0-30d5-11e7-8df8-6d3604a72912", + "type": "sum" + } + ], + "override_index_pattern": 1, + "point_size": 1, + "seperate_axis": 0, + "series_interval": "10s", + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Unavailable pods [Metricbeat Kubernetes] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "174a6ad0-30e0-11e7-8df8-6d3604a72912-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:37.319Z", + "version": "WzQwMjMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/294546b0-30d6-11e7-8df8-6d3604a72912-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/294546b0-30d6-11e7-8df8-6d3604a72912-ecs.json new file mode 100644 index 000000000000..a69d3685899f --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/294546b0-30d6-11e7-8df8-6d3604a72912-ecs.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Network out by node [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "12c1f2f0-2bf2-11e7-859b-f78b612cde28" + } + ], + "bar_color_rules": [ + { + "id": "1373ddd0-2bf2-11e7-859b-f78b612cde28" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:kubernetes AND metricset.name:pod" + }, + "gauge_color_rules": [ + { + "id": "140e4910-2bf2-11e7-859b-f78b612cde28" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "0d5c6b10-2bf2-11e7-859b-f78b612cde28", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "0d5c9220-2bf2-11e7-859b-f78b612cde28", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.pod.network.tx.bytes", + "id": "0d5c9221-2bf2-11e7-859b-f78b612cde28", + "type": "max" + }, + { + "field": "0d5c9221-2bf2-11e7-859b-f78b612cde28", + "id": "494fc310-2bf7-11e7-859b-f78b612cde28", + "type": "derivative", + "unit": "" + }, + { + "field": "494fc310-2bf7-11e7-859b-f78b612cde28", + "id": "244c70e0-3598-11e7-aa4a-8313a0c92a88", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "stacked", + "terms_field": "kubernetes.node.name", + "terms_order_by": "0d5c9221-2bf2-11e7-859b-f78b612cde28", + "terms_size": "10000" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Network out by node [Metricbeat Kubernetes] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "294546b0-30d6-11e7-8df8-6d3604a72912-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:37.319Z", + "version": "WzQwMTksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/2ba628e0-9c2a-11e9-9dc8-fd27291d427f.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/2ba628e0-9c2a-11e9-9dc8-fd27291d427f.json new file mode 100644 index 000000000000..f4ba1eb49b4a --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/2ba628e0-9c2a-11e9-9dc8-fd27291d427f.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Controller Memory [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(251,158,0,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Resident", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.controllermanager.process.memory.resident.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "ac896b30-9c29-11e9-92c1-f7d03186c592", + "label": "Virtual", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.controllermanager.process.memory.virtual.bytes", + "id": "ac896b31-9c29-11e9-92c1-f7d03186c592", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Controller Memory [Metricset Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2ba628e0-9c2a-11e9-9dc8-fd27291d427f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:36.329Z", + "version": "WzQwMDgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/382ace30-9d98-11e9-b2ae-49acc4cbcea9.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/382ace30-9d98-11e9-b2ae-49acc4cbcea9.json new file mode 100644 index 000000000000..0b4862c4c27f --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/382ace30-9d98-11e9-b2ae-49acc4cbcea9.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Scheduler CPU [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "CPU time", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.process.cpu.sec", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "11331120-9d98-11e9-9e81-115d18bcfeaa", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}} s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Scheduler CPU [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "382ace30-9d98-11e9-b2ae-49acc4cbcea9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:39.447Z", + "version": "WzQwNDEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/3dbf6230-9c20-11e9-9dc8-fd27291d427f.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/3dbf6230-9c20-11e9-9dc8-fd27291d427f.json new file mode 100644 index 000000000000..13efd2bde7ab --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/3dbf6230-9c20-11e9-9dc8-fd27291d427f.json @@ -0,0 +1,147 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Controller Process [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 1, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "30s", + "markdown": "| | |\n|---|---|\n|**Days running**|{{ math.started.last.raw }}|\n|**File descriptors open**|{{ average_of_kubernetes_controllermanager_process_fds_open_count.fds.last.raw }}|\n|**Resident Memory**|{{ average_of_kubernetes_controllermanager_process_memory_resident_bytes.resident_memory.last.formatted }}|\n|**Virtual Memory**|{{ average_of_kubernetes_controllermanager_process_memory_virtual_bytes.virtual_memory.last.formatted }}|\n", + "markdown_css": "#markdown-61ca57f0-469d-11e7-af02-69e470af7417 table,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 tr,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 td,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 th{border:none}", + "markdown_less": "\ntable, tr, td, th {\n border: none;\n}\n\n", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.controllermanager.process.started.sec", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "id": "ebfdb1c0-9c1c-11e9-b29f-d55be9348723", + "script": "round( (params._timestamp /1000 - params.started) / 86400, 2)", + "type": "math", + "variables": [ + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "ef30a230-9c1c-11e9-b29f-d55be9348723", + "name": "started" + } + ] + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "var_name": "started" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "1212ba80-9c1e-11e9-b29f-d55be9348723", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.controllermanager.process.fds.open.count", + "id": "1212ba81-9c1e-11e9-b29f-d55be9348723", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "var_name": "fds" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "3f3b17a0-9c1e-11e9-b29f-d55be9348723", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.controllermanager.process.memory.resident.bytes", + "id": "3f3b17a1-9c1e-11e9-b29f-d55be9348723", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "var_name": "resident_memory" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "b1a01b50-9c1f-11e9-b29f-d55be9348723", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.controllermanager.process.memory.virtual.bytes", + "id": "b1a01b51-9c1f-11e9-b29f-d55be9348723", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "var_name": "virtual_memory" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "markdown", + "use_kibana_indexes": false + }, + "title": "Controller Process [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3dbf6230-9c20-11e9-9dc8-fd27291d427f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:36.329Z", + "version": "WzQwMDQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/3e1e1fd0-9c27-11e9-9dc8-fd27291d427f.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/3e1e1fd0-9c27-11e9-9dc8-fd27291d427f.json new file mode 100644 index 000000000000..9ad65297ec2b --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/3e1e1fd0-9c27-11e9-9dc8-fd27291d427f.json @@ -0,0 +1,65 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Controller Unfinished jobs sec [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.controllermanager.workqueue.unfinished.sec", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "kubernetes.controllermanager.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Controller Unfinished jobs sec [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3e1e1fd0-9c27-11e9-9dc8-fd27291d427f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:36.329Z", + "version": "WzQwMDcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/408fccf0-30d6-11e7-8df8-6d3604a72912-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/408fccf0-30d6-11e7-8df8-6d3604a72912-ecs.json new file mode 100644 index 000000000000..dd1a69443270 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/408fccf0-30d6-11e7-8df8-6d3604a72912-ecs.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Nodes [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "67ee7da0-30e0-11e7-8df8-6d3604a72912" + } + ], + "bar_color_rules": [ + { + "id": "68cdba10-30e0-11e7-8df8-6d3604a72912" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:kubernetes AND metricset.name:state_node" + }, + "gauge_color_rules": [ + { + "id": "69765620-30e0-11e7-8df8-6d3604a72912" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "4c4690b0-30e0-11e7-8df8-6d3604a72912", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "4c4690b1-30e0-11e7-8df8-6d3604a72912", + "label": "Nodes", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.node.name", + "id": "4c4690b2-30e0-11e7-8df8-6d3604a72912", + "type": "cardinality" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "kubernetes.deployment.name" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Nodes [Metricbeat Kubernetes] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "408fccf0-30d6-11e7-8df8-6d3604a72912-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:37.319Z", + "version": "WzQwMjAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/44f12b40-2bf4-11e7-859b-f78b612cde28-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/44f12b40-2bf4-11e7-859b-f78b612cde28-ecs.json new file mode 100644 index 000000000000..fcc3336b6a00 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/44f12b40-2bf4-11e7-859b-f78b612cde28-ecs.json @@ -0,0 +1,153 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "CPU usage by node [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "12c1f2f0-2bf2-11e7-859b-f78b612cde28" + } + ], + "bar_color_rules": [ + { + "id": "1373ddd0-2bf2-11e7-859b-f78b612cde28" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:kubernetes AND (metricset.name:container OR metricset.name:state_node)" + }, + "gauge_color_rules": [ + { + "id": "140e4910-2bf2-11e7-859b-f78b612cde28" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "0d5c6b10-2bf2-11e7-859b-f78b612cde28", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0.5", + "formatter": "0.0a", + "id": "0d5c9220-2bf2-11e7-859b-f78b612cde28", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.container.cpu.usage.nanocores", + "id": "0d5c9221-2bf2-11e7-859b-f78b612cde28", + "type": "sum" + }, + { + "field": "metricset.period", + "id": "8b346300-bf95-11ea-a07c-851701f0d645", + "type": "avg" + }, + { + "id": "25ae6580-bf95-11ea-a07c-851701f0d645", + "script": "params.sum_nanocores / (params._interval / params.avg_period)", + "type": "calculation", + "variables": [ + { + "field": "0d5c9221-2bf2-11e7-859b-f78b612cde28", + "id": "39e40aa0-bf95-11ea-a07c-851701f0d645", + "name": "sum_nanocores" + }, + { + "field": "8b346300-bf95-11ea-a07c-851701f0d645", + "id": "85213600-bf95-11ea-a07c-851701f0d645", + "name": "avg_period" + } + ] + } + ], + "override_index_pattern": 0, + "point_size": 1, + "seperate_axis": 0, + "series_interval": "10s", + "series_time_field": "@timestamp", + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "kubernetes.node.name", + "terms_order_by": "0d5c9221-2bf2-11e7-859b-f78b612cde28", + "terms_size": "10000", + "value_template": "{{value}} nanocores" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": "0", + "formatter": "0.0a", + "hide_in_legend": 1, + "id": "22f65d40-31a7-11e7-84cc-096d2b38e6e5", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.node.cpu.capacity.cores", + "id": "22f65d41-31a7-11e7-84cc-096d2b38e6e5", + "type": "avg" + }, + { + "id": "4af4c390-34d6-11e7-be88-cb6a123dc1bb", + "script": "params.cores * 1000000000", + "type": "calculation", + "variables": [ + { + "field": "22f65d41-31a7-11e7-84cc-096d2b38e6e5", + "id": "4cd32080-34d6-11e7-be88-cb6a123dc1bb", + "name": "cores" + } + ] + } + ], + "override_index_pattern": 0, + "point_size": "0", + "seperate_axis": 0, + "series_interval": "10s", + "series_time_field": "@timestamp", + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "kubernetes.node.name", + "terms_order_by": "22f65d41-31a7-11e7-84cc-096d2b38e6e5", + "terms_size": "10000", + "value_template": "{{value}} nanocores" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "CPU usage by node [Metricbeat Kubernetes] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "44f12b40-2bf4-11e7-859b-f78b612cde28-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:37.319Z", + "version": "WzQwMTQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/485c8550-9c3a-11e9-9dc8-fd27291d427f.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/485c8550-9c3a-11e9-9dc8-fd27291d427f.json new file mode 100644 index 000000000000..830c32412c68 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/485c8550-9c3a-11e9-9dc8-fd27291d427f.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Controller Workqueue retries [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.controllermanager.workqueue.retries.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "b3107560-9c39-11e9-92c1-f7d03186c592", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_direction": "desc", + "terms_field": "kubernetes.controllermanager.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Controller Workqueue retries [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "485c8550-9c3a-11e9-9dc8-fd27291d427f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:36.329Z", + "version": "WzQwMTAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/58e644f0-30d6-11e7-8df8-6d3604a72912-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/58e644f0-30d6-11e7-8df8-6d3604a72912-ecs.json new file mode 100644 index 000000000000..28165e4c2951 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/58e644f0-30d6-11e7-8df8-6d3604a72912-ecs.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Top CPU intensive pods [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "id": "802104d0-2bfc-11e7-859b-f78b612cde28" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:kubernetes AND metricset.name:container" + }, + "hide_last_value_indicator": true, + "id": "5d3692a0-2bfc-11e7-859b-f78b612cde28", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "0.0 a", + "id": "5d3692a1-2bfc-11e7-859b-f78b612cde28", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.container.cpu.usage.core.ns", + "id": "5d3692a2-2bfc-11e7-859b-f78b612cde28", + "type": "max" + }, + { + "field": "5d3692a2-2bfc-11e7-859b-f78b612cde28", + "id": "6c905240-2bfc-11e7-859b-f78b612cde28", + "type": "derivative", + "unit": "1s" + }, + { + "field": "6c905240-2bfc-11e7-859b-f78b612cde28", + "id": "9a51f710-359d-11e7-aa4a-8313a0c92a88", + "type": "positive_only", + "unit": "" + } + ], + "offset_time": "", + "override_index_pattern": 0, + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "kubernetes.pod.name", + "terms_order_by": "5d3692a2-2bfc-11e7-859b-f78b612cde28", + "value_template": "{{value}} ns" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Top CPU intensive pods [Metricbeat Kubernetes] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "58e644f0-30d6-11e7-8df8-6d3604a72912-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:37.319Z", + "version": "WzQwMjEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/7aac4fd0-30e0-11e7-8df8-6d3604a72912-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/7aac4fd0-30e0-11e7-8df8-6d3604a72912-ecs.json new file mode 100644 index 000000000000..840000c32679 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/7aac4fd0-30e0-11e7-8df8-6d3604a72912-ecs.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Unavailable pods per deployment [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "filter": { + "language": "lucene", + "query": "event.module:kubernetes AND metricset.name:state_deployment" + }, + "id": "117fadf0-30df-11e7-8df8-6d3604a72912", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(254,146,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "64456840-30df-11e7-8df8-6d3604a72912", + "label": "Unavailable pods", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.deployment.replicas.unavailable", + "id": "64456841-30df-11e7-8df8-6d3604a72912", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "id": "53d35ad0-30df-11e7-8df8-6d3604a72912" + } + ], + "split_mode": "terms", + "stacked": "stacked", + "terms_field": "kubernetes.deployment.name", + "terms_size": "10000" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Unavailable pods per deployment [Metricbeat Kubernetes] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7aac4fd0-30e0-11e7-8df8-6d3604a72912-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:37.319Z", + "version": "WzQwMjQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/7cbeb750-5794-11e8-afa2-e9067ea62228-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/7cbeb750-5794-11e8-afa2-e9067ea62228-ecs.json new file mode 100644 index 000000000000..eee30e88cef6 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/7cbeb750-5794-11e8-afa2-e9067ea62228-ecs.json @@ -0,0 +1,83 @@ +{ + "attributes": { + "description": "Overview of Kubernetes API Server", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "API Server Top clients by number of requests [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "id": "61a13010-5794-11e8-8bd0-2180975e72dd" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": 0.5, + "filter": "", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Top clients by number of requests (5m)", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.apiserver.request.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "0e6ff4a0-5792-11e8-8bd0-2180975e72dd", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "id": "9e4b8030-5792-11e8-8bd0-2180975e72dd" + } + ], + "split_mode": "terms", + "stacked": "stacked", + "terms_field": "kubernetes.apiserver.request.client", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "10" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "API Server Top clients by number of requests [Metricbeat Kubernetes] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7cbeb750-5794-11e8-afa2-e9067ea62228-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:35.256Z", + "version": "WzM5OTgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/7d80f790-9d96-11e9-b2ae-49acc4cbcea9.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/7d80f790-9d96-11e9-b2ae-49acc4cbcea9.json new file mode 100644 index 000000000000..ae3c263dccb5 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/7d80f790-9d96-11e9-b2ae-49acc4cbcea9.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Controller CPU [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "CPU time", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.controllermanager.process.cpu.sec", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "47731390-9d96-11e9-9e81-115d18bcfeaa", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}} s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Controller CPU [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7d80f790-9d96-11e9-b2ae-49acc4cbcea9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:36.329Z", + "version": "WzQwMTEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/826d80c0-9c97-11e9-94fd-c91206cd5249.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/826d80c0-9c97-11e9-94fd-c91206cd5249.json new file mode 100644 index 000000000000..9618e4212771 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/826d80c0-9c97-11e9-94fd-c91206cd5249.json @@ -0,0 +1,153 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Process summary [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 1, + "filter": { + "language": "lucene", + "query": "_exists_:\"kubernetes.scheduler.process.started.sec\"" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "30s", + "markdown": "| | |\n|---|---|\n|**Days running**|{{ math.started.last.raw }}|\n|**File descriptors open**|{{ max_of_kubernetes_scheduler_process_fds_open_count.fds.last.raw }}|\n|**Resident Memory**|{{ max_of_kubernetes_scheduler_process_memory_resident_bytes.resident_memory.last.formatted }}|\n|**Virtual Memory**|{{ max_of_kubernetes_scheduler_process_memory_virtual_bytes.virtual_memory.last.formatted }}|\n", + "markdown_css": "#markdown-61ca57f0-469d-11e7-af02-69e470af7417 table,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 tr,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 td,#markdown-61ca57f0-469d-11e7-af02-69e470af7417 th{border:none}", + "markdown_less": "\ntable, tr, td, th {\n border: none;\n}\n\n", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.process.started.sec", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "id": "94b52370-9c95-11e9-87bc-455cc45f013a", + "script": "round( (params._timestamp /1000 - params.started) / 86400, 2)", + "type": "math", + "variables": [ + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "97cc0060-9c95-11e9-87bc-455cc45f013a", + "name": "started" + } + ] + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "var_name": "started" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "a8475ca0-9c95-11e9-87bc-455cc45f013a", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.process.fds.open.count", + "id": "a8475ca1-9c95-11e9-87bc-455cc45f013a", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "var_name": "fds" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "cdc6d190-9c95-11e9-87bc-455cc45f013a", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.process.memory.resident.bytes", + "id": "cdc6d191-9c95-11e9-87bc-455cc45f013a", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "var_name": "resident_memory" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "dfa0fa80-9c95-11e9-87bc-455cc45f013a", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.process.memory.virtual.bytes", + "id": "dfa0fa81-9c95-11e9-87bc-455cc45f013a", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "var_name": "virtual_memory" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "markdown", + "use_kibana_indexes": false + }, + "title": "Process summary [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "826d80c0-9c97-11e9-94fd-c91206cd5249", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:39.447Z", + "version": "WzQwMzcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/84d9b200-9d98-11e9-b2ae-49acc4cbcea9.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/84d9b200-9d98-11e9-b2ae-49acc4cbcea9.json new file mode 100644 index 000000000000..efb95f646165 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/84d9b200-9d98-11e9-b2ae-49acc4cbcea9.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Scheduler Memory [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(251,158,0,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Resident", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.process.memory.resident.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "a14defa0-9d98-11e9-9e81-115d18bcfeaa", + "label": "Virtual", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.process.memory.virtual.bytes", + "id": "a14defa1-9d98-11e9-9e81-115d18bcfeaa", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Scheduler Memory [Metricset Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "84d9b200-9d98-11e9-b2ae-49acc4cbcea9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:39.447Z", + "version": "WzQwNDIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/8a95de50-9c38-11e9-9dc8-fd27291d427f.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/8a95de50-9c38-11e9-9dc8-fd27291d427f.json new file mode 100644 index 000000000000..43a155ce1150 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/8a95de50-9c38-11e9-9dc8-fd27291d427f.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Controller Workqueue adds [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.controllermanager.workqueue.adds.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "9b5d85d0-9c38-11e9-92c1-f7d03186c592", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "kubernetes.controllermanager.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Controller Workqueue adds [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8a95de50-9c38-11e9-9dc8-fd27291d427f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:36.329Z", + "version": "WzQwMDksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/8c6c2690-9bd8-11e9-9dc8-fd27291d427f.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/8c6c2690-9bd8-11e9-9dc8-fd27291d427f.json new file mode 100644 index 000000000000..e8107bfaee1b --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/8c6c2690-9bd8-11e9-9dc8-fd27291d427f.json @@ -0,0 +1,106 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Proxy HTTP request duration [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(165,228,85,1)", + "fill": 0.5, + "formatter": "us,ms,2", + "id": "05a03f20-9bd8-11e9-871d-d3c7d4c337ef", + "label": "P99", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.http.request.duration.us.percentile.99", + "id": "05a06630-9bd8-11e9-871d-d3c7d4c337ef", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "us,ms,2", + "id": "dc0faec0-9bd7-11e9-871d-d3c7d4c337ef", + "label": "P90", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.http.request.duration.us.percentile.90", + "id": "dc0faec1-9bd7-11e9-871d-d3c7d4c337ef", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(65,117,0,1)", + "fill": 0.5, + "formatter": "us,ms,2", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "P50", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.http.request.duration.us.percentile.50", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Proxy HTTP request duration [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8c6c2690-9bd8-11e9-9dc8-fd27291d427f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:38.365Z", + "version": "WzQwMzEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/95595810-9ca8-11e9-94fd-c91206cd5249.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/95595810-9ca8-11e9-94fd-c91206cd5249.json new file mode 100644 index 000000000000..b4d296da7126 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/95595810-9ca8-11e9-94fd-c91206cd5249.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Scheduler scheduling attempts [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Attempts", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.scheduling.pod.attempts.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "18aae5d0-9ca9-11e9-b8ef-3ddf5d748ddb", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "kubernetes.scheduler.result", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Scheduler scheduling attempts [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "95595810-9ca8-11e9-94fd-c91206cd5249", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:39.447Z", + "version": "WzQwNDAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/95a7f110-57a2-11e8-afa2-e9067ea62228-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/95a7f110-57a2-11e8-afa2-e9067ea62228-ecs.json new file mode 100644 index 000000000000..f042b9d5fd18 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/95a7f110-57a2-11e8-afa2-e9067ea62228-ecs.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "API Server Top clients by resource [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "id": "61a13010-5794-11e8-8bd0-2180975e72dd" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": 0.5, + "filter": "", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Top clients by number of requests (5m)", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.apiserver.request.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "0e6ff4a0-5792-11e8-8bd0-2180975e72dd", + "type": "derivative", + "unit": "" + } + ], + "override_index_pattern": 0, + "point_size": 1, + "seperate_axis": 0, + "series_drop_last_bucket": 1, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "id": "9e4b8030-5792-11e8-8bd0-2180975e72dd" + } + ], + "split_mode": "terms", + "stacked": "stacked", + "terms_field": "kubernetes.apiserver.request.resource", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "10" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "API Server Top clients by resource [Metricbeat Kubernetes] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "95a7f110-57a2-11e8-afa2-e9067ea62228-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:35.256Z", + "version": "WzQwMDAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/a4c9d360-30df-11e7-8df8-6d3604a72912-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/a4c9d360-30df-11e7-8df8-6d3604a72912-ecs.json new file mode 100644 index 000000000000..8a85fc4a0c11 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/a4c9d360-30df-11e7-8df8-6d3604a72912-ecs.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Top memory intensive pods [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "id": "802104d0-2bfc-11e7-859b-f78b612cde28" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:kubernetes AND metricset.name:container" + }, + "hide_last_value_indicator": true, + "id": "5d3692a0-2bfc-11e7-859b-f78b612cde28", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "5d3692a1-2bfc-11e7-859b-f78b612cde28", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.container.memory.usage.bytes", + "id": "5d3692a2-2bfc-11e7-859b-f78b612cde28", + "type": "sum" + }, + { + "field": "5d3692a2-2bfc-11e7-859b-f78b612cde28", + "id": "3972e9f0-256f-11e8-84e6-87221f87ae3b", + "type": "cumulative_sum" + }, + { + "field": "3972e9f0-256f-11e8-84e6-87221f87ae3b", + "id": "3e9fd5a0-256f-11e8-84e6-87221f87ae3b", + "type": "derivative", + "unit": "10s" + } + ], + "offset_time": "", + "override_index_pattern": 0, + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "kubernetes.pod.name", + "terms_order_by": "5d3692a2-2bfc-11e7-859b-f78b612cde28", + "terms_size": "10", + "value_template": "" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Top memory intensive pods [Metricbeat Kubernetes] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a4c9d360-30df-11e7-8df8-6d3604a72912-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:37.319Z", + "version": "WzQwMjIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/b8a24790-9bf0-11e9-9dc8-fd27291d427f.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/b8a24790-9bf0-11e9-9dc8-fd27291d427f.json new file mode 100644 index 000000000000..b94bfaa0dd49 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/b8a24790-9bf0-11e9-9dc8-fd27291d427f.json @@ -0,0 +1,259 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Proxy network programming [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "4fb3cbb0-9be5-11e9-871d-d3c7d4c337ef" + } + ], + "bar_color_rules": [ + { + "id": "4b459c20-9be5-11e9-871d-d3c7d4c337ef" + } + ], + "gauge_color_rules": [ + { + "id": "4de1cad0-9be5-11e9-871d-d3c7d4c337ef" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(63,112,2,1)", + "fill": 0.5, + "formatter": "number", + "hidden": false, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Under 16ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.sync.networkprogramming.duration.us.bucket.16000", + "id": "4dbb3a90-9be6-11e9-871d-d3c7d4c337ef", + "type": "avg" + }, + { + "field": "4dbb3a90-9be6-11e9-871d-d3c7d4c337ef", + "id": "189688a0-9be7-11e9-871d-d3c7d4c337ef", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(138,223,24,1)", + "fill": "0.4", + "formatter": "number", + "hidden": false, + "id": "a60dbe60-9be7-11e9-871d-d3c7d4c337ef", + "label": "Under 512ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.sync.networkprogramming.duration.us.bucket.512000", + "id": "a60dbe61-9be7-11e9-871d-d3c7d4c337ef", + "type": "avg" + }, + { + "field": "a60dbe61-9be7-11e9-871d-d3c7d4c337ef", + "id": "b55a1080-9be7-11e9-871d-d3c7d4c337ef", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(174,161,255,1)", + "fill": "0.4", + "formatter": "number", + "hidden": false, + "id": "c5cc4f90-9be8-11e9-871d-d3c7d4c337ef", + "label": "Under 1024 ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.sync.networkprogramming.duration.us.bucket.1024000", + "id": "c5cc4f91-9be8-11e9-871d-d3c7d4c337ef", + "type": "avg" + }, + { + "field": "c5cc4f91-9be8-11e9-871d-d3c7d4c337ef", + "id": "f17cb2b0-9be8-11e9-871d-d3c7d4c337ef", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0.2", + "formatter": "number", + "hidden": false, + "id": "e0901380-9be7-11e9-871d-d3c7d4c337ef", + "label": "Under 4096 ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.sync.networkprogramming.duration.us.bucket.4096000", + "id": "e0901381-9be7-11e9-871d-d3c7d4c337ef", + "type": "avg" + }, + { + "field": "e0901381-9be7-11e9-871d-d3c7d4c337ef", + "id": "f2b6fce0-9be7-11e9-871d-d3c7d4c337ef", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": "0.2", + "formatter": "number", + "id": "882fa5a0-9be9-11e9-871d-d3c7d4c337ef", + "label": "Under 8192 ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.sync.networkprogramming.duration.us.bucket.8192000", + "id": "882fccb0-9be9-11e9-871d-d3c7d4c337ef", + "type": "avg" + }, + { + "field": "882fccb0-9be9-11e9-871d-d3c7d4c337ef", + "id": "9adb9d80-9be9-11e9-871d-d3c7d4c337ef", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(209,119,103,1)", + "fill": "0", + "formatter": "number", + "id": "86549550-9bef-11e9-871d-d3c7d4c337ef", + "label": "Under 16384 ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.sync.networkprogramming.duration.us.bucket.16384000", + "id": "86549551-9bef-11e9-871d-d3c7d4c337ef", + "type": "avg" + }, + { + "field": "86549551-9bef-11e9-871d-d3c7d4c337ef", + "id": "86549552-9bef-11e9-871d-d3c7d4c337ef", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "c66bf580-9be9-11e9-871d-d3c7d4c337ef", + "label": "All", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.sync.networkprogramming.duration.us.bucket.+Inf", + "id": "c66bf581-9be9-11e9-871d-d3c7d4c337ef", + "type": "avg" + }, + { + "field": "c66bf581-9be9-11e9-871d-d3c7d4c337ef", + "id": "d48b3950-9be9-11e9-871d-d3c7d4c337ef", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Proxy network programming [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b8a24790-9bf0-11e9-9dc8-fd27291d427f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:38.365Z", + "version": "WzQwMzIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/ba7bf750-9bf5-11e9-9dc8-fd27291d427f.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/ba7bf750-9bf5-11e9-9dc8-fd27291d427f.json new file mode 100644 index 000000000000..cf60067da9b4 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/ba7bf750-9bf5-11e9-9dc8-fd27291d427f.json @@ -0,0 +1,242 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Proxy sync rules [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(63,112,2,1)", + "fill": 0.5, + "formatter": "number", + "hidden": false, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Under 16 ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.sync.rules.duration.us.bucket.16000", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "038a94d0-9bf4-11e9-9f03-d58417b2a60d", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(138,223,24,1)", + "fill": "0.4", + "formatter": "number", + "hidden": false, + "id": "250daed0-9bf4-11e9-9f03-d58417b2a60d", + "label": "Under 512 ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.sync.rules.duration.us.bucket.512000", + "id": "250dd5e0-9bf4-11e9-9f03-d58417b2a60d", + "type": "avg" + }, + { + "field": "250dd5e0-9bf4-11e9-9f03-d58417b2a60d", + "id": "250dd5e1-9bf4-11e9-9f03-d58417b2a60d", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(174,161,255,1)", + "fill": "0.3", + "formatter": "number", + "hidden": false, + "id": "744141b0-9bf4-11e9-9f03-d58417b2a60d", + "label": "Under 1024 ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.sync.rules.duration.us.bucket.1024000", + "id": "744141b1-9bf4-11e9-9f03-d58417b2a60d", + "type": "avg" + }, + { + "field": "744141b1-9bf4-11e9-9f03-d58417b2a60d", + "id": "744141b2-9bf4-11e9-9f03-d58417b2a60d", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0.2", + "formatter": "number", + "hidden": false, + "id": "e4454060-9bf4-11e9-9f03-d58417b2a60d", + "label": "Under 4096 ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.sync.rules.duration.us.bucket.4096000", + "id": "e4454061-9bf4-11e9-9f03-d58417b2a60d", + "type": "avg" + }, + { + "field": "e4454061-9bf4-11e9-9f03-d58417b2a60d", + "id": "e4456770-9bf4-11e9-9f03-d58417b2a60d", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": "0.1", + "formatter": "number", + "hidden": false, + "id": "1ac14f80-9bf5-11e9-9f03-d58417b2a60d", + "label": "Under 8192 ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.sync.rules.duration.us.bucket.8192000", + "id": "1ac17690-9bf5-11e9-9f03-d58417b2a60d", + "type": "avg" + }, + { + "field": "1ac17690-9bf5-11e9-9f03-d58417b2a60d", + "id": "1ac17691-9bf5-11e9-9f03-d58417b2a60d", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(209,119,103,1)", + "fill": "0", + "formatter": "number", + "hidden": false, + "id": "3cbf17c0-9bf5-11e9-9f03-d58417b2a60d", + "label": "Under 16384 ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.sync.rules.duration.us.bucket.16384000", + "id": "3cbf17c1-9bf5-11e9-9f03-d58417b2a60d", + "type": "avg" + }, + { + "field": "3cbf17c1-9bf5-11e9-9f03-d58417b2a60d", + "id": "3cbf17c2-9bf5-11e9-9f03-d58417b2a60d", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "formatter": "number", + "id": "58fb7c80-9bf5-11e9-9f03-d58417b2a60d", + "label": "All", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.sync.rules.duration.us.bucket.+Inf", + "id": "58fb7c81-9bf5-11e9-9f03-d58417b2a60d", + "type": "avg" + }, + { + "field": "58fb7c81-9bf5-11e9-9f03-d58417b2a60d", + "id": "58fb7c82-9bf5-11e9-9f03-d58417b2a60d", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Proxy sync rules [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ba7bf750-9bf5-11e9-9dc8-fd27291d427f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:38.365Z", + "version": "WzQwMzMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/bcb194a0-9bf8-11e9-9dc8-fd27291d427f.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/bcb194a0-9bf8-11e9-9dc8-fd27291d427f.json new file mode 100644 index 000000000000..1d11042b29bd --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/bcb194a0-9bf8-11e9-9dc8-fd27291d427f.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Host selector [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "host.hostname", + "id": "1561982488150", + "indexPatternRefName": "control_0_index_pattern", + "label": "Hostname", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "service.address", + "id": "1561982723711", + "indexPatternRefName": "control_1_index_pattern", + "label": "Service address", + "options": { + "dynamicOptions": true, + "multiselect": false, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": false, + "useTimeFilter": false + }, + "title": "Host selector [Metricbeat Kubernetes]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bcb194a0-9bf8-11e9-9dc8-fd27291d427f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:39.447Z", + "version": "WzQwMzYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/cac89fb0-9906-11e9-ba57-b7ab4e2d4b58.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/cac89fb0-9906-11e9-ba57-b7ab4e2d4b58.json new file mode 100644 index 000000000000..6abbdbfe9868 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/cac89fb0-9906-11e9-ba57-b7ab4e2d4b58.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Proxy memory [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(251,158,0,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Resident", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.process.memory.resident.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "1ea6cee0-9907-11e9-b4e1-6dc893538542", + "label": "Virtual", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.process.memory.virtual.bytes", + "id": "1ea6cee1-9907-11e9-b4e1-6dc893538542", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Proxy memory [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "cac89fb0-9906-11e9-ba57-b7ab4e2d4b58", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:38.365Z", + "version": "WzQwMjksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/cd059410-2bfb-11e7-859b-f78b612cde28-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/cd059410-2bfb-11e7-859b-f78b612cde28-ecs.json new file mode 100644 index 000000000000..e25432ee7180 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/cd059410-2bfb-11e7-859b-f78b612cde28-ecs.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Deployments [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "67ee7da0-30e0-11e7-8df8-6d3604a72912" + } + ], + "bar_color_rules": [ + { + "id": "68cdba10-30e0-11e7-8df8-6d3604a72912" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:kubernetes AND metricset.name:state_deployment" + }, + "gauge_color_rules": [ + { + "id": "69765620-30e0-11e7-8df8-6d3604a72912" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "4c4690b0-30e0-11e7-8df8-6d3604a72912", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "4c4690b1-30e0-11e7-8df8-6d3604a72912", + "label": "Deployments", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.deployment.name", + "id": "4c4690b2-30e0-11e7-8df8-6d3604a72912", + "type": "cardinality" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "kubernetes.deployment.name" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Deployments [Metricbeat Kubernetes] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "cd059410-2bfb-11e7-859b-f78b612cde28-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:37.319Z", + "version": "WzQwMTUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/d54c65f0-e4a6-11eb-9d53-3b3d1d47c519.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/d54c65f0-e4a6-11eb-9d53-3b3d1d47c519.json new file mode 100644 index 000000000000..f1fe6f3e0365 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/d54c65f0-e4a6-11eb-9d53-3b3d1d47c519.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Cluster Filter [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "orchestrator.cluster.name", + "id": "1626269001600", + "indexPatternRefName": "control_0_index_pattern", + "label": "Cluster Name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "Cluster Filter [Metricbeat Kubernetes] ECS", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d54c65f0-e4a6-11eb-9d53-3b3d1d47c519", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:37.319Z", + "version": "WzQwMjYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/d6564360-2bfc-11e7-859b-f78b612cde28-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/d6564360-2bfc-11e7-859b-f78b612cde28-ecs.json new file mode 100644 index 000000000000..e5f0179ba98c --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/d6564360-2bfc-11e7-859b-f78b612cde28-ecs.json @@ -0,0 +1,133 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Memory usage by node [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "12c1f2f0-2bf2-11e7-859b-f78b612cde28" + } + ], + "bar_color_rules": [ + { + "id": "1373ddd0-2bf2-11e7-859b-f78b612cde28" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:kubernetes AND (metricset.name:container OR metricset.name:state_node)" + }, + "gauge_color_rules": [ + { + "id": "140e4910-2bf2-11e7-859b-f78b612cde28" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "0d5c6b10-2bf2-11e7-859b-f78b612cde28", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "0d5c9220-2bf2-11e7-859b-f78b612cde28", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.container.memory.usage.bytes", + "id": "0d5c9221-2bf2-11e7-859b-f78b612cde28", + "type": "sum" + }, + { + "field": "0d5c9221-2bf2-11e7-859b-f78b612cde28", + "id": "9f0cf900-1ffb-11e8-81f2-43be86397500", + "type": "cumulative_sum" + }, + { + "field": "9f0cf900-1ffb-11e8-81f2-43be86397500", + "id": "a926e130-1ffb-11e8-81f2-43be86397500", + "type": "derivative", + "unit": "10s" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "kubernetes.node.name", + "terms_order_by": "0d5c9221-2bf2-11e7-859b-f78b612cde28", + "terms_size": "10000" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": "0", + "formatter": "bytes", + "hide_in_legend": 1, + "id": "8ba3b270-31a7-11e7-84cc-096d2b38e6e5", + "label": "Node capacity", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.node.memory.capacity.bytes", + "id": "8ba3b271-31a7-11e7-84cc-096d2b38e6e5", + "type": "sum" + }, + { + "field": "8ba3b271-31a7-11e7-84cc-096d2b38e6e5", + "id": "d1fb2670-1ffb-11e8-81f2-43be86397500", + "type": "cumulative_sum" + }, + { + "field": "d1fb2670-1ffb-11e8-81f2-43be86397500", + "id": "dc8b01f0-1ffb-11e8-81f2-43be86397500", + "type": "derivative", + "unit": "10s" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "kubernetes.node.name", + "terms_order_by": "8ba3b271-31a7-11e7-84cc-096d2b38e6e5", + "terms_size": "10000" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Memory usage by node [Metricbeat Kubernetes] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d6564360-2bfc-11e7-859b-f78b612cde28-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:37.319Z", + "version": "WzQwMTcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/d86b2da0-9c20-11e9-9dc8-fd27291d427f.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/d86b2da0-9c20-11e9-9dc8-fd27291d427f.json new file mode 100644 index 000000000000..1a842179e990 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/d86b2da0-9c20-11e9-9dc8-fd27291d427f.json @@ -0,0 +1,106 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Controller HTTP request duration [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(165,228,85,1)", + "fill": 0.5, + "formatter": "us,ms,2", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "P99", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.controllermanager.http.request.duration.us.percentile.99", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "us,ms,2", + "id": "24fb4960-9c22-11e9-b29f-d55be9348723", + "label": "P90", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.controllermanager.http.request.duration.us.percentile.90", + "id": "24fb4961-9c22-11e9-b29f-d55be9348723", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(65,117,0,1)", + "fill": 0.5, + "formatter": "us,ms,2", + "id": "2e397790-9c22-11e9-b29f-d55be9348723", + "label": "P50", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.controllermanager.http.request.duration.us.percentile.50", + "id": "2e397791-9c22-11e9-b29f-d55be9348723", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Controller HTTP request duration [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d86b2da0-9c20-11e9-9dc8-fd27291d427f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:36.329Z", + "version": "WzQwMDUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/d9fc1b80-9c9c-11e9-94fd-c91206cd5249.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/d9fc1b80-9c9c-11e9-94fd-c91206cd5249.json new file mode 100644 index 000000000000..a619987e7ccf --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/d9fc1b80-9c9c-11e9-94fd-c91206cd5249.json @@ -0,0 +1,244 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Scheduler end to end scheduling duration [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(63,112,2,1)", + "fill": 0.5, + "formatter": "number", + "hidden": false, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Under 16ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.scheduling.e2e.duration.us.bucket.16000", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "2a21d690-9c9d-11e9-8174-4589c2c40897", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(138,223,24,1)", + "fill": "0.4", + "formatter": "number", + "hidden": false, + "id": "a0344a80-9ca1-11e9-9b2f-4dae0cc2bdf1", + "label": "Under 512ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.scheduling.e2e.duration.us.bucket.512000", + "id": "a0347190-9ca1-11e9-9b2f-4dae0cc2bdf1", + "type": "avg" + }, + { + "field": "a0347190-9ca1-11e9-9b2f-4dae0cc2bdf1", + "id": "9a865d10-9ca3-11e9-9b2f-4dae0cc2bdf1", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(174,161,255,1)", + "fill": "0.3", + "formatter": "number", + "hidden": false, + "id": "c456c780-9ca1-11e9-9b2f-4dae0cc2bdf1", + "label": "Under 1024ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.scheduling.e2e.duration.us.bucket.1024000", + "id": "c456c781-9ca1-11e9-9b2f-4dae0cc2bdf1", + "type": "avg" + }, + { + "field": "c456c781-9ca1-11e9-9b2f-4dae0cc2bdf1", + "id": "a77cd850-9ca3-11e9-9b2f-4dae0cc2bdf1", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0.2", + "formatter": "number", + "hidden": false, + "id": "127a9810-9ca2-11e9-9b2f-4dae0cc2bdf1", + "label": "Under 4096ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.scheduling.e2e.duration.us.bucket.4096000", + "id": "127a9811-9ca2-11e9-9b2f-4dae0cc2bdf1", + "type": "avg" + }, + { + "field": "127a9811-9ca2-11e9-9b2f-4dae0cc2bdf1", + "id": "b48a0fe0-9ca3-11e9-9b2f-4dae0cc2bdf1", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": "0.1", + "formatter": "number", + "hidden": false, + "id": "6a2ba130-9ca2-11e9-9b2f-4dae0cc2bdf1", + "label": "Under 8192ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.scheduling.e2e.duration.us.bucket.8192000", + "id": "6a2ba131-9ca2-11e9-9b2f-4dae0cc2bdf1", + "type": "avg" + }, + { + "field": "6a2ba131-9ca2-11e9-9b2f-4dae0cc2bdf1", + "id": "c727fe00-9ca3-11e9-9b2f-4dae0cc2bdf1", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(209,119,103,1)", + "fill": "0", + "formatter": "number", + "hidden": false, + "id": "f93a66e0-9ca2-11e9-9b2f-4dae0cc2bdf1", + "label": "Under 16384ms", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.scheduling.e2e.duration.us.bucket.16384000", + "id": "f93a66e1-9ca2-11e9-9b2f-4dae0cc2bdf1", + "type": "avg" + }, + { + "field": "f93a66e1-9ca2-11e9-9b2f-4dae0cc2bdf1", + "id": "ce42d700-9ca3-11e9-9b2f-4dae0cc2bdf1", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "formatter": "number", + "hidden": false, + "id": "310452c0-9ca3-11e9-9b2f-4dae0cc2bdf1", + "label": "All", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.scheduler.scheduling.e2e.duration.us.bucket.+Inf", + "id": "310452c1-9ca3-11e9-9b2f-4dae0cc2bdf1", + "type": "avg" + }, + { + "field": "310452c1-9ca3-11e9-9b2f-4dae0cc2bdf1", + "id": "e0692420-9ca3-11e9-9b2f-4dae0cc2bdf1", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Scheduler end to end scheduling duration [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d9fc1b80-9c9c-11e9-94fd-c91206cd5249", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:39.447Z", + "version": "WzQwMzksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/da1ff7c0-30ed-11e7-b9e5-2b5b07213ab3-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/da1ff7c0-30ed-11e7-b9e5-2b5b07213ab3-ecs.json new file mode 100644 index 000000000000..a72257a06867 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/da1ff7c0-30ed-11e7-b9e5-2b5b07213ab3-ecs.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Available pods [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "508ffb30-30d5-11e7-8df8-6d3604a72912" + } + ], + "bar_color_rules": [ + { + "id": "674d83b0-30d5-11e7-8df8-6d3604a72912" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:kubernetes AND metricset.name:state_deployment" + }, + "gauge_color_rules": [ + { + "id": "50f9b980-30d5-11e7-8df8-6d3604a72912" + } + ], + "gauge_inner_width": "10", + "gauge_max": "5", + "gauge_style": "half", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "2fe9d3b0-30d5-11e7-8df8-6d3604a72912", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "2fe9d3b1-30d5-11e7-8df8-6d3604a72912", + "label": "Available Pods", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.deployment.replicas.available", + "id": "54cf79a0-30d5-11e7-8df8-6d3604a72912", + "type": "sum" + } + ], + "override_index_pattern": 1, + "point_size": 1, + "seperate_axis": 0, + "series_index_pattern": "*", + "series_interval": "10s", + "series_time_field": "@timestamp", + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Available pods [Metricbeat Kubernetes] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "da1ff7c0-30ed-11e7-b9e5-2b5b07213ab3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:37.319Z", + "version": "WzQwMjUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/e0ddd3e0-98fe-11e9-ba57-b7ab4e2d4b58.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/e0ddd3e0-98fe-11e9-ba57-b7ab4e2d4b58.json new file mode 100644 index 000000000000..e6003758e225 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/e0ddd3e0-98fe-11e9-ba57-b7ab4e2d4b58.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Proxy CPU [Metricbeat Kubernetes]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "CPU time", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.proxy.process.cpu.sec", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "35da60d0-98fe-11e9-b4e1-6dc893538542", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}} s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Proxy CPU [Metricbeat Kubernetes]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e0ddd3e0-98fe-11e9-ba57-b7ab4e2d4b58", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:38.365Z", + "version": "WzQwMjgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/e1018b90-2bfb-11e7-859b-f78b612cde28-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/e1018b90-2bfb-11e7-859b-f78b612cde28-ecs.json new file mode 100644 index 000000000000..3c3492288fb1 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/e1018b90-2bfb-11e7-859b-f78b612cde28-ecs.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Desired pods [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "508ffb30-30d5-11e7-8df8-6d3604a72912" + } + ], + "bar_color_rules": [ + { + "id": "674d83b0-30d5-11e7-8df8-6d3604a72912" + } + ], + "filter": { + "language": "lucene", + "query": "event.module:kubernetes AND metricset.name:state_deployment" + }, + "gauge_color_rules": [ + { + "id": "50f9b980-30d5-11e7-8df8-6d3604a72912" + } + ], + "gauge_inner_width": "10", + "gauge_max": "5", + "gauge_style": "half", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "2fe9d3b0-30d5-11e7-8df8-6d3604a72912", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "2fe9d3b1-30d5-11e7-8df8-6d3604a72912", + "label": "Desired Pods", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.deployment.replicas.desired", + "id": "54cf79a0-30d5-11e7-8df8-6d3604a72912", + "type": "sum" + } + ], + "override_index_pattern": 1, + "point_size": 1, + "seperate_axis": 0, + "series_interval": "10s", + "series_time_field": "@timestamp", + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Desired pods [Metricbeat Kubernetes] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e1018b90-2bfb-11e7-859b-f78b612cde28-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:37.319Z", + "version": "WzQwMTYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/_meta/kibana/7/visualization/ec360ff0-57a0-11e8-afa2-e9067ea62228-ecs.json b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/ec360ff0-57a0-11e8-afa2-e9067ea62228-ecs.json new file mode 100644 index 000000000000..b0a58e7046c6 --- /dev/null +++ b/metricbeat/module/kubernetes/_meta/kibana/7/visualization/ec360ff0-57a0-11e8-afa2-e9067ea62228-ecs.json @@ -0,0 +1,116 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "API Server Requests [Metricbeat Kubernetes] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(159,5,0,1)", + "fill": "0", + "filter": { + "language": "lucene", + "query": "NOT (kubernetes.apiserver.request.verb: WATCH or kubernetes.apiserver.request.verb: CONNECT)" + }, + "formatter": "us,ms,2", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Avg response time", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.apiserver.request.latency.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + }, + { + "field": "kubernetes.apiserver.request.count", + "id": "a2185e50-57a0-11e8-af57-a1d645d2b569", + "type": "max" + }, + { + "id": "b09133d0-57a0-11e8-af57-a1d645d2b569", + "script": "params.sum / params.count", + "type": "calculation", + "variables": [ + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "b27c8910-57a0-11e8-af57-a1d645d2b569", + "name": "sum" + }, + { + "field": "a2185e50-57a0-11e8-af57-a1d645d2b569", + "id": "b5fc8810-57a0-11e8-af57-a1d645d2b569", + "name": "count" + } + ] + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}} ms" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(22,165,165,1)", + "fill": 0.5, + "formatter": "number", + "id": "c0019340-57a1-11e8-a049-ff54cef064a2", + "label": "Requests rate", + "line_width": 1, + "metrics": [ + { + "field": "kubernetes.apiserver.request.count", + "id": "c001ba50-57a1-11e8-a049-ff54cef064a2", + "type": "max" + }, + { + "field": "c001ba50-57a1-11e8-a049-ff54cef064a2", + "id": "dc83b390-57a1-11e8-a049-ff54cef064a2", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 1, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "API Server Requests [Metricbeat Kubernetes] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ec360ff0-57a0-11e8-afa2-e9067ea62228-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:35.256Z", + "version": "WzM5OTksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/kubernetes/module.yml b/metricbeat/module/kubernetes/module.yml index fa1025c81320..5c79a2dc2412 100644 --- a/metricbeat/module/kubernetes/module.yml +++ b/metricbeat/module/kubernetes/module.yml @@ -1,3 +1,3 @@ dashboards: - id: AV4RGUqo5NkDleZmzKuZ - file: Metricbeat-kubernetes-overview.ndjson + file: Metricbeat-kubernetes-overview.json diff --git a/metricbeat/module/mongodb/_meta/kibana/7/dashboard/Metricbeat-MongoDB-ecs.json b/metricbeat/module/mongodb/_meta/kibana/7/dashboard/Metricbeat-MongoDB-ecs.json new file mode 100644 index 000000000000..043886b327f8 --- /dev/null +++ b/metricbeat/module/mongodb/_meta/kibana/7/dashboard/Metricbeat-MongoDB-ecs.json @@ -0,0 +1,211 @@ +{ + "attributes": { + "description": "Overview of MongoDB server status", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 12, + "i": "1", + "w": 32, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 24, + "x": 0, + "y": 12 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 24, + "x": 24, + "y": 24 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4", + "w": 16, + "x": 32, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "5", + "w": 48, + "x": 0, + "y": 36 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6", + "w": 12, + "x": 24, + "y": 12 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "7", + "w": 12, + "x": 36, + "y": 12 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "8", + "w": 24, + "x": 0, + "y": 24 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat MongoDB] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Metricbeat-MongoDB-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "MongoDB-hosts-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "MongoDB-operation-counters-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "MongoDB-asserts-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "MongoDB-Engine-ampersand-Version-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "MongoDB-memory-stats-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "MongoDB-Concurrent-transactions-Read-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "MongoDB-Concurrent-transactions-Write-ecs", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "MongoDB-WiredTiger-Cache-ecs", + "name": "8:panel_8", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:40.399Z", + "version": "WzQwNTIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mongodb/_meta/kibana/7/dashboard/Metricbeat-mongodb-overview.ndjson b/metricbeat/module/mongodb/_meta/kibana/7/dashboard/Metricbeat-mongodb-overview.ndjson deleted file mode 100644 index 76da08fdd568..000000000000 --- a/metricbeat/module/mongodb/_meta/kibana/7/dashboard/Metricbeat-mongodb-overview.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module:mongodb\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"MongoDB search ECS","version":1},"coreMigrationVersion":"8.0.0","id":"MongoDB-search-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Hosts [Metricbeat MongoDB] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Number of connections\",\"field\":\"mongodb.status.connections.current\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"service.address\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Arch\",\"field\":\"mongodb.status.memory.bits\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Resident memory\",\"field\":\"mongodb.status.memory.resident.mb\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Virtual memory\",\"field\":\"mongodb.status.memory.virtual.mb\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Hosts [Metricbeat MongoDB] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-hosts-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Operation counters [Metricbeat MongoDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"command\",\"field\":\"mongodb.status.ops.counters.command\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"delete\",\"field\":\"mongodb.status.ops.counters.delete\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"getmore\",\"field\":\"mongodb.status.ops.counters.getmore\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"insert\",\"field\":\"mongodb.status.ops.counters.insert\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"query\",\"field\":\"mongodb.status.ops.counters.query\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"update\",\"field\":\"mongodb.status.ops.replicated.update\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"bottom\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Operation counters [Metricbeat MongoDB] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-operation-counters-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Asserts [Metricbeat MongoDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"message\",\"field\":\"mongodb.status.asserts.msg\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"regular\",\"field\":\"mongodb.status.asserts.regular\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"rollover\",\"field\":\"mongodb.status.asserts.rollovers\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"user\",\"field\":\"mongodb.status.asserts.user\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"warning\",\"field\":\"mongodb.status.asserts.warning\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"bottom\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Asserts [Metricbeat MongoDB] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-asserts-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Engine & Version [Metricbeat MongoDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"service.address\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Engine\",\"field\":\"mongodb.status.storage_engine.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Version\",\"field\":\"service.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Engine & Version [Metricbeat MongoDB] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-Engine-ampersand-Version-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Memory stats [Metricbeat MongoDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Mapped\",\"field\":\"mongodb.status.memory.mapped.mb\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Mapped with journal\",\"field\":\"mongodb.status.memory.mapped_with_journal.mb\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Rezident\",\"field\":\"mongodb.status.memory.resident.mb\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Virtual\",\"field\":\"mongodb.status.memory.virtual.mb\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"bottom\",\"radiusRatio\":9,\"scale\":\"log\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Memory stats [Metricbeat MongoDB] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-memory-stats-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Concurrent transactions Read [Metricbeat MongoDB] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Read Available\": \"#508642\", \"Read Used\": \"#BF1B00\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Read Available\",\"field\":\"mongodb.status.wired_tiger.concurrent_transactions.read.available\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Read Used\",\"field\":\"mongodb.status.wired_tiger.concurrent_transactions.read.out\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"bottom\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Concurrent transactions Read [Metricbeat MongoDB] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-Concurrent-transactions-Read-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Concurrent transactions Write [Metricbeat MongoDB] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Write Available\": \"#629E51\", \"Write Used\": \"#BF1B00\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Write Available\",\"field\":\"mongodb.status.wired_tiger.concurrent_transactions.write.available\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Write Used\",\"field\":\"mongodb.status.wired_tiger.concurrent_transactions.write.out\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"bottom\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Concurrent transactions Write [Metricbeat MongoDB] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-Concurrent-transactions-Write-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"WiredTiger Cache [Metricbeat MongoDB] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"max\",\"field\":\"mongodb.status.wired_tiger.cache.maximum.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"used\",\"field\":\"mongodb.status.wired_tiger.cache.used.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"dirty\",\"field\":\"mongodb.status.wired_tiger.cache.dirty.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"bottom\",\"mode\":\"overlap\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"WiredTiger Cache [Metricbeat MongoDB] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-WiredTiger-Cache-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNTAsMV0="} -{"attributes":{"description":"Overview of MongoDB server status","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":32,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":24,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":24,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":0,\"w\":16,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":36,\"w\":48,\"h\":16,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":12,\"w\":12,\"h\":12,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":36,\"y\":12,\"w\":12,\"h\":12,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":24,\"w\":24,\"h\":12,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Metricbeat MongoDB] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Metricbeat-MongoDB-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"MongoDB-hosts-ecs","name":"1:panel_1","type":"visualization"},{"id":"MongoDB-operation-counters-ecs","name":"2:panel_2","type":"visualization"},{"id":"MongoDB-asserts-ecs","name":"3:panel_3","type":"visualization"},{"id":"MongoDB-Engine-ampersand-Version-ecs","name":"4:panel_4","type":"visualization"},{"id":"MongoDB-memory-stats-ecs","name":"5:panel_5","type":"visualization"},{"id":"MongoDB-Concurrent-transactions-Read-ecs","name":"6:panel_6","type":"visualization"},{"id":"MongoDB-Concurrent-transactions-Write-ecs","name":"7:panel_7","type":"visualization"},{"id":"MongoDB-WiredTiger-Cache-ecs","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:40.399Z","version":"WzQwNTIsMV0="} diff --git a/metricbeat/module/mongodb/_meta/kibana/7/search/MongoDB-search-ecs.json b/metricbeat/module/mongodb/_meta/kibana/7/search/MongoDB-search-ecs.json new file mode 100644 index 000000000000..e323d2a0e143 --- /dev/null +++ b/metricbeat/module/mongodb/_meta/kibana/7/search/MongoDB-search-ecs.json @@ -0,0 +1,55 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.module:mongodb" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "MongoDB search ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "MongoDB-search-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:31:40.399Z", + "version": "WzQwNTEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-Concurrent-transactions-Read-ecs.json b/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-Concurrent-transactions-Read-ecs.json new file mode 100644 index 000000000000..be4aba7ed73d --- /dev/null +++ b/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-Concurrent-transactions-Read-ecs.json @@ -0,0 +1,159 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Concurrent transactions Read [Metricbeat MongoDB] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "Read Available": "#508642", + "Read Used": "#BF1B00" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Read Available", + "field": "mongodb.status.wired_tiger.concurrent_transactions.read.available" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Read Used", + "field": "mongodb.status.wired_tiger.concurrent_transactions.read.out" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "defaultYExtents": false, + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "isVislibVis": true, + "legendPosition": "bottom", + "mode": "stacked", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "shareYAxis": true, + "smoothLines": false, + "times": [], + "type": "area", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ], + "yAxis": {} + }, + "title": "Concurrent transactions Read [Metricbeat MongoDB] ECS", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "MongoDB-Concurrent-transactions-Read-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MongoDB-search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:40.399Z", + "version": "WzQwNDYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-Concurrent-transactions-Write-ecs.json b/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-Concurrent-transactions-Write-ecs.json new file mode 100644 index 000000000000..078db919d4ef --- /dev/null +++ b/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-Concurrent-transactions-Write-ecs.json @@ -0,0 +1,159 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Concurrent transactions Write [Metricbeat MongoDB] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "Write Available": "#629E51", + "Write Used": "#BF1B00" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Write Available", + "field": "mongodb.status.wired_tiger.concurrent_transactions.write.available" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Write Used", + "field": "mongodb.status.wired_tiger.concurrent_transactions.write.out" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "defaultYExtents": false, + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "isVislibVis": true, + "legendPosition": "bottom", + "mode": "stacked", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "shareYAxis": true, + "smoothLines": false, + "times": [], + "type": "area", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ], + "yAxis": {} + }, + "title": "Concurrent transactions Write [Metricbeat MongoDB] ECS", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "MongoDB-Concurrent-transactions-Write-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MongoDB-search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:40.399Z", + "version": "WzQwNDcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-Engine-ampersand-Version-ecs.json b/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-Engine-ampersand-Version-ecs.json new file mode 100644 index 000000000000..27367c82243e --- /dev/null +++ b/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-Engine-ampersand-Version-ecs.json @@ -0,0 +1,83 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Engine & Version [Metricbeat MongoDB] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "service.address" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Engine", + "field": "mongodb.status.storage_engine.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Version", + "field": "service.version", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "shareYAxis": true, + "type": "pie" + }, + "title": "Engine & Version [Metricbeat MongoDB] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "MongoDB-Engine-ampersand-Version-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MongoDB-search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:40.399Z", + "version": "WzQwNDQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-WiredTiger-Cache-ecs.json b/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-WiredTiger-Cache-ecs.json new file mode 100644 index 000000000000..d99de6dbd030 --- /dev/null +++ b/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-WiredTiger-Cache-ecs.json @@ -0,0 +1,162 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "WiredTiger Cache [Metricbeat MongoDB] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "max", + "field": "mongodb.status.wired_tiger.cache.maximum.bytes" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "used", + "field": "mongodb.status.wired_tiger.cache.used.bytes" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "dirty", + "field": "mongodb.status.wired_tiger.cache.dirty.bytes" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "defaultYExtents": false, + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "isVislibVis": true, + "legendPosition": "bottom", + "mode": "overlap", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "shareYAxis": true, + "smoothLines": false, + "times": [], + "type": "area", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ], + "yAxis": {} + }, + "title": "WiredTiger Cache [Metricbeat MongoDB] ECS", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "MongoDB-WiredTiger-Cache-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MongoDB-search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:40.399Z", + "version": "WzQwNTAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-asserts-ecs.json b/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-asserts-ecs.json new file mode 100644 index 000000000000..7cf5b40ae94c --- /dev/null +++ b/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-asserts-ecs.json @@ -0,0 +1,182 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Asserts [Metricbeat MongoDB] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "message", + "field": "mongodb.status.asserts.msg" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "regular", + "field": "mongodb.status.asserts.regular" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "rollover", + "field": "mongodb.status.asserts.rollovers" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "user", + "field": "mongodb.status.asserts.user" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "warning", + "field": "mongodb.status.asserts.warning" + }, + "schema": "metric", + "type": "max" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "defaultYExtents": false, + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "isVislibVis": true, + "legendPosition": "bottom", + "mode": "stacked", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "shareYAxis": true, + "smoothLines": false, + "times": [], + "type": "area", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ], + "yAxis": {} + }, + "title": "Asserts [Metricbeat MongoDB] ECS", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "MongoDB-asserts-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MongoDB-search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:40.399Z", + "version": "WzQwNDksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-hosts-ecs.json b/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-hosts-ecs.json new file mode 100644 index 000000000000..d435592faf91 --- /dev/null +++ b/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-hosts-ecs.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Hosts [Metricbeat MongoDB] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Number of connections", + "field": "mongodb.status.connections.current" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "service.address", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Arch", + "field": "mongodb.status.memory.bits" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Resident memory", + "field": "mongodb.status.memory.resident.mb" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Virtual memory", + "field": "mongodb.status.memory.virtual.mb" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Hosts [Metricbeat MongoDB] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "MongoDB-hosts-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MongoDB-search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:40.399Z", + "version": "WzQwNDMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-memory-stats-ecs.json b/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-memory-stats-ecs.json new file mode 100644 index 000000000000..e664e189e2d6 --- /dev/null +++ b/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-memory-stats-ecs.json @@ -0,0 +1,173 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Memory stats [Metricbeat MongoDB] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Mapped", + "field": "mongodb.status.memory.mapped.mb" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Mapped with journal", + "field": "mongodb.status.memory.mapped_with_journal.mb" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Rezident", + "field": "mongodb.status.memory.resident.mb" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Virtual", + "field": "mongodb.status.memory.virtual.mb" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "defaultYExtents": false, + "detailedTooltip": true, + "drawLinesBetweenPoints": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "isVislibVis": true, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "radiusRatio": 9, + "scale": "log", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "shareYAxis": true, + "showCircles": true, + "smoothLines": false, + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ], + "yAxis": {} + }, + "title": "Memory stats [Metricbeat MongoDB] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "MongoDB-memory-stats-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MongoDB-search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:40.399Z", + "version": "WzQwNDgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-operation-counters-ecs.json b/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-operation-counters-ecs.json new file mode 100644 index 000000000000..e9b47c848ff6 --- /dev/null +++ b/metricbeat/module/mongodb/_meta/kibana/7/visualization/MongoDB-operation-counters-ecs.json @@ -0,0 +1,192 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Operation counters [Metricbeat MongoDB] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "command", + "field": "mongodb.status.ops.counters.command" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "delete", + "field": "mongodb.status.ops.counters.delete" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "getmore", + "field": "mongodb.status.ops.counters.getmore" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "insert", + "field": "mongodb.status.ops.counters.insert" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "query", + "field": "mongodb.status.ops.counters.query" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "7", + "params": { + "customLabel": "update", + "field": "mongodb.status.ops.replicated.update" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "defaultYExtents": false, + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "isVislibVis": true, + "legendPosition": "bottom", + "mode": "stacked", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "shareYAxis": true, + "smoothLines": false, + "times": [], + "type": "area", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ], + "yAxis": {} + }, + "title": "Operation counters [Metricbeat MongoDB] ECS", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "MongoDB-operation-counters-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MongoDB-search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:40.399Z", + "version": "WzQwNDUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mongodb/module.yml b/metricbeat/module/mongodb/module.yml index a80aace66f6f..3a523a410e24 100644 --- a/metricbeat/module/mongodb/module.yml +++ b/metricbeat/module/mongodb/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Metricbeat-MongoDB - file: Metricbeat-mongodb-overview.ndjson + file: Metricbeat-mongodb-overview.json diff --git a/metricbeat/module/mysql/_meta/kibana/7/dashboard/57b3fb50-6309-11ea-a83e-25b8612d00cc.json b/metricbeat/module/mysql/_meta/kibana/7/dashboard/57b3fb50-6309-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..151b507098d1 --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/dashboard/57b3fb50-6309-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,388 @@ +{ + "attributes": { + "description": "Overview of MySQL server", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "14", + "w": 16, + "x": 15, + "y": 38 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "title": "Open Tables, Files, Streams", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "050b110b-0b4d-404a-86c0-fa97f7eed2a0", + "w": 16, + "x": 0, + "y": 0 + }, + "panelIndex": "050b110b-0b4d-404a-86c0-fa97f7eed2a0", + "panelRefName": "panel_050b110b-0b4d-404a-86c0-fa97f7eed2a0", + "title": "Rate of Questions", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "988a61d7-ac3e-481e-a6ae-aa75aaa32a3a", + "w": 16, + "x": 16, + "y": 0 + }, + "panelIndex": "988a61d7-ac3e-481e-a6ae-aa75aaa32a3a", + "panelRefName": "panel_988a61d7-ac3e-481e-a6ae-aa75aaa32a3a", + "title": "Rate of SELECT statements", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "a1f8fa38-a62f-4e05-adde-e995dae9ad83", + "w": 16, + "x": 32, + "y": 0 + }, + "panelIndex": "a1f8fa38-a62f-4e05-adde-e995dae9ad83", + "panelRefName": "panel_a1f8fa38-a62f-4e05-adde-e995dae9ad83", + "title": "Rate of INSERT, UPDATE, DELETE", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "d126fb61-605f-43af-b5d5-3fa3c128f726", + "w": 6, + "x": 0, + "y": 12 + }, + "panelIndex": "d126fb61-605f-43af-b5d5-3fa3c128f726", + "panelRefName": "panel_d126fb61-605f-43af-b5d5-3fa3c128f726", + "title": "Connected Threads", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "59586d96-3abd-48a3-a258-cfd620826ec2", + "w": 14, + "x": 6, + "y": 12 + }, + "panelIndex": "59586d96-3abd-48a3-a258-cfd620826ec2", + "panelRefName": "panel_59586d96-3abd-48a3-a258-cfd620826ec2", + "title": "Connections", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "dd0cf202-fe22-4daf-8f25-09c64d412bf3", + "w": 14, + "x": 20, + "y": 12 + }, + "panelIndex": "dd0cf202-fe22-4daf-8f25-09c64d412bf3", + "panelRefName": "panel_dd0cf202-fe22-4daf-8f25-09c64d412bf3", + "title": "Aborted Connections Rate", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "ead16a55-a2d3-49ae-a09b-a0b03560e9a0", + "w": 14, + "x": 34, + "y": 12 + }, + "panelIndex": "ead16a55-a2d3-49ae-a09b-a0b03560e9a0", + "panelRefName": "panel_ead16a55-a2d3-49ae-a09b-a0b03560e9a0", + "title": "Thread Activity", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "24fc2926-610d-4910-8f3e-eb63ca69788c", + "w": 15, + "x": 0, + "y": 24 + }, + "panelIndex": "24fc2926-610d-4910-8f3e-eb63ca69788c", + "panelRefName": "panel_24fc2926-610d-4910-8f3e-eb63ca69788c", + "title": "Buffer Pool Pages", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "33c10c95-be67-492e-afb5-863f375cffc2", + "w": 16, + "x": 15, + "y": 24 + }, + "panelIndex": "33c10c95-be67-492e-afb5-863f375cffc2", + "panelRefName": "panel_33c10c95-be67-492e-afb5-863f375cffc2", + "title": "Buffer Pool Utilization", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "d35d7c5e-8832-40e2-8c77-953ad320c853", + "w": 17, + "x": 31, + "y": 24 + }, + "panelIndex": "d35d7c5e-8832-40e2-8c77-953ad320c853", + "panelRefName": "panel_d35d7c5e-8832-40e2-8c77-953ad320c853", + "title": "Buffer Pool Efficiency", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "3cd58868-0d03-4715-9ecc-9fba3cde47c1", + "w": 15, + "x": 0, + "y": 38 + }, + "panelIndex": "3cd58868-0d03-4715-9ecc-9fba3cde47c1", + "panelRefName": "panel_3cd58868-0d03-4715-9ecc-9fba3cde47c1", + "title": "Network Traffic", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "277c8209-3c5f-41f5-95f4-de0782917fba", + "w": 17, + "x": 31, + "y": 38 + }, + "panelIndex": "277c8209-3c5f-41f5-95f4-de0782917fba", + "panelRefName": "panel_277c8209-3c5f-41f5-95f4-de0782917fba", + "title": "Open Tables Cache", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "9487b742-3e7f-4d57-af32-014ad360235c", + "w": 13, + "x": 0, + "y": 53 + }, + "panelIndex": "9487b742-3e7f-4d57-af32-014ad360235c", + "panelRefName": "panel_9487b742-3e7f-4d57-af32-014ad360235c", + "title": "Connection Errors", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "00cd9f15-01bd-43f3-a8c5-43d6ff17dad3", + "w": 20, + "x": 13, + "y": 53 + }, + "panelIndex": "00cd9f15-01bd-43f3-a8c5-43d6ff17dad3", + "panelRefName": "panel_00cd9f15-01bd-43f3-a8c5-43d6ff17dad3", + "title": "Commands Operations", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "cd4deb30-c0dd-4f23-8868-ecffd73b2406", + "w": 15, + "x": 33, + "y": 53 + }, + "panelIndex": "cd4deb30-c0dd-4f23-8868-ecffd73b2406", + "panelRefName": "panel_cd4deb30-c0dd-4f23-8868-ecffd73b2406", + "title": "SSL Cache", + "type": "visualization", + "version": "7.7.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat MySQL] Database Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "57b3fb50-6309-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "aaa326b0-f1f5-11e7-85ab-594b1652e0d1-ecs", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "4fa69a10-630b-11ea-a83e-25b8612d00cc", + "name": "050b110b-0b4d-404a-86c0-fa97f7eed2a0:panel_050b110b-0b4d-404a-86c0-fa97f7eed2a0", + "type": "visualization" + }, + { + "id": "7ea77d30-630a-11ea-a83e-25b8612d00cc", + "name": "988a61d7-ac3e-481e-a6ae-aa75aaa32a3a:panel_988a61d7-ac3e-481e-a6ae-aa75aaa32a3a", + "type": "visualization" + }, + { + "id": "779ee920-6309-11ea-a83e-25b8612d00cc", + "name": "a1f8fa38-a62f-4e05-adde-e995dae9ad83:panel_a1f8fa38-a62f-4e05-adde-e995dae9ad83", + "type": "visualization" + }, + { + "id": "fc6b5a40-630d-11ea-a83e-25b8612d00cc", + "name": "d126fb61-605f-43af-b5d5-3fa3c128f726:panel_d126fb61-605f-43af-b5d5-3fa3c128f726", + "type": "visualization" + }, + { + "id": "493e8460-630d-11ea-a83e-25b8612d00cc", + "name": "59586d96-3abd-48a3-a258-cfd620826ec2:panel_59586d96-3abd-48a3-a258-cfd620826ec2", + "type": "visualization" + }, + { + "id": "bf60bc10-639b-11ea-a83e-25b8612d00cc", + "name": "dd0cf202-fe22-4daf-8f25-09c64d412bf3:panel_dd0cf202-fe22-4daf-8f25-09c64d412bf3", + "type": "visualization" + }, + { + "id": "822df290-630f-11ea-a83e-25b8612d00cc", + "name": "ead16a55-a2d3-49ae-a09b-a0b03560e9a0:panel_ead16a55-a2d3-49ae-a09b-a0b03560e9a0", + "type": "visualization" + }, + { + "id": "98c7bca0-63a2-11ea-a83e-25b8612d00cc", + "name": "24fc2926-610d-4910-8f3e-eb63ca69788c:panel_24fc2926-610d-4910-8f3e-eb63ca69788c", + "type": "visualization" + }, + { + "id": "96d46630-63a4-11ea-a83e-25b8612d00cc", + "name": "33c10c95-be67-492e-afb5-863f375cffc2:panel_33c10c95-be67-492e-afb5-863f375cffc2", + "type": "visualization" + }, + { + "id": "a1e00160-63a4-11ea-a83e-25b8612d00cc", + "name": "d35d7c5e-8832-40e2-8c77-953ad320c853:panel_d35d7c5e-8832-40e2-8c77-953ad320c853", + "type": "visualization" + }, + { + "id": "c8661020-6310-11ea-a83e-25b8612d00cc", + "name": "3cd58868-0d03-4715-9ecc-9fba3cde47c1:panel_3cd58868-0d03-4715-9ecc-9fba3cde47c1", + "type": "visualization" + }, + { + "id": "cd72e030-c6a6-11ea-a106-5be590f42b74", + "name": "277c8209-3c5f-41f5-95f4-de0782917fba:panel_277c8209-3c5f-41f5-95f4-de0782917fba", + "type": "visualization" + }, + { + "id": "0774bbb0-c69c-11ea-a106-5be590f42b74", + "name": "9487b742-3e7f-4d57-af32-014ad360235c:panel_9487b742-3e7f-4d57-af32-014ad360235c", + "type": "visualization" + }, + { + "id": "3e5c4490-c6a1-11ea-a106-5be590f42b74", + "name": "00cd9f15-01bd-43f3-a8c5-43d6ff17dad3:panel_00cd9f15-01bd-43f3-a8c5-43d6ff17dad3", + "type": "visualization" + }, + { + "id": "8b276c80-c6ad-11ea-a106-5be590f42b74", + "name": "cd4deb30-c0dd-4f23-8868-ecffd73b2406:panel_cd4deb30-c0dd-4f23-8868-ecffd73b2406", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwNjgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/_meta/kibana/7/dashboard/Metricbeat-mysql-overview.ndjson b/metricbeat/module/mysql/_meta/kibana/7/dashboard/Metricbeat-mysql-overview.ndjson deleted file mode 100644 index c96bf6160b16..000000000000 --- a/metricbeat/module/mysql/_meta/kibana/7/dashboard/Metricbeat-mysql-overview.ndjson +++ /dev/null @@ -1,17 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Open tables, files, streams [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Open Tables\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.open.tables\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"id\":\"615a2400-6312-11ea-99e6-b5eed31db613\",\"label\":\"Open Files\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.open.files\",\"id\":\"615a2401-6312-11ea-99e6-b5eed31db613\",\"type\":\"avg\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"id\":\"15d7bcd0-6313-11ea-99e6-b5eed31db613\",\"label\":\"Open Streams\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.open.streams\",\"id\":\"15d7bcd1-6313-11ea-99e6-b5eed31db613\",\"type\":\"avg\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Open tables, files, streams [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"aaa326b0-f1f5-11e7-85ab-594b1652e0d1-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Question rates [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"d61928d0-6309-11ea-99e6-b5eed31db613\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"right\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":\"0.3\",\"formatter\":\"'0.0a'\",\"id\":\"3c2a2a40-f1f4-11e7-a752-236fe3270d99\",\"label\":\"SELECT\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.questions\",\"id\":\"3c2a2a41-f1f4-11e7-a752-236fe3270d99\",\"type\":\"max\"},{\"field\":\"3c2a2a41-f1f4-11e7-a752-236fe3270d99\",\"id\":\"3c2a2a42-f1f4-11e7-a752-236fe3270d99\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"3c2a2a42-f1f4-11e7-a752-236fe3270d99\",\"id\":\"82f59710-6309-11ea-99e6-b5eed31db613\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Question rates [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4fa69a10-630b-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SELECT rates [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"d61928d0-6309-11ea-99e6-b5eed31db613\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"right\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0.3\",\"formatter\":\"'0.0a'\",\"id\":\"3c2a2a40-f1f4-11e7-a752-236fe3270d99\",\"label\":\"SELECT\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.command.select\",\"id\":\"3c2a2a41-f1f4-11e7-a752-236fe3270d99\",\"type\":\"max\"},{\"field\":\"3c2a2a41-f1f4-11e7-a752-236fe3270d99\",\"id\":\"3c2a2a42-f1f4-11e7-a752-236fe3270d99\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"3c2a2a42-f1f4-11e7-a752-236fe3270d99\",\"id\":\"82f59710-6309-11ea-99e6-b5eed31db613\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SELECT rates [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7ea77d30-630a-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Insert, Update, Delete rates [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"d61928d0-6309-11ea-99e6-b5eed31db613\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"id\":\"3c2a2a40-f1f4-11e7-a752-236fe3270d99\",\"label\":\"INSERT\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.command.insert\",\"id\":\"3c2a2a41-f1f4-11e7-a752-236fe3270d99\",\"type\":\"max\"},{\"field\":\"3c2a2a41-f1f4-11e7-a752-236fe3270d99\",\"id\":\"3c2a2a42-f1f4-11e7-a752-236fe3270d99\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"3c2a2a42-f1f4-11e7-a752-236fe3270d99\",\"id\":\"82f59710-6309-11ea-99e6-b5eed31db613\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"id\":\"485ce050-f1f4-11e7-a752-236fe3270d99\",\"label\":\"UPDATE\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.command.update\",\"id\":\"485ce051-f1f4-11e7-a752-236fe3270d99\",\"type\":\"max\"},{\"field\":\"485ce051-f1f4-11e7-a752-236fe3270d99\",\"id\":\"485ce052-f1f4-11e7-a752-236fe3270d99\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"485ce052-f1f4-11e7-a752-236fe3270d99\",\"id\":\"a4092660-6309-11ea-99e6-b5eed31db613\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"id\":\"543a4a70-f1f4-11e7-a752-236fe3270d99\",\"label\":\"DELETE\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.command.delete\",\"id\":\"543a4a71-f1f4-11e7-a752-236fe3270d99\",\"type\":\"max\"},{\"field\":\"543a4a71-f1f4-11e7-a752-236fe3270d99\",\"id\":\"543a4a72-f1f4-11e7-a752-236fe3270d99\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"543a4a72-f1f4-11e7-a752-236fe3270d99\",\"id\":\"bae29b50-6309-11ea-99e6-b5eed31db613\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Insert, Update, Delete rates [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"779ee920-6309-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connected Threads [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"d5fcf170-630d-11ea-99e6-b5eed31db613\"}],\"gauge_color_rules\":[{\"id\":\"f1321f60-630d-11ea-99e6-b5eed31db613\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,0.89)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"id\":\"fe9af660-630b-11ea-99e6-b5eed31db613\",\"label\":\"Connections\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.threads.connected\",\"id\":\"fe9af661-630b-11ea-99e6-b5eed31db613\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Connected Threads [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fc6b5a40-630d-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(198,135,31,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Connection rate\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.connections\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"caee3e70-630c-11ea-99e6-b5eed31db613\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"caee3e70-630c-11ea-99e6-b5eed31db613\",\"id\":\"d4eb4fd0-630c-11ea-99e6-b5eed31db613\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,0.89)\",\"fill\":\"0.3\",\"formatter\":\"number\",\"id\":\"fe9af660-630b-11ea-99e6-b5eed31db613\",\"label\":\"Connected\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.threads.connected\",\"id\":\"fe9af661-630b-11ea-99e6-b5eed31db613\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"e3d46bf0-630f-11ea-99e6-b5eed31db613\",\"label\":\"Max Used Connections\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.max_used_connections\",\"id\":\"e3d46bf1-630f-11ea-99e6-b5eed31db613\",\"type\":\"avg\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Connections [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"493e8460-630d-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Aborted Connections Rate [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"d61928d0-6309-11ea-99e6-b5eed31db613\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":\"0.3\",\"formatter\":\"'0.0a'\",\"id\":\"3c2a2a40-f1f4-11e7-a752-236fe3270d99\",\"label\":\"Aborted Connections\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.aborted.clients\",\"id\":\"3c2a2a41-f1f4-11e7-a752-236fe3270d99\",\"type\":\"max\"},{\"field\":\"3c2a2a41-f1f4-11e7-a752-236fe3270d99\",\"id\":\"6d053540-639b-11ea-83d6-4f7a6fe5aed4\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"6d053540-639b-11ea-83d6-4f7a6fe5aed4\",\"id\":\"7548afc0-639b-11ea-83d6-4f7a6fe5aed4\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"d6572ee0-639b-11ea-83d6-4f7a6fe5aed4\",\"label\":\"Failed Attempts to Connect \",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.aborted.connects\",\"id\":\"d6572ee1-639b-11ea-83d6-4f7a6fe5aed4\",\"type\":\"max\"},{\"field\":\"d6572ee1-639b-11ea-83d6-4f7a6fe5aed4\",\"id\":\"e4a63540-639b-11ea-83d6-4f7a6fe5aed4\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"id\":\"ec492a00-639b-11ea-83d6-4f7a6fe5aed4\",\"type\":\"positive_only\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Aborted Connections Rate [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bf60bc10-639b-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Thread Activity [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Avg Threads Running\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.threads.running\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"895f0820-630e-11ea-99e6-b5eed31db613\",\"label\":\"Peak Threads Running\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.threads.running\",\"id\":\"895f0821-630e-11ea-99e6-b5eed31db613\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(77,77,77,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"f8752460-630e-11ea-99e6-b5eed31db613\",\"label\":\"Peak Threads Connected\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.threads.connected\",\"id\":\"f8752461-630e-11ea-99e6-b5eed31db613\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Thread Activity [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"822df290-630f-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Buffer Pool Pages [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"515b9dd0-639f-11ea-96d8-1943b9bb65d9\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"'0.0a'\",\"id\":\"37f2d600-63a0-11ea-90a2-c51229c5db5f\",\"label\":\"Buffer Pool Pages Data\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.innodb.buffer_pool.pages.data\",\"id\":\"37f2d601-63a0-11ea-90a2-c51229c5db5f\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0\",\"formatter\":\"'0.0a'\",\"id\":\"57ae9d80-63a0-11ea-90a2-c51229c5db5f\",\"label\":\"Buffer Pool Pages Free\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.innodb.buffer_pool.pages.free\",\"id\":\"57ae9d81-63a0-11ea-90a2-c51229c5db5f\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(102,102,102,1)\",\"fill\":\"0\",\"formatter\":\"'0.0a'\",\"id\":\"c86cc470-63a0-11ea-90a2-c51229c5db5f\",\"label\":\"Buffer Pool Pages Total\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.innodb.buffer_pool.pages.total\",\"id\":\"c86ceb80-63a0-11ea-90a2-c51229c5db5f\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Buffer Pool Pages [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"98c7bca0-63a2-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Buffer Pool Utilization [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0f20fa60-63a3-11ea-90a2-c51229c5db5f\"}],\"bar_color_rules\":[{\"id\":\"0e1ecca0-63a3-11ea-90a2-c51229c5db5f\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"07c08ce0-63a3-11ea-90a2-c51229c5db5f\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"515b9dd0-639f-11ea-96d8-1943b9bb65d9\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":\"0.1\",\"formatter\":\"percent\",\"id\":\"256f1f40-63a3-11ea-90a2-c51229c5db5f\",\"label\":\"Utilization\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.innodb.buffer_pool.pages.total\",\"id\":\"256f1f41-63a3-11ea-90a2-c51229c5db5f\",\"type\":\"max\"},{\"field\":\"mysql.status.innodb.buffer_pool.pages.free\",\"id\":\"256f1f43-63a3-11ea-90a2-c51229c5db5f\",\"type\":\"max\"},{\"id\":\"256f1f45-63a3-11ea-90a2-c51229c5db5f\",\"script\":\"params.total != null && params.total > 0 ? (params.total - params.free)/params.total : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"256f1f41-63a3-11ea-90a2-c51229c5db5f\",\"id\":\"256f1f42-63a3-11ea-90a2-c51229c5db5f\",\"name\":\"total\"},{\"field\":\"256f1f43-63a3-11ea-90a2-c51229c5db5f\",\"id\":\"256f1f44-63a3-11ea-90a2-c51229c5db5f\",\"name\":\"free\"}]}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Buffer Pool Utilization [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"96d46630-63a4-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Buffer Pool Efficiency [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0f20fa60-63a3-11ea-90a2-c51229c5db5f\"}],\"bar_color_rules\":[{\"id\":\"0e1ecca0-63a3-11ea-90a2-c51229c5db5f\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"07c08ce0-63a3-11ea-90a2-c51229c5db5f\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"515b9dd0-639f-11ea-96d8-1943b9bb65d9\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(87,177,211,1)\",\"fill\":\"0.1\",\"formatter\":\"number\",\"hidden\":false,\"id\":\"a397d570-63a2-11ea-90a2-c51229c5db5f\",\"label\":\"Effeciency (lower is better)\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"mysql.status.innodb.buffer_pool.pool.reads\",\"id\":\"a397d571-63a2-11ea-90a2-c51229c5db5f\",\"type\":\"max\"},{\"field\":\"mysql.status.innodb.buffer_pool.read.requests\",\"id\":\"ad177970-63a2-11ea-90a2-c51229c5db5f\",\"type\":\"max\"},{\"id\":\"af58ddf0-63a2-11ea-90a2-c51229c5db5f\",\"script\":\"params.pool_read_requests != null && params.pool_read_requests > 0 ? (params.pool_reads/params.pool_read_requests) * 100: null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"a397d571-63a2-11ea-90a2-c51229c5db5f\",\"id\":\"b1b6cb20-63a2-11ea-90a2-c51229c5db5f\",\"name\":\"pool_reads\"},{\"field\":\"ad177970-63a2-11ea-90a2-c51229c5db5f\",\"id\":\"c3fe5be0-63a2-11ea-90a2-c51229c5db5f\",\"name\":\"pool_read_requests\"}]}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Buffer Pool Efficiency [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a1e00160-63a4-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Network Traffic [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,98,177,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"2b1c2390-f1f7-11e7-a752-236fe3270d99\",\"label\":\"Received bytes\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.bytes.received\",\"id\":\"2b1c2391-f1f7-11e7-a752-236fe3270d99\",\"type\":\"max\"},{\"field\":\"2b1c2391-f1f7-11e7-a752-236fe3270d99\",\"id\":\"2b1c2392-f1f7-11e7-a752-236fe3270d99\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"2b1c2392-f1f7-11e7-a752-236fe3270d99\",\"id\":\"788d3c90-6310-11ea-99e6-b5eed31db613\",\"type\":\"positive_only\",\"unit\":\"\"},{\"id\":\"88f8e160-6310-11ea-99e6-b5eed31db613\",\"script\":\"params.received != null && params.received > 0 ? params.received * -1 : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"788d3c90-6310-11ea-99e6-b5eed31db613\",\"id\":\"8beb4660-6310-11ea-99e6-b5eed31db613\",\"name\":\"received\"}]}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Sent bytes\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.bytes.sent\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"23cfda50-f1f7-11e7-a752-236fe3270d99\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"23cfda50-f1f7-11e7-a752-236fe3270d99\",\"id\":\"ad26a900-6310-11ea-99e6-b5eed31db613\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Network Traffic [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c8661020-6310-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwODAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Open Tables Cache [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Hits\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.cache.table.open_cache.hits\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"534a23e0-c6a6-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"60ab20c0-c6a6-11ea-880f-352bebf10188\",\"label\":\"Misses\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.cache.table.open_cache.misses\",\"id\":\"60ab47d0-c6a6-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"60ab47d0-c6a6-11ea-880f-352bebf10188\",\"id\":\"6a1519e0-c6a6-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"69113e70-c6a6-11ea-880f-352bebf10188\",\"label\":\"Overflows\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.cache.table.open_cache.overflows\",\"id\":\"69113e71-c6a6-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"69113e71-c6a6-11ea-880f-352bebf10188\",\"id\":\"75a108a0-c6a6-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Open Tables Cache [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cd72e030-c6a6-11ea-a106-5be590f42b74","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwODEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connection Errors [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Max\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.connection.errors.max\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"percentiles\":[{\"id\":\"968f0500-c69a-11ea-880f-352bebf10188\",\"mode\":\"line\",\"shade\":0.2,\"value\":50}],\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"a088e210-c69a-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a61998a0-c69a-11ea-880f-352bebf10188\",\"label\":\"Accept\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.connection.errors.accept\",\"id\":\"a61998a1-c69a-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"a61998a1-c69a-11ea-880f-352bebf10188\",\"id\":\"a8f8c3c0-c69a-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"b6a26260-c69a-11ea-880f-352bebf10188\",\"label\":\"Internal\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.connection.errors.internal\",\"id\":\"b6a26261-c69a-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"b6a26261-c69a-11ea-880f-352bebf10188\",\"id\":\"c09d02c0-c69a-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c713d390-c69a-11ea-880f-352bebf10188\",\"label\":\"Select\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.connection.errors.select\",\"id\":\"c713d391-c69a-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"c713d391-c69a-11ea-880f-352bebf10188\",\"id\":\"4ace8360-c69b-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(253,161,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"50c798b0-c69b-11ea-880f-352bebf10188\",\"label\":\"Peer Address\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.connection.errors.peer_address\",\"id\":\"50c798b1-c69b-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"50c798b1-c69b-11ea-880f-352bebf10188\",\"id\":\"78d49650-c69b-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Connection Errors [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0774bbb0-c69c-11ea-a106-5be590f42b74","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwODIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Commands Operations [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Select\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.command.select\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"e76f75d0-c6a0-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(219,223,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"ed3a0110-c6a0-11ea-880f-352bebf10188\",\"label\":\"Update\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.command.update\",\"id\":\"ed3a0111-c6a0-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"ed3a0111-c6a0-11ea-880f-352bebf10188\",\"id\":\"f961e1b0-c6a0-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"00b3f750-c6a1-11ea-880f-352bebf10188\",\"label\":\"Delete\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.command.delete\",\"id\":\"00b3f751-c6a1-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"00b3f751-c6a1-11ea-880f-352bebf10188\",\"id\":\"09f46f70-c6a1-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"0f38dac0-c6a1-11ea-880f-352bebf10188\",\"label\":\"Insert\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.command.insert\",\"id\":\"0f38dac1-c6a1-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"0f38dac1-c6a1-11ea-880f-352bebf10188\",\"id\":\"1d1cc340-c6a1-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Commands Operations [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3e5c4490-c6a1-11ea-a106-5be590f42b74","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwODMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SSL Cache [Metricbeat MySQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Hits\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.cache.ssl.hits\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"1a353d40-c6ad-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(253,161,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"2dd02900-c6ad-11ea-880f-352bebf10188\",\"label\":\"Misses\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.cache.ssl.misses\",\"id\":\"2dd02901-c6ad-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"2dd02901-c6ad-11ea-880f-352bebf10188\",\"id\":\"327cc120-c6ad-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"3f459cb0-c6ad-11ea-880f-352bebf10188\",\"label\":\"Size\",\"line_width\":1,\"metrics\":[{\"field\":\"mysql.status.cache.ssl.size\",\"id\":\"3f459cb1-c6ad-11ea-880f-352bebf10188\",\"type\":\"max\"},{\"field\":\"3f459cb1-c6ad-11ea-880f-352bebf10188\",\"id\":\"426ccd50-c6ad-11ea-880f-352bebf10188\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SSL Cache [Metricbeat MySQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8b276c80-c6ad-11ea-a106-5be590f42b74","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwODQsMV0="} -{"attributes":{"description":"Overview of MySQL server","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"14\",\"w\":16,\"x\":15,\"y\":38},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Open Tables, Files, Streams\",\"panelRefName\":\"panel_14\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"050b110b-0b4d-404a-86c0-fa97f7eed2a0\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"050b110b-0b4d-404a-86c0-fa97f7eed2a0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Rate of Questions\",\"panelRefName\":\"panel_050b110b-0b4d-404a-86c0-fa97f7eed2a0\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"988a61d7-ac3e-481e-a6ae-aa75aaa32a3a\",\"w\":16,\"x\":16,\"y\":0},\"panelIndex\":\"988a61d7-ac3e-481e-a6ae-aa75aaa32a3a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Rate of SELECT statements\",\"panelRefName\":\"panel_988a61d7-ac3e-481e-a6ae-aa75aaa32a3a\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"a1f8fa38-a62f-4e05-adde-e995dae9ad83\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"a1f8fa38-a62f-4e05-adde-e995dae9ad83\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Rate of INSERT, UPDATE, DELETE\",\"panelRefName\":\"panel_a1f8fa38-a62f-4e05-adde-e995dae9ad83\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"d126fb61-605f-43af-b5d5-3fa3c128f726\",\"w\":6,\"x\":0,\"y\":12},\"panelIndex\":\"d126fb61-605f-43af-b5d5-3fa3c128f726\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Connected Threads\",\"panelRefName\":\"panel_d126fb61-605f-43af-b5d5-3fa3c128f726\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"59586d96-3abd-48a3-a258-cfd620826ec2\",\"w\":14,\"x\":6,\"y\":12},\"panelIndex\":\"59586d96-3abd-48a3-a258-cfd620826ec2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Connections\",\"panelRefName\":\"panel_59586d96-3abd-48a3-a258-cfd620826ec2\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"dd0cf202-fe22-4daf-8f25-09c64d412bf3\",\"w\":14,\"x\":20,\"y\":12},\"panelIndex\":\"dd0cf202-fe22-4daf-8f25-09c64d412bf3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Aborted Connections Rate\",\"panelRefName\":\"panel_dd0cf202-fe22-4daf-8f25-09c64d412bf3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"ead16a55-a2d3-49ae-a09b-a0b03560e9a0\",\"w\":14,\"x\":34,\"y\":12},\"panelIndex\":\"ead16a55-a2d3-49ae-a09b-a0b03560e9a0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Thread Activity\",\"panelRefName\":\"panel_ead16a55-a2d3-49ae-a09b-a0b03560e9a0\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"24fc2926-610d-4910-8f3e-eb63ca69788c\",\"w\":15,\"x\":0,\"y\":24},\"panelIndex\":\"24fc2926-610d-4910-8f3e-eb63ca69788c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Buffer Pool Pages\",\"panelRefName\":\"panel_24fc2926-610d-4910-8f3e-eb63ca69788c\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"33c10c95-be67-492e-afb5-863f375cffc2\",\"w\":16,\"x\":15,\"y\":24},\"panelIndex\":\"33c10c95-be67-492e-afb5-863f375cffc2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Buffer Pool Utilization\",\"panelRefName\":\"panel_33c10c95-be67-492e-afb5-863f375cffc2\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"d35d7c5e-8832-40e2-8c77-953ad320c853\",\"w\":17,\"x\":31,\"y\":24},\"panelIndex\":\"d35d7c5e-8832-40e2-8c77-953ad320c853\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Buffer Pool Efficiency\",\"panelRefName\":\"panel_d35d7c5e-8832-40e2-8c77-953ad320c853\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3cd58868-0d03-4715-9ecc-9fba3cde47c1\",\"w\":15,\"x\":0,\"y\":38},\"panelIndex\":\"3cd58868-0d03-4715-9ecc-9fba3cde47c1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Network Traffic\",\"panelRefName\":\"panel_3cd58868-0d03-4715-9ecc-9fba3cde47c1\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"277c8209-3c5f-41f5-95f4-de0782917fba\",\"w\":17,\"x\":31,\"y\":38},\"panelIndex\":\"277c8209-3c5f-41f5-95f4-de0782917fba\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Open Tables Cache\",\"panelRefName\":\"panel_277c8209-3c5f-41f5-95f4-de0782917fba\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"9487b742-3e7f-4d57-af32-014ad360235c\",\"w\":13,\"x\":0,\"y\":53},\"panelIndex\":\"9487b742-3e7f-4d57-af32-014ad360235c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Connection Errors\",\"panelRefName\":\"panel_9487b742-3e7f-4d57-af32-014ad360235c\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"00cd9f15-01bd-43f3-a8c5-43d6ff17dad3\",\"w\":20,\"x\":13,\"y\":53},\"panelIndex\":\"00cd9f15-01bd-43f3-a8c5-43d6ff17dad3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Commands Operations\",\"panelRefName\":\"panel_00cd9f15-01bd-43f3-a8c5-43d6ff17dad3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"cd4deb30-c0dd-4f23-8868-ecffd73b2406\",\"w\":15,\"x\":33,\"y\":53},\"panelIndex\":\"cd4deb30-c0dd-4f23-8868-ecffd73b2406\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SSL Cache\",\"panelRefName\":\"panel_cd4deb30-c0dd-4f23-8868-ecffd73b2406\"}]","timeRestore":false,"title":"[Metricbeat MySQL] Database Overview","version":1},"coreMigrationVersion":"8.0.0","id":"57b3fb50-6309-11ea-a83e-25b8612d00cc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"aaa326b0-f1f5-11e7-85ab-594b1652e0d1-ecs","name":"14:panel_14","type":"visualization"},{"id":"4fa69a10-630b-11ea-a83e-25b8612d00cc","name":"050b110b-0b4d-404a-86c0-fa97f7eed2a0:panel_050b110b-0b4d-404a-86c0-fa97f7eed2a0","type":"visualization"},{"id":"7ea77d30-630a-11ea-a83e-25b8612d00cc","name":"988a61d7-ac3e-481e-a6ae-aa75aaa32a3a:panel_988a61d7-ac3e-481e-a6ae-aa75aaa32a3a","type":"visualization"},{"id":"779ee920-6309-11ea-a83e-25b8612d00cc","name":"a1f8fa38-a62f-4e05-adde-e995dae9ad83:panel_a1f8fa38-a62f-4e05-adde-e995dae9ad83","type":"visualization"},{"id":"fc6b5a40-630d-11ea-a83e-25b8612d00cc","name":"d126fb61-605f-43af-b5d5-3fa3c128f726:panel_d126fb61-605f-43af-b5d5-3fa3c128f726","type":"visualization"},{"id":"493e8460-630d-11ea-a83e-25b8612d00cc","name":"59586d96-3abd-48a3-a258-cfd620826ec2:panel_59586d96-3abd-48a3-a258-cfd620826ec2","type":"visualization"},{"id":"bf60bc10-639b-11ea-a83e-25b8612d00cc","name":"dd0cf202-fe22-4daf-8f25-09c64d412bf3:panel_dd0cf202-fe22-4daf-8f25-09c64d412bf3","type":"visualization"},{"id":"822df290-630f-11ea-a83e-25b8612d00cc","name":"ead16a55-a2d3-49ae-a09b-a0b03560e9a0:panel_ead16a55-a2d3-49ae-a09b-a0b03560e9a0","type":"visualization"},{"id":"98c7bca0-63a2-11ea-a83e-25b8612d00cc","name":"24fc2926-610d-4910-8f3e-eb63ca69788c:panel_24fc2926-610d-4910-8f3e-eb63ca69788c","type":"visualization"},{"id":"96d46630-63a4-11ea-a83e-25b8612d00cc","name":"33c10c95-be67-492e-afb5-863f375cffc2:panel_33c10c95-be67-492e-afb5-863f375cffc2","type":"visualization"},{"id":"a1e00160-63a4-11ea-a83e-25b8612d00cc","name":"d35d7c5e-8832-40e2-8c77-953ad320c853:panel_d35d7c5e-8832-40e2-8c77-953ad320c853","type":"visualization"},{"id":"c8661020-6310-11ea-a83e-25b8612d00cc","name":"3cd58868-0d03-4715-9ecc-9fba3cde47c1:panel_3cd58868-0d03-4715-9ecc-9fba3cde47c1","type":"visualization"},{"id":"cd72e030-c6a6-11ea-a106-5be590f42b74","name":"277c8209-3c5f-41f5-95f4-de0782917fba:panel_277c8209-3c5f-41f5-95f4-de0782917fba","type":"visualization"},{"id":"0774bbb0-c69c-11ea-a106-5be590f42b74","name":"9487b742-3e7f-4d57-af32-014ad360235c:panel_9487b742-3e7f-4d57-af32-014ad360235c","type":"visualization"},{"id":"3e5c4490-c6a1-11ea-a106-5be590f42b74","name":"00cd9f15-01bd-43f3-a8c5-43d6ff17dad3:panel_00cd9f15-01bd-43f3-a8c5-43d6ff17dad3","type":"visualization"},{"id":"8b276c80-c6ad-11ea-a106-5be590f42b74","name":"cd4deb30-c0dd-4f23-8868-ecffd73b2406:panel_cd4deb30-c0dd-4f23-8868-ecffd73b2406","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:43.489Z","version":"WzQwNjgsMV0="} diff --git a/metricbeat/module/mysql/_meta/kibana/7/visualization/0774bbb0-c69c-11ea-a106-5be590f42b74.json b/metricbeat/module/mysql/_meta/kibana/7/visualization/0774bbb0-c69c-11ea-a106-5be590f42b74.json new file mode 100644 index 000000000000..7e2d78656d58 --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/visualization/0774bbb0-c69c-11ea-a106-5be590f42b74.json @@ -0,0 +1,194 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Connection Errors [Metricbeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Max", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.connection.errors.max", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "percentiles": [ + { + "id": "968f0500-c69a-11ea-880f-352bebf10188", + "mode": "line", + "shade": 0.2, + "value": 50 + } + ], + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "a088e210-c69a-11ea-880f-352bebf10188", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "a61998a0-c69a-11ea-880f-352bebf10188", + "label": "Accept", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.connection.errors.accept", + "id": "a61998a1-c69a-11ea-880f-352bebf10188", + "type": "max" + }, + { + "field": "a61998a1-c69a-11ea-880f-352bebf10188", + "id": "a8f8c3c0-c69a-11ea-880f-352bebf10188", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "b6a26260-c69a-11ea-880f-352bebf10188", + "label": "Internal", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.connection.errors.internal", + "id": "b6a26261-c69a-11ea-880f-352bebf10188", + "type": "max" + }, + { + "field": "b6a26261-c69a-11ea-880f-352bebf10188", + "id": "c09d02c0-c69a-11ea-880f-352bebf10188", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": 0.5, + "formatter": "number", + "id": "c713d390-c69a-11ea-880f-352bebf10188", + "label": "Select", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.connection.errors.select", + "id": "c713d391-c69a-11ea-880f-352bebf10188", + "type": "max" + }, + { + "field": "c713d391-c69a-11ea-880f-352bebf10188", + "id": "4ace8360-c69b-11ea-880f-352bebf10188", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(253,161,255,1)", + "fill": 0.5, + "formatter": "number", + "id": "50c798b0-c69b-11ea-880f-352bebf10188", + "label": "Peer Address", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.connection.errors.peer_address", + "id": "50c798b1-c69b-11ea-880f-352bebf10188", + "type": "max" + }, + { + "field": "50c798b1-c69b-11ea-880f-352bebf10188", + "id": "78d49650-c69b-11ea-880f-352bebf10188", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Connection Errors [Metricbeat MySQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0774bbb0-c69c-11ea-a106-5be590f42b74", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwODIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/_meta/kibana/7/visualization/3e5c4490-c6a1-11ea-a106-5be590f42b74.json b/metricbeat/module/mysql/_meta/kibana/7/visualization/3e5c4490-c6a1-11ea-a106-5be590f42b74.json new file mode 100644 index 000000000000..29e4b23a9953 --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/visualization/3e5c4490-c6a1-11ea-a106-5be590f42b74.json @@ -0,0 +1,157 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Commands Operations [Metricbeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Select", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.command.select", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "e76f75d0-c6a0-11ea-880f-352bebf10188", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(219,223,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "ed3a0110-c6a0-11ea-880f-352bebf10188", + "label": "Update", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.command.update", + "id": "ed3a0111-c6a0-11ea-880f-352bebf10188", + "type": "max" + }, + { + "field": "ed3a0111-c6a0-11ea-880f-352bebf10188", + "id": "f961e1b0-c6a0-11ea-880f-352bebf10188", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": 0.5, + "formatter": "number", + "id": "00b3f750-c6a1-11ea-880f-352bebf10188", + "label": "Delete", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.command.delete", + "id": "00b3f751-c6a1-11ea-880f-352bebf10188", + "type": "max" + }, + { + "field": "00b3f751-c6a1-11ea-880f-352bebf10188", + "id": "09f46f70-c6a1-11ea-880f-352bebf10188", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "0f38dac0-c6a1-11ea-880f-352bebf10188", + "label": "Insert", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.command.insert", + "id": "0f38dac1-c6a1-11ea-880f-352bebf10188", + "type": "max" + }, + { + "field": "0f38dac1-c6a1-11ea-880f-352bebf10188", + "id": "1d1cc340-c6a1-11ea-880f-352bebf10188", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Commands Operations [Metricbeat MySQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3e5c4490-c6a1-11ea-a106-5be590f42b74", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwODMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/_meta/kibana/7/visualization/493e8460-630d-11ea-a83e-25b8612d00cc.json b/metricbeat/module/mysql/_meta/kibana/7/visualization/493e8460-630d-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..0a2f92523810 --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/visualization/493e8460-630d-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,123 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Connections [Metricbeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(198,135,31,1)", + "fill": "0.2", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Connection rate", + "line_width": "2", + "metrics": [ + { + "field": "mysql.status.connections", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "caee3e70-630c-11ea-99e6-b5eed31db613", + "type": "derivative", + "unit": "1s" + }, + { + "field": "caee3e70-630c-11ea-99e6-b5eed31db613", + "id": "d4eb4fd0-630c-11ea-99e6-b5eed31db613", + "type": "positive_only", + "unit": "" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,0.89)", + "fill": "0.3", + "formatter": "number", + "id": "fe9af660-630b-11ea-99e6-b5eed31db613", + "label": "Connected", + "line_width": "2", + "metrics": [ + { + "field": "mysql.status.threads.connected", + "id": "fe9af661-630b-11ea-99e6-b5eed31db613", + "type": "max" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "e3d46bf0-630f-11ea-99e6-b5eed31db613", + "label": "Max Used Connections", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.max_used_connections", + "id": "e3d46bf1-630f-11ea-99e6-b5eed31db613", + "type": "avg" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Connections [Metricbeat MySQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "493e8460-630d-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwNzQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/_meta/kibana/7/visualization/4fa69a10-630b-11ea-a83e-25b8612d00cc.json b/metricbeat/module/mysql/_meta/kibana/7/visualization/4fa69a10-630b-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..5003c5c80c20 --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/visualization/4fa69a10-630b-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,82 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Question rates [Metricbeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "d61928d0-6309-11ea-99e6-b5eed31db613" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "right", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": "0.3", + "formatter": "'0.0a'", + "id": "3c2a2a40-f1f4-11e7-a752-236fe3270d99", + "label": "SELECT", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.questions", + "id": "3c2a2a41-f1f4-11e7-a752-236fe3270d99", + "type": "max" + }, + { + "field": "3c2a2a41-f1f4-11e7-a752-236fe3270d99", + "id": "3c2a2a42-f1f4-11e7-a752-236fe3270d99", + "type": "derivative", + "unit": "1s" + }, + { + "field": "3c2a2a42-f1f4-11e7-a752-236fe3270d99", + "id": "82f59710-6309-11ea-99e6-b5eed31db613", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 0, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Question rates [Metricbeat MySQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4fa69a10-630b-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwNzAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/_meta/kibana/7/visualization/779ee920-6309-11ea-a83e-25b8612d00cc.json b/metricbeat/module/mysql/_meta/kibana/7/visualization/779ee920-6309-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..3b8642fa21f9 --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/visualization/779ee920-6309-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,152 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Insert, Update, Delete rates [Metricbeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "d61928d0-6309-11ea-99e6-b5eed31db613" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": "0.3", + "formatter": "number", + "id": "3c2a2a40-f1f4-11e7-a752-236fe3270d99", + "label": "INSERT", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.command.insert", + "id": "3c2a2a41-f1f4-11e7-a752-236fe3270d99", + "type": "max" + }, + { + "field": "3c2a2a41-f1f4-11e7-a752-236fe3270d99", + "id": "3c2a2a42-f1f4-11e7-a752-236fe3270d99", + "type": "derivative", + "unit": "1s" + }, + { + "field": "3c2a2a42-f1f4-11e7-a752-236fe3270d99", + "id": "82f59710-6309-11ea-99e6-b5eed31db613", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": "0.3", + "formatter": "number", + "id": "485ce050-f1f4-11e7-a752-236fe3270d99", + "label": "UPDATE", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.command.update", + "id": "485ce051-f1f4-11e7-a752-236fe3270d99", + "type": "max" + }, + { + "field": "485ce051-f1f4-11e7-a752-236fe3270d99", + "id": "485ce052-f1f4-11e7-a752-236fe3270d99", + "type": "derivative", + "unit": "1s" + }, + { + "field": "485ce052-f1f4-11e7-a752-236fe3270d99", + "id": "a4092660-6309-11ea-99e6-b5eed31db613", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": "0.3", + "formatter": "number", + "id": "543a4a70-f1f4-11e7-a752-236fe3270d99", + "label": "DELETE", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.command.delete", + "id": "543a4a71-f1f4-11e7-a752-236fe3270d99", + "type": "max" + }, + { + "field": "543a4a71-f1f4-11e7-a752-236fe3270d99", + "id": "543a4a72-f1f4-11e7-a752-236fe3270d99", + "type": "derivative", + "unit": "1s" + }, + { + "field": "543a4a72-f1f4-11e7-a752-236fe3270d99", + "id": "bae29b50-6309-11ea-99e6-b5eed31db613", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Insert, Update, Delete rates [Metricbeat MySQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "779ee920-6309-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwNzIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/_meta/kibana/7/visualization/7ea77d30-630a-11ea-a83e-25b8612d00cc.json b/metricbeat/module/mysql/_meta/kibana/7/visualization/7ea77d30-630a-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..b24f3af4bcb3 --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/visualization/7ea77d30-630a-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,82 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SELECT rates [Metricbeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "d61928d0-6309-11ea-99e6-b5eed31db613" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "right", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0.3", + "formatter": "'0.0a'", + "id": "3c2a2a40-f1f4-11e7-a752-236fe3270d99", + "label": "SELECT", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.command.select", + "id": "3c2a2a41-f1f4-11e7-a752-236fe3270d99", + "type": "max" + }, + { + "field": "3c2a2a41-f1f4-11e7-a752-236fe3270d99", + "id": "3c2a2a42-f1f4-11e7-a752-236fe3270d99", + "type": "derivative", + "unit": "1s" + }, + { + "field": "3c2a2a42-f1f4-11e7-a752-236fe3270d99", + "id": "82f59710-6309-11ea-99e6-b5eed31db613", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 0, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SELECT rates [Metricbeat MySQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7ea77d30-630a-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwNzEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/_meta/kibana/7/visualization/822df290-630f-11ea-a83e-25b8612d00cc.json b/metricbeat/module/mysql/_meta/kibana/7/visualization/822df290-630f-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..ece06af7d035 --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/visualization/822df290-630f-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,110 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Thread Activity [Metricbeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(226,115,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Avg Threads Running", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.threads.running", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(22,165,165,1)", + "fill": "0", + "formatter": "number", + "id": "895f0820-630e-11ea-99e6-b5eed31db613", + "label": "Peak Threads Running", + "line_width": "2", + "metrics": [ + { + "field": "mysql.status.threads.running", + "id": "895f0821-630e-11ea-99e6-b5eed31db613", + "type": "max" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(77,77,77,1)", + "fill": "0", + "formatter": "number", + "id": "f8752460-630e-11ea-99e6-b5eed31db613", + "label": "Peak Threads Connected", + "line_width": "2", + "metrics": [ + { + "field": "mysql.status.threads.connected", + "id": "f8752461-630e-11ea-99e6-b5eed31db613", + "type": "max" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Thread Activity [Metricbeat MySQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "822df290-630f-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwNzYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/_meta/kibana/7/visualization/8b276c80-c6ad-11ea-a106-5be590f42b74.json b/metricbeat/module/mysql/_meta/kibana/7/visualization/8b276c80-c6ad-11ea-a106-5be590f42b74.json new file mode 100644 index 000000000000..6d101a8e6503 --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/visualization/8b276c80-c6ad-11ea-a106-5be590f42b74.json @@ -0,0 +1,128 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SSL Cache [Metricbeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Hits", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.cache.ssl.hits", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "1a353d40-c6ad-11ea-880f-352bebf10188", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(253,161,255,1)", + "fill": 0.5, + "formatter": "number", + "id": "2dd02900-c6ad-11ea-880f-352bebf10188", + "label": "Misses", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.cache.ssl.misses", + "id": "2dd02901-c6ad-11ea-880f-352bebf10188", + "type": "max" + }, + { + "field": "2dd02901-c6ad-11ea-880f-352bebf10188", + "id": "327cc120-c6ad-11ea-880f-352bebf10188", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": 0.5, + "formatter": "number", + "id": "3f459cb0-c6ad-11ea-880f-352bebf10188", + "label": "Size", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.cache.ssl.size", + "id": "3f459cb1-c6ad-11ea-880f-352bebf10188", + "type": "max" + }, + { + "field": "3f459cb1-c6ad-11ea-880f-352bebf10188", + "id": "426ccd50-c6ad-11ea-880f-352bebf10188", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SSL Cache [Metricbeat MySQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8b276c80-c6ad-11ea-a106-5be590f42b74", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwODQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/_meta/kibana/7/visualization/96d46630-63a4-11ea-a83e-25b8612d00cc.json b/metricbeat/module/mysql/_meta/kibana/7/visualization/96d46630-63a4-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..cde63f806895 --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/visualization/96d46630-63a4-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,110 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Buffer Pool Utilization [Metricbeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "0f20fa60-63a3-11ea-90a2-c51229c5db5f" + } + ], + "bar_color_rules": [ + { + "id": "0e1ecca0-63a3-11ea-90a2-c51229c5db5f" + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "07c08ce0-63a3-11ea-90a2-c51229c5db5f" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "515b9dd0-639f-11ea-96d8-1943b9bb65d9", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(226,115,0,1)", + "fill": "0.1", + "formatter": "percent", + "id": "256f1f40-63a3-11ea-90a2-c51229c5db5f", + "label": "Utilization", + "line_width": "2", + "metrics": [ + { + "field": "mysql.status.innodb.buffer_pool.pages.total", + "id": "256f1f41-63a3-11ea-90a2-c51229c5db5f", + "type": "max" + }, + { + "field": "mysql.status.innodb.buffer_pool.pages.free", + "id": "256f1f43-63a3-11ea-90a2-c51229c5db5f", + "type": "max" + }, + { + "id": "256f1f45-63a3-11ea-90a2-c51229c5db5f", + "script": "params.total != null && params.total > 0 ? (params.total - params.free)/params.total : null", + "type": "calculation", + "variables": [ + { + "field": "256f1f41-63a3-11ea-90a2-c51229c5db5f", + "id": "256f1f42-63a3-11ea-90a2-c51229c5db5f", + "name": "total" + }, + { + "field": "256f1f43-63a3-11ea-90a2-c51229c5db5f", + "id": "256f1f44-63a3-11ea-90a2-c51229c5db5f", + "name": "free" + } + ] + } + ], + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Buffer Pool Utilization [Metricbeat MySQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "96d46630-63a4-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwNzgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/_meta/kibana/7/visualization/98c7bca0-63a2-11ea-a83e-25b8612d00cc.json b/metricbeat/module/mysql/_meta/kibana/7/visualization/98c7bca0-63a2-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..050dce564a75 --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/visualization/98c7bca0-63a2-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,116 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Buffer Pool Pages [Metricbeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "515b9dd0-639f-11ea-96d8-1943b9bb65d9", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "'0.0a'", + "id": "37f2d600-63a0-11ea-90a2-c51229c5db5f", + "label": "Buffer Pool Pages Data", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.innodb.buffer_pool.pages.data", + "id": "37f2d601-63a0-11ea-90a2-c51229c5db5f", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(22,165,165,1)", + "fill": "0", + "formatter": "'0.0a'", + "id": "57ae9d80-63a0-11ea-90a2-c51229c5db5f", + "label": "Buffer Pool Pages Free", + "line_width": "2", + "metrics": [ + { + "field": "mysql.status.innodb.buffer_pool.pages.free", + "id": "57ae9d81-63a0-11ea-90a2-c51229c5db5f", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(102,102,102,1)", + "fill": "0", + "formatter": "'0.0a'", + "id": "c86cc470-63a0-11ea-90a2-c51229c5db5f", + "label": "Buffer Pool Pages Total", + "line_width": "2", + "metrics": [ + { + "field": "mysql.status.innodb.buffer_pool.pages.total", + "id": "c86ceb80-63a0-11ea-90a2-c51229c5db5f", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Buffer Pool Pages [Metricbeat MySQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "98c7bca0-63a2-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwNzcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/_meta/kibana/7/visualization/a1e00160-63a4-11ea-a83e-25b8612d00cc.json b/metricbeat/module/mysql/_meta/kibana/7/visualization/a1e00160-63a4-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..ef0d7200d9b4 --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/visualization/a1e00160-63a4-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,111 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Buffer Pool Efficiency [Metricbeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "0f20fa60-63a3-11ea-90a2-c51229c5db5f" + } + ], + "bar_color_rules": [ + { + "id": "0e1ecca0-63a3-11ea-90a2-c51229c5db5f" + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "07c08ce0-63a3-11ea-90a2-c51229c5db5f" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "515b9dd0-639f-11ea-96d8-1943b9bb65d9", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(87,177,211,1)", + "fill": "0.1", + "formatter": "number", + "hidden": false, + "id": "a397d570-63a2-11ea-90a2-c51229c5db5f", + "label": "Effeciency (lower is better)", + "line_width": "2", + "metrics": [ + { + "field": "mysql.status.innodb.buffer_pool.pool.reads", + "id": "a397d571-63a2-11ea-90a2-c51229c5db5f", + "type": "max" + }, + { + "field": "mysql.status.innodb.buffer_pool.read.requests", + "id": "ad177970-63a2-11ea-90a2-c51229c5db5f", + "type": "max" + }, + { + "id": "af58ddf0-63a2-11ea-90a2-c51229c5db5f", + "script": "params.pool_read_requests != null && params.pool_read_requests > 0 ? (params.pool_reads/params.pool_read_requests) * 100: null", + "type": "calculation", + "variables": [ + { + "field": "a397d571-63a2-11ea-90a2-c51229c5db5f", + "id": "b1b6cb20-63a2-11ea-90a2-c51229c5db5f", + "name": "pool_reads" + }, + { + "field": "ad177970-63a2-11ea-90a2-c51229c5db5f", + "id": "c3fe5be0-63a2-11ea-90a2-c51229c5db5f", + "name": "pool_read_requests" + } + ] + } + ], + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Buffer Pool Efficiency [Metricbeat MySQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a1e00160-63a4-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwNzksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/_meta/kibana/7/visualization/aaa326b0-f1f5-11e7-85ab-594b1652e0d1-ecs.json b/metricbeat/module/mysql/_meta/kibana/7/visualization/aaa326b0-f1f5-11e7-85ab-594b1652e0d1-ecs.json new file mode 100644 index 000000000000..7799da708f8b --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/visualization/aaa326b0-f1f5-11e7-85ab-594b1652e0d1-ecs.json @@ -0,0 +1,111 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Open tables, files, streams [Metricbeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(22,165,165,1)", + "fill": "0.3", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Open Tables", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.open.tables", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": "0.3", + "formatter": "number", + "id": "615a2400-6312-11ea-99e6-b5eed31db613", + "label": "Open Files", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.open.files", + "id": "615a2401-6312-11ea-99e6-b5eed31db613", + "type": "avg" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(226,115,0,1)", + "fill": "0.3", + "formatter": "number", + "id": "15d7bcd0-6313-11ea-99e6-b5eed31db613", + "label": "Open Streams", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.open.streams", + "id": "15d7bcd1-6313-11ea-99e6-b5eed31db613", + "type": "avg" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Open tables, files, streams [Metricbeat MySQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "aaa326b0-f1f5-11e7-85ab-594b1652e0d1-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwNjksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/_meta/kibana/7/visualization/bf60bc10-639b-11ea-a83e-25b8612d00cc.json b/metricbeat/module/mysql/_meta/kibana/7/visualization/bf60bc10-639b-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..7ef67e21db0d --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/visualization/bf60bc10-639b-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Aborted Connections Rate [Metricbeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "d61928d0-6309-11ea-99e6-b5eed31db613" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(176,188,0,1)", + "fill": "0.3", + "formatter": "'0.0a'", + "id": "3c2a2a40-f1f4-11e7-a752-236fe3270d99", + "label": "Aborted Connections", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.aborted.clients", + "id": "3c2a2a41-f1f4-11e7-a752-236fe3270d99", + "type": "max" + }, + { + "field": "3c2a2a41-f1f4-11e7-a752-236fe3270d99", + "id": "6d053540-639b-11ea-83d6-4f7a6fe5aed4", + "type": "derivative", + "unit": "1s" + }, + { + "field": "6d053540-639b-11ea-83d6-4f7a6fe5aed4", + "id": "7548afc0-639b-11ea-83d6-4f7a6fe5aed4", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(251,158,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "d6572ee0-639b-11ea-83d6-4f7a6fe5aed4", + "label": "Failed Attempts to Connect ", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.aborted.connects", + "id": "d6572ee1-639b-11ea-83d6-4f7a6fe5aed4", + "type": "max" + }, + { + "field": "d6572ee1-639b-11ea-83d6-4f7a6fe5aed4", + "id": "e4a63540-639b-11ea-83d6-4f7a6fe5aed4", + "type": "derivative", + "unit": "1s" + }, + { + "id": "ec492a00-639b-11ea-83d6-4f7a6fe5aed4", + "type": "positive_only" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Aborted Connections Rate [Metricbeat MySQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bf60bc10-639b-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwNzUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/_meta/kibana/7/visualization/c8661020-6310-11ea-a83e-25b8612d00cc.json b/metricbeat/module/mysql/_meta/kibana/7/visualization/c8661020-6310-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..6b1dfb24a6d7 --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/visualization/c8661020-6310-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,124 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Network Traffic [Metricbeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,98,177,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "2b1c2390-f1f7-11e7-a752-236fe3270d99", + "label": "Received bytes", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.bytes.received", + "id": "2b1c2391-f1f7-11e7-a752-236fe3270d99", + "type": "max" + }, + { + "field": "2b1c2391-f1f7-11e7-a752-236fe3270d99", + "id": "2b1c2392-f1f7-11e7-a752-236fe3270d99", + "type": "derivative", + "unit": "1s" + }, + { + "field": "2b1c2392-f1f7-11e7-a752-236fe3270d99", + "id": "788d3c90-6310-11ea-99e6-b5eed31db613", + "type": "positive_only", + "unit": "" + }, + { + "id": "88f8e160-6310-11ea-99e6-b5eed31db613", + "script": "params.received != null && params.received > 0 ? params.received * -1 : null", + "type": "calculation", + "variables": [ + { + "field": "788d3c90-6310-11ea-99e6-b5eed31db613", + "id": "8beb4660-6310-11ea-99e6-b5eed31db613", + "name": "received" + } + ] + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Sent bytes", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.bytes.sent", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "23cfda50-f1f7-11e7-a752-236fe3270d99", + "type": "derivative", + "unit": "1s" + }, + { + "field": "23cfda50-f1f7-11e7-a752-236fe3270d99", + "id": "ad26a900-6310-11ea-99e6-b5eed31db613", + "type": "positive_only", + "unit": "" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Network Traffic [Metricbeat MySQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c8661020-6310-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwODAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/_meta/kibana/7/visualization/cd72e030-c6a6-11ea-a106-5be590f42b74.json b/metricbeat/module/mysql/_meta/kibana/7/visualization/cd72e030-c6a6-11ea-a106-5be590f42b74.json new file mode 100644 index 000000000000..89bc7a52496d --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/visualization/cd72e030-c6a6-11ea-a106-5be590f42b74.json @@ -0,0 +1,128 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Open Tables Cache [Metricbeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Hits", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.cache.table.open_cache.hits", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "534a23e0-c6a6-11ea-880f-352bebf10188", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "60ab20c0-c6a6-11ea-880f-352bebf10188", + "label": "Misses", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.cache.table.open_cache.misses", + "id": "60ab47d0-c6a6-11ea-880f-352bebf10188", + "type": "max" + }, + { + "field": "60ab47d0-c6a6-11ea-880f-352bebf10188", + "id": "6a1519e0-c6a6-11ea-880f-352bebf10188", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(254,146,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "69113e70-c6a6-11ea-880f-352bebf10188", + "label": "Overflows", + "line_width": 1, + "metrics": [ + { + "field": "mysql.status.cache.table.open_cache.overflows", + "id": "69113e71-c6a6-11ea-880f-352bebf10188", + "type": "max" + }, + { + "field": "69113e71-c6a6-11ea-880f-352bebf10188", + "id": "75a108a0-c6a6-11ea-880f-352bebf10188", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Open Tables Cache [Metricbeat MySQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "cd72e030-c6a6-11ea-a106-5be590f42b74", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwODEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/_meta/kibana/7/visualization/fc6b5a40-630d-11ea-a83e-25b8612d00cc.json b/metricbeat/module/mysql/_meta/kibana/7/visualization/fc6b5a40-630d-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..5f90eeb8c1df --- /dev/null +++ b/metricbeat/module/mysql/_meta/kibana/7/visualization/fc6b5a40-630d-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Connected Threads [Metricbeat MySQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "d5fcf170-630d-11ea-99e6-b5eed31db613" + } + ], + "gauge_color_rules": [ + { + "id": "f1321f60-630d-11ea-99e6-b5eed31db613" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,0.89)", + "fill": "0.3", + "formatter": "number", + "id": "fe9af660-630b-11ea-99e6-b5eed31db613", + "label": "Connections", + "line_width": "2", + "metrics": [ + { + "field": "mysql.status.threads.connected", + "id": "fe9af661-630b-11ea-99e6-b5eed31db613", + "type": "max" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Connected Threads [Metricbeat MySQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fc6b5a40-630d-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:43.489Z", + "version": "WzQwNzMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/mysql/module.yml b/metricbeat/module/mysql/module.yml index 55008b1a9404..d07603c61792 100644 --- a/metricbeat/module/mysql/module.yml +++ b/metricbeat/module/mysql/module.yml @@ -1,6 +1,6 @@ dashboards: - id: 66881e90-0006-11e7-bf7f-c9acc3d3e306 - file: Metricbeat-mysql-overview.ndjson + file: Metricbeat-mysql-overview.json name: mysql metricsets: - performance diff --git a/metricbeat/module/nats/_meta/kibana/7/dashboard/Metricbeat-Nats-Dashboard-ecs.json b/metricbeat/module/nats/_meta/kibana/7/dashboard/Metricbeat-Nats-Dashboard-ecs.json new file mode 100644 index 000000000000..12b760bc7b52 --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/dashboard/Metricbeat-Nats-Dashboard-ecs.json @@ -0,0 +1,369 @@ +{ + "attributes": { + "description": "Overview of NATS server status", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "6", + "w": 24, + "x": 0, + "y": 38 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Subscriptions Info", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "8", + "w": 24, + "x": 24, + "y": 38 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "title": "Server Uptime", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "12", + "w": 13, + "x": 11, + "y": 28 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "title": "Subscriptions Stats Timeline", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "18", + "w": 12, + "x": 24, + "y": 28 + }, + "panelIndex": "18", + "panelRefName": "panel_18", + "title": "Cache Hit Rate Timeline", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "4ffa8ccd-bd36-4eaf-973e-688b3025e95c", + "w": 15, + "x": 0, + "y": 0 + }, + "panelIndex": "4ffa8ccd-bd36-4eaf-973e-688b3025e95c", + "panelRefName": "panel_4ffa8ccd-bd36-4eaf-973e-688b3025e95c", + "title": "Memory Usage", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "b07d6b97-c0b5-4663-8507-8d3cc2a63367", + "w": 16, + "x": 15, + "y": 0 + }, + "panelIndex": "b07d6b97-c0b5-4663-8507-8d3cc2a63367", + "panelRefName": "panel_b07d6b97-c0b5-4663-8507-8d3cc2a63367", + "title": "Incoming Bytes Rate", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "eb420bb0-754e-4544-bc1f-027568db1c8c", + "w": 17, + "x": 31, + "y": 0 + }, + "panelIndex": "eb420bb0-754e-4544-bc1f-027568db1c8c", + "panelRefName": "panel_eb420bb0-754e-4544-bc1f-027568db1c8c", + "title": "Connection Incoming Bytes", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5", + "w": 15, + "x": 0, + "y": 8 + }, + "panelIndex": "1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5", + "panelRefName": "panel_1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5", + "title": "Incoming Messages Rate", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "ed6181bc-4274-400a-a9d8-a84a027a4a77", + "w": 16, + "x": 15, + "y": 8 + }, + "panelIndex": "ed6181bc-4274-400a-a9d8-a84a027a4a77", + "panelRefName": "panel_ed6181bc-4274-400a-a9d8-a84a027a4a77", + "title": "Connections", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "7862e4cd-22db-493b-a3be-247570eaaa8a", + "w": 17, + "x": 31, + "y": 8 + }, + "panelIndex": "7862e4cd-22db-493b-a3be-247570eaaa8a", + "panelRefName": "panel_7862e4cd-22db-493b-a3be-247570eaaa8a", + "title": "Connections Uptime", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "5c6f0fdf-67e6-4a39-8543-d46c3f833ac6", + "w": 15, + "x": 0, + "y": 18 + }, + "panelIndex": "5c6f0fdf-67e6-4a39-8543-d46c3f833ac6", + "panelRefName": "panel_5c6f0fdf-67e6-4a39-8543-d46c3f833ac6", + "title": "Total Routes", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "258a5243-55f6-4195-90cb-ef3ec94707db", + "w": 16, + "x": 15, + "y": 18 + }, + "panelIndex": "258a5243-55f6-4195-90cb-ef3ec94707db", + "panelRefName": "panel_258a5243-55f6-4195-90cb-ef3ec94707db", + "title": "Total Connections", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "0e68fd8a-abd9-4391-b2d0-026e79714835", + "w": 17, + "x": 31, + "y": 18 + }, + "panelIndex": "0e68fd8a-abd9-4391-b2d0-026e79714835", + "panelRefName": "panel_0e68fd8a-abd9-4391-b2d0-026e79714835", + "title": "Connection Pending Bytes", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 10, + "i": "3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c", + "w": 11, + "x": 0, + "y": 28 + }, + "panelIndex": "3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c", + "panelRefName": "panel_3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c", + "title": "Slow Consumers", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 10, + "i": "66f0d0ac-bf45-40e3-ba8c-32d6360e8584", + "w": 12, + "x": 36, + "y": 28 + }, + "panelIndex": "66f0d0ac-bf45-40e3-ba8c-32d6360e8584", + "panelRefName": "panel_66f0d0ac-bf45-40e3-ba8c-32d6360e8584", + "title": "Subscription Cache Actions", + "type": "visualization", + "version": "7.10.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat NATS] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Metricbeat-Nats-Dashboard-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "b129b220-1e44-11e9-a1b4-79a7ae42ab61-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "206f1bc0-1e45-11e9-a1b4-79a7ae42ab61-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "754215c0-1e46-11e9-a1b4-79a7ae42ab61-ecs", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "dff743a0-1f1c-11e9-a673-d9577e5e50eb-ecs", + "name": "18:panel_18", + "type": "visualization" + }, + { + "id": "b877eb90-2988-11eb-8245-71f739a9f622", + "name": "4ffa8ccd-bd36-4eaf-973e-688b3025e95c:panel_4ffa8ccd-bd36-4eaf-973e-688b3025e95c", + "type": "visualization" + }, + { + "id": "d3142a50-2987-11eb-8245-71f739a9f622", + "name": "b07d6b97-c0b5-4663-8507-8d3cc2a63367:panel_b07d6b97-c0b5-4663-8507-8d3cc2a63367", + "type": "visualization" + }, + { + "id": "5146f2a0-2987-11eb-8245-71f739a9f622", + "name": "eb420bb0-754e-4544-bc1f-027568db1c8c:panel_eb420bb0-754e-4544-bc1f-027568db1c8c", + "type": "visualization" + }, + { + "id": "eeb33da0-2987-11eb-8245-71f739a9f622", + "name": "1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5:panel_1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5", + "type": "visualization" + }, + { + "id": "431edfc0-2988-11eb-8245-71f739a9f622", + "name": "ed6181bc-4274-400a-a9d8-a84a027a4a77:panel_ed6181bc-4274-400a-a9d8-a84a027a4a77", + "type": "visualization" + }, + { + "id": "898d2fe0-2986-11eb-8245-71f739a9f622", + "name": "7862e4cd-22db-493b-a3be-247570eaaa8a:panel_7862e4cd-22db-493b-a3be-247570eaaa8a", + "type": "visualization" + }, + { + "id": "3a670a80-2986-11eb-8245-71f739a9f622", + "name": "5c6f0fdf-67e6-4a39-8543-d46c3f833ac6:panel_5c6f0fdf-67e6-4a39-8543-d46c3f833ac6", + "type": "visualization" + }, + { + "id": "55c2d340-2986-11eb-8245-71f739a9f622", + "name": "258a5243-55f6-4195-90cb-ef3ec94707db:panel_258a5243-55f6-4195-90cb-ef3ec94707db", + "type": "visualization" + }, + { + "id": "68d40020-2987-11eb-8245-71f739a9f622", + "name": "0e68fd8a-abd9-4391-b2d0-026e79714835:panel_0e68fd8a-abd9-4391-b2d0-026e79714835", + "type": "visualization" + }, + { + "id": "84e60a90-2a79-11eb-952d-594e5c56d011", + "name": "3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c:panel_3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c", + "type": "visualization" + }, + { + "id": "d80d4c30-2a81-11eb-9625-31ed579c09b3", + "name": "66f0d0ac-bf45-40e3-ba8c-32d6360e8584:panel_66f0d0ac-bf45-40e3-ba8c-32d6360e8584", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:44.486Z", + "version": "WzQwODUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nats/_meta/kibana/7/dashboard/Metricbeat-nats-overview.ndjson b/metricbeat/module/nats/_meta/kibana/7/dashboard/Metricbeat-nats-overview.ndjson deleted file mode 100644 index 1de395ccfa6b..000000000000 --- a/metricbeat/module/nats/_meta/kibana/7/dashboard/Metricbeat-nats-overview.ndjson +++ /dev/null @@ -1,16 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Subscriptions Info [Metricbeat NATS] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Cache Fanout Avg\",\"field\":\"nats.subscriptions.cache.fanout.avg\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Cache Fanout Max\",\"field\":\"nats.subscriptions.cache.fanout.max\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Cache Hit Rate\",\"field\":\"nats.subscriptions.cache.hit_rate\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Cache Size\",\"field\":\"nats.subscriptions.cache.size\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Inserts\",\"field\":\"nats.subscriptions.inserts\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Matches\",\"field\":\"nats.subscriptions.matches\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"Removes\",\"field\":\"nats.subscriptions.removes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"Total\",\"field\":\"nats.subscriptions.total\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"perPage\":1,\"showMeticsAtAllLevels\":false,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Subscriptions Info [Metricbeat NATS] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"b129b220-1e44-11e9-a1b4-79a7ae42ab61-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwODYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Server Uptime [Metricbeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Server Uptime\",\"field\":\"nats.stats.uptime\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"nats.server.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":42,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Server Uptime [Metricbeat NATS] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"206f1bc0-1e45-11e9-a1b4-79a7ae42ab61-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwODcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Subscription Stats Timeline [Metricbeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Cache Fanout Avg\",\"field\":\"nats.subscriptions.cache.fanout.avg\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":0,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Cache Fanout Max\",\"field\":\"nats.subscriptions.cache.fanout.max\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Cache Fanout Avg\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Cache Fanout Max\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Cache Fanout Avg\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Subscription Stats Timeline [Metricbeat NATS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"754215c0-1e46-11e9-a1b4-79a7ae42ab61-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwODgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Cache Hit Rate Timeline [Metricbeat NATS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Cache Hit Rate\",\"field\":\"nats.subscriptions.cache.hit_rate\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Cache Hit Rate\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Cache Hit Rate (%)\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Cache Hit Rate Timeline [Metricbeat NATS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"dff743a0-1f1c-11e9-a673-d9577e5e50eb-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwODksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory Usage [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Memory Usage\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.stats.mem.bytes\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"avg\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.server.id\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Memory Usage [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b877eb90-2988-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Incoming Bytes Rate [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Incoming Bytes Rate\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.stats.in.bytes\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"positive_rate\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.server.id\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Incoming Bytes Rate [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d3142a50-2987-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connection Incoming Bytes [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Connection Incoming Bytes\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.connection.in.bytes\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.connection.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Connection Incoming Bytes [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5146f2a0-2987-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Incoming Messages Rate [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Incoming Messages Rate\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.stats.in.messages\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"positive_rate\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.server.id\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Incoming Messages Rate [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"eeb33da0-2987-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Connections\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.stats.total_connections\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"positive_rate\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.server.id\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Connections [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"431edfc0-2988-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections Uptime [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"s,s,\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Connection Uptime\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.connection.uptime\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.connection.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Connections Uptime [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"898d2fe0-2986-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total Routes [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Routes\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.routes.total\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.server.id\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Total Routes [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3a670a80-2986-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total Connections [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Connections\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.connections.total\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.server.id\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Total Connections [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"55c2d340-2986-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connection Pending Bytes [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Connection Pending Bytes\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.connection.pending_bytes\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.connection.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Connection Pending Bytes [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"68d40020-2987-11eb-8245-71f739a9f622","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Slow Consumers [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e4c53250-2985-11eb-9192-5db805fbad79\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"e4c53251-2985-11eb-9192-5db805fbad79\",\"label\":\"Slow Consumers\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.stats.slow_consumers\",\"id\":\"e4c53252-2985-11eb-9192-5db805fbad79\",\"type\":\"avg\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"nats.server.id\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Slow Consumers [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"84e60a90-2a79-11eb-952d-594e5c56d011","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwOTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Subscription Cache Actions [Metricbeat NATS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"a9b96760-2a81-11eb-8cd4-770b42226f97\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"a9b96761-2a81-11eb-8cd4-770b42226f97\",\"label\":\"rate(inserts)\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.subscriptions.inserts\",\"id\":\"a9b96762-2a81-11eb-8cd4-770b42226f97\",\"type\":\"max\"},{\"field\":\"a9b96762-2a81-11eb-8cd4-770b42226f97\",\"id\":\"a9b96764-2a81-11eb-8cd4-770b42226f97\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"a9b96764-2a81-11eb-8cd4-770b42226f97\",\"id\":\"a9b96763-2a81-11eb-8cd4-770b42226f97\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}/s\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#D36086\",\"fill\":0,\"formatter\":\"number\",\"id\":\"a9b96765-2a81-11eb-8cd4-770b42226f97\",\"label\":\"rate(removes)\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.subscriptions.removes\",\"id\":\"a9b96766-2a81-11eb-8cd4-770b42226f97\",\"type\":\"max\"},{\"field\":\"a9b96766-2a81-11eb-8cd4-770b42226f97\",\"id\":\"a9b96768-2a81-11eb-8cd4-770b42226f97\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"a9b96768-2a81-11eb-8cd4-770b42226f97\",\"id\":\"a9b96767-2a81-11eb-8cd4-770b42226f97\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}/s\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#54B399\",\"fill\":0,\"formatter\":\"number\",\"id\":\"a9b96769-2a81-11eb-8cd4-770b42226f97\",\"label\":\"rate(matches)\",\"line_width\":2,\"metrics\":[{\"field\":\"nats.subscriptions.matches\",\"id\":\"a9b9676a-2a81-11eb-8cd4-770b42226f97\",\"type\":\"max\"},{\"field\":\"a9b9676a-2a81-11eb-8cd4-770b42226f97\",\"id\":\"a9b9676c-2a81-11eb-8cd4-770b42226f97\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"a9b9676c-2a81-11eb-8cd4-770b42226f97\",\"id\":\"a9b9676b-2a81-11eb-8cd4-770b42226f97\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Subscription Cache Actions [Metricbeat NATS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d80d4c30-2a81-11eb-9625-31ed579c09b3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQxMDAsMV0="} -{"attributes":{"description":"Overview of NATS server status","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":38},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Subscriptions Info\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":38},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Server Uptime\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"12\",\"w\":13,\"x\":11,\"y\":28},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Subscriptions Stats Timeline\",\"panelRefName\":\"panel_12\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"18\",\"w\":12,\"x\":24,\"y\":28},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cache Hit Rate Timeline\",\"panelRefName\":\"panel_18\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"4ffa8ccd-bd36-4eaf-973e-688b3025e95c\",\"w\":15,\"x\":0,\"y\":0},\"panelIndex\":\"4ffa8ccd-bd36-4eaf-973e-688b3025e95c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Memory Usage\",\"panelRefName\":\"panel_4ffa8ccd-bd36-4eaf-973e-688b3025e95c\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"b07d6b97-c0b5-4663-8507-8d3cc2a63367\",\"w\":16,\"x\":15,\"y\":0},\"panelIndex\":\"b07d6b97-c0b5-4663-8507-8d3cc2a63367\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Incoming Bytes Rate\",\"panelRefName\":\"panel_b07d6b97-c0b5-4663-8507-8d3cc2a63367\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"eb420bb0-754e-4544-bc1f-027568db1c8c\",\"w\":17,\"x\":31,\"y\":0},\"panelIndex\":\"eb420bb0-754e-4544-bc1f-027568db1c8c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Connection Incoming Bytes\",\"panelRefName\":\"panel_eb420bb0-754e-4544-bc1f-027568db1c8c\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5\",\"w\":15,\"x\":0,\"y\":8},\"panelIndex\":\"1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Incoming Messages Rate\",\"panelRefName\":\"panel_1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"ed6181bc-4274-400a-a9d8-a84a027a4a77\",\"w\":16,\"x\":15,\"y\":8},\"panelIndex\":\"ed6181bc-4274-400a-a9d8-a84a027a4a77\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Connections\",\"panelRefName\":\"panel_ed6181bc-4274-400a-a9d8-a84a027a4a77\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"7862e4cd-22db-493b-a3be-247570eaaa8a\",\"w\":17,\"x\":31,\"y\":8},\"panelIndex\":\"7862e4cd-22db-493b-a3be-247570eaaa8a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Connections Uptime\",\"panelRefName\":\"panel_7862e4cd-22db-493b-a3be-247570eaaa8a\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5c6f0fdf-67e6-4a39-8543-d46c3f833ac6\",\"w\":15,\"x\":0,\"y\":18},\"panelIndex\":\"5c6f0fdf-67e6-4a39-8543-d46c3f833ac6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Routes\",\"panelRefName\":\"panel_5c6f0fdf-67e6-4a39-8543-d46c3f833ac6\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"258a5243-55f6-4195-90cb-ef3ec94707db\",\"w\":16,\"x\":15,\"y\":18},\"panelIndex\":\"258a5243-55f6-4195-90cb-ef3ec94707db\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Connections\",\"panelRefName\":\"panel_258a5243-55f6-4195-90cb-ef3ec94707db\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"0e68fd8a-abd9-4391-b2d0-026e79714835\",\"w\":17,\"x\":31,\"y\":18},\"panelIndex\":\"0e68fd8a-abd9-4391-b2d0-026e79714835\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Connection Pending Bytes\",\"panelRefName\":\"panel_0e68fd8a-abd9-4391-b2d0-026e79714835\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c\",\"w\":11,\"x\":0,\"y\":28},\"panelIndex\":\"3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Slow Consumers\",\"panelRefName\":\"panel_3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c\"},{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"66f0d0ac-bf45-40e3-ba8c-32d6360e8584\",\"w\":12,\"x\":36,\"y\":28},\"panelIndex\":\"66f0d0ac-bf45-40e3-ba8c-32d6360e8584\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Subscription Cache Actions\",\"panelRefName\":\"panel_66f0d0ac-bf45-40e3-ba8c-32d6360e8584\"}]","timeRestore":false,"title":"[Metricbeat NATS] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Metricbeat-Nats-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"b129b220-1e44-11e9-a1b4-79a7ae42ab61-ecs","name":"6:panel_6","type":"visualization"},{"id":"206f1bc0-1e45-11e9-a1b4-79a7ae42ab61-ecs","name":"8:panel_8","type":"visualization"},{"id":"754215c0-1e46-11e9-a1b4-79a7ae42ab61-ecs","name":"12:panel_12","type":"visualization"},{"id":"dff743a0-1f1c-11e9-a673-d9577e5e50eb-ecs","name":"18:panel_18","type":"visualization"},{"id":"b877eb90-2988-11eb-8245-71f739a9f622","name":"4ffa8ccd-bd36-4eaf-973e-688b3025e95c:panel_4ffa8ccd-bd36-4eaf-973e-688b3025e95c","type":"visualization"},{"id":"d3142a50-2987-11eb-8245-71f739a9f622","name":"b07d6b97-c0b5-4663-8507-8d3cc2a63367:panel_b07d6b97-c0b5-4663-8507-8d3cc2a63367","type":"visualization"},{"id":"5146f2a0-2987-11eb-8245-71f739a9f622","name":"eb420bb0-754e-4544-bc1f-027568db1c8c:panel_eb420bb0-754e-4544-bc1f-027568db1c8c","type":"visualization"},{"id":"eeb33da0-2987-11eb-8245-71f739a9f622","name":"1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5:panel_1ed3e570-4ece-42a4-92b1-fdc19e3e1ad5","type":"visualization"},{"id":"431edfc0-2988-11eb-8245-71f739a9f622","name":"ed6181bc-4274-400a-a9d8-a84a027a4a77:panel_ed6181bc-4274-400a-a9d8-a84a027a4a77","type":"visualization"},{"id":"898d2fe0-2986-11eb-8245-71f739a9f622","name":"7862e4cd-22db-493b-a3be-247570eaaa8a:panel_7862e4cd-22db-493b-a3be-247570eaaa8a","type":"visualization"},{"id":"3a670a80-2986-11eb-8245-71f739a9f622","name":"5c6f0fdf-67e6-4a39-8543-d46c3f833ac6:panel_5c6f0fdf-67e6-4a39-8543-d46c3f833ac6","type":"visualization"},{"id":"55c2d340-2986-11eb-8245-71f739a9f622","name":"258a5243-55f6-4195-90cb-ef3ec94707db:panel_258a5243-55f6-4195-90cb-ef3ec94707db","type":"visualization"},{"id":"68d40020-2987-11eb-8245-71f739a9f622","name":"0e68fd8a-abd9-4391-b2d0-026e79714835:panel_0e68fd8a-abd9-4391-b2d0-026e79714835","type":"visualization"},{"id":"84e60a90-2a79-11eb-952d-594e5c56d011","name":"3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c:panel_3141f1f6-d2d1-4b3f-8a7a-7d915bcb5d7c","type":"visualization"},{"id":"d80d4c30-2a81-11eb-9625-31ed579c09b3","name":"66f0d0ac-bf45-40e3-ba8c-32d6360e8584:panel_66f0d0ac-bf45-40e3-ba8c-32d6360e8584","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:44.486Z","version":"WzQwODUsMV0="} diff --git a/metricbeat/module/nats/_meta/kibana/7/visualization/206f1bc0-1e45-11e9-a1b4-79a7ae42ab61-ecs.json b/metricbeat/module/nats/_meta/kibana/7/visualization/206f1bc0-1e45-11e9-a1b4-79a7ae42ab61-ecs.json new file mode 100644 index 000000000000..f6dc20a4f726 --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/visualization/206f1bc0-1e45-11e9-a1b4-79a7ae42ab61-ecs.json @@ -0,0 +1,93 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Server Uptime [Metricbeat NATS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Server Uptime", + "field": "nats.stats.uptime" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "nats.server.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 42, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Server Uptime [Metricbeat NATS] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "206f1bc0-1e45-11e9-a1b4-79a7ae42ab61-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:44.486Z", + "version": "WzQwODcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nats/_meta/kibana/7/visualization/3a670a80-2986-11eb-8245-71f739a9f622.json b/metricbeat/module/nats/_meta/kibana/7/visualization/3a670a80-2986-11eb-8245-71f739a9f622.json new file mode 100644 index 000000000000..482fc8be06db --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/visualization/3a670a80-2986-11eb-8245-71f739a9f622.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Total Routes [Metricbeat NATS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "e4c53250-2985-11eb-9192-5db805fbad79", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "number", + "id": "e4c53251-2985-11eb-9192-5db805fbad79", + "label": "Routes", + "line_width": 2, + "metrics": [ + { + "field": "nats.routes.total", + "id": "e4c53252-2985-11eb-9192-5db805fbad79", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "nats.server.id", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Total Routes [Metricbeat NATS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3a670a80-2986-11eb-8245-71f739a9f622", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:44.486Z", + "version": "WzQwOTYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nats/_meta/kibana/7/visualization/431edfc0-2988-11eb-8245-71f739a9f622.json b/metricbeat/module/nats/_meta/kibana/7/visualization/431edfc0-2988-11eb-8245-71f739a9f622.json new file mode 100644 index 000000000000..852f0c306839 --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/visualization/431edfc0-2988-11eb-8245-71f739a9f622.json @@ -0,0 +1,72 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Connections [Metricbeat NATS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "e4c53250-2985-11eb-9192-5db805fbad79", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "number", + "id": "e4c53251-2985-11eb-9192-5db805fbad79", + "label": "Connections", + "line_width": 2, + "metrics": [ + { + "field": "nats.stats.total_connections", + "id": "e4c53252-2985-11eb-9192-5db805fbad79", + "type": "positive_rate", + "unit": "" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "nats.server.id", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Connections [Metricbeat NATS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "431edfc0-2988-11eb-8245-71f739a9f622", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:44.486Z", + "version": "WzQwOTQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nats/_meta/kibana/7/visualization/5146f2a0-2987-11eb-8245-71f739a9f622.json b/metricbeat/module/nats/_meta/kibana/7/visualization/5146f2a0-2987-11eb-8245-71f739a9f622.json new file mode 100644 index 000000000000..b07e16c00419 --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/visualization/5146f2a0-2987-11eb-8245-71f739a9f622.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Connection Incoming Bytes [Metricbeat NATS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "e4c53250-2985-11eb-9192-5db805fbad79", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "bytes", + "id": "e4c53251-2985-11eb-9192-5db805fbad79", + "label": "Connection Incoming Bytes", + "line_width": 2, + "metrics": [ + { + "field": "nats.connection.in.bytes", + "id": "e4c53252-2985-11eb-9192-5db805fbad79", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "nats.connection.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Connection Incoming Bytes [Metricbeat NATS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5146f2a0-2987-11eb-8245-71f739a9f622", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:44.486Z", + "version": "WzQwOTIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nats/_meta/kibana/7/visualization/55c2d340-2986-11eb-8245-71f739a9f622.json b/metricbeat/module/nats/_meta/kibana/7/visualization/55c2d340-2986-11eb-8245-71f739a9f622.json new file mode 100644 index 000000000000..63d15860010b --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/visualization/55c2d340-2986-11eb-8245-71f739a9f622.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Total Connections [Metricbeat NATS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "e4c53250-2985-11eb-9192-5db805fbad79", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "number", + "id": "e4c53251-2985-11eb-9192-5db805fbad79", + "label": "Connections", + "line_width": 2, + "metrics": [ + { + "field": "nats.connections.total", + "id": "e4c53252-2985-11eb-9192-5db805fbad79", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "nats.server.id", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Total Connections [Metricbeat NATS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "55c2d340-2986-11eb-8245-71f739a9f622", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:44.486Z", + "version": "WzQwOTcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nats/_meta/kibana/7/visualization/68d40020-2987-11eb-8245-71f739a9f622.json b/metricbeat/module/nats/_meta/kibana/7/visualization/68d40020-2987-11eb-8245-71f739a9f622.json new file mode 100644 index 000000000000..a09c8a6dc004 --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/visualization/68d40020-2987-11eb-8245-71f739a9f622.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Connection Pending Bytes [Metricbeat NATS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "e4c53250-2985-11eb-9192-5db805fbad79", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "bytes", + "id": "e4c53251-2985-11eb-9192-5db805fbad79", + "label": "Connection Pending Bytes", + "line_width": 2, + "metrics": [ + { + "field": "nats.connection.pending_bytes", + "id": "e4c53252-2985-11eb-9192-5db805fbad79", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "nats.connection.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Connection Pending Bytes [Metricbeat NATS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "68d40020-2987-11eb-8245-71f739a9f622", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:44.486Z", + "version": "WzQwOTgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nats/_meta/kibana/7/visualization/754215c0-1e46-11e9-a1b4-79a7ae42ab61-ecs.json b/metricbeat/module/nats/_meta/kibana/7/visualization/754215c0-1e46-11e9-a1b4-79a7ae42ab61-ecs.json new file mode 100644 index 000000000000..994b534f6642 --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/visualization/754215c0-1e46-11e9-a1b4-79a7ae42ab61-ecs.json @@ -0,0 +1,174 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Subscription Stats Timeline [Metricbeat NATS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Cache Fanout Avg", + "field": "nats.subscriptions.cache.fanout.avg" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 0, + "scaleMetricValues": false, + "timeRange": { + "from": "now-15m", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Cache Fanout Max", + "field": "nats.subscriptions.cache.fanout.max" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "labels": {}, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Cache Fanout Avg" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + }, + { + "data": { + "id": "3", + "label": "Cache Fanout Max" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Cache Fanout Avg" + }, + "type": "value" + } + ] + }, + "title": "Subscription Stats Timeline [Metricbeat NATS] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "754215c0-1e46-11e9-a1b4-79a7ae42ab61-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:44.486Z", + "version": "WzQwODgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nats/_meta/kibana/7/visualization/84e60a90-2a79-11eb-952d-594e5c56d011.json b/metricbeat/module/nats/_meta/kibana/7/visualization/84e60a90-2a79-11eb-952d-594e5c56d011.json new file mode 100644 index 000000000000..fbce5a3c629f --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/visualization/84e60a90-2a79-11eb-952d-594e5c56d011.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Slow Consumers [Metricbeat NATS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "e4c53250-2985-11eb-9192-5db805fbad79", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "number", + "id": "e4c53251-2985-11eb-9192-5db805fbad79", + "label": "Slow Consumers", + "line_width": 2, + "metrics": [ + { + "field": "nats.stats.slow_consumers", + "id": "e4c53252-2985-11eb-9192-5db805fbad79", + "type": "avg", + "unit": "" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "nats.server.id", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Slow Consumers [Metricbeat NATS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "84e60a90-2a79-11eb-952d-594e5c56d011", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:44.486Z", + "version": "WzQwOTksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nats/_meta/kibana/7/visualization/898d2fe0-2986-11eb-8245-71f739a9f622.json b/metricbeat/module/nats/_meta/kibana/7/visualization/898d2fe0-2986-11eb-8245-71f739a9f622.json new file mode 100644 index 000000000000..bbf613717adf --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/visualization/898d2fe0-2986-11eb-8245-71f739a9f622.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Connections Uptime [Metricbeat NATS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "e4c53250-2985-11eb-9192-5db805fbad79", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "s,s,", + "id": "e4c53251-2985-11eb-9192-5db805fbad79", + "label": "Connection Uptime", + "line_width": 2, + "metrics": [ + { + "field": "nats.connection.uptime", + "id": "e4c53252-2985-11eb-9192-5db805fbad79", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "nats.connection.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Connections Uptime [Metricbeat NATS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "898d2fe0-2986-11eb-8245-71f739a9f622", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:44.486Z", + "version": "WzQwOTUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nats/_meta/kibana/7/visualization/b129b220-1e44-11e9-a1b4-79a7ae42ab61-ecs.json b/metricbeat/module/nats/_meta/kibana/7/visualization/b129b220-1e44-11e9-a1b4-79a7ae42ab61-ecs.json new file mode 100644 index 000000000000..93f0c010cc16 --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/visualization/b129b220-1e44-11e9-a1b4-79a7ae42ab61-ecs.json @@ -0,0 +1,141 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Subscriptions Info [Metricbeat NATS] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Cache Fanout Avg", + "field": "nats.subscriptions.cache.fanout.avg" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Cache Fanout Max", + "field": "nats.subscriptions.cache.fanout.max" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Cache Hit Rate", + "field": "nats.subscriptions.cache.hit_rate" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Cache Size", + "field": "nats.subscriptions.cache.size" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Inserts", + "field": "nats.subscriptions.inserts" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "Matches", + "field": "nats.subscriptions.matches" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "7", + "params": { + "customLabel": "Removes", + "field": "nats.subscriptions.removes" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "8", + "params": { + "customLabel": "Total", + "field": "nats.subscriptions.total" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "perPage": 1, + "showMeticsAtAllLevels": false, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Subscriptions Info [Metricbeat NATS] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b129b220-1e44-11e9-a1b4-79a7ae42ab61-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:44.486Z", + "version": "WzQwODYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nats/_meta/kibana/7/visualization/b877eb90-2988-11eb-8245-71f739a9f622.json b/metricbeat/module/nats/_meta/kibana/7/visualization/b877eb90-2988-11eb-8245-71f739a9f622.json new file mode 100644 index 000000000000..ce055d822562 --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/visualization/b877eb90-2988-11eb-8245-71f739a9f622.json @@ -0,0 +1,72 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Memory Usage [Metricbeat NATS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "e4c53250-2985-11eb-9192-5db805fbad79", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "bytes", + "id": "e4c53251-2985-11eb-9192-5db805fbad79", + "label": "Memory Usage", + "line_width": 2, + "metrics": [ + { + "field": "nats.stats.mem.bytes", + "id": "e4c53252-2985-11eb-9192-5db805fbad79", + "type": "avg", + "unit": "" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "nats.server.id", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Memory Usage [Metricbeat NATS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b877eb90-2988-11eb-8245-71f739a9f622", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:44.486Z", + "version": "WzQwOTAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nats/_meta/kibana/7/visualization/d3142a50-2987-11eb-8245-71f739a9f622.json b/metricbeat/module/nats/_meta/kibana/7/visualization/d3142a50-2987-11eb-8245-71f739a9f622.json new file mode 100644 index 000000000000..807e021a1569 --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/visualization/d3142a50-2987-11eb-8245-71f739a9f622.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Incoming Bytes Rate [Metricbeat NATS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "e4c53250-2985-11eb-9192-5db805fbad79", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "bytes", + "id": "e4c53251-2985-11eb-9192-5db805fbad79", + "label": "Incoming Bytes Rate", + "line_width": 2, + "metrics": [ + { + "field": "nats.stats.in.bytes", + "id": "e4c53252-2985-11eb-9192-5db805fbad79", + "type": "positive_rate" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "nats.server.id", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Incoming Bytes Rate [Metricbeat NATS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d3142a50-2987-11eb-8245-71f739a9f622", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:44.486Z", + "version": "WzQwOTEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nats/_meta/kibana/7/visualization/d80d4c30-2a81-11eb-9625-31ed579c09b3.json b/metricbeat/module/nats/_meta/kibana/7/visualization/d80d4c30-2a81-11eb-9625-31ed579c09b3.json new file mode 100644 index 000000000000..94aaf9ddeceb --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/visualization/d80d4c30-2a81-11eb-9625-31ed579c09b3.json @@ -0,0 +1,152 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Subscription Cache Actions [Metricbeat NATS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "a9b96760-2a81-11eb-8cd4-770b42226f97", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "number", + "id": "a9b96761-2a81-11eb-8cd4-770b42226f97", + "label": "rate(inserts)", + "line_width": 2, + "metrics": [ + { + "field": "nats.subscriptions.inserts", + "id": "a9b96762-2a81-11eb-8cd4-770b42226f97", + "type": "max" + }, + { + "field": "a9b96762-2a81-11eb-8cd4-770b42226f97", + "id": "a9b96764-2a81-11eb-8cd4-770b42226f97", + "type": "derivative", + "unit": "1s" + }, + { + "field": "a9b96764-2a81-11eb-8cd4-770b42226f97", + "id": "a9b96763-2a81-11eb-8cd4-770b42226f97", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}/s" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#D36086", + "fill": 0, + "formatter": "number", + "id": "a9b96765-2a81-11eb-8cd4-770b42226f97", + "label": "rate(removes)", + "line_width": 2, + "metrics": [ + { + "field": "nats.subscriptions.removes", + "id": "a9b96766-2a81-11eb-8cd4-770b42226f97", + "type": "max" + }, + { + "field": "a9b96766-2a81-11eb-8cd4-770b42226f97", + "id": "a9b96768-2a81-11eb-8cd4-770b42226f97", + "type": "derivative", + "unit": "1s" + }, + { + "field": "a9b96768-2a81-11eb-8cd4-770b42226f97", + "id": "a9b96767-2a81-11eb-8cd4-770b42226f97", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}/s" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#54B399", + "fill": 0, + "formatter": "number", + "id": "a9b96769-2a81-11eb-8cd4-770b42226f97", + "label": "rate(matches)", + "line_width": 2, + "metrics": [ + { + "field": "nats.subscriptions.matches", + "id": "a9b9676a-2a81-11eb-8cd4-770b42226f97", + "type": "max" + }, + { + "field": "a9b9676a-2a81-11eb-8cd4-770b42226f97", + "id": "a9b9676c-2a81-11eb-8cd4-770b42226f97", + "type": "derivative", + "unit": "1s" + }, + { + "field": "a9b9676c-2a81-11eb-8cd4-770b42226f97", + "id": "a9b9676b-2a81-11eb-8cd4-770b42226f97", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}/s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Subscription Cache Actions [Metricbeat NATS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d80d4c30-2a81-11eb-9625-31ed579c09b3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:44.486Z", + "version": "WzQxMDAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nats/_meta/kibana/7/visualization/dff743a0-1f1c-11e9-a673-d9577e5e50eb-ecs.json b/metricbeat/module/nats/_meta/kibana/7/visualization/dff743a0-1f1c-11e9-a673-d9577e5e50eb-ecs.json new file mode 100644 index 000000000000..0e620a142e87 --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/visualization/dff743a0-1f1c-11e9-a673-d9577e5e50eb-ecs.json @@ -0,0 +1,137 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Cache Hit Rate Timeline [Metricbeat NATS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Cache Hit Rate", + "field": "nats.subscriptions.cache.hit_rate" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Cache Hit Rate" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Cache Hit Rate (%)" + }, + "type": "value" + } + ] + }, + "title": "Cache Hit Rate Timeline [Metricbeat NATS] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dff743a0-1f1c-11e9-a673-d9577e5e50eb-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:44.486Z", + "version": "WzQwODksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nats/_meta/kibana/7/visualization/eeb33da0-2987-11eb-8245-71f739a9f622.json b/metricbeat/module/nats/_meta/kibana/7/visualization/eeb33da0-2987-11eb-8245-71f739a9f622.json new file mode 100644 index 000000000000..cb4befa1e9ae --- /dev/null +++ b/metricbeat/module/nats/_meta/kibana/7/visualization/eeb33da0-2987-11eb-8245-71f739a9f622.json @@ -0,0 +1,72 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Incoming Messages Rate [Metricbeat NATS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "e4c53250-2985-11eb-9192-5db805fbad79", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "number", + "id": "e4c53251-2985-11eb-9192-5db805fbad79", + "label": "Incoming Messages Rate", + "line_width": 2, + "metrics": [ + { + "field": "nats.stats.in.messages", + "id": "e4c53252-2985-11eb-9192-5db805fbad79", + "type": "positive_rate", + "unit": "" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "nats.server.id", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Incoming Messages Rate [Metricbeat NATS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "eeb33da0-2987-11eb-8245-71f739a9f622", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:44.486Z", + "version": "WzQwOTMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nats/module.yml b/metricbeat/module/nats/module.yml index e012cfcb7465..153522a652e8 100644 --- a/metricbeat/module/nats/module.yml +++ b/metricbeat/module/nats/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Metricbeat-Nats-Dashboard - file: Metricbeat-nats-overview.ndjson + file: Metricbeat-nats-overview.json diff --git a/metricbeat/module/nginx/_meta/kibana/7/dashboard/023d2930-f1a5-11e7-a9ef-93c69af7b129-ecs.json b/metricbeat/module/nginx/_meta/kibana/7/dashboard/023d2930-f1a5-11e7-a9ef-93c69af7b129-ecs.json new file mode 100644 index 000000000000..7f5c51574e68 --- /dev/null +++ b/metricbeat/module/nginx/_meta/kibana/7/dashboard/023d2930-f1a5-11e7-a9ef-93c69af7b129-ecs.json @@ -0,0 +1,142 @@ +{ + "attributes": { + "description": "Overview dashboard for the Nginx module in Metricbeat", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 24, + "x": 24, + "y": 12 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 24, + "x": 0, + "y": 12 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "5", + "w": 48, + "x": 0, + "y": 24 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Nginx] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "023d2930-f1a5-11e7-a9ef-93c69af7b129-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "555df8a0-f1a1-11e7-a9ef-93c69af7b129-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "a1d92240-f1a1-11e7-a9ef-93c69af7b129-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "d763a570-f1a1-11e7-a9ef-93c69af7b129-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "47a8e0f0-f1a4-11e7-a9ef-93c69af7b129-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "dcbffe30-f1a4-11e7-a9ef-93c69af7b129-ecs", + "name": "5:panel_5", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:57.845Z", + "version": "WzQyMDgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nginx/_meta/kibana/7/dashboard/metricbeat-nginx-overview.ndjson b/metricbeat/module/nginx/_meta/kibana/7/dashboard/metricbeat-nginx-overview.ndjson deleted file mode 100644 index 3fcd8125bbbc..000000000000 --- a/metricbeat/module/nginx/_meta/kibana/7/dashboard/metricbeat-nginx-overview.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Request Rate [Metricbeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Request rate\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.stubstatus.requests\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"396ec980-f1a1-11e7-95d0-8ddf041d42a2\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Request Rate [Metricbeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"555df8a0-f1a1-11e7-a9ef-93c69af7b129-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:57.845Z","version":"WzQyMDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Accepts and Handled Rate [Metricbeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"icon\":\"fa-tag\",\"id\":\"8644f980-f1a3-11e7-95d0-8ddf041d42a2\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"time_field\":\"@timestamp\"}],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Accepts rate\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.stubstatus.accepts\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"396ec980-f1a1-11e7-95d0-8ddf041d42a2\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0.9\",\"formatter\":\"number\",\"id\":\"56dd33b0-f1a3-11e7-95d0-8ddf041d42a2\",\"label\":\"Handled rate\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.stubstatus.handled\",\"id\":\"56dd33b1-f1a3-11e7-95d0-8ddf041d42a2\",\"type\":\"avg\"},{\"field\":\"56dd33b1-f1a3-11e7-95d0-8ddf041d42a2\",\"id\":\"56dd33b2-f1a3-11e7-95d0-8ddf041d42a2\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":\"3\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Accepts and Handled Rate [Metricbeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a1d92240-f1a1-11e7-a9ef-93c69af7b129-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:57.845Z","version":"WzQyMDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Drops Rate [Metricbeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(188,0,65,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Drops rate\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.stubstatus.dropped\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"396ec980-f1a1-11e7-95d0-8ddf041d42a2\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Drops Rate [Metricbeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d763a570-f1a1-11e7-a9ef-93c69af7b129-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:57.845Z","version":"WzQyMDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Active connections [Metricbeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.stubstatus.active\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Active connections [Metricbeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"47a8e0f0-f1a4-11e7-a9ef-93c69af7b129-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:57.845Z","version":"WzQyMDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Reading / Writing / Waiting Rates [Metricbeat Nginx] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Reading\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.stubstatus.reading\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"b1773680-f1a4-11e7-95d0-8ddf041d42a2\",\"label\":\"Writing\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.stubstatus.writing\",\"id\":\"b1773681-f1a4-11e7-95d0-8ddf041d42a2\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"b68aa6c0-f1a4-11e7-95d0-8ddf041d42a2\",\"label\":\"Waiting\",\"line_width\":1,\"metrics\":[{\"field\":\"nginx.stubstatus.waiting\",\"id\":\"b68aa6c1-f1a4-11e7-95d0-8ddf041d42a2\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Reading / Writing / Waiting Rates [Metricbeat Nginx] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"dcbffe30-f1a4-11e7-a9ef-93c69af7b129-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:57.845Z","version":"WzQyMDcsMV0="} -{"attributes":{"description":"Overview dashboard for the Nginx module in Metricbeat","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":0,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":0,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":48,\"h\":12,\"x\":0,\"y\":24,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Metricbeat Nginx] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"023d2930-f1a5-11e7-a9ef-93c69af7b129-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"555df8a0-f1a1-11e7-a9ef-93c69af7b129-ecs","name":"1:panel_1","type":"visualization"},{"id":"a1d92240-f1a1-11e7-a9ef-93c69af7b129-ecs","name":"2:panel_2","type":"visualization"},{"id":"d763a570-f1a1-11e7-a9ef-93c69af7b129-ecs","name":"3:panel_3","type":"visualization"},{"id":"47a8e0f0-f1a4-11e7-a9ef-93c69af7b129-ecs","name":"4:panel_4","type":"visualization"},{"id":"dcbffe30-f1a4-11e7-a9ef-93c69af7b129-ecs","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:57.845Z","version":"WzQyMDgsMV0="} diff --git a/metricbeat/module/nginx/_meta/kibana/7/visualization/47a8e0f0-f1a4-11e7-a9ef-93c69af7b129-ecs.json b/metricbeat/module/nginx/_meta/kibana/7/visualization/47a8e0f0-f1a4-11e7-a9ef-93c69af7b129-ecs.json new file mode 100644 index 000000000000..02d06a375a9b --- /dev/null +++ b/metricbeat/module/nginx/_meta/kibana/7/visualization/47a8e0f0-f1a4-11e7-a9ef-93c69af7b129-ecs.json @@ -0,0 +1,61 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Active connections [Metricbeat Nginx] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "field": "nginx.stubstatus.active", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Active connections [Metricbeat Nginx] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "47a8e0f0-f1a4-11e7-a9ef-93c69af7b129-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:57.845Z", + "version": "WzQyMDYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nginx/_meta/kibana/7/visualization/555df8a0-f1a1-11e7-a9ef-93c69af7b129-ecs.json b/metricbeat/module/nginx/_meta/kibana/7/visualization/555df8a0-f1a1-11e7-a9ef-93c69af7b129-ecs.json new file mode 100644 index 000000000000..8a24a26a6db5 --- /dev/null +++ b/metricbeat/module/nginx/_meta/kibana/7/visualization/555df8a0-f1a1-11e7-a9ef-93c69af7b129-ecs.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Request Rate [Metricbeat Nginx] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Request rate", + "line_width": 1, + "metrics": [ + { + "field": "nginx.stubstatus.requests", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "396ec980-f1a1-11e7-95d0-8ddf041d42a2", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Request Rate [Metricbeat Nginx] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "555df8a0-f1a1-11e7-a9ef-93c69af7b129-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:57.845Z", + "version": "WzQyMDMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nginx/_meta/kibana/7/visualization/a1d92240-f1a1-11e7-a9ef-93c69af7b129-ecs.json b/metricbeat/module/nginx/_meta/kibana/7/visualization/a1d92240-f1a1-11e7-a9ef-93c69af7b129-ecs.json new file mode 100644 index 000000000000..af3efa3aa2b3 --- /dev/null +++ b/metricbeat/module/nginx/_meta/kibana/7/visualization/a1d92240-f1a1-11e7-a9ef-93c69af7b129-ecs.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Accepts and Handled Rate [Metricbeat Nginx] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [ + { + "color": "#F00", + "icon": "fa-tag", + "id": "8644f980-f1a3-11e7-95d0-8ddf041d42a2", + "ignore_global_filters": 1, + "ignore_panel_filters": 1, + "index_pattern": "*", + "time_field": "@timestamp" + } + ], + "axis_formatter": "number", + "axis_position": "left", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0.5", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Accepts rate", + "line_width": 1, + "metrics": [ + { + "field": "nginx.stubstatus.accepts", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "396ec980-f1a1-11e7-95d0-8ddf041d42a2", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0.9", + "formatter": "number", + "id": "56dd33b0-f1a3-11e7-95d0-8ddf041d42a2", + "label": "Handled rate", + "line_width": 1, + "metrics": [ + { + "field": "nginx.stubstatus.handled", + "id": "56dd33b1-f1a3-11e7-95d0-8ddf041d42a2", + "type": "avg" + }, + { + "field": "56dd33b1-f1a3-11e7-95d0-8ddf041d42a2", + "id": "56dd33b2-f1a3-11e7-95d0-8ddf041d42a2", + "type": "derivative", + "unit": "" + } + ], + "point_size": "3", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Accepts and Handled Rate [Metricbeat Nginx] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a1d92240-f1a1-11e7-a9ef-93c69af7b129-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:57.845Z", + "version": "WzQyMDQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nginx/_meta/kibana/7/visualization/d763a570-f1a1-11e7-a9ef-93c69af7b129-ecs.json b/metricbeat/module/nginx/_meta/kibana/7/visualization/d763a570-f1a1-11e7-a9ef-93c69af7b129-ecs.json new file mode 100644 index 000000000000..dd2e0fbebdb0 --- /dev/null +++ b/metricbeat/module/nginx/_meta/kibana/7/visualization/d763a570-f1a1-11e7-a9ef-93c69af7b129-ecs.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Drops Rate [Metricbeat Nginx] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(188,0,65,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Drops rate", + "line_width": 1, + "metrics": [ + { + "field": "nginx.stubstatus.dropped", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "396ec980-f1a1-11e7-95d0-8ddf041d42a2", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Drops Rate [Metricbeat Nginx] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d763a570-f1a1-11e7-a9ef-93c69af7b129-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:57.845Z", + "version": "WzQyMDUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nginx/_meta/kibana/7/visualization/dcbffe30-f1a4-11e7-a9ef-93c69af7b129-ecs.json b/metricbeat/module/nginx/_meta/kibana/7/visualization/dcbffe30-f1a4-11e7-a9ef-93c69af7b129-ecs.json new file mode 100644 index 000000000000..8d7782ce9ad8 --- /dev/null +++ b/metricbeat/module/nginx/_meta/kibana/7/visualization/dcbffe30-f1a4-11e7-a9ef-93c69af7b129-ecs.json @@ -0,0 +1,106 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Reading / Writing / Waiting Rates [Metricbeat Nginx] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Reading", + "line_width": 1, + "metrics": [ + { + "field": "nginx.stubstatus.reading", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": 0.5, + "formatter": "number", + "id": "b1773680-f1a4-11e7-95d0-8ddf041d42a2", + "label": "Writing", + "line_width": 1, + "metrics": [ + { + "field": "nginx.stubstatus.writing", + "id": "b1773681-f1a4-11e7-95d0-8ddf041d42a2", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "b68aa6c0-f1a4-11e7-95d0-8ddf041d42a2", + "label": "Waiting", + "line_width": 1, + "metrics": [ + { + "field": "nginx.stubstatus.waiting", + "id": "b68aa6c1-f1a4-11e7-95d0-8ddf041d42a2", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Reading / Writing / Waiting Rates [Metricbeat Nginx] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dcbffe30-f1a4-11e7-a9ef-93c69af7b129-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:57.845Z", + "version": "WzQyMDcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/nginx/module.yml b/metricbeat/module/nginx/module.yml index 0f1d2c237f50..1bd8fa76625d 100644 --- a/metricbeat/module/nginx/module.yml +++ b/metricbeat/module/nginx/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 023d2930-f1a5-11e7-a9ef-93c69af7b129 - file: metricbeat-nginx-overview.ndjson + file: metricbeat-nginx-overview.json diff --git a/metricbeat/module/postgresql/_meta/kibana/7/dashboard/4288b790-b79f-11e9-a579-f5c0a5d81340.json b/metricbeat/module/postgresql/_meta/kibana/7/dashboard/4288b790-b79f-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..7da52ac311e8 --- /dev/null +++ b/metricbeat/module/postgresql/_meta/kibana/7/dashboard/4288b790-b79f-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,254 @@ +{ + "attributes": { + "description": "This PostgreSQL dashboard shows the most important database related metrics.\n\n", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "1", + "w": 24, + "x": 0, + "y": 6 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Query Latency", + "type": "visualization", + "version": "7.3.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Database Transactions", + "type": "visualization", + "version": "7.3.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "3", + "w": 24, + "x": 0, + "y": 19 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Fileblock IO", + "type": "visualization", + "version": "7.3.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "4", + "w": 14, + "x": 10, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "Rows Fetched/Returned", + "type": "visualization", + "version": "7.3.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "5", + "w": 24, + "x": 24, + "y": 22 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Rows Inserted/Deleted/Updated", + "type": "visualization", + "version": "7.3.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "6", + "w": 24, + "x": 0, + "y": 29 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Conflict/Deadlock Rates", + "type": "visualization", + "version": "7.3.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "7", + "w": 10, + "x": 0, + "y": 0 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "title": "Database Filter", + "type": "visualization", + "version": "7.3.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "8", + "w": 24, + "x": 24, + "y": 12 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "title": "Top Queries", + "type": "visualization", + "version": "7.3.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "9", + "w": 12, + "x": 24, + "y": 31 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "title": "Local block cache stats", + "type": "visualization", + "version": "7.3.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "10", + "w": 12, + "x": 36, + "y": 31 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "title": "Shared block cache stats", + "type": "visualization", + "version": "7.3.1" + } + ], + "timeRestore": false, + "title": "[Metricbeat PostgreSQL] Database Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "4288b790-b79f-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "fbfa67e0-b796-11e9-a579-f5c0a5d81340", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "d733c630-b797-11e9-a579-f5c0a5d81340", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "570973a0-b798-11e9-a579-f5c0a5d81340", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "66d67200-b799-11e9-a579-f5c0a5d81340", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "20931ef0-b79a-11e9-a579-f5c0a5d81340", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "960ecdf0-b79a-11e9-a579-f5c0a5d81340", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "98e6b0a0-b79b-11e9-a579-f5c0a5d81340", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "147875b0-b903-11e9-a579-f5c0a5d81340", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "0cb65170-b909-11e9-a579-f5c0a5d81340", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "e2b28ce0-b908-11e9-a579-f5c0a5d81340", + "name": "10:panel_10", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:45.573Z", + "version": "WzQxMDEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/postgresql/_meta/kibana/7/dashboard/Metricbeat-postgresql-overview.ndjson b/metricbeat/module/postgresql/_meta/kibana/7/dashboard/Metricbeat-postgresql-overview.ndjson deleted file mode 100644 index dd7fe54378d3..000000000000 --- a/metricbeat/module/postgresql/_meta/kibana/7/dashboard/Metricbeat-postgresql-overview.ndjson +++ /dev/null @@ -1,11 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Query Latency [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"919c5570-b796-11e9-8ed3-ef1959e6b366\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0.1\",\"filter\":{\"language\":\"kuery\",\"query\":\"not postgresql.statement.query.text : (\\\"BEGIN;\\\" or \\\"begin\\\" or \\\"commit\\\" or \\\"end\\\" or \\\"END;\\\" or \\\"SELECT * FROM pg_stat_statements\\\" or \\\"SELECT * FROM pg_stat_database\\\" or \\\"SELECT * FROM pg_stat_bgwriter\\\" or \\\"SELECT * FROM pg_stat_activity\\\")\"},\"formatter\":\"number\",\"id\":\"919c5571-b796-11e9-8ed3-ef1959e6b366\",\"label\":\"Query Latency\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.statement.query.time.total.ms\",\"id\":\"919c7c80-b796-11e9-8ed3-ef1959e6b366\",\"type\":\"max\"},{\"field\":\"919c7c80-b796-11e9-8ed3-ef1959e6b366\",\"id\":\"9e553c60-b79f-11e9-9029-a9d302b79ec2\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"9e553c60-b79f-11e9-9029-a9d302b79ec2\",\"id\":\"a58b6590-b79f-11e9-9029-a9d302b79ec2\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"postgresql.statement.query.text\",\"terms_order_by\":\"919c7c80-b796-11e9-8ed3-ef1959e6b366\",\"terms_size\":\"10\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Query Latency [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fbfa67e0-b796-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Database Transactions [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7af01590-b797-11e9-8816-2992f1df7a62\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7af01591-b797-11e9-8816-2992f1df7a62\",\"label\":\"committed\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.transactions.commit\",\"id\":\"7af01592-b797-11e9-8816-2992f1df7a62\",\"type\":\"max\"},{\"field\":\"7af01592-b797-11e9-8816-2992f1df7a62\",\"id\":\"7af01594-b797-11e9-8816-2992f1df7a62\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"7af01594-b797-11e9-8816-2992f1df7a62\",\"id\":\"7af01593-b797-11e9-8816-2992f1df7a62\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7af01595-b797-11e9-8816-2992f1df7a62\",\"label\":\"rolled back\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.transactions.rollback\",\"id\":\"7af01596-b797-11e9-8816-2992f1df7a62\",\"type\":\"max\"},{\"field\":\"7af01596-b797-11e9-8816-2992f1df7a62\",\"id\":\"7af01598-b797-11e9-8816-2992f1df7a62\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"7af01598-b797-11e9-8816-2992f1df7a62\",\"id\":\"7af01597-b797-11e9-8816-2992f1df7a62\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Database Transactions [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d733c630-b797-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Fileblock IO Rate [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"fbc27280-b797-11e9-b46b-4f80f005c4a5\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"fbc27281-b797-11e9-b46b-4f80f005c4a5\",\"label\":\"read\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.blocks.time.read.ms\",\"id\":\"fbc27282-b797-11e9-b46b-4f80f005c4a5\",\"type\":\"max\"},{\"field\":\"fbc27282-b797-11e9-b46b-4f80f005c4a5\",\"id\":\"fbc27284-b797-11e9-b46b-4f80f005c4a5\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"fbc27284-b797-11e9-b46b-4f80f005c4a5\",\"id\":\"fbc27283-b797-11e9-b46b-4f80f005c4a5\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(123,100,255,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"fbc27285-b797-11e9-b46b-4f80f005c4a5\",\"label\":\"write\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.blocks.time.write.ms\",\"id\":\"fbc27286-b797-11e9-b46b-4f80f005c4a5\",\"type\":\"max\"},{\"field\":\"fbc27286-b797-11e9-b46b-4f80f005c4a5\",\"id\":\"fbc27288-b797-11e9-b46b-4f80f005c4a5\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"fbc27288-b797-11e9-b46b-4f80f005c4a5\",\"id\":\"fbc27287-b797-11e9-b46b-4f80f005c4a5\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Fileblock IO Rate [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"570973a0-b798-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Rows Fetched/Returned [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"bec42b70-b798-11e9-af2f-3be5a91b64a6\"}],\"bar_color_rules\":[{\"id\":\"cc80b5d0-b798-11e9-af2f-3be5a91b64a6\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"ada89790-b798-11e9-af2f-3be5a91b64a6\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"a6981ed0-b798-11e9-a598-8baa89257193\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0.0 a'\",\"id\":\"a6981ed1-b798-11e9-a598-8baa89257193\",\"label\":\"Rows Returned\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.rows.returned\",\"id\":\"a6981ed2-b798-11e9-a598-8baa89257193\",\"percentiles\":[{\"id\":\"b507cc90-b798-11e9-af2f-3be5a91b64a6\",\"mode\":\"line\",\"shade\":0.2,\"value\":50}],\"type\":\"max\"},{\"field\":\"a6981ed2-b798-11e9-a598-8baa89257193\",\"id\":\"ed6f33d0-b8ff-11e9-8645-31d6a6d28728\",\"type\":\"derivative\",\"unit\":\"1\"},{\"field\":\"ed6f33d0-b8ff-11e9-8645-31d6a6d28728\",\"id\":\"f58b9e50-b8ff-11e9-8645-31d6a6d28728\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"a6981ed3-b798-11e9-a598-8baa89257193\",\"label\":\"Rows Fetched\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.rows.fetched\",\"id\":\"a6981ed4-b798-11e9-a598-8baa89257193\",\"type\":\"max\"},{\"field\":\"a6981ed4-b798-11e9-a598-8baa89257193\",\"id\":\"064737e0-b900-11e9-8645-31d6a6d28728\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"064737e0-b900-11e9-8645-31d6a6d28728\",\"id\":\"0fea1b50-b900-11e9-8645-31d6a6d28728\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Rows Fetched/Returned [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"66d67200-b799-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Rows Inserted/Deleted/Updated [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"fc474800-b799-11e9-bfa6-bd2fe13c0445\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"fc474801-b799-11e9-bfa6-bd2fe13c0445\",\"label\":\"inserted\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.rows.inserted\",\"id\":\"fc474802-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"max\"},{\"field\":\"fc474802-b799-11e9-bfa6-bd2fe13c0445\",\"id\":\"fc474804-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"fc474804-b799-11e9-bfa6-bd2fe13c0445\",\"id\":\"fc474803-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":0,\"formatter\":\"number\",\"id\":\"fc474805-b799-11e9-bfa6-bd2fe13c0445\",\"label\":\"deleted\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.rows.deleted\",\"id\":\"fc474806-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"max\"},{\"field\":\"fc474806-b799-11e9-bfa6-bd2fe13c0445\",\"id\":\"fc474808-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"fc474808-b799-11e9-bfa6-bd2fe13c0445\",\"id\":\"fc474807-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":0,\"formatter\":\"number\",\"id\":\"fc476f10-b799-11e9-bfa6-bd2fe13c0445\",\"label\":\"updated\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.rows.updated\",\"id\":\"fc476f11-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"max\"},{\"field\":\"fc476f11-b799-11e9-bfa6-bd2fe13c0445\",\"id\":\"fc476f13-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"fc476f13-b799-11e9-bfa6-bd2fe13c0445\",\"id\":\"fc476f12-b799-11e9-bfa6-bd2fe13c0445\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Rows Inserted/Deleted/Updated [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"20931ef0-b79a-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Conflict/Deadlock Rates [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"6c90db30-b79a-11e9-a8f0-d7983cd3d871\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(12,121,125,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"6c90db31-b79a-11e9-a8f0-d7983cd3d871\",\"label\":\"conflicts\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.conflicts\",\"id\":\"6c90db32-b79a-11e9-a8f0-d7983cd3d871\",\"type\":\"avg\"},{\"field\":\"6c90db32-b79a-11e9-a8f0-d7983cd3d871\",\"id\":\"6c90db34-b79a-11e9-a8f0-d7983cd3d871\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"6c90db34-b79a-11e9-a8f0-d7983cd3d871\",\"id\":\"6c90db33-b79a-11e9-a8f0-d7983cd3d871\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"6c90db35-b79a-11e9-a8f0-d7983cd3d871\",\"label\":\"deadlocks\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.database.deadlocks\",\"id\":\"6c90db36-b79a-11e9-a8f0-d7983cd3d871\",\"type\":\"avg\"},{\"field\":\"6c90db36-b79a-11e9-a8f0-d7983cd3d871\",\"id\":\"6c90db38-b79a-11e9-a8f0-d7983cd3d871\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"6c90db38-b79a-11e9-a8f0-d7983cd3d871\",\"id\":\"6c90db37-b79a-11e9-a8f0-d7983cd3d871\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Conflict/Deadlock Rates [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"960ecdf0-b79a-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Database Filter [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"postgresql.database.name\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"database\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"Database Filter [Metricbeat PostgreSQL] ECS\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"98e6b0a0-b79b-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Query Calls Count [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"d3cc2560-484b-11ea-a805-d7a3b4bc3300\"}],\"bar_color_rules\":[{\"id\":\"6da7d6e0-b902-11e9-9f00-7b1f283b2282\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"d22727f0-484b-11ea-a805-d7a3b4bc3300\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"2bc5fea0-b902-11e9-8b8c-f99be54b4271\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"pivot_id\":\"postgresql.statement.query.text\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"not postgresql.statement.query.text : (\\\"BEGIN;\\\" or \\\"begin\\\" or \\\"commit\\\" or \\\"end\\\" or \\\"END;\\\" or \\\"SELECT * FROM pg_stat_statements\\\" or \\\"SELECT * FROM pg_stat_database\\\" or \\\"SELECT * FROM pg_stat_bgwriter\\\" or \\\"SELECT * FROM pg_stat_activity\\\")\"},\"formatter\":\"'0a'\",\"id\":\"2bc5fea1-b902-11e9-8b8c-f99be54b4271\",\"label\":\"Number of times the query has been run\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.statement.query.calls\",\"id\":\"2bc5fea2-b902-11e9-8b8c-f99be54b4271\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"postgresql.statement.query.text\",\"terms_order_by\":\"2bc5fea2-b902-11e9-8b8c-f99be54b4271\",\"terms_size\":\"20\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Query Calls Count [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"147875b0-b903-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Local block cache stats [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"8f49dbd0-b908-11e9-a256-6d0ec934f3f9\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"8f49dbd1-b908-11e9-a256-6d0ec934f3f9\",\"label\":\"cache hits\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.statement.query.memory.local.hit\",\"id\":\"8f49dbd2-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"max\"},{\"field\":\"8f49dbd2-b908-11e9-a256-6d0ec934f3f9\",\"id\":\"8f49dbd4-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"8f49dbd2-b908-11e9-a256-6d0ec934f3f9\",\"id\":\"8f49dbd3-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":0,\"formatter\":\"number\",\"id\":\"8f49dbd5-b908-11e9-a256-6d0ec934f3f9\",\"label\":\"cache read\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.statement.query.memory.local.read\",\"id\":\"8f49dbd6-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"max\"},{\"field\":\"8f49dbd6-b908-11e9-a256-6d0ec934f3f9\",\"id\":\"8f49dbd8-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"8f49dbd6-b908-11e9-a256-6d0ec934f3f9\",\"id\":\"8f49dbd7-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Local block cache stats [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0cb65170-b909-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Shared block cache stats [Metricbeat PostgreSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"8f49dbd0-b908-11e9-a256-6d0ec934f3f9\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"8f49dbd1-b908-11e9-a256-6d0ec934f3f9\",\"label\":\"cache hits\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.statement.query.memory.shared.hit\",\"id\":\"8f49dbd2-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"max\"},{\"field\":\"8f49dbd2-b908-11e9-a256-6d0ec934f3f9\",\"id\":\"8f49dbd4-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"8f49dbd4-b908-11e9-a256-6d0ec934f3f9\",\"id\":\"8f49dbd3-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":0,\"formatter\":\"number\",\"id\":\"8f49dbd5-b908-11e9-a256-6d0ec934f3f9\",\"label\":\"cache read\",\"line_width\":2,\"metrics\":[{\"field\":\"postgresql.statement.query.memory.shared.read\",\"id\":\"8f49dbd6-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"max\"},{\"field\":\"8f49dbd6-b908-11e9-a256-6d0ec934f3f9\",\"id\":\"8f49dbd8-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"8f49dbd8-b908-11e9-a256-6d0ec934f3f9\",\"id\":\"8f49dbd7-b908-11e9-a256-6d0ec934f3f9\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Shared block cache stats [Metricbeat PostgreSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e2b28ce0-b908-11e9-a579-f5c0a5d81340","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMTEsMV0="} -{"attributes":{"description":"This PostgreSQL dashboard shows the most important database related metrics.\n\n","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":6},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Query Latency\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Database Transactions\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":19},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Fileblock IO\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"4\",\"w\":14,\"x\":10,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Rows Fetched/Returned\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":22},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Rows Inserted/Deleted/Updated\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":29},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Conflict/Deadlock Rates\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"7\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Database Filter\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":12},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Queries\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"9\",\"w\":12,\"x\":24,\"y\":31},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Local block cache stats\",\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.1\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"10\",\"w\":12,\"x\":36,\"y\":31},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Shared block cache stats\",\"panelRefName\":\"panel_10\"}]","timeRestore":false,"title":"[Metricbeat PostgreSQL] Database Overview","version":1},"coreMigrationVersion":"8.0.0","id":"4288b790-b79f-11e9-a579-f5c0a5d81340","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"fbfa67e0-b796-11e9-a579-f5c0a5d81340","name":"1:panel_1","type":"visualization"},{"id":"d733c630-b797-11e9-a579-f5c0a5d81340","name":"2:panel_2","type":"visualization"},{"id":"570973a0-b798-11e9-a579-f5c0a5d81340","name":"3:panel_3","type":"visualization"},{"id":"66d67200-b799-11e9-a579-f5c0a5d81340","name":"4:panel_4","type":"visualization"},{"id":"20931ef0-b79a-11e9-a579-f5c0a5d81340","name":"5:panel_5","type":"visualization"},{"id":"960ecdf0-b79a-11e9-a579-f5c0a5d81340","name":"6:panel_6","type":"visualization"},{"id":"98e6b0a0-b79b-11e9-a579-f5c0a5d81340","name":"7:panel_7","type":"visualization"},{"id":"147875b0-b903-11e9-a579-f5c0a5d81340","name":"8:panel_8","type":"visualization"},{"id":"0cb65170-b909-11e9-a579-f5c0a5d81340","name":"9:panel_9","type":"visualization"},{"id":"e2b28ce0-b908-11e9-a579-f5c0a5d81340","name":"10:panel_10","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:45.573Z","version":"WzQxMDEsMV0="} diff --git a/metricbeat/module/postgresql/_meta/kibana/7/visualization/0cb65170-b909-11e9-a579-f5c0a5d81340.json b/metricbeat/module/postgresql/_meta/kibana/7/visualization/0cb65170-b909-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..a5f4f8c0ea8a --- /dev/null +++ b/metricbeat/module/postgresql/_meta/kibana/7/visualization/0cb65170-b909-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,114 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Local block cache stats [Metricbeat PostgreSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "8f49dbd0-b908-11e9-a256-6d0ec934f3f9", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "number", + "id": "8f49dbd1-b908-11e9-a256-6d0ec934f3f9", + "label": "cache hits", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.statement.query.memory.local.hit", + "id": "8f49dbd2-b908-11e9-a256-6d0ec934f3f9", + "type": "max" + }, + { + "field": "8f49dbd2-b908-11e9-a256-6d0ec934f3f9", + "id": "8f49dbd4-b908-11e9-a256-6d0ec934f3f9", + "type": "derivative", + "unit": "1s" + }, + { + "field": "8f49dbd2-b908-11e9-a256-6d0ec934f3f9", + "id": "8f49dbd3-b908-11e9-a256-6d0ec934f3f9", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#DB1374", + "fill": 0, + "formatter": "number", + "id": "8f49dbd5-b908-11e9-a256-6d0ec934f3f9", + "label": "cache read", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.statement.query.memory.local.read", + "id": "8f49dbd6-b908-11e9-a256-6d0ec934f3f9", + "type": "max" + }, + { + "field": "8f49dbd6-b908-11e9-a256-6d0ec934f3f9", + "id": "8f49dbd8-b908-11e9-a256-6d0ec934f3f9", + "type": "derivative", + "unit": "1s" + }, + { + "field": "8f49dbd6-b908-11e9-a256-6d0ec934f3f9", + "id": "8f49dbd7-b908-11e9-a256-6d0ec934f3f9", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Local block cache stats [Metricbeat PostgreSQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0cb65170-b909-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:45.573Z", + "version": "WzQxMTAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/postgresql/_meta/kibana/7/visualization/147875b0-b903-11e9-a579-f5c0a5d81340.json b/metricbeat/module/postgresql/_meta/kibana/7/visualization/147875b0-b903-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..8401d2ed3d03 --- /dev/null +++ b/metricbeat/module/postgresql/_meta/kibana/7/visualization/147875b0-b903-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Query Calls Count [Metricbeat PostgreSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "d3cc2560-484b-11ea-a805-d7a3b4bc3300" + } + ], + "bar_color_rules": [ + { + "id": "6da7d6e0-b902-11e9-9f00-7b1f283b2282" + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "d22727f0-484b-11ea-a805-d7a3b4bc3300" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "2bc5fea0-b902-11e9-8b8c-f99be54b4271", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "pivot_id": "postgresql.statement.query.text", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(22,165,165,1)", + "fill": 0, + "filter": { + "language": "kuery", + "query": "not postgresql.statement.query.text : (\"BEGIN;\" or \"begin\" or \"commit\" or \"end\" or \"END;\" or \"SELECT * FROM pg_stat_statements\" or \"SELECT * FROM pg_stat_database\" or \"SELECT * FROM pg_stat_bgwriter\" or \"SELECT * FROM pg_stat_activity\")" + }, + "formatter": "'0a'", + "id": "2bc5fea1-b902-11e9-8b8c-f99be54b4271", + "label": "Number of times the query has been run", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.statement.query.calls", + "id": "2bc5fea2-b902-11e9-8b8c-f99be54b4271", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "postgresql.statement.query.text", + "terms_order_by": "2bc5fea2-b902-11e9-8b8c-f99be54b4271", + "terms_size": "20", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Query Calls Count [Metricbeat PostgreSQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "147875b0-b903-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:45.573Z", + "version": "WzQxMDksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/postgresql/_meta/kibana/7/visualization/20931ef0-b79a-11e9-a579-f5c0a5d81340.json b/metricbeat/module/postgresql/_meta/kibana/7/visualization/20931ef0-b79a-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..cb0131c6c53f --- /dev/null +++ b/metricbeat/module/postgresql/_meta/kibana/7/visualization/20931ef0-b79a-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,147 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Rows Inserted/Deleted/Updated [Metricbeat PostgreSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "fc474800-b799-11e9-bfa6-bd2fe13c0445", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "number", + "id": "fc474801-b799-11e9-bfa6-bd2fe13c0445", + "label": "inserted", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.database.rows.inserted", + "id": "fc474802-b799-11e9-bfa6-bd2fe13c0445", + "type": "max" + }, + { + "field": "fc474802-b799-11e9-bfa6-bd2fe13c0445", + "id": "fc474804-b799-11e9-bfa6-bd2fe13c0445", + "type": "derivative", + "unit": "1s" + }, + { + "field": "fc474804-b799-11e9-bfa6-bd2fe13c0445", + "id": "fc474803-b799-11e9-bfa6-bd2fe13c0445", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}/s" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#DB1374", + "fill": 0, + "formatter": "number", + "id": "fc474805-b799-11e9-bfa6-bd2fe13c0445", + "label": "deleted", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.database.rows.deleted", + "id": "fc474806-b799-11e9-bfa6-bd2fe13c0445", + "type": "max" + }, + { + "field": "fc474806-b799-11e9-bfa6-bd2fe13c0445", + "id": "fc474808-b799-11e9-bfa6-bd2fe13c0445", + "type": "derivative", + "unit": "1s" + }, + { + "field": "fc474808-b799-11e9-bfa6-bd2fe13c0445", + "id": "fc474807-b799-11e9-bfa6-bd2fe13c0445", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}/s" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#00B3A4", + "fill": 0, + "formatter": "number", + "id": "fc476f10-b799-11e9-bfa6-bd2fe13c0445", + "label": "updated", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.database.rows.updated", + "id": "fc476f11-b799-11e9-bfa6-bd2fe13c0445", + "type": "max" + }, + { + "field": "fc476f11-b799-11e9-bfa6-bd2fe13c0445", + "id": "fc476f13-b799-11e9-bfa6-bd2fe13c0445", + "type": "derivative", + "unit": "1s" + }, + { + "field": "fc476f13-b799-11e9-bfa6-bd2fe13c0445", + "id": "fc476f12-b799-11e9-bfa6-bd2fe13c0445", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}/s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Rows Inserted/Deleted/Updated [Metricbeat PostgreSQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "20931ef0-b79a-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:45.573Z", + "version": "WzQxMDYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/postgresql/_meta/kibana/7/visualization/570973a0-b798-11e9-a579-f5c0a5d81340.json b/metricbeat/module/postgresql/_meta/kibana/7/visualization/570973a0-b798-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..94819131d402 --- /dev/null +++ b/metricbeat/module/postgresql/_meta/kibana/7/visualization/570973a0-b798-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Fileblock IO Rate [Metricbeat PostgreSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "fbc27280-b797-11e9-b46b-4f80f005c4a5", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": 0, + "formatter": "number", + "id": "fbc27281-b797-11e9-b46b-4f80f005c4a5", + "label": "read", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.database.blocks.time.read.ms", + "id": "fbc27282-b797-11e9-b46b-4f80f005c4a5", + "type": "max" + }, + { + "field": "fbc27282-b797-11e9-b46b-4f80f005c4a5", + "id": "fbc27284-b797-11e9-b46b-4f80f005c4a5", + "type": "derivative", + "unit": "1s" + }, + { + "field": "fbc27284-b797-11e9-b46b-4f80f005c4a5", + "id": "fbc27283-b797-11e9-b46b-4f80f005c4a5", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "{{value}} ms" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(123,100,255,1)", + "fill": 0, + "formatter": "number", + "id": "fbc27285-b797-11e9-b46b-4f80f005c4a5", + "label": "write", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.database.blocks.time.write.ms", + "id": "fbc27286-b797-11e9-b46b-4f80f005c4a5", + "type": "max" + }, + { + "field": "fbc27286-b797-11e9-b46b-4f80f005c4a5", + "id": "fbc27288-b797-11e9-b46b-4f80f005c4a5", + "type": "derivative", + "unit": "1s" + }, + { + "field": "fbc27288-b797-11e9-b46b-4f80f005c4a5", + "id": "fbc27287-b797-11e9-b46b-4f80f005c4a5", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "{{value}} ms" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Fileblock IO Rate [Metricbeat PostgreSQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "570973a0-b798-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:45.573Z", + "version": "WzQxMDQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/postgresql/_meta/kibana/7/visualization/66d67200-b799-11e9-a579-f5c0a5d81340.json b/metricbeat/module/postgresql/_meta/kibana/7/visualization/66d67200-b799-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..6634eb659310 --- /dev/null +++ b/metricbeat/module/postgresql/_meta/kibana/7/visualization/66d67200-b799-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,147 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Rows Fetched/Returned [Metricbeat PostgreSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "bec42b70-b798-11e9-af2f-3be5a91b64a6" + } + ], + "bar_color_rules": [ + { + "id": "cc80b5d0-b798-11e9-af2f-3be5a91b64a6" + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "ada89790-b798-11e9-af2f-3be5a91b64a6" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "a6981ed0-b798-11e9-a598-8baa89257193", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "'0.0 a'", + "id": "a6981ed1-b798-11e9-a598-8baa89257193", + "label": "Rows Returned", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.database.rows.returned", + "id": "a6981ed2-b798-11e9-a598-8baa89257193", + "percentiles": [ + { + "id": "b507cc90-b798-11e9-af2f-3be5a91b64a6", + "mode": "line", + "shade": 0.2, + "value": 50 + } + ], + "type": "max" + }, + { + "field": "a6981ed2-b798-11e9-a598-8baa89257193", + "id": "ed6f33d0-b8ff-11e9-8645-31d6a6d28728", + "type": "derivative", + "unit": "1" + }, + { + "field": "ed6f33d0-b8ff-11e9-8645-31d6a6d28728", + "id": "f58b9e50-b8ff-11e9-8645-31d6a6d28728", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": 0, + "formatter": "number", + "id": "a6981ed3-b798-11e9-a598-8baa89257193", + "label": "Rows Fetched", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.database.rows.fetched", + "id": "a6981ed4-b798-11e9-a598-8baa89257193", + "type": "max" + }, + { + "field": "a6981ed4-b798-11e9-a598-8baa89257193", + "id": "064737e0-b900-11e9-8645-31d6a6d28728", + "type": "derivative", + "unit": "1s" + }, + { + "field": "064737e0-b900-11e9-8645-31d6a6d28728", + "id": "0fea1b50-b900-11e9-8645-31d6a6d28728", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Rows Fetched/Returned [Metricbeat PostgreSQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "66d67200-b799-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:45.573Z", + "version": "WzQxMDUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/postgresql/_meta/kibana/7/visualization/960ecdf0-b79a-11e9-a579-f5c0a5d81340.json b/metricbeat/module/postgresql/_meta/kibana/7/visualization/960ecdf0-b79a-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..75a8d777389f --- /dev/null +++ b/metricbeat/module/postgresql/_meta/kibana/7/visualization/960ecdf0-b79a-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Conflict/Deadlock Rates [Metricbeat PostgreSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "6c90db30-b79a-11e9-a8f0-d7983cd3d871", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(12,121,125,1)", + "fill": 0, + "formatter": "number", + "id": "6c90db31-b79a-11e9-a8f0-d7983cd3d871", + "label": "conflicts", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.database.conflicts", + "id": "6c90db32-b79a-11e9-a8f0-d7983cd3d871", + "type": "avg" + }, + { + "field": "6c90db32-b79a-11e9-a8f0-d7983cd3d871", + "id": "6c90db34-b79a-11e9-a8f0-d7983cd3d871", + "type": "derivative", + "unit": "1s" + }, + { + "field": "6c90db34-b79a-11e9-a8f0-d7983cd3d871", + "id": "6c90db33-b79a-11e9-a8f0-d7983cd3d871", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": 0, + "formatter": "number", + "id": "6c90db35-b79a-11e9-a8f0-d7983cd3d871", + "label": "deadlocks", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.database.deadlocks", + "id": "6c90db36-b79a-11e9-a8f0-d7983cd3d871", + "type": "avg" + }, + { + "field": "6c90db36-b79a-11e9-a8f0-d7983cd3d871", + "id": "6c90db38-b79a-11e9-a8f0-d7983cd3d871", + "type": "derivative", + "unit": "1s" + }, + { + "field": "6c90db38-b79a-11e9-a8f0-d7983cd3d871", + "id": "6c90db37-b79a-11e9-a8f0-d7983cd3d871", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Conflict/Deadlock Rates [Metricbeat PostgreSQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "960ecdf0-b79a-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:45.573Z", + "version": "WzQxMDcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/postgresql/_meta/kibana/7/visualization/98e6b0a0-b79b-11e9-a579-f5c0a5d81340.json b/metricbeat/module/postgresql/_meta/kibana/7/visualization/98e6b0a0-b79b-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..69fb3dbf621e --- /dev/null +++ b/metricbeat/module/postgresql/_meta/kibana/7/visualization/98e6b0a0-b79b-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Database Filter [Metricbeat PostgreSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "postgresql.database.name", + "id": "1549397251041", + "indexPatternRefName": "control_0_index_pattern", + "label": "database", + "options": { + "dynamicOptions": true, + "multiselect": false, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": true + }, + "title": "Database Filter [Metricbeat PostgreSQL] ECS", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "98e6b0a0-b79b-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:45.573Z", + "version": "WzQxMDgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/postgresql/_meta/kibana/7/visualization/d733c630-b797-11e9-a579-f5c0a5d81340.json b/metricbeat/module/postgresql/_meta/kibana/7/visualization/d733c630-b797-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..e94647fb84df --- /dev/null +++ b/metricbeat/module/postgresql/_meta/kibana/7/visualization/d733c630-b797-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Database Transactions [Metricbeat PostgreSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7af01590-b797-11e9-8816-2992f1df7a62", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": 0, + "formatter": "number", + "id": "7af01591-b797-11e9-8816-2992f1df7a62", + "label": "committed", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.database.transactions.commit", + "id": "7af01592-b797-11e9-8816-2992f1df7a62", + "type": "max" + }, + { + "field": "7af01592-b797-11e9-8816-2992f1df7a62", + "id": "7af01594-b797-11e9-8816-2992f1df7a62", + "type": "derivative", + "unit": "1s" + }, + { + "field": "7af01594-b797-11e9-8816-2992f1df7a62", + "id": "7af01593-b797-11e9-8816-2992f1df7a62", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(254,146,0,1)", + "fill": 0, + "formatter": "number", + "id": "7af01595-b797-11e9-8816-2992f1df7a62", + "label": "rolled back", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.database.transactions.rollback", + "id": "7af01596-b797-11e9-8816-2992f1df7a62", + "type": "max" + }, + { + "field": "7af01596-b797-11e9-8816-2992f1df7a62", + "id": "7af01598-b797-11e9-8816-2992f1df7a62", + "type": "derivative", + "unit": "1s" + }, + { + "field": "7af01598-b797-11e9-8816-2992f1df7a62", + "id": "7af01597-b797-11e9-8816-2992f1df7a62", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Database Transactions [Metricbeat PostgreSQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d733c630-b797-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:45.573Z", + "version": "WzQxMDMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/postgresql/_meta/kibana/7/visualization/e2b28ce0-b908-11e9-a579-f5c0a5d81340.json b/metricbeat/module/postgresql/_meta/kibana/7/visualization/e2b28ce0-b908-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..f660518659fa --- /dev/null +++ b/metricbeat/module/postgresql/_meta/kibana/7/visualization/e2b28ce0-b908-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Shared block cache stats [Metricbeat PostgreSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "8f49dbd0-b908-11e9-a256-6d0ec934f3f9", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "number", + "id": "8f49dbd1-b908-11e9-a256-6d0ec934f3f9", + "label": "cache hits", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.statement.query.memory.shared.hit", + "id": "8f49dbd2-b908-11e9-a256-6d0ec934f3f9", + "type": "max" + }, + { + "field": "8f49dbd2-b908-11e9-a256-6d0ec934f3f9", + "id": "8f49dbd4-b908-11e9-a256-6d0ec934f3f9", + "type": "derivative", + "unit": "1s" + }, + { + "field": "8f49dbd4-b908-11e9-a256-6d0ec934f3f9", + "id": "8f49dbd3-b908-11e9-a256-6d0ec934f3f9", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#DB1374", + "fill": 0, + "formatter": "number", + "id": "8f49dbd5-b908-11e9-a256-6d0ec934f3f9", + "label": "cache read", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.statement.query.memory.shared.read", + "id": "8f49dbd6-b908-11e9-a256-6d0ec934f3f9", + "type": "max" + }, + { + "field": "8f49dbd6-b908-11e9-a256-6d0ec934f3f9", + "id": "8f49dbd8-b908-11e9-a256-6d0ec934f3f9", + "type": "derivative", + "unit": "1s" + }, + { + "field": "8f49dbd8-b908-11e9-a256-6d0ec934f3f9", + "id": "8f49dbd7-b908-11e9-a256-6d0ec934f3f9", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Shared block cache stats [Metricbeat PostgreSQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e2b28ce0-b908-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:45.573Z", + "version": "WzQxMTEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/postgresql/_meta/kibana/7/visualization/fbfa67e0-b796-11e9-a579-f5c0a5d81340.json b/metricbeat/module/postgresql/_meta/kibana/7/visualization/fbfa67e0-b796-11e9-a579-f5c0a5d81340.json new file mode 100644 index 000000000000..c180a6138653 --- /dev/null +++ b/metricbeat/module/postgresql/_meta/kibana/7/visualization/fbfa67e0-b796-11e9-a579-f5c0a5d81340.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Query Latency [Metricbeat PostgreSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "919c5570-b796-11e9-8ed3-ef1959e6b366", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0.1", + "filter": { + "language": "kuery", + "query": "not postgresql.statement.query.text : (\"BEGIN;\" or \"begin\" or \"commit\" or \"end\" or \"END;\" or \"SELECT * FROM pg_stat_statements\" or \"SELECT * FROM pg_stat_database\" or \"SELECT * FROM pg_stat_bgwriter\" or \"SELECT * FROM pg_stat_activity\")" + }, + "formatter": "number", + "id": "919c5571-b796-11e9-8ed3-ef1959e6b366", + "label": "Query Latency", + "line_width": 2, + "metrics": [ + { + "field": "postgresql.statement.query.time.total.ms", + "id": "919c7c80-b796-11e9-8ed3-ef1959e6b366", + "type": "max" + }, + { + "field": "919c7c80-b796-11e9-8ed3-ef1959e6b366", + "id": "9e553c60-b79f-11e9-9029-a9d302b79ec2", + "type": "derivative", + "unit": "1s" + }, + { + "field": "9e553c60-b79f-11e9-9029-a9d302b79ec2", + "id": "a58b6590-b79f-11e9-9029-a9d302b79ec2", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "postgresql.statement.query.text", + "terms_order_by": "919c7c80-b796-11e9-8ed3-ef1959e6b366", + "terms_size": "10", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Query Latency [Metricbeat PostgreSQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fbfa67e0-b796-11e9-a579-f5c0a5d81340", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:45.573Z", + "version": "WzQxMDIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/prometheus/_meta/kibana/7/dashboard/6a9b80c0-b2ed-11e9-9a23-67ee28886a4b.json b/metricbeat/module/prometheus/_meta/kibana/7/dashboard/6a9b80c0-b2ed-11e9-9a23-67ee28886a4b.json new file mode 100644 index 000000000000..c25dbca828d5 --- /dev/null +++ b/metricbeat/module/prometheus/_meta/kibana/7/dashboard/6a9b80c0-b2ed-11e9-9a23-67ee28886a4b.json @@ -0,0 +1,210 @@ +{ + "attributes": { + "description": "Various stats for Prometheus Server", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "1", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "HTTP Requests", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "2", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Query Durations", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "3", + "w": 24, + "x": 24, + "y": 15 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Number of Targets", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "4", + "w": 24, + "x": 0, + "y": 22 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "Head Chunks", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "5", + "w": 11, + "x": 0, + "y": 15 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "WAL Stats", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "6", + "w": 13, + "x": 11, + "y": 15 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Reload Count", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "7", + "w": 10, + "x": 24, + "y": 22 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "title": "Remote API Reads", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "8", + "w": 14, + "x": 34, + "y": 22 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "title": "Alert Notifications", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Prometheus] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "6a9b80c0-b2ed-11e9-9a23-67ee28886a4b", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "19886730-b2e7-11e9-9a23-67ee28886a4b", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "f77c5900-b2e4-11e9-9a23-67ee28886a4b", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "ffb70040-b2ec-11e9-9a23-67ee28886a4b", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "79345b00-b2e5-11e9-9a23-67ee28886a4b", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "138704c0-b2f8-11e9-9a23-67ee28886a4b", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "d7740b40-b2fc-11e9-9a23-67ee28886a4b", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "edd33100-b305-11e9-9a23-67ee28886a4b", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "0b356630-b308-11e9-9a23-67ee28886a4b", + "name": "8:panel_8", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:46.559Z", + "version": "WzQxMTIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/prometheus/_meta/kibana/7/dashboard/Metricbeat-prometheus-overview.ndjson b/metricbeat/module/prometheus/_meta/kibana/7/dashboard/Metricbeat-prometheus-overview.ndjson deleted file mode 100644 index 251486040116..000000000000 --- a/metricbeat/module/prometheus/_meta/kibana/7/dashboard/Metricbeat-prometheus-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"HTTP Requests [Metricbeat Prometheus]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"b2579fe0-b2e6-11e9-96a9-535735f478e7\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(219,223,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"b2579fe1-b2e6-11e9-96a9-535735f478e7\",\"label\":\"HTTP Requests\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_http_requests_total\",\"id\":\"b2579fe2-b2e6-11e9-96a9-535735f478e7\",\"type\":\"max\"},{\"field\":\"b2579fe2-b2e6-11e9-96a9-535735f478e7\",\"id\":\"4ff83340-b445-11e9-88c2-81f27aea5920\",\"type\":\"derivative\",\"unit\":\"1s\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.handler\",\"terms_size\":\"5\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"HTTP Requests [Metricbeat Prometheus]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"19886730-b2e7-11e9-9a23-67ee28886a4b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Query Durations [Metricbeat Prometheus]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"prometheus.labels.quantile : \\\"0.99\\\"\"},\"id\":\"0fa40ac0-b2e3-11e9-9d48-591d2f459020\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"prometheus.labels.quantile : \\\"0.99\\\" \"},\"formatter\":\"'0.0[0000]'\",\"id\":\"0fa40ac1-b2e3-11e9-9d48-591d2f459020\",\"label\":\"Query Durations p99\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_engine_query_duration_seconds\",\"id\":\"0fa40ac2-b2e3-11e9-9d48-591d2f459020\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_filters\":[{\"color\":\"#3185FC\",\"filter\":{\"language\":\"kuery\",\"query\":\"prometheus.labels.slice : \\\"inner_eval\\\" \"},\"id\":\"5089a8b0-b2e3-11e9-a478-1744b9617108\",\"label\":\"Inner\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.slice\",\"terms_order_by\":\"_count\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Query Durations [Metricbeat Prometheus]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f77c5900-b2e4-11e9-9a23-67ee28886a4b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of Targets [Metricbeat Prometheus]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"08298160-b2ea-11e9-a1e3-dd90a90fb461\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"08298161-b2ea-11e9-a1e3-dd90a90fb461\",\"label\":\"Total Number of Discovered Targets\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_sd_discovered_targets\",\"id\":\"08298162-b2ea-11e9-a1e3-dd90a90fb461\",\"type\":\"max\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":1,\"terms_direction\":\"desc\",\"terms_field\":\"prometheus.labels.name\",\"terms_order_by\":\"08298162-b2ea-11e9-a1e3-dd90a90fb461\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Number of Targets [Metricbeat Prometheus]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ffb70040-b2ec-11e9-9a23-67ee28886a4b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Head Chunks [Metricbeat Prometheus]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"2f5a6920-b2e5-11e9-b248-0162f01eb4ee\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(101,50,148,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"2f5a9030-b2e5-11e9-b248-0162f01eb4ee\",\"label\":\"Head Chunks\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_tsdb_head_chunks\",\"id\":\"2f5a9031-b2e5-11e9-b248-0162f01eb4ee\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Head Chunks [Metricbeat Prometheus]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"79345b00-b2e5-11e9-9a23-67ee28886a4b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"WAL [Metricbeat Prometheus]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"f4985140-b2f7-11e9-8481-37d39feabbb2\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"ce91d200-b2f7-11e9-9e3f-5b12e64d4361\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(247,75,56,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"ce91f910-b2f7-11e9-9e3f-5b12e64d4361\",\"label\":\"Failed WAL Truncations\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_tsdb_wal_truncations_failed_total\",\"id\":\"ce91f911-b2f7-11e9-9e3f-5b12e64d4361\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"ce91f912-b2f7-11e9-9e3f-5b12e64d4361\",\"label\":\"WAL Corruptions Total\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_tsdb_wal_corruptions_total\",\"id\":\"ce91f913-b2f7-11e9-9e3f-5b12e64d4361\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"WAL [Metricbeat Prometheus]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"138704c0-b2f8-11e9-9a23-67ee28886a4b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Reload Count [Metricbeat Prometheus]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"6acaf760-b2fc-11e9-86ff-9300d5a00260\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(12,121,125,1)\",\"fill\":\"0.2\",\"formatter\":\"'0.0[0000]'\",\"id\":\"6acaf761-b2fc-11e9-86ff-9300d5a00260\",\"label\":\"reloads\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_tsdb_reloads_total\",\"id\":\"6acaf762-b2fc-11e9-86ff-9300d5a00260\",\"type\":\"max\"},{\"field\":\"6acaf762-b2fc-11e9-86ff-9300d5a00260\",\"id\":\"6acaf764-b2fc-11e9-86ff-9300d5a00260\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"6acaf764-b2fc-11e9-86ff-9300d5a00260\",\"id\":\"6acaf763-b2fc-11e9-86ff-9300d5a00260\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":1,\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":\"0.2\",\"formatter\":\"'0.0[0000]'\",\"id\":\"6acaf765-b2fc-11e9-86ff-9300d5a00260\",\"label\":\"failures\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_tsdb_reloads_failures_total\",\"id\":\"6acaf766-b2fc-11e9-86ff-9300d5a00260\",\"type\":\"max\"},{\"field\":\"6acaf766-b2fc-11e9-86ff-9300d5a00260\",\"id\":\"6acaf768-b2fc-11e9-86ff-9300d5a00260\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"6acaf768-b2fc-11e9-86ff-9300d5a00260\",\"id\":\"6acaf767-b2fc-11e9-86ff-9300d5a00260\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":1,\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Reload Count [Metricbeat Prometheus]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d7740b40-b2fc-11e9-9a23-67ee28886a4b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Remote API Reads [Metricbeat Prometheus]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"a3dbf320-b305-11e9-a86d-99bede5bfcc3\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(219,223,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"a3dbf321-b305-11e9-a86d-99bede5bfcc3\",\"label\":\"# of remote read queries\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_api_remote_read_queries\",\"id\":\"a3dbf322-b305-11e9-a86d-99bede5bfcc3\",\"type\":\"max\"},{\"field\":\"a3dbf322-b305-11e9-a86d-99bede5bfcc3\",\"id\":\"a3dbf324-b305-11e9-a86d-99bede5bfcc3\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"a3dbf324-b305-11e9-a86d-99bede5bfcc3\",\"id\":\"a3dbf323-b305-11e9-a86d-99bede5bfcc3\",\"type\":\"positive_only\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Remote API Reads [Metricbeat Prometheus]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"edd33100-b305-11e9-9a23-67ee28886a4b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Alert Notifications [Metricbeat Prometheus]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"b1741ab0-b307-11e9-95cd-c3f5589dc7d2\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"b1741ab1-b307-11e9-95cd-c3f5589dc7d2\",\"label\":\"Capacity of the alert notifications queue\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_notifications_queue_capacity\",\"id\":\"b1741ab2-b307-11e9-95cd-c3f5589dc7d2\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"b1741ab3-b307-11e9-95cd-c3f5589dc7d2\",\"label\":\"Alert notifications in the queue\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.prometheus_notifications_queue_length\",\"id\":\"b1741ab4-b307-11e9-95cd-c3f5589dc7d2\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Alert Notifications [Metricbeat Prometheus]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0b356630-b308-11e9-9a23-67ee28886a4b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMjAsMV0="} -{"attributes":{"description":"Various stats for Prometheus Server","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"HTTP Requests\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Query Durations\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Number of Targets\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":0,\"y\":22},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Head Chunks\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"5\",\"w\":11,\"x\":0,\"y\":15},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"WAL Stats\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"6\",\"w\":13,\"x\":11,\"y\":15},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Reload Count\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":10,\"x\":24,\"y\":22},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Remote API Reads\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":14,\"x\":34,\"y\":22},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Alert Notifications\",\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Metricbeat Prometheus] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"6a9b80c0-b2ed-11e9-9a23-67ee28886a4b","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"19886730-b2e7-11e9-9a23-67ee28886a4b","name":"1:panel_1","type":"visualization"},{"id":"f77c5900-b2e4-11e9-9a23-67ee28886a4b","name":"2:panel_2","type":"visualization"},{"id":"ffb70040-b2ec-11e9-9a23-67ee28886a4b","name":"3:panel_3","type":"visualization"},{"id":"79345b00-b2e5-11e9-9a23-67ee28886a4b","name":"4:panel_4","type":"visualization"},{"id":"138704c0-b2f8-11e9-9a23-67ee28886a4b","name":"5:panel_5","type":"visualization"},{"id":"d7740b40-b2fc-11e9-9a23-67ee28886a4b","name":"6:panel_6","type":"visualization"},{"id":"edd33100-b305-11e9-9a23-67ee28886a4b","name":"7:panel_7","type":"visualization"},{"id":"0b356630-b308-11e9-9a23-67ee28886a4b","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:46.559Z","version":"WzQxMTIsMV0="} diff --git a/metricbeat/module/prometheus/_meta/kibana/7/visualization/0b356630-b308-11e9-9a23-67ee28886a4b.json b/metricbeat/module/prometheus/_meta/kibana/7/visualization/0b356630-b308-11e9-9a23-67ee28886a4b.json new file mode 100644 index 000000000000..3b8a27290a90 --- /dev/null +++ b/metricbeat/module/prometheus/_meta/kibana/7/visualization/0b356630-b308-11e9-9a23-67ee28886a4b.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Alert Notifications [Metricbeat Prometheus]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "b1741ab0-b307-11e9-95cd-c3f5589dc7d2", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": 0, + "formatter": "number", + "id": "b1741ab1-b307-11e9-95cd-c3f5589dc7d2", + "label": "Capacity of the alert notifications queue", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.metrics.prometheus_notifications_queue_capacity", + "id": "b1741ab2-b307-11e9-95cd-c3f5589dc7d2", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(176,188,0,1)", + "fill": "0.2", + "formatter": "number", + "id": "b1741ab3-b307-11e9-95cd-c3f5589dc7d2", + "label": "Alert notifications in the queue", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.prometheus_notifications_queue_length", + "id": "b1741ab4-b307-11e9-95cd-c3f5589dc7d2", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Alert Notifications [Metricbeat Prometheus]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0b356630-b308-11e9-9a23-67ee28886a4b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:46.559Z", + "version": "WzQxMjAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/prometheus/_meta/kibana/7/visualization/138704c0-b2f8-11e9-9a23-67ee28886a4b.json b/metricbeat/module/prometheus/_meta/kibana/7/visualization/138704c0-b2f8-11e9-9a23-67ee28886a4b.json new file mode 100644 index 000000000000..b602d767a588 --- /dev/null +++ b/metricbeat/module/prometheus/_meta/kibana/7/visualization/138704c0-b2f8-11e9-9a23-67ee28886a4b.json @@ -0,0 +1,96 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "WAL [Metricbeat Prometheus]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "f4985140-b2f7-11e9-8481-37d39feabbb2" + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "hide_last_value_indicator": true, + "id": "ce91d200-b2f7-11e9-9e3f-5b12e64d4361", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(247,75,56,1)", + "fill": 0, + "formatter": "number", + "id": "ce91f910-b2f7-11e9-9e3f-5b12e64d4361", + "label": "Failed WAL Truncations", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.metrics.prometheus_tsdb_wal_truncations_failed_total", + "id": "ce91f911-b2f7-11e9-9e3f-5b12e64d4361", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(251,158,0,1)", + "fill": 0, + "formatter": "number", + "id": "ce91f912-b2f7-11e9-9e3f-5b12e64d4361", + "label": "WAL Corruptions Total", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.metrics.prometheus_tsdb_wal_corruptions_total", + "id": "ce91f913-b2f7-11e9-9e3f-5b12e64d4361", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "WAL [Metricbeat Prometheus]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "138704c0-b2f8-11e9-9a23-67ee28886a4b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:46.559Z", + "version": "WzQxMTcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/prometheus/_meta/kibana/7/visualization/19886730-b2e7-11e9-9a23-67ee28886a4b.json b/metricbeat/module/prometheus/_meta/kibana/7/visualization/19886730-b2e7-11e9-9a23-67ee28886a4b.json new file mode 100644 index 000000000000..d84cf3025600 --- /dev/null +++ b/metricbeat/module/prometheus/_meta/kibana/7/visualization/19886730-b2e7-11e9-9a23-67ee28886a4b.json @@ -0,0 +1,75 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "HTTP Requests [Metricbeat Prometheus]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "b2579fe0-b2e6-11e9-96a9-535735f478e7", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(219,223,0,1)", + "fill": 0, + "formatter": "number", + "id": "b2579fe1-b2e6-11e9-96a9-535735f478e7", + "label": "HTTP Requests", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.metrics.prometheus_http_requests_total", + "id": "b2579fe2-b2e6-11e9-96a9-535735f478e7", + "type": "max" + }, + { + "field": "b2579fe2-b2e6-11e9-96a9-535735f478e7", + "id": "4ff83340-b445-11e9-88c2-81f27aea5920", + "type": "derivative", + "unit": "1s" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.handler", + "terms_size": "5", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "HTTP Requests [Metricbeat Prometheus]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "19886730-b2e7-11e9-9a23-67ee28886a4b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:46.559Z", + "version": "WzQxMTMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/prometheus/_meta/kibana/7/visualization/79345b00-b2e5-11e9-9a23-67ee28886a4b.json b/metricbeat/module/prometheus/_meta/kibana/7/visualization/79345b00-b2e5-11e9-9a23-67ee28886a4b.json new file mode 100644 index 000000000000..47884b2d84f2 --- /dev/null +++ b/metricbeat/module/prometheus/_meta/kibana/7/visualization/79345b00-b2e5-11e9-9a23-67ee28886a4b.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Head Chunks [Metricbeat Prometheus]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "2f5a6920-b2e5-11e9-b248-0162f01eb4ee", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(101,50,148,1)", + "fill": 0, + "formatter": "number", + "id": "2f5a9030-b2e5-11e9-b248-0162f01eb4ee", + "label": "Head Chunks", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.metrics.prometheus_tsdb_head_chunks", + "id": "2f5a9031-b2e5-11e9-b248-0162f01eb4ee", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Head Chunks [Metricbeat Prometheus]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "79345b00-b2e5-11e9-9a23-67ee28886a4b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:46.559Z", + "version": "WzQxMTYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/prometheus/_meta/kibana/7/visualization/d7740b40-b2fc-11e9-9a23-67ee28886a4b.json b/metricbeat/module/prometheus/_meta/kibana/7/visualization/d7740b40-b2fc-11e9-9a23-67ee28886a4b.json new file mode 100644 index 000000000000..501d6a7bdfa6 --- /dev/null +++ b/metricbeat/module/prometheus/_meta/kibana/7/visualization/d7740b40-b2fc-11e9-9a23-67ee28886a4b.json @@ -0,0 +1,114 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Reload Count [Metricbeat Prometheus]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "6acaf760-b2fc-11e9-86ff-9300d5a00260", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(12,121,125,1)", + "fill": "0.2", + "formatter": "'0.0[0000]'", + "id": "6acaf761-b2fc-11e9-86ff-9300d5a00260", + "label": "reloads", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.prometheus_tsdb_reloads_total", + "id": "6acaf762-b2fc-11e9-86ff-9300d5a00260", + "type": "max" + }, + { + "field": "6acaf762-b2fc-11e9-86ff-9300d5a00260", + "id": "6acaf764-b2fc-11e9-86ff-9300d5a00260", + "type": "derivative", + "unit": "1s" + }, + { + "field": "6acaf764-b2fc-11e9-86ff-9300d5a00260", + "id": "6acaf763-b2fc-11e9-86ff-9300d5a00260", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 1, + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#DB1374", + "fill": "0.2", + "formatter": "'0.0[0000]'", + "id": "6acaf765-b2fc-11e9-86ff-9300d5a00260", + "label": "failures", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.prometheus_tsdb_reloads_failures_total", + "id": "6acaf766-b2fc-11e9-86ff-9300d5a00260", + "type": "max" + }, + { + "field": "6acaf766-b2fc-11e9-86ff-9300d5a00260", + "id": "6acaf768-b2fc-11e9-86ff-9300d5a00260", + "type": "derivative", + "unit": "1s" + }, + { + "field": "6acaf768-b2fc-11e9-86ff-9300d5a00260", + "id": "6acaf767-b2fc-11e9-86ff-9300d5a00260", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 1, + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Reload Count [Metricbeat Prometheus]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d7740b40-b2fc-11e9-9a23-67ee28886a4b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:46.559Z", + "version": "WzQxMTgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/prometheus/_meta/kibana/7/visualization/edd33100-b305-11e9-9a23-67ee28886a4b.json b/metricbeat/module/prometheus/_meta/kibana/7/visualization/edd33100-b305-11e9-9a23-67ee28886a4b.json new file mode 100644 index 000000000000..88a587a3a0de --- /dev/null +++ b/metricbeat/module/prometheus/_meta/kibana/7/visualization/edd33100-b305-11e9-9a23-67ee28886a4b.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Remote API Reads [Metricbeat Prometheus]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "a3dbf320-b305-11e9-a86d-99bede5bfcc3", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(219,223,0,1)", + "fill": 0, + "formatter": "number", + "id": "a3dbf321-b305-11e9-a86d-99bede5bfcc3", + "label": "# of remote read queries", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.metrics.prometheus_api_remote_read_queries", + "id": "a3dbf322-b305-11e9-a86d-99bede5bfcc3", + "type": "max" + }, + { + "field": "a3dbf322-b305-11e9-a86d-99bede5bfcc3", + "id": "a3dbf324-b305-11e9-a86d-99bede5bfcc3", + "type": "derivative", + "unit": "1s" + }, + { + "field": "a3dbf324-b305-11e9-a86d-99bede5bfcc3", + "id": "a3dbf323-b305-11e9-a86d-99bede5bfcc3", + "type": "positive_only" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Remote API Reads [Metricbeat Prometheus]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "edd33100-b305-11e9-9a23-67ee28886a4b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:46.559Z", + "version": "WzQxMTksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/prometheus/_meta/kibana/7/visualization/f77c5900-b2e4-11e9-9a23-67ee28886a4b.json b/metricbeat/module/prometheus/_meta/kibana/7/visualization/f77c5900-b2e4-11e9-9a23-67ee28886a4b.json new file mode 100644 index 000000000000..01fa0c4df6e3 --- /dev/null +++ b/metricbeat/module/prometheus/_meta/kibana/7/visualization/f77c5900-b2e4-11e9-9a23-67ee28886a4b.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Query Durations [Metricbeat Prometheus]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "prometheus.labels.quantile : \"0.99\"" + }, + "id": "0fa40ac0-b2e3-11e9-9d48-591d2f459020", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": 0, + "filter": { + "language": "kuery", + "query": "prometheus.labels.quantile : \"0.99\" " + }, + "formatter": "'0.0[0000]'", + "id": "0fa40ac1-b2e3-11e9-9d48-591d2f459020", + "label": "Query Durations p99", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.metrics.prometheus_engine_query_duration_seconds", + "id": "0fa40ac2-b2e3-11e9-9d48-591d2f459020", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#3185FC", + "filter": { + "language": "kuery", + "query": "prometheus.labels.slice : \"inner_eval\" " + }, + "id": "5089a8b0-b2e3-11e9-a478-1744b9617108", + "label": "Inner" + } + ], + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.slice", + "terms_order_by": "_count", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Query Durations [Metricbeat Prometheus]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f77c5900-b2e4-11e9-9a23-67ee28886a4b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:46.559Z", + "version": "WzQxMTQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/prometheus/_meta/kibana/7/visualization/ffb70040-b2ec-11e9-9a23-67ee28886a4b.json b/metricbeat/module/prometheus/_meta/kibana/7/visualization/ffb70040-b2ec-11e9-9a23-67ee28886a4b.json new file mode 100644 index 000000000000..cdac05ba932f --- /dev/null +++ b/metricbeat/module/prometheus/_meta/kibana/7/visualization/ffb70040-b2ec-11e9-9a23-67ee28886a4b.json @@ -0,0 +1,75 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Number of Targets [Metricbeat Prometheus]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "08298160-b2ea-11e9-a1e3-dd90a90fb461", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "08298161-b2ea-11e9-a1e3-dd90a90fb461", + "label": "Total Number of Discovered Targets", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.prometheus_sd_discovered_targets", + "id": "08298162-b2ea-11e9-a1e3-dd90a90fb461", + "type": "max" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "steps": 1, + "terms_direction": "desc", + "terms_field": "prometheus.labels.name", + "terms_order_by": "08298162-b2ea-11e9-a1e3-dd90a90fb461", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Number of Targets [Metricbeat Prometheus]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ffb70040-b2ec-11e9-9a23-67ee28886a4b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:46.559Z", + "version": "WzQxMTUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/rabbitmq/_meta/kibana/7/dashboard/AV4YobKIge1VCbKU_qVo-ecs.json b/metricbeat/module/rabbitmq/_meta/kibana/7/dashboard/AV4YobKIge1VCbKU_qVo-ecs.json new file mode 100644 index 000000000000..716a9b79c541 --- /dev/null +++ b/metricbeat/module/rabbitmq/_meta/kibana/7/dashboard/AV4YobKIge1VCbKU_qVo-ecs.json @@ -0,0 +1,124 @@ +{ + "attributes": { + "description": "Overview of RabbitMQ status", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 12, + "i": "2", + "w": 12, + "x": 28, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "8", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "9", + "w": 24, + "x": 24, + "y": 12 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "10", + "w": 24, + "x": 0, + "y": 12 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat RabbitMQ] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "AV4YobKIge1VCbKU_qVo-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Rabbitmq-Number-of-Nodes-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "RabbitMQ-Memory-Usage-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "RabbitMQ-Queue-Index-Operations-ecs", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "RabbitMQ-Erlang-Process-Usage-ecs", + "name": "10:panel_10", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:47.567Z", + "version": "WzQxMjYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/rabbitmq/_meta/kibana/7/dashboard/Metricbeat-rabbitmq-overview.ndjson b/metricbeat/module/rabbitmq/_meta/kibana/7/dashboard/Metricbeat-rabbitmq-overview.ndjson deleted file mode 100644 index d7919334e67a..000000000000 --- a/metricbeat/module/rabbitmq/_meta/kibana/7/dashboard/Metricbeat-rabbitmq-overview.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module:rabbitmq\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Metricbeat Rabbitmq ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Metricbeat-Rabbitmq-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:31:47.567Z","version":"WzQxMjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Number of Nodes [Metricbeat RabbitMQ] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"RabbitMQ Nodes\",\"field\":\"rabbitmq.node.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"fontSize\":60,\"handleNoResults\":true},\"title\":\"Rabbitmq Number of Nodes ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"Rabbitmq-Number-of-Nodes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Rabbitmq-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:47.567Z","version":"WzQxMjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Memory Usage [Metricbeat RabbitMQ] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Used memory\",\"field\":\"rabbitmq.node.mem.used.bytes\",\"json\":\"\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"30s\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Node name\",\"field\":\"rabbitmq.node.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":true,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"legendPosition\":\"top\",\"radiusRatio\":9,\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":false,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"RabbitMQ Memory Usage ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"RabbitMQ-Memory-Usage-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Rabbitmq-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:47.567Z","version":"WzQxMjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Queue Index Operations [Metricbeat RabbitMQ] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Queue Index Read\",\"field\":\"rabbitmq.node.queue.index.read.count\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"30s\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Queue Index Jornal Write\",\"field\":\"rabbitmq.node.queue.index.journal_write.count\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Queue Index Write\",\"field\":\"rabbitmq.node.queue.index.write.count\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"top\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":false,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Queue Index Operations [Metricbeat RabbitMQ] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"RabbitMQ-Queue-Index-Operations-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Rabbitmq-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:47.567Z","version":"WzQxMjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Erlang Process Usage [Metricbeat RabbitMQ] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Used Process\",\"field\":\"rabbitmq.node.proc.used\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"30s\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Node name\",\"field\":\"rabbitmq.node.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"legendPosition\":\"top\",\"radiusRatio\":9,\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":false,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"RabbitMQ Erlang Process Usage ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"RabbitMQ-Erlang-Process-Usage-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Rabbitmq-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:47.567Z","version":"WzQxMjMsMV0="} -{"attributes":{"description":"Overview of RabbitMQ status","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":28,\"y\":0,\"w\":12,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":12,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":12,\"w\":24,\"h\":12,\"i\":\"9\"},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":24,\"h\":12,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"}]","timeRestore":false,"title":"[Metricbeat RabbitMQ] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"AV4YobKIge1VCbKU_qVo-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Rabbitmq-Number-of-Nodes-ecs","name":"2:panel_2","type":"visualization"},{"id":"RabbitMQ-Memory-Usage-ecs","name":"8:panel_8","type":"visualization"},{"id":"RabbitMQ-Queue-Index-Operations-ecs","name":"9:panel_9","type":"visualization"},{"id":"RabbitMQ-Erlang-Process-Usage-ecs","name":"10:panel_10","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:47.567Z","version":"WzQxMjYsMV0="} diff --git a/metricbeat/module/rabbitmq/_meta/kibana/7/search/Metricbeat-Rabbitmq-ecs.json b/metricbeat/module/rabbitmq/_meta/kibana/7/search/Metricbeat-Rabbitmq-ecs.json new file mode 100644 index 000000000000..f082af047acc --- /dev/null +++ b/metricbeat/module/rabbitmq/_meta/kibana/7/search/Metricbeat-Rabbitmq-ecs.json @@ -0,0 +1,52 @@ +{ + "attributes": { + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.module:rabbitmq" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Metricbeat Rabbitmq ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Metricbeat-Rabbitmq-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:31:47.567Z", + "version": "WzQxMjUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/rabbitmq/_meta/kibana/7/visualization/RabbitMQ-Erlang-Process-Usage-ecs.json b/metricbeat/module/rabbitmq/_meta/kibana/7/visualization/RabbitMQ-Erlang-Process-Usage-ecs.json new file mode 100644 index 000000000000..882e388fec0a --- /dev/null +++ b/metricbeat/module/rabbitmq/_meta/kibana/7/visualization/RabbitMQ-Erlang-Process-Usage-ecs.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Erlang Process Usage [Metricbeat RabbitMQ] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Used Process", + "field": "rabbitmq.node.proc.used" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "3", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "30s", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Node name", + "field": "rabbitmq.node.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": false, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "legendPosition": "top", + "radiusRatio": 9, + "scale": "linear", + "setYExtents": false, + "shareYAxis": true, + "showCircles": false, + "smoothLines": true, + "times": [], + "yAxis": {} + }, + "title": "RabbitMQ Erlang Process Usage ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "RabbitMQ-Erlang-Process-Usage-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Metricbeat-Rabbitmq-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:47.567Z", + "version": "WzQxMjMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/rabbitmq/_meta/kibana/7/visualization/RabbitMQ-Memory-Usage-ecs.json b/metricbeat/module/rabbitmq/_meta/kibana/7/visualization/RabbitMQ-Memory-Usage-ecs.json new file mode 100644 index 000000000000..93853b5ecb68 --- /dev/null +++ b/metricbeat/module/rabbitmq/_meta/kibana/7/visualization/RabbitMQ-Memory-Usage-ecs.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Memory Usage [Metricbeat RabbitMQ] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Used memory", + "field": "rabbitmq.node.mem.used.bytes", + "json": "" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "3", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "30s", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Node name", + "field": "rabbitmq.node.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "defaultYExtents": true, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "legendPosition": "top", + "radiusRatio": 9, + "scale": "linear", + "setYExtents": false, + "shareYAxis": true, + "showCircles": false, + "smoothLines": true, + "times": [], + "yAxis": {} + }, + "title": "RabbitMQ Memory Usage ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "RabbitMQ-Memory-Usage-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Metricbeat-Rabbitmq-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:47.567Z", + "version": "WzQxMjEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/rabbitmq/_meta/kibana/7/visualization/RabbitMQ-Queue-Index-Operations-ecs.json b/metricbeat/module/rabbitmq/_meta/kibana/7/visualization/RabbitMQ-Queue-Index-Operations-ecs.json new file mode 100644 index 000000000000..5a51af318cb8 --- /dev/null +++ b/metricbeat/module/rabbitmq/_meta/kibana/7/visualization/RabbitMQ-Queue-Index-Operations-ecs.json @@ -0,0 +1,163 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Queue Index Operations [Metricbeat RabbitMQ] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Queue Index Read", + "field": "rabbitmq.node.queue.index.read.count" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "30s", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Queue Index Jornal Write", + "field": "rabbitmq.node.queue.index.journal_write.count" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Queue Index Write", + "field": "rabbitmq.node.queue.index.write.count" + }, + "schema": "metric", + "type": "max" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "defaultYExtents": false, + "detailedTooltip": true, + "drawLinesBetweenPoints": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "isVislibVis": true, + "legendPosition": "top", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "radiusRatio": 9, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "shareYAxis": true, + "showCircles": false, + "smoothLines": false, + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ], + "yAxis": {} + }, + "title": "Queue Index Operations [Metricbeat RabbitMQ] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "RabbitMQ-Queue-Index-Operations-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Metricbeat-Rabbitmq-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:47.567Z", + "version": "WzQxMjQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/rabbitmq/_meta/kibana/7/visualization/Rabbitmq-Number-of-Nodes-ecs.json b/metricbeat/module/rabbitmq/_meta/kibana/7/visualization/Rabbitmq-Number-of-Nodes-ecs.json new file mode 100644 index 000000000000..74f6a6627a7c --- /dev/null +++ b/metricbeat/module/rabbitmq/_meta/kibana/7/visualization/Rabbitmq-Number-of-Nodes-ecs.json @@ -0,0 +1,50 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Number of Nodes [Metricbeat RabbitMQ] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "RabbitMQ Nodes", + "field": "rabbitmq.node.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "fontSize": 60, + "handleNoResults": true + }, + "title": "Rabbitmq Number of Nodes ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Rabbitmq-Number-of-Nodes-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Metricbeat-Rabbitmq-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:47.567Z", + "version": "WzQxMjIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/rabbitmq/module.yml b/metricbeat/module/rabbitmq/module.yml index 89626b015cf5..42a37caaa631 100644 --- a/metricbeat/module/rabbitmq/module.yml +++ b/metricbeat/module/rabbitmq/module.yml @@ -1,3 +1,3 @@ dashboards: - id: AV4YobKIge1VCbKU_qVo - file: Metricbeat-rabbitmq-overview.ndjson + file: Metricbeat-rabbitmq-overview.json diff --git a/metricbeat/module/redis/_meta/kibana/7/dashboard/28969190-0511-11e9-9c60-d582a238e2c5-ecs.json b/metricbeat/module/redis/_meta/kibana/7/dashboard/28969190-0511-11e9-9c60-d582a238e2c5-ecs.json new file mode 100644 index 000000000000..660a38d3ac55 --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/dashboard/28969190-0511-11e9-9c60-d582a238e2c5-ecs.json @@ -0,0 +1,190 @@ +{ + "attributes": { + "description": "Redis keys metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "controlledBy": "1545388837304", + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "redis.keyspace.id", + "negate": false, + "params": [ + "db0", + "db1" + ], + "type": "phrases", + "value": "db0, db1" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "redis.keyspace.id": "db0" + } + }, + { + "match_phrase": { + "redis.keyspace.id": "db1" + } + } + ] + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "1", + "w": 12, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Keyspace selector", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "2", + "w": 36, + "x": 12, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Lists length", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 10, + "i": "3", + "w": 12, + "x": 0, + "y": 5 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Keys by type", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "4", + "w": 24, + "x": 0, + "y": 15 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "Average size of string keys", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "5", + "w": 24, + "x": 24, + "y": 15 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Average keys TTL", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Redis] Keys ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "28969190-0511-11e9-9c60-d582a238e2c5-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "00d39210-050d-11e9-9c60-d582a238e2c5-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "7f4bc7d0-050c-11e9-9c60-d582a238e2c5-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "4435ac40-050e-11e9-9c60-d582a238e2c5-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "8541a4a0-0513-11e9-9c60-d582a238e2c5-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "517a5fd0-0514-11e9-9c60-d582a238e2c5-ecs", + "name": "5:panel_5", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:48.690Z", + "version": "WzQxMzIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/redis/_meta/kibana/7/dashboard/AV4YjZ5pux-M-tCAunxK-ecs.json b/metricbeat/module/redis/_meta/kibana/7/dashboard/AV4YjZ5pux-M-tCAunxK-ecs.json new file mode 100644 index 000000000000..e60254bf8dec --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/dashboard/AV4YjZ5pux-M-tCAunxK-ecs.json @@ -0,0 +1,198 @@ +{ + "attributes": { + "description": "Overview of Redis server metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 20, + "x": 12, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 12, + "i": "2", + "w": 12, + "x": 0, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 8, + "i": "3", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": true + } + }, + "gridData": { + "h": 8, + "i": "4", + "w": 16, + "x": 0, + "y": 20 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "5", + "w": 16, + "x": 16, + "y": 20 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "6", + "w": 12, + "x": 32, + "y": 20 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "7", + "w": 16, + "x": 32, + "y": 0 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Redis] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "AV4YjZ5pux-M-tCAunxK-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Redis-Connected-clients-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "Redis-Clients-Metrics-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "Redis-hosts-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "Redis-Server-Versions-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "Redis-server-mode-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "Redis-multiplexing-API-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "Redis-Keyspaces-ecs", + "name": "7:panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:49.646Z", + "version": "WzQxNDEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-keys.ndjson b/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-keys.ndjson deleted file mode 100644 index 40d831ed369d..000000000000 --- a/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-keys.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Keyspace selector [Metricbeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"redis.keyspace.id\",\"id\":\"1545388837304\",\"label\":\"Keyspace\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\",\"indexPatternRefName\":\"control_0_index_pattern\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Keyspace selector [Metricbeat Redis] ECS\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"00d39210-050d-11e9-9c60-d582a238e2c5-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:48.690Z","version":"WzQxMjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"redis.key.type\",\"negate\":false,\"params\":{\"query\":\"list\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"list\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"redis.key.type\":{\"query\":\"list\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Lists length [Metricbeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Number of elements\",\"field\":\"redis.key.length\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Keyspace\",\"field\":\"redis.keyspace.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":16},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Key name\",\"field\":\"redis.key.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"mode\":\"quick\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Number of elements\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Number of elements\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Lists length [Metricbeat Redis] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"7f4bc7d0-050c-11e9-9c60-d582a238e2c5-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:48.690Z","version":"WzQxMjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Keys by type [Metricbeat Redis] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Number of keys\",\"field\":\"redis.key.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Key type\",\"field\":\"redis.key.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"\",\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"mode\":\"quick\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Number of keys\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Number of keys\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Keys by type [Metricbeat Redis] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"4435ac40-050e-11e9-9c60-d582a238e2c5-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:48.690Z","version":"WzQxMjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"redis.key.type\",\"negate\":false,\"params\":{\"query\":\"string\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"string\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"redis.key.type\":{\"query\":\"string\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Average string key size [Metricbeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Average key size\",\"field\":\"redis.key.length\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Keyspace\",\"field\":\"redis.keyspace.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"mode\":\"quick\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Average key size\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Average key size\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Average string key size [Metricbeat Redis] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"8541a4a0-0513-11e9-9c60-d582a238e2c5-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:48.690Z","version":"WzQxMzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"redis.key.expire.ttl\",\"negate\":false,\"params\":{\"gte\":0,\"lt\":null},\"type\":\"range\",\"value\":\"0 to +∞\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"range\":{\"redis.key.expire.ttl\":{\"gte\":0,\"lt\":null}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Average keys TTL [Metricbeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Average TTL\",\"field\":\"redis.key.expire.ttl\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Keyspace\",\"field\":\"redis.keyspace.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Key type\",\"field\":\"redis.key.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"mode\":\"quick\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Average TTL\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Average TTL\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Average keys TTL [Metricbeat Redis] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"517a5fd0-0514-11e9-9c60-d582a238e2c5-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:48.690Z","version":"WzQxMzEsMV0="} -{"attributes":{"description":"Redis keys metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"controlledBy\":\"1545388837304\",\"disabled\":false,\"key\":\"redis.keyspace.id\",\"negate\":false,\"params\":[\"db0\",\"db1\"],\"type\":\"phrases\",\"value\":\"db0, db1\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"redis.keyspace.id\":\"db0\"}},{\"match_phrase\":{\"redis.keyspace.id\":\"db1\"}}]}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"1\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Keyspace selector\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Lists length\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3\",\"w\":12,\"x\":0,\"y\":5},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Keys by type\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Average size of string keys\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Average keys TTL\",\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Metricbeat Redis] Keys ECS","version":1},"coreMigrationVersion":"8.0.0","id":"28969190-0511-11e9-9c60-d582a238e2c5-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"00d39210-050d-11e9-9c60-d582a238e2c5-ecs","name":"1:panel_1","type":"visualization"},{"id":"7f4bc7d0-050c-11e9-9c60-d582a238e2c5-ecs","name":"2:panel_2","type":"visualization"},{"id":"4435ac40-050e-11e9-9c60-d582a238e2c5-ecs","name":"3:panel_3","type":"visualization"},{"id":"8541a4a0-0513-11e9-9c60-d582a238e2c5-ecs","name":"4:panel_4","type":"visualization"},{"id":"517a5fd0-0514-11e9-9c60-d582a238e2c5-ecs","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:48.690Z","version":"WzQxMzIsMV0="} diff --git a/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-overview.ndjson b/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-overview.ndjson deleted file mode 100644 index 5f3ea732ec61..000000000000 --- a/metricbeat/module/redis/_meta/kibana/7/dashboard/Metricbeat-redis-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"event.module:redis\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Metricbeat Redis ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Metricbeat-Redis-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxNDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Connected clients [Metricbeat Redis] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Blocked\": \"#C15C17\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Connected\",\"field\":\"redis.info.clients.connected\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Blocked\",\"field\":\"redis.info.clients.blocked\"},\"schema\":\"metric\",\"type\":\"max\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"grouped\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{}},\"title\":\"Connected clients [Metricbeat Redis] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Redis-Connected-clients-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Redis-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxMzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Clients [Metricbeat Redis] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Connected clients\",\"field\":\"redis.info.clients.connected\"},\"schema\":\"metric\",\"type\":\"max\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":60,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Clients [Metricbeat Redis] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"Redis-Clients-Metrics-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Redis-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxMzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Hosts [Metricbeat Redis] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"service.address\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Uptime (s)\",\"field\":\"redis.info.server.uptime\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"PID\",\"field\":\"process.pid\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Memory\",\"field\":\"redis.info.memory.used.peak\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"CPU used (user)\",\"field\":\"redis.info.cpu.used.user\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"CPU used (system)\",\"field\":\"redis.info.cpu.used.sys\"},\"schema\":\"metric\",\"type\":\"max\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Hosts [Metricbeat Redis] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Redis-hosts-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Redis-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxMzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Server Versions [Metricbeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Hosts\",\"field\":\"service.address\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Multiplexing API\",\"field\":\"service.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Server Versions [Metricbeat Redis] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Redis-Server-Versions-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Redis-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxMzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Server mode [Metricbeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Hosts\",\"field\":\"service.address\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Server mode\",\"field\":\"redis.info.server.mode\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Server mode [Metricbeat Redis] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Redis-server-mode-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Redis-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxMzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Multiplexing API [Metricbeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Hosts\",\"field\":\"service.address\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Multiplexing API\",\"field\":\"redis.info.server.multiplexing_api\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Multiplexing API [Metricbeat Redis] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Redis-multiplexing-API-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Redis-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxMzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Keyspaces [Metricbeat Redis] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Number of keys\",\"field\":\"redis.keyspace.keys\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Keyspaces\",\"field\":\"redis.keyspace.id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{}},\"title\":\"Keyspaces [Metricbeat Redis] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Redis-Keyspaces-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Metricbeat-Redis-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxMzksMV0="} -{"attributes":{"description":"Overview of Redis server metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"highlightAll\":true,\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":0,\"w\":20,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":12,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":16,\"h\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":20,\"w\":16,\"h\":8,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":20,\"w\":12,\"h\":8,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":0,\"w\":16,\"h\":12,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Metricbeat Redis] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"AV4YjZ5pux-M-tCAunxK-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Redis-Connected-clients-ecs","name":"1:panel_1","type":"visualization"},{"id":"Redis-Clients-Metrics-ecs","name":"2:panel_2","type":"visualization"},{"id":"Redis-hosts-ecs","name":"3:panel_3","type":"visualization"},{"id":"Redis-Server-Versions-ecs","name":"4:panel_4","type":"visualization"},{"id":"Redis-server-mode-ecs","name":"5:panel_5","type":"visualization"},{"id":"Redis-multiplexing-API-ecs","name":"6:panel_6","type":"visualization"},{"id":"Redis-Keyspaces-ecs","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:49.646Z","version":"WzQxNDEsMV0="} diff --git a/metricbeat/module/redis/_meta/kibana/7/search/Metricbeat-Redis-ecs.json b/metricbeat/module/redis/_meta/kibana/7/search/Metricbeat-Redis-ecs.json new file mode 100644 index 000000000000..370317a465a2 --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/search/Metricbeat-Redis-ecs.json @@ -0,0 +1,55 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlight": { + "fields": { + "*": {} + }, + "fragment_size": 2147483647, + "post_tags": [ + "@/kibana-highlighted-field@" + ], + "pre_tags": [ + "@kibana-highlighted-field@" + ], + "require_field_match": false + }, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.module:redis" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Metricbeat Redis ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Metricbeat-Redis-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:31:49.646Z", + "version": "WzQxNDAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/redis/_meta/kibana/7/visualization/00d39210-050d-11e9-9c60-d582a238e2c5-ecs.json b/metricbeat/module/redis/_meta/kibana/7/visualization/00d39210-050d-11e9-9c60-d582a238e2c5-ecs.json new file mode 100644 index 000000000000..7330b2fc8428 --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/visualization/00d39210-050d-11e9-9c60-d582a238e2c5-ecs.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Keyspace selector [Metricbeat Redis] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "redis.keyspace.id", + "id": "1545388837304", + "indexPatternRefName": "control_0_index_pattern", + "label": "Keyspace", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "Keyspace selector [Metricbeat Redis] ECS", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "00d39210-050d-11e9-9c60-d582a238e2c5-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:48.690Z", + "version": "WzQxMjcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/redis/_meta/kibana/7/visualization/4435ac40-050e-11e9-9c60-d582a238e2c5-ecs.json b/metricbeat/module/redis/_meta/kibana/7/visualization/4435ac40-050e-11e9-9c60-d582a238e2c5-ecs.json new file mode 100644 index 000000000000..f8aaeb592ba1 --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/visualization/4435ac40-050e-11e9-9c60-d582a238e2c5-ecs.json @@ -0,0 +1,166 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Keys by type [Metricbeat Redis] ECS", + "uiStateJSON": { + "vis": { + "legendOpen": false + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Number of keys", + "field": "redis.key.id" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Key type", + "field": "redis.key.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "", + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "timeRange": { + "from": "now-15m", + "mode": "quick", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Number of keys" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Number of keys" + }, + "type": "value" + } + ] + }, + "title": "Keys by type [Metricbeat Redis] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4435ac40-050e-11e9-9c60-d582a238e2c5-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:48.690Z", + "version": "WzQxMjksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/redis/_meta/kibana/7/visualization/517a5fd0-0514-11e9-9c60-d582a238e2c5-ecs.json b/metricbeat/module/redis/_meta/kibana/7/visualization/517a5fd0-0514-11e9-9c60-d582a238e2c5-ecs.json new file mode 100644 index 000000000000..851f4a083bfa --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/visualization/517a5fd0-0514-11e9-9c60-d582a238e2c5-ecs.json @@ -0,0 +1,208 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "redis.key.expire.ttl", + "negate": false, + "params": { + "gte": 0, + "lt": null + }, + "type": "range", + "value": "0 to +\u00e2\u02c6\u017e" + }, + "range": { + "redis.key.expire.ttl": { + "gte": 0, + "lt": null + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Average keys TTL [Metricbeat Redis] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Average TTL", + "field": "redis.key.expire.ttl" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Keyspace", + "field": "redis.keyspace.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Key type", + "field": "redis.key.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "timeRange": { + "from": "now-15m", + "mode": "quick", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Average TTL" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Average TTL" + }, + "type": "value" + } + ] + }, + "title": "Average keys TTL [Metricbeat Redis] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "517a5fd0-0514-11e9-9c60-d582a238e2c5-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:48.690Z", + "version": "WzQxMzEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/redis/_meta/kibana/7/visualization/7f4bc7d0-050c-11e9-9c60-d582a238e2c5-ecs.json b/metricbeat/module/redis/_meta/kibana/7/visualization/7f4bc7d0-050c-11e9-9c60-d582a238e2c5-ecs.json new file mode 100644 index 000000000000..d4ddb90faa92 --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/visualization/7f4bc7d0-050c-11e9-9c60-d582a238e2c5-ecs.json @@ -0,0 +1,211 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "redis.key.type", + "negate": false, + "params": { + "query": "list", + "type": "phrase" + }, + "type": "phrase", + "value": "list" + }, + "query": { + "match": { + "redis.key.type": { + "query": "list", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Lists length [Metricbeat Redis] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Number of elements", + "field": "redis.key.length" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Keyspace", + "field": "redis.keyspace.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 16 + }, + "schema": "group", + "type": "terms" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Key name", + "field": "redis.key.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "group", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "timeRange": { + "from": "now-15m", + "mode": "quick", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Number of elements" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Number of elements" + }, + "type": "value" + } + ] + }, + "title": "Lists length [Metricbeat Redis] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7f4bc7d0-050c-11e9-9c60-d582a238e2c5-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:48.690Z", + "version": "WzQxMjgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/redis/_meta/kibana/7/visualization/8541a4a0-0513-11e9-9c60-d582a238e2c5-ecs.json b/metricbeat/module/redis/_meta/kibana/7/visualization/8541a4a0-0513-11e9-9c60-d582a238e2c5-ecs.json new file mode 100644 index 000000000000..bb483daa0987 --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/visualization/8541a4a0-0513-11e9-9c60-d582a238e2c5-ecs.json @@ -0,0 +1,193 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "redis.key.type", + "negate": false, + "params": { + "query": "string", + "type": "phrase" + }, + "type": "phrase", + "value": "string" + }, + "query": { + "match": { + "redis.key.type": { + "query": "string", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Average string key size [Metricbeat Redis] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Average key size", + "field": "redis.key.length" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Keyspace", + "field": "redis.keyspace.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "timeRange": { + "from": "now-15m", + "mode": "quick", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Average key size" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Average key size" + }, + "type": "value" + } + ] + }, + "title": "Average string key size [Metricbeat Redis] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8541a4a0-0513-11e9-9c60-d582a238e2c5-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:48.690Z", + "version": "WzQxMzAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-Clients-Metrics-ecs.json b/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-Clients-Metrics-ecs.json new file mode 100644 index 000000000000..e4559e4e27bd --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-Clients-Metrics-ecs.json @@ -0,0 +1,95 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Clients [Metricbeat Redis] ECS", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Connected clients", + "field": "redis.info.clients.connected" + }, + "schema": "metric", + "type": "max" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "fontSize": 60, + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "handleNoResults": true, + "type": "gauge" + }, + "title": "Clients [Metricbeat Redis] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Redis-Clients-Metrics-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Metricbeat-Redis-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:49.646Z", + "version": "WzQxMzMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-Connected-clients-ecs.json b/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-Connected-clients-ecs.json new file mode 100644 index 000000000000..4d0abae22bcc --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-Connected-clients-ecs.json @@ -0,0 +1,147 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Connected clients [Metricbeat Redis] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "Blocked": "#C15C17" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Connected", + "field": "redis.info.clients.connected" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Blocked", + "field": "redis.info.clients.blocked" + }, + "schema": "metric", + "type": "max" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "defaultYExtents": false, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "legendPosition": "right", + "mode": "grouped", + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "shareYAxis": true, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ], + "yAxis": {} + }, + "title": "Connected clients [Metricbeat Redis] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Redis-Connected-clients-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Metricbeat-Redis-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:49.646Z", + "version": "WzQxMzQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-Keyspaces-ecs.json b/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-Keyspaces-ecs.json new file mode 100644 index 000000000000..450610823098 --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-Keyspaces-ecs.json @@ -0,0 +1,147 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Keyspaces [Metricbeat Redis] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Number of keys", + "field": "redis.keyspace.keys" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Keyspaces", + "field": "redis.keyspace.id", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "defaultYExtents": false, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "legendPosition": "right", + "mode": "stacked", + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "shareYAxis": true, + "smoothLines": false, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ], + "yAxis": {} + }, + "title": "Keyspaces [Metricbeat Redis] ECS", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Redis-Keyspaces-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Metricbeat-Redis-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:49.646Z", + "version": "WzQxMzksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-Server-Versions-ecs.json b/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-Server-Versions-ecs.json new file mode 100644 index 000000000000..1c3121baa67b --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-Server-Versions-ecs.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Server Versions [Metricbeat Redis] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Hosts", + "field": "service.address" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Multiplexing API", + "field": "service.version", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "shareYAxis": true + }, + "title": "Server Versions [Metricbeat Redis] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Redis-Server-Versions-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Metricbeat-Redis-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:49.646Z", + "version": "WzQxMzYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-hosts-ecs.json b/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-hosts-ecs.json new file mode 100644 index 000000000000..24a41396d098 --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-hosts-ecs.json @@ -0,0 +1,119 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Hosts [Metricbeat Redis] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "field": "service.address", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Uptime (s)", + "field": "redis.info.server.uptime" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "PID", + "field": "process.pid" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Memory", + "field": "redis.info.memory.used.peak" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "CPU used (user)", + "field": "redis.info.cpu.used.user" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "CPU used (system)", + "field": "redis.info.cpu.used.sys" + }, + "schema": "metric", + "type": "max" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Hosts [Metricbeat Redis] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Redis-hosts-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Metricbeat-Redis-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:49.646Z", + "version": "WzQxMzUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-multiplexing-API-ecs.json b/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-multiplexing-API-ecs.json new file mode 100644 index 000000000000..11bc6e94e916 --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-multiplexing-API-ecs.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Multiplexing API [Metricbeat Redis] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Hosts", + "field": "service.address" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Multiplexing API", + "field": "redis.info.server.multiplexing_api", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "shareYAxis": true + }, + "title": "Multiplexing API [Metricbeat Redis] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Redis-multiplexing-API-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Metricbeat-Redis-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:49.646Z", + "version": "WzQxMzgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-server-mode-ecs.json b/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-server-mode-ecs.json new file mode 100644 index 000000000000..9c8e91257be8 --- /dev/null +++ b/metricbeat/module/redis/_meta/kibana/7/visualization/Redis-server-mode-ecs.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Server mode [Metricbeat Redis] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Hosts", + "field": "service.address" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Server mode", + "field": "redis.info.server.mode", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "shareYAxis": true + }, + "title": "Server mode [Metricbeat Redis] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Redis-server-mode-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Metricbeat-Redis-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:49.646Z", + "version": "WzQxMzcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/redis/module.yml b/metricbeat/module/redis/module.yml index f4b262e71e17..f89e64a72b32 100644 --- a/metricbeat/module/redis/module.yml +++ b/metricbeat/module/redis/module.yml @@ -1,4 +1,4 @@ name: redis dashboards: - id: AV4YjZ5pux-M-tCAunxK - file: Metricbeat-redis-overview.ndjson + file: Metricbeat-redis-overview.json diff --git a/metricbeat/module/system/_meta/kibana/7/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs.json b/metricbeat/module/system/_meta/kibana/7/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs.json new file mode 100644 index 000000000000..32067e27e585 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs.json @@ -0,0 +1,523 @@ +{ + "attributes": { + "description": "Overview of host metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "host.name:\"CHANGEME_HOSTNAME\"" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "1", + "w": 24, + "x": 0, + "y": 55 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "2", + "w": 24, + "x": 24, + "y": 25 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "3", + "w": 24, + "x": 24, + "y": 55 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "4", + "w": 24, + "x": 0, + "y": 40 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "5", + "w": 24, + "x": 24, + "y": 70 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "6", + "w": 24, + "x": 0, + "y": 70 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "7", + "w": 24, + "x": 0, + "y": 25 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "8", + "w": 24, + "x": 24, + "y": 40 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "9", + "w": 8, + "x": 16, + "y": 5 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "10", + "w": 8, + "x": 0, + "y": 5 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "11", + "w": 8, + "x": 8, + "y": 5 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "12", + "w": 8, + "x": 24, + "y": 5 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "13", + "w": 8, + "x": 32, + "y": 5 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "14", + "w": 16, + "x": 32, + "y": 15 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "16", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "21", + "w": 8, + "x": 0, + "y": 15 + }, + "panelIndex": "21", + "panelRefName": "panel_21", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "22", + "w": 8, + "x": 8, + "y": 15 + }, + "panelIndex": "22", + "panelRefName": "panel_22", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "23", + "w": 8, + "x": 24, + "y": 15 + }, + "panelIndex": "23", + "panelRefName": "panel_23", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "25", + "w": 8, + "x": 40, + "y": 5 + }, + "panelIndex": "25", + "panelRefName": "panel_25", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "27", + "w": 24, + "x": 0, + "y": 85 + }, + "panelIndex": "27", + "panelRefName": "panel_27", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "28", + "w": 24, + "x": 24, + "y": 85 + }, + "panelIndex": "28", + "panelRefName": "panel_28", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 10, + "i": "29", + "w": 8, + "x": 16, + "y": 15 + }, + "panelIndex": "29", + "panelRefName": "panel_29", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "30", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "30", + "panelRefName": "panel_30", + "type": "visualization", + "version": "7.6.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat System] Host overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "79ffd6e0-faa0-11e6-947f-177f697178b8-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "6b7b9a40-faa1-11e6-86b1-cd7735ff7e23-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "4d546850-1b15-11e7-b09e-037021c4f8df-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "089b85d0-1b16-11e7-b09e-037021c4f8df-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "bfa5e400-1b16-11e7-b09e-037021c4f8df-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "e0f001c0-1b18-11e7-b09e-037021c4f8df-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "2e224660-1b19-11e7-b09e-037021c4f8df-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "ab2d1e90-1b1a-11e7-b09e-037021c4f8df-ecs", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "4e4bb1e0-1b1b-11e7-b09e-037021c4f8df-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "26732e20-1b91-11e7-bec4-a5e9ec5cab8b-ecs", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "1aae9140-1b93-11e7-8ada-3df93aab833e-ecs", + "name": "13:panel_13", + "type": "visualization" + }, + { + "id": "34f97ee0-1b96-11e7-8ada-3df93aab833e-ecs", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "System-Navigation-ecs", + "name": "16:panel_16", + "type": "visualization" + }, + { + "id": "19e123b0-4d5a-11e7-aee5-fdc812cc3bec-ecs", + "name": "21:panel_21", + "type": "visualization" + }, + { + "id": "d2e80340-4d5c-11e7-aa29-87a97a796de6-ecs", + "name": "22:panel_22", + "type": "visualization" + }, + { + "id": "825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs", + "name": "23:panel_23", + "type": "visualization" + }, + { + "id": "96976150-4d5d-11e7-aa29-87a97a796de6-ecs", + "name": "25:panel_25", + "type": "visualization" + }, + { + "id": "99381c80-4d60-11e7-9a4c-ed99bbcaa42b-ecs", + "name": "27:panel_27", + "type": "visualization" + }, + { + "id": "c5e3cf90-4d60-11e7-9a4c-ed99bbcaa42b-ecs", + "name": "28:panel_28", + "type": "visualization" + }, + { + "id": "590a60f0-5d87-11e7-8884-1bb4c3b890e4-ecs", + "name": "29:panel_29", + "type": "visualization" + }, + { + "id": "3d65d450-a9c3-11e7-af20-67db8aecb295-ecs", + "name": "30:panel_30", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NTEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/dashboard/CPU-slash-Memory-per-container-ecs.json b/metricbeat/module/system/_meta/kibana/7/dashboard/CPU-slash-Memory-per-container-ecs.json new file mode 100644 index 000000000000..206313ce8fb8 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/dashboard/CPU-slash-Memory-per-container-ecs.json @@ -0,0 +1,143 @@ +{ + "attributes": { + "description": "Overview of container metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 12, + "i": "2", + "w": 48, + "x": 0, + "y": 4 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "3", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 12, + "i": "4", + "w": 48, + "x": 0, + "y": 16 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 16, + "i": "5", + "w": 48, + "x": 0, + "y": 28 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat System] Containers overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "CPU-slash-Memory-per-container-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Container-CPU-usage-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "System-Navigation-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "Container-Memory-stats-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "Container-Block-IO-ecs", + "name": "5:panel_5", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:03.451Z", + "version": "WzM3MjgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-Host-Services-overview.ndjson b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-Host-Services-overview.ndjson deleted file mode 100644 index 2c005e3c1dcd..000000000000 --- a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-Host-Services-overview.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Running Services [Metricbeat System]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Running Services [Metricbeat Services]\",\"field\":\"system.service.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Running Services [Metricbeat System]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"a30871f0-f98f-11e9-90e8-1fb18e796788","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:18.402Z","version":"WzMyNTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Service States [Metricbeat System]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Service States [Metricbeat Services]\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"system.service.state\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Service States [Metricbeat System]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"bb3a8720-f991-11e9-90e8-1fb18e796788","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:18.402Z","version":"WzMyNTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Service Sub-State [Metricbeat System]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Service Sub-State [Metricbeat Services]\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"system.service.sub_state\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Service Sub-State [Metricbeat System]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"e6e639e0-f992-11e9-90e8-1fb18e796788","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:18.402Z","version":"WzMyNTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"metricset.name\", \"negate\": false, \"params\": {\"query\": \"service\"}, \"type\": \"phrase\", \"value\": \"service\"}, \"query\": {\"match\": {\"metricset.name\": {\"query\": \"service\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Return Codes Of Exited Services [Metricbeat System]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Return Codes Of Exited Services [Metricbeat Services]\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"process.exit_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"number\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Return Codes Of Exited Services [Metricbeat System]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"9c69cad0-f9b0-11e9-90e8-1fb18e796788","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:18.402Z","version":"WzMyNTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top Services By Memory Usage [Metricbeat System]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"5af08c50-f998-11e9-ac67-272468589910\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"system.service.resources.memory.usage.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.service.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top Services By Memory Usage [Metricbeat System]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8c071e20-f999-11e9-90e8-1fb18e796788","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:18.402Z","version":"WzMyNTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top Services By Task Count [Metricbeat System]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"3aeae000-f997-11e9-ac67-272468589910\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"system.service.resources.tasks.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.service.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top Services By Task Count [Metricbeat System]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4b254630-f998-11e9-90e8-1fb18e796788","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:18.402Z","version":"WzMyNTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Service Memory Use Over Time [Metricbeat System]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"system.service.resources.memory.usage.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.service.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Service Memory Use Over Time [Metricbeat System]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d3f51850-f9b6-11e9-90e8-1fb18e796788","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:18.402Z","version":"WzMyNjAsMV0="} -{"attributes":{"description":"Overview of services on an individual host.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"023b7623-9610-47ee-a10c-64ee8d2ccfa1\",\"w\":14,\"x\":0,\"y\":0},\"panelIndex\":\"023b7623-9610-47ee-a10c-64ee8d2ccfa1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Running Services\",\"panelRefName\":\"panel_023b7623-9610-47ee-a10c-64ee8d2ccfa1\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"40ebab84-f48f-4060-a7af-3ffdf833ad3a\",\"w\":12,\"x\":14,\"y\":0},\"panelIndex\":\"40ebab84-f48f-4060-a7af-3ffdf833ad3a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Service States\",\"panelRefName\":\"panel_40ebab84-f48f-4060-a7af-3ffdf833ad3a\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"0ad1caa8-2a3f-4429-9631-42d1c57a9e64\",\"w\":12,\"x\":26,\"y\":0},\"panelIndex\":\"0ad1caa8-2a3f-4429-9631-42d1c57a9e64\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Service Sub-State\",\"panelRefName\":\"panel_0ad1caa8-2a3f-4429-9631-42d1c57a9e64\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"9e37921b-da6f-464d-9683-5c9bd550640b\",\"w\":10,\"x\":38,\"y\":0},\"panelIndex\":\"9e37921b-da6f-464d-9683-5c9bd550640b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Return Codes Of Exited Services\",\"panelRefName\":\"panel_9e37921b-da6f-464d-9683-5c9bd550640b\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"e3ec1fe3-a03a-466e-8bc2-69136e3e6302\",\"w\":24,\"x\":0,\"y\":11},\"panelIndex\":\"e3ec1fe3-a03a-466e-8bc2-69136e3e6302\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Services By Memory Usage\",\"panelRefName\":\"panel_e3ec1fe3-a03a-466e-8bc2-69136e3e6302\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"cc928f52-22c9-402d-a7a1-4f32720a4290\",\"w\":24,\"x\":24,\"y\":11},\"panelIndex\":\"cc928f52-22c9-402d-a7a1-4f32720a4290\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Services By Task Count\",\"panelRefName\":\"panel_cc928f52-22c9-402d-a7a1-4f32720a4290\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"c83f16cd-286f-411b-bae9-bade176a8db2\",\"w\":48,\"x\":0,\"y\":22},\"panelIndex\":\"c83f16cd-286f-411b-bae9-bade176a8db2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Service Memory Use Over Time\",\"panelRefName\":\"panel_c83f16cd-286f-411b-bae9-bade176a8db2\"}]","timeRestore":false,"title":"[Metricbeat System] Host Services Overview","version":1},"coreMigrationVersion":"8.0.0","id":"c431f410-f9ac-11e9-90e8-1fb18e796788","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a30871f0-f98f-11e9-90e8-1fb18e796788","name":"023b7623-9610-47ee-a10c-64ee8d2ccfa1:panel_023b7623-9610-47ee-a10c-64ee8d2ccfa1","type":"visualization"},{"id":"bb3a8720-f991-11e9-90e8-1fb18e796788","name":"40ebab84-f48f-4060-a7af-3ffdf833ad3a:panel_40ebab84-f48f-4060-a7af-3ffdf833ad3a","type":"visualization"},{"id":"e6e639e0-f992-11e9-90e8-1fb18e796788","name":"0ad1caa8-2a3f-4429-9631-42d1c57a9e64:panel_0ad1caa8-2a3f-4429-9631-42d1c57a9e64","type":"visualization"},{"id":"9c69cad0-f9b0-11e9-90e8-1fb18e796788","name":"9e37921b-da6f-464d-9683-5c9bd550640b:panel_9e37921b-da6f-464d-9683-5c9bd550640b","type":"visualization"},{"id":"8c071e20-f999-11e9-90e8-1fb18e796788","name":"e3ec1fe3-a03a-466e-8bc2-69136e3e6302:panel_e3ec1fe3-a03a-466e-8bc2-69136e3e6302","type":"visualization"},{"id":"4b254630-f998-11e9-90e8-1fb18e796788","name":"cc928f52-22c9-402d-a7a1-4f32720a4290:panel_cc928f52-22c9-402d-a7a1-4f32720a4290","type":"visualization"},{"id":"d3f51850-f9b6-11e9-90e8-1fb18e796788","name":"c83f16cd-286f-411b-bae9-bade176a8db2:panel_c83f16cd-286f-411b-bae9-bade176a8db2","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:18.402Z","version":"WzMyNTMsMV0="} diff --git a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-containers-overview.ndjson b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-containers-overview.ndjson deleted file mode 100644 index 07762658e5b0..000000000000 --- a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-containers-overview.ndjson +++ /dev/null @@ -1,5 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Container CPU usage [Metricbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"CPU user\",\"field\":\"system.process.cgroup.cpuacct.stats.user.ns\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"CPU quota\",\"field\":\"system.process.cgroup.cpu.cfs.quota.us\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Container ID\",\"field\":\"system.process.cgroup.id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"CPU throttling\",\"field\":\"system.process.cgroup.cpu.stats.throttled.ns\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"CPU kernel\",\"field\":\"system.process.cgroup.cpuacct.stats.system.ns\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Process name\",\"field\":\"process.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Container CPU usage [Metricbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Container-CPU-usage-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:03.451Z","version":"WzM3MjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"System Navigation [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[System Overview](#/dashboard/Metricbeat-system-overview-ecs) | [Host Overview](#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs) |\\n[Containers overview](#/dashboard/CPU-slash-Memory-per-container-ecs)\"},\"title\":\"System Navigation [Metricbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"System-Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Container Memory stats [Metricbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"13\",\"params\":{\"customLabel\":\"Usage\",\"field\":\"system.process.cgroup.memory.mem.usage.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"14\",\"params\":{\"customLabel\":\"Max usage\",\"field\":\"system.process.cgroup.memory.mem.usage.max.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Page faults\",\"field\":\"system.process.cgroup.memory.stats.page_faults\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Pages in memory\",\"field\":\"system.process.cgroup.memory.stats.pages_in\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Pages out of memory\",\"field\":\"system.process.cgroup.memory.stats.pages_out\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Container ID\",\"field\":\"system.process.cgroup.id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Inactive files\",\"field\":\"system.process.cgroup.memory.stats.inactive_file.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"# Major page faults\",\"field\":\"system.process.cgroup.memory.stats.major_page_faults\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"Process name\",\"field\":\"process.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"12\",\"params\":{\"customLabel\":\"Failures\",\"field\":\"system.process.cgroup.memory.mem.failures\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"10\",\"params\":{\"customLabel\":\"TCP buffers\",\"field\":\"system.process.cgroup.memory.kmem_tcp.usage.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"11\",\"params\":{\"customLabel\":\"Huge pages\",\"field\":\"system.process.cgroup.memory.stats.rss_huge.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"Swap caches\",\"field\":\"system.process.cgroup.memory.stats.rss.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"15\",\"params\":{\"customLabel\":\"Swap usage\",\"field\":\"system.process.cgroup.memory.stats.swap.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"16\",\"params\":{\"customLabel\":\"Block I/O\",\"field\":\"system.process.cgroup.blkio.total.ios\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Container Memory stats [Metricbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Container-Memory-stats-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:03.451Z","version":"WzM3MjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Container Block IO [Metricbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total\",\"field\":\"system.process.cgroup.blkio.total.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"I/O\",\"field\":\"system.process.cgroup.blkio.total.ios\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Container ID\",\"field\":\"system.process.cgroup.id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Process name\",\"field\":\"process.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Container Block IO [Metricbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Container-Block-IO-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:03.451Z","version":"WzM3MjcsMV0="} -{"attributes":{"description":"Overview of container metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":48,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":16,\"w\":48,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":48,\"h\":16,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Metricbeat System] Containers overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"CPU-slash-Memory-per-container-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Container-CPU-usage-ecs","name":"2:panel_2","type":"visualization"},{"id":"System-Navigation-ecs","name":"3:panel_3","type":"visualization"},{"id":"Container-Memory-stats-ecs","name":"4:panel_4","type":"visualization"},{"id":"Container-Block-IO-ecs","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:03.451Z","version":"WzM3MjgsMV0="} diff --git a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-host-overview.ndjson b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-host-overview.ndjson deleted file mode 100644 index a19a9097e188..000000000000 --- a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-host-overview.ndjson +++ /dev/null @@ -1,24 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Network Traffic (Packets) [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"-system.network.name:l*\"},\"id\":\"da1046f0-faa0-11e6-86b1-cd7735ff7e23\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"1\",\"formatter\":\"0.[00]a\",\"id\":\"da1046f1-faa0-11e6-86b1-cd7735ff7e23\",\"label\":\"Inbound\",\"line_width\":\"0\",\"metrics\":[{\"field\":\"system.network.in.packets\",\"id\":\"da1046f2-faa0-11e6-86b1-cd7735ff7e23\",\"type\":\"max\"},{\"field\":\"da1046f2-faa0-11e6-86b1-cd7735ff7e23\",\"id\":\"f41f9280-faa0-11e6-86b1-cd7735ff7e23\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"f41f9280-faa0-11e6-86b1-cd7735ff7e23\",\"id\":\"c0da3d80-1b93-11e7-8ada-3df93aab833e\",\"type\":\"positive_only\",\"unit\":\"\"},{\"function\":\"sum\",\"id\":\"ecaad010-2c2c-11e7-be71-3162da85303f\",\"type\":\"series_agg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(250,40,255,1)\",\"fill\":\"1\",\"formatter\":\"0.[00]a\",\"id\":\"fbbd5720-faa0-11e6-86b1-cd7735ff7e23\",\"label\":\"Outbound\",\"line_width\":\"0\",\"metrics\":[{\"field\":\"system.network.out.packets\",\"id\":\"fbbd7e30-faa0-11e6-86b1-cd7735ff7e23\",\"type\":\"max\"},{\"field\":\"fbbd7e30-faa0-11e6-86b1-cd7735ff7e23\",\"id\":\"fbbd7e31-faa0-11e6-86b1-cd7735ff7e23\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"id\":\"17e597a0-faa1-11e6-86b1-cd7735ff7e23\",\"script\":\"params.rate != null && params.rate > 0 ? params.rate * -1 : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"fbbd7e31-faa0-11e6-86b1-cd7735ff7e23\",\"id\":\"1940bad0-faa1-11e6-86b1-cd7735ff7e23\",\"name\":\"rate\"}]},{\"function\":\"sum\",\"id\":\"fe5fbdc0-2c2c-11e7-be71-3162da85303f\",\"type\":\"series_agg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Mericbeat: Network Traffic (Packets) ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6b7b9a40-faa1-11e6-86b1-cd7735ff7e23-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"System Load [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"f6264ad0-1b14-11e7-b09e-037021c4f8df\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"f62671e0-1b14-11e7-b09e-037021c4f8df\",\"label\":\"1m\",\"line_width\":\"3\",\"metrics\":[{\"field\":\"system.load.1\",\"id\":\"f62671e1-1b14-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"1c324850-1b15-11e7-b09e-037021c4f8df\",\"label\":\"5m\",\"line_width\":\"3\",\"metrics\":[{\"field\":\"system.load.5\",\"id\":\"1c324851-1b15-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,98,177,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"3287e740-1b15-11e7-b09e-037021c4f8df\",\"label\":\"15m\",\"line_width\":\"3\",\"metrics\":[{\"field\":\"system.load.15\",\"id\":\"32880e50-1b15-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"System Load [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4d546850-1b15-11e7-b09e-037021c4f8df-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Network Traffic (Bytes) [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"-system.network.name:l*\"},\"id\":\"da1046f0-faa0-11e6-86b1-cd7735ff7e23\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"1\",\"formatter\":\"bytes\",\"id\":\"da1046f1-faa0-11e6-86b1-cd7735ff7e23\",\"label\":\"Inbound \",\"line_width\":\"0\",\"metrics\":[{\"field\":\"system.network.in.bytes\",\"id\":\"da1046f2-faa0-11e6-86b1-cd7735ff7e23\",\"type\":\"max\"},{\"field\":\"da1046f2-faa0-11e6-86b1-cd7735ff7e23\",\"id\":\"f41f9280-faa0-11e6-86b1-cd7735ff7e23\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"f41f9280-faa0-11e6-86b1-cd7735ff7e23\",\"id\":\"a87398e0-1b93-11e7-8ada-3df93aab833e\",\"type\":\"positive_only\",\"unit\":\"\"},{\"function\":\"sum\",\"id\":\"2d533df0-2c2d-11e7-be71-3162da85303f\",\"type\":\"series_agg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(250,40,255,1)\",\"fill\":\"1\",\"formatter\":\"bytes\",\"id\":\"fbbd5720-faa0-11e6-86b1-cd7735ff7e23\",\"label\":\"Outbound \",\"line_width\":\"0\",\"metrics\":[{\"field\":\"system.network.out.bytes\",\"id\":\"fbbd7e30-faa0-11e6-86b1-cd7735ff7e23\",\"type\":\"max\"},{\"field\":\"fbbd7e30-faa0-11e6-86b1-cd7735ff7e23\",\"id\":\"fbbd7e31-faa0-11e6-86b1-cd7735ff7e23\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"id\":\"17e597a0-faa1-11e6-86b1-cd7735ff7e23\",\"script\":\"params.rate != null && params.rate > 0 ? params.rate * -1 : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"fbbd7e31-faa0-11e6-86b1-cd7735ff7e23\",\"id\":\"1940bad0-faa1-11e6-86b1-cd7735ff7e23\",\"name\":\"rate\"}]},{\"function\":\"sum\",\"id\":\"533da9b0-2c2d-11e7-be71-3162da85303f\",\"type\":\"series_agg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Mericbeat: Network Traffic (Bytes) ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"089b85d0-1b16-11e7-b09e-037021c4f8df-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory Usage [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"32f46f40-1b16-11e7-b09e-037021c4f8df\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"1\",\"formatter\":\"bytes\",\"id\":\"4ff61fd0-1b16-11e7-b09e-037021c4f8df\",\"label\":\"Used\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.actual.used.bytes\",\"id\":\"4ff61fd1-1b16-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"1\",\"formatter\":\"bytes\",\"id\":\"753a6080-1b16-11e7-b09e-037021c4f8df\",\"label\":\"Cache\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.actual.used.bytes\",\"id\":\"753a6081-1b16-11e7-b09e-037021c4f8df\",\"type\":\"avg\"},{\"field\":\"system.memory.used.bytes\",\"id\":\"7c9d3f00-1b16-11e7-b09e-037021c4f8df\",\"type\":\"avg\"},{\"id\":\"869cc160-1b16-11e7-b09e-037021c4f8df\",\"script\":\"params.actual != null && params.used != null ? params.used - params.actual : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"753a6081-1b16-11e7-b09e-037021c4f8df\",\"id\":\"890f9620-1b16-11e7-b09e-037021c4f8df\",\"name\":\"actual\"},{\"field\":\"7c9d3f00-1b16-11e7-b09e-037021c4f8df\",\"id\":\"8f3ab7f0-1b16-11e7-b09e-037021c4f8df\",\"name\":\"used\"}]}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"1\",\"formatter\":\"bytes\",\"id\":\"32f46f41-1b16-11e7-b09e-037021c4f8df\",\"label\":\"Free\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.free\",\"id\":\"32f46f42-1b16-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Memory Usage [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bfa5e400-1b16-11e7-b09e-037021c4f8df-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top Processes By CPU [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"60e11be0-1b18-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0},{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"147a3da2-60a6-4c32-b2c8-18a40db90c6c\",\"operator\":\"empty\",\"value\":null}],\"drilldown_url\":\"\",\"filter\":\"\",\"id\":\"5f5b8d50-1b18-11e7-b09e-037021c4f8df\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"5f5b8d51-1b18-11e7-b09e-037021c4f8df\",\"line_width\":1,\"metrics\":[{\"field\":\"system.process.cpu.total.pct\",\"id\":\"5f5b8d52-1b18-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"process.name\",\"terms_order_by\":\"5f5b8d52-1b18-11e7-b09e-037021c4f8df\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top Processes By CPU [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e0f001c0-1b18-11e7-b09e-037021c4f8df-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Processes By Memory [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"efb9b660-1b18-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0},{\"bar_color\":\"rgba(254,146,0,1)\",\"id\":\"17fcb820-1b19-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0.7},{\"bar_color\":\"rgba(211,49,21,1)\",\"id\":\"1dd61070-1b19-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0.85},{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"fe5082f5-bcdc-45e4-a4d2-37d390ec607c\",\"operator\":\"empty\",\"value\":null}],\"drilldown_url\":\"\",\"filter\":\"\",\"id\":\"edfceb30-1b18-11e7-b09e-037021c4f8df\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"edfceb31-1b18-11e7-b09e-037021c4f8df\",\"line_width\":1,\"metrics\":[{\"field\":\"system.process.memory.rss.pct\",\"id\":\"edfceb32-1b18-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"process.name\",\"terms_order_by\":\"edfceb32-1b18-11e7-b09e-037021c4f8df\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Processes By Memory [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2e224660-1b19-11e7-b09e-037021c4f8df-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"CPU Usage [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"id\":\"80a04950-1b19-11e7-b09e-037021c4f8df\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"1\",\"formatter\":\"percent\",\"id\":\"80a04951-1b19-11e7-b09e-037021c4f8df\",\"label\":\"user\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.user.pct\",\"id\":\"80a04952-1b19-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"1\",\"formatter\":\"percent\",\"id\":\"993acf30-1b19-11e7-b09e-037021c4f8df\",\"label\":\"system\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.system.pct\",\"id\":\"993acf31-1b19-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(123,100,255,1)\",\"fill\":\"1\",\"formatter\":\"percent\",\"id\":\"65ca35e0-1b1a-11e7-b09e-037021c4f8df\",\"label\":\"nice\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.nice.pct\",\"id\":\"65ca5cf0-1b1a-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":\"1\",\"formatter\":\"percent\",\"id\":\"741b5f20-1b1a-11e7-b09e-037021c4f8df\",\"label\":\"irq\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.irq.pct\",\"id\":\"741b5f21-1b1a-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":\"1\",\"formatter\":\"percent\",\"id\":\"2efc5d40-1b1a-11e7-b09e-037021c4f8df\",\"label\":\"softirq\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.softirq.pct\",\"id\":\"2efc5d41-1b1a-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(15,20,25,1)\",\"fill\":\"1\",\"formatter\":\"percent\",\"id\":\"ae644a30-1b19-11e7-b09e-037021c4f8df\",\"label\":\"iowait\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.iowait.pct\",\"id\":\"ae644a31-1b19-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"CPU Usage [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ab2d1e90-1b1a-11e7-b09e-037021c4f8df-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Disk IO (Bytes) [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":\"\",\"id\":\"d3c67db0-1b1a-11e7-b09e-037021c4f8df\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"1\",\"formatter\":\"bytes\",\"id\":\"d3c67db1-1b1a-11e7-b09e-037021c4f8df\",\"label\":\"reads\",\"line_width\":1,\"metrics\":[{\"field\":\"system.diskio.read.bytes\",\"id\":\"d3c67db2-1b1a-11e7-b09e-037021c4f8df\",\"type\":\"max\"},{\"field\":\"d3c67db2-1b1a-11e7-b09e-037021c4f8df\",\"id\":\"f55b9910-1b1a-11e7-b09e-037021c4f8df\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"f55b9910-1b1a-11e7-b09e-037021c4f8df\",\"id\":\"dcbbb100-1b93-11e7-8ada-3df93aab833e\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":\"1\",\"formatter\":\"bytes\",\"id\":\"144124d0-1b1b-11e7-b09e-037021c4f8df\",\"label\":\"writes\",\"line_width\":1,\"metrics\":[{\"field\":\"system.diskio.write.bytes\",\"id\":\"144124d1-1b1b-11e7-b09e-037021c4f8df\",\"type\":\"max\"},{\"field\":\"144124d1-1b1b-11e7-b09e-037021c4f8df\",\"id\":\"144124d2-1b1b-11e7-b09e-037021c4f8df\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"id\":\"144124d4-1b1b-11e7-b09e-037021c4f8df\",\"script\":\"params.rate > 0 ? params.rate * -1 : 0\",\"type\":\"calculation\",\"variables\":[{\"field\":\"144124d2-1b1b-11e7-b09e-037021c4f8df\",\"id\":\"144124d3-1b1b-11e7-b09e-037021c4f8df\",\"name\":\"rate\"}]}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Disk IO (Bytes) [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4e4bb1e0-1b1b-11e7-b09e-037021c4f8df-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Gauge [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"feefabd0-1b90-11e7-bec4-a5e9ec5cab8b\"}],\"gauge_color_rules\":[{\"id\":\"ffd94880-1b90-11e7-bec4-a5e9ec5cab8b\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"fdcc6180-1b90-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"fdcc6181-1b90-11e7-bec4-a5e9ec5cab8b\",\"label\":\"5m Load\",\"line_width\":1,\"metrics\":[{\"field\":\"system.load.5\",\"id\":\"fdcc6182-1b90-11e7-bec4-a5e9ec5cab8b\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Load Gauge [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"26732e20-1b91-11e7-bec4-a5e9ec5cab8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"CPU Usage Gauge [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":\"\",\"gauge_color_rules\":[{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"4ef2c3b0-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0},{\"gauge\":\"rgba(254,146,0,1)\",\"id\":\"e6561ae0-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(211,49,21,1)\",\"id\":\"ec655040-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0.85},{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"c0fd001c-ec63-436b-90f8-8cc93f28c76c\",\"operator\":\"empty\",\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"4c9e2550-1b91-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"4c9e2551-1b91-11e7-bec4-a5e9ec5cab8b\",\"label\":\"CPU Usage\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.user.pct\",\"id\":\"4c9e2552-1b91-11e7-bec4-a5e9ec5cab8b\",\"type\":\"avg\"},{\"field\":\"system.cpu.system.pct\",\"id\":\"225c2140-5fd7-11e7-a63a-a937b7c1a7e1\",\"type\":\"avg\"},{\"field\":\"system.cpu.cores\",\"id\":\"837a30c0-5fd7-11e7-a63a-a937b7c1a7e1\",\"type\":\"avg\"},{\"id\":\"587aa510-1b91-11e7-bec4-a5e9ec5cab8b\",\"script\":\"params.n > 0 ? (params.user+params.system)/params.n : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"4c9e2552-1b91-11e7-bec4-a5e9ec5cab8b\",\"id\":\"5a19af10-1b91-11e7-bec4-a5e9ec5cab8b\",\"name\":\"user\"},{\"field\":\"225c2140-5fd7-11e7-a63a-a937b7c1a7e1\",\"id\":\"32b54f80-5fd7-11e7-a63a-a937b7c1a7e1\",\"name\":\"system\"},{\"field\":\"837a30c0-5fd7-11e7-a63a-a937b7c1a7e1\",\"id\":\"8ba6eef0-5fd7-11e7-a63a-a937b7c1a7e1\",\"name\":\"n\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"CPU Usage Gauge [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory Usage Gauge [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":\"\",\"gauge_color_rules\":[{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"a0d522e0-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0},{\"gauge\":\"rgba(254,146,0,1)\",\"id\":\"b45ad8f0-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(211,49,21,1)\",\"id\":\"c06e9550-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0.85},{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"4a3b1da6-e38b-4d74-82b7-cdfde708d5f5\",\"operator\":\"empty\",\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9f51b730-1b91-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"9f51b731-1b91-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Memory Usage\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.actual.used.pct\",\"id\":\"9f51b732-1b91-11e7-bec4-a5e9ec5cab8b\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Memory Usage Gauge [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Inbound Traffic [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"0e346760-1b92-11e7-bec4-a5e9ec5cab8b\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"-system.network.name:l*\"},\"id\":\"0c761590-1b92-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"0c761591-1b92-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Inbound Traffic\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.in.bytes\",\"id\":\"0c761592-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"max\"},{\"field\":\"0c761592-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"1d659060-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"1d659060-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"f2074f70-1b92-11e7-a416-41f5ccdba2e6\",\"type\":\"positive_only\",\"unit\":\"\"},{\"function\":\"sum\",\"id\":\"c40e18f0-2c55-11e7-a0ad-277ce466684d\",\"type\":\"series_agg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"37f70440-1b92-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Total Transferred\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.in.bytes\",\"id\":\"37f72b50-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"max\"},{\"field\":\"37f72b50-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"37f72b51-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"37f72b51-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"f9da2dd0-1b92-11e7-a416-41f5ccdba2e6\",\"type\":\"positive_only\",\"unit\":\"\"},{\"field\":\"f9da2dd0-1b92-11e7-a416-41f5ccdba2e6\",\"function\":\"overall_sum\",\"id\":\"3e63c2f0-1b92-11e7-bec4-a5e9ec5cab8b\",\"sigma\":\"\",\"type\":\"series_agg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Inbound Traffic [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Outbound Traffic [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"0e346760-1b92-11e7-bec4-a5e9ec5cab8b\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"-system.network.name:l*\"},\"id\":\"0c761590-1b92-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"0c761591-1b92-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Outbound Traffic\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.out.bytes\",\"id\":\"0c761592-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"max\"},{\"field\":\"0c761592-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"1d659060-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"1d659060-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"f2074f70-1b92-11e7-a416-41f5ccdba2e6\",\"type\":\"positive_only\",\"unit\":\"\"},{\"function\":\"sum\",\"id\":\"a1737470-2c55-11e7-a0ad-277ce466684d\",\"type\":\"series_agg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"37f70440-1b92-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Total Transferred\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.out.bytes\",\"id\":\"37f72b50-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"max\"},{\"field\":\"37f72b50-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"37f72b51-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"37f72b51-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"f9da2dd0-1b92-11e7-a416-41f5ccdba2e6\",\"type\":\"positive_only\",\"unit\":\"\"},{\"field\":\"f9da2dd0-1b92-11e7-a416-41f5ccdba2e6\",\"function\":\"overall_sum\",\"id\":\"3e63c2f0-1b92-11e7-bec4-a5e9ec5cab8b\",\"sigma\":\"\",\"type\":\"series_agg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Outbound Traffic [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1aae9140-1b93-11e7-8ada-3df93aab833e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Disk Usage [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"bf525310-1b95-11e7-8ada-3df93aab833e\",\"operator\":\"gte\",\"value\":0},{\"bar_color\":\"rgba(254,146,0,1)\",\"id\":\"125fc4c0-1b96-11e7-8ada-3df93aab833e\",\"operator\":\"gte\",\"value\":0.7},{\"bar_color\":\"rgba(211,49,21,1)\",\"id\":\"1a5c7240-1b96-11e7-8ada-3df93aab833e\",\"operator\":\"gte\",\"value\":0.85},{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"0ddc5a03-77c2-4711-99fc-ce9db3b04b72\",\"operator\":\"empty\",\"value\":null}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"lucene\",\"query\":\"-system.filesystem.mount_point:\\\\/run* AND -system.filesystem.mount_point:\\\\/sys* AND -system.filesystem.mount_point:\\\\/dev* AND -system.filesystem.mount_point:\\\\/proc* AND -system.filesystem.mount_point:\\\\/var* AND -system.filesystem.mount_point:\\\\/boot\"},\"id\":\"9f7e48a0-1b95-11e7-8ada-3df93aab833e\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"9f7e48a1-1b95-11e7-8ada-3df93aab833e\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"system.filesystem.used.pct\",\"id\":\"9f7e48a2-1b95-11e7-8ada-3df93aab833e\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.filesystem.mount_point\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Disk Usage [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"34f97ee0-1b96-11e7-8ada-3df93aab833e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"System Navigation [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[System Overview](#/dashboard/Metricbeat-system-overview-ecs) | [Host Overview](#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs) |\\n[Containers overview](#/dashboard/CPU-slash-Memory-per-container-ecs)\"},\"title\":\"System Navigation [Metricbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"System-Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Swap usage [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":\"\",\"gauge_color_rules\":[{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"d17c1e90-4d59-11e7-aee5-fdc812cc3bec\",\"operator\":\"gte\",\"value\":0},{\"gauge\":\"rgba(251,158,0,1)\",\"id\":\"fc1d3490-4d59-11e7-aee5-fdc812cc3bec\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(211,49,21,1)\",\"id\":\"0e204240-4d5a-11e7-aee5-fdc812cc3bec\",\"operator\":\"gte\",\"value\":0.85},{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"ce0c7e88-0ed8-40c3-aec1-d2587a065282\",\"operator\":\"empty\",\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"cee2fd20-4d59-11e7-aee5-fdc812cc3bec\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"cee2fd21-4d59-11e7-aee5-fdc812cc3bec\",\"label\":\"Swap usage\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.swap.used.pct\",\"id\":\"cee2fd22-4d59-11e7-aee5-fdc812cc3bec\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Swap usage [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"19e123b0-4d5a-11e7-aee5-fdc812cc3bec-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory usage vs total [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"6f7618b0-4d5c-11e7-aa29-87a97a796de6\"}],\"id\":\"6bc65720-4d5c-11e7-aa29-87a97a796de6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"6bc65721-4d5c-11e7-aa29-87a97a796de6\",\"label\":\"Memory usage\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.actual.used.bytes\",\"id\":\"6bc65722-4d5c-11e7-aa29-87a97a796de6\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"b8fe6820-4d5c-11e7-aa29-87a97a796de6\",\"label\":\"Total Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.total\",\"id\":\"b8fe6821-4d5c-11e7-aa29-87a97a796de6\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Memory usage vs total ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d2e80340-4d5c-11e7-aa29-87a97a796de6-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Disk used [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":\"\",\"gauge_color_rules\":[{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"51921d10-4d1d-11e7-b5f2-2b7c1895bf32\",\"operator\":\"gte\",\"value\":0},{\"gauge\":\"rgba(251,158,0,1)\",\"id\":\"f26de750-4d54-11e7-b5f2-2b7c1895bf32\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(211,49,21,1)\",\"id\":\"fa31d190-4d54-11e7-b5f2-2b7c1895bf32\",\"operator\":\"gte\",\"value\":0.85},{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"45bc0b81-534d-475f-bbda-3f48b49cd1be\",\"operator\":\"empty\",\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"4e4dc780-4d1d-11e7-b5f2-2b7c1895bf32\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"4e4dee90-4d1d-11e7-b5f2-2b7c1895bf32\",\"label\":\"Disk used\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"system.fsstat.total_size.used\",\"id\":\"4e4dee91-4d1d-11e7-b5f2-2b7c1895bf32\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"},{\"agg_with\":\"avg\",\"field\":\"system.fsstat.total_size.total\",\"id\":\"57c96ee0-4d54-11e7-b5f2-2b7c1895bf32\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"},{\"id\":\"6304cca0-4d54-11e7-b5f2-2b7c1895bf32\",\"script\":\"params.used/params.total \",\"type\":\"math\",\"variables\":[{\"field\":\"4e4dee91-4d1d-11e7-b5f2-2b7c1895bf32\",\"id\":\"6da10430-4d54-11e7-b5f2-2b7c1895bf32\",\"name\":\"used\"},{\"field\":\"57c96ee0-4d54-11e7-b5f2-2b7c1895bf32\",\"id\":\"73b8c510-4d54-11e7-b5f2-2b7c1895bf32\",\"name\":\"total\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Disk used [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Packetloss [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"6ba9b1f0-4d5d-11e7-aa29-87a97a796de6\"}],\"id\":\"6984af10-4d5d-11e7-aa29-87a97a796de6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"6984af11-4d5d-11e7-aa29-87a97a796de6\",\"label\":\"In Packetloss\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.in.dropped\",\"id\":\"6984af12-4d5d-11e7-aa29-87a97a796de6\",\"type\":\"max\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"ac2e6b30-4d5d-11e7-aa29-87a97a796de6\",\"label\":\"Out Packetloss\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.out.dropped\",\"id\":\"ac2e6b31-4d5d-11e7-aa29-87a97a796de6\",\"type\":\"max\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Packetloss [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"96976150-4d5d-11e7-aa29-87a97a796de6-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Interfaces by Incoming traffic [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"44596d40-4d60-11e7-9a4c-ed99bbcaa42b\"}],\"id\":\"42ceae90-4d60-11e7-9a4c-ed99bbcaa42b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"42ced5a0-4d60-11e7-9a4c-ed99bbcaa42b\",\"label\":\"Interfaces by Incoming traffic\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.in.bytes\",\"id\":\"42ced5a1-4d60-11e7-9a4c-ed99bbcaa42b\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"terms_order_by\":\"42ced5a1-4d60-11e7-9a4c-ed99bbcaa42b\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Interfaces by Incoming traffic [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"99381c80-4d60-11e7-9a4c-ed99bbcaa42b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Interfaces by Outgoing traffic [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"9db20be0-4d60-11e7-9a4c-ed99bbcaa42b\"}],\"id\":\"9cdba910-4d60-11e7-9a4c-ed99bbcaa42b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"9cdba911-4d60-11e7-9a4c-ed99bbcaa42b\",\"label\":\"Interfaces by Outgoing traffic\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.out.bytes\",\"id\":\"9cdba912-4d60-11e7-9a4c-ed99bbcaa42b\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"terms_order_by\":\"9cdba912-4d60-11e7-9a4c-ed99bbcaa42b\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Interfaces by Outgoing traffic [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c5e3cf90-4d60-11e7-9a4c-ed99bbcaa42b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Number of processes [Metricbeat System] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Processes\",\"field\":\"process.pid\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"type\":\"gauge\"},\"title\":\"Number of processes ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"590a60f0-5d87-11e7-8884-1bb4c3b890e4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Tip [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**TIP:** To select another host, go to the [System Overview](#/dashboard/Metricbeat-system-overview-ecs) dashboard and double-click a host name.\"},\"title\":\"Tip [Metricbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"3d65d450-a9c3-11e7-af20-67db8aecb295-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NzQsMV0="} -{"attributes":{"description":"Overview of host metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"host.name:\\\"CHANGEME_HOSTNAME\\\"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":55},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":25},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":55},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":0,\"y\":40},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":70},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":70},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":0,\"y\":25},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":40},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"9\",\"w\":8,\"x\":16,\"y\":5},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"10\",\"w\":8,\"x\":0,\"y\":5},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"11\",\"w\":8,\"x\":8,\"y\":5},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"12\",\"w\":8,\"x\":24,\"y\":5},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"13\",\"w\":8,\"x\":32,\"y\":5},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"14\",\"w\":16,\"x\":32,\"y\":15},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"16\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"21\",\"w\":8,\"x\":0,\"y\":15},\"panelIndex\":\"21\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_21\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"22\",\"w\":8,\"x\":8,\"y\":15},\"panelIndex\":\"22\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_22\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"23\",\"w\":8,\"x\":24,\"y\":15},\"panelIndex\":\"23\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_23\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"25\",\"w\":8,\"x\":40,\"y\":5},\"panelIndex\":\"25\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_25\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"27\",\"w\":24,\"x\":0,\"y\":85},\"panelIndex\":\"27\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_27\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"28\",\"w\":24,\"x\":24,\"y\":85},\"panelIndex\":\"28\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_28\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"29\",\"w\":8,\"x\":16,\"y\":15},\"panelIndex\":\"29\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_29\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"30\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"30\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_30\"}]","timeRestore":false,"title":"[Metricbeat System] Host overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"79ffd6e0-faa0-11e6-947f-177f697178b8-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"6b7b9a40-faa1-11e6-86b1-cd7735ff7e23-ecs","name":"1:panel_1","type":"visualization"},{"id":"4d546850-1b15-11e7-b09e-037021c4f8df-ecs","name":"2:panel_2","type":"visualization"},{"id":"089b85d0-1b16-11e7-b09e-037021c4f8df-ecs","name":"3:panel_3","type":"visualization"},{"id":"bfa5e400-1b16-11e7-b09e-037021c4f8df-ecs","name":"4:panel_4","type":"visualization"},{"id":"e0f001c0-1b18-11e7-b09e-037021c4f8df-ecs","name":"5:panel_5","type":"visualization"},{"id":"2e224660-1b19-11e7-b09e-037021c4f8df-ecs","name":"6:panel_6","type":"visualization"},{"id":"ab2d1e90-1b1a-11e7-b09e-037021c4f8df-ecs","name":"7:panel_7","type":"visualization"},{"id":"4e4bb1e0-1b1b-11e7-b09e-037021c4f8df-ecs","name":"8:panel_8","type":"visualization"},{"id":"26732e20-1b91-11e7-bec4-a5e9ec5cab8b-ecs","name":"9:panel_9","type":"visualization"},{"id":"83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs","name":"10:panel_10","type":"visualization"},{"id":"d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs","name":"11:panel_11","type":"visualization"},{"id":"522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs","name":"12:panel_12","type":"visualization"},{"id":"1aae9140-1b93-11e7-8ada-3df93aab833e-ecs","name":"13:panel_13","type":"visualization"},{"id":"34f97ee0-1b96-11e7-8ada-3df93aab833e-ecs","name":"14:panel_14","type":"visualization"},{"id":"System-Navigation-ecs","name":"16:panel_16","type":"visualization"},{"id":"19e123b0-4d5a-11e7-aee5-fdc812cc3bec-ecs","name":"21:panel_21","type":"visualization"},{"id":"d2e80340-4d5c-11e7-aa29-87a97a796de6-ecs","name":"22:panel_22","type":"visualization"},{"id":"825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs","name":"23:panel_23","type":"visualization"},{"id":"96976150-4d5d-11e7-aa29-87a97a796de6-ecs","name":"25:panel_25","type":"visualization"},{"id":"99381c80-4d60-11e7-9a4c-ed99bbcaa42b-ecs","name":"27:panel_27","type":"visualization"},{"id":"c5e3cf90-4d60-11e7-9a4c-ed99bbcaa42b-ecs","name":"28:panel_28","type":"visualization"},{"id":"590a60f0-5d87-11e7-8884-1bb4c3b890e4-ecs","name":"29:panel_29","type":"visualization"},{"id":"3d65d450-a9c3-11e7-af20-67db8aecb295-ecs","name":"30:panel_30","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:24.050Z","version":"WzM4NTEsMV0="} diff --git a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-system-overview-ecs.json b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-system-overview-ecs.json new file mode 100644 index 000000000000..07190c903af0 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-system-overview-ecs.json @@ -0,0 +1,268 @@ +{ + "attributes": { + "description": "Overview of system metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "9", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "11", + "w": 8, + "x": 0, + "y": 4 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 20, + "i": "12", + "w": 24, + "x": 24, + "y": 12 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "13", + "w": 24, + "x": 0, + "y": 12 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0% - 15%": "rgb(247,252,245)", + "15% - 30%": "rgb(199,233,192)", + "30% - 45%": "rgb(116,196,118)", + "45% - 60%": "rgb(35,139,69)" + } + } + }, + "gridData": { + "h": 24, + "i": "14", + "w": 48, + "x": 0, + "y": 32 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "16", + "w": 8, + "x": 32, + "y": 4 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "17", + "w": 8, + "x": 40, + "y": 4 + }, + "panelIndex": "17", + "panelRefName": "panel_17", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "18", + "w": 8, + "x": 24, + "y": 4 + }, + "panelIndex": "18", + "panelRefName": "panel_18", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "19", + "w": 8, + "x": 16, + "y": 4 + }, + "panelIndex": "19", + "panelRefName": "panel_19", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "20", + "w": 8, + "x": 8, + "y": 4 + }, + "panelIndex": "20", + "panelRefName": "panel_20", + "type": "visualization", + "version": "7.6.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat System] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Metricbeat-system-overview-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "System-Navigation-ecs", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "c6f2ffd0-4d17-11e7-a196-69b9a7a020a9-ecs", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "fe064790-1b1f-11e7-bec4-a5e9ec5cab8b-ecs", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "855899e0-1b1c-11e7-b09e-037021c4f8df-ecs", + "name": "13:panel_13", + "type": "visualization" + }, + { + "id": "7cdb1330-4d1a-11e7-a196-69b9a7a020a9-ecs", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs", + "name": "16:panel_16", + "type": "visualization" + }, + { + "id": "1aae9140-1b93-11e7-8ada-3df93aab833e-ecs", + "name": "17:panel_17", + "type": "visualization" + }, + { + "id": "825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs", + "name": "18:panel_18", + "type": "visualization" + }, + { + "id": "d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs", + "name": "19:panel_19", + "type": "visualization" + }, + { + "id": "83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs", + "name": "20:panel_20", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:51.713Z", + "version": "WzQxNTUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-system-overview.ndjson b/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-system-overview.ndjson deleted file mode 100644 index 9141a54d12fe..000000000000 --- a/metricbeat/module/system/_meta/kibana/7/dashboard/Metricbeat-system-overview.ndjson +++ /dev/null @@ -1,11 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"System Navigation [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[System Overview](#/dashboard/Metricbeat-system-overview-ecs) | [Host Overview](#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs) |\\n[Containers overview](#/dashboard/CPU-slash-Memory-per-container-ecs)\"},\"title\":\"System Navigation [Metricbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"System-Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Number of hosts [Metricbeat System] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Number of hosts\",\"field\":\"host.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":false},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"63\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"type\":\"gauge\"},\"title\":\"Number of hosts [Metricbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"c6f2ffd0-4d17-11e7-a196-69b9a7a020a9-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top Hosts By Memory (Realtime) [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"33349dd0-1b1c-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0},{\"bar_color\":\"rgba(254,146,0,1)\",\"id\":\"997dc440-1b1c-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0.6},{\"bar_color\":\"rgba(211,49,21,1)\",\"id\":\"a10d7f20-1b1c-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0.85},{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"ba3dee41-14d0-4c3a-adca-ea61021184cd\",\"operator\":\"empty\",\"value\":null}],\"drilldown_url\":\"../app/kibana#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs?_a=(query:(language:kuery,query:'host.name:\\\"{{key}}\\\"'))\",\"filter\":\"\",\"id\":\"31e5afa0-1b1c-11e7-b09e-037021c4f8df\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"31e5afa1-1b1c-11e7-b09e-037021c4f8df\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.actual.used.pct\",\"id\":\"31e5afa2-1b1c-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"host.name\",\"terms_order_by\":\"31e5afa2-1b1c-11e7-b09e-037021c4f8df\",\"terms_size\":\"10\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top Hosts By Memory (Realtime) [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fe064790-1b1f-11e7-bec4-a5e9ec5cab8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top Hosts By CPU (Realtime) [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"33349dd0-1b1c-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0},{\"bar_color\":\"rgba(254,146,0,1)\",\"id\":\"997dc440-1b1c-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0.6},{\"bar_color\":\"rgba(211,49,21,1)\",\"id\":\"a10d7f20-1b1c-11e7-b09e-037021c4f8df\",\"operator\":\"gte\",\"value\":0.85},{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"e62488a9-f941-4460-b527-649df900bea6\",\"operator\":\"empty\",\"value\":null}],\"drilldown_url\":\"../app/kibana#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs?_a=(query:(language:kuery,query:'host.name:\\\"{{key}}\\\"'))\",\"filter\":\"\",\"id\":\"31e5afa0-1b1c-11e7-b09e-037021c4f8df\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"31e5afa1-1b1c-11e7-b09e-037021c4f8df\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.user.pct\",\"id\":\"31e5afa2-1b1c-11e7-b09e-037021c4f8df\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"host.name\",\"terms_order_by\":\"31e5afa2-1b1c-11e7-b09e-037021c4f8df\",\"terms_size\":\"10\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top Hosts By CPU (Realtime) [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"855899e0-1b1c-11e7-b09e-037021c4f8df-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Hosts histogram by CPU usage [Metricbeat System] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0% - 5%\": \"rgb(247,252,245)\", \"10% - 15%\": \"rgb(116,196,118)\", \"15% - 20%\": \"rgb(35,139,69)\", \"5% - 10%\": \"rgb(199,233,192)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"CPU usage\",\"field\":\"system.cpu.user.pct\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Hosts\",\"field\":\"host.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Greens\",\"colorsNumber\":4,\"colorsRange\":[],\"enableHover\":false,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"#555\",\"rotate\":0,\"show\":false},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Hosts histogram by CPU usage [Metricbeat System] ECS\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"8.0.0","id":"7cdb1330-4d1a-11e7-a196-69b9a7a020a9-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Inbound Traffic [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"0e346760-1b92-11e7-bec4-a5e9ec5cab8b\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"-system.network.name:l*\"},\"id\":\"0c761590-1b92-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"0c761591-1b92-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Inbound Traffic\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.in.bytes\",\"id\":\"0c761592-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"max\"},{\"field\":\"0c761592-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"1d659060-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"1d659060-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"f2074f70-1b92-11e7-a416-41f5ccdba2e6\",\"type\":\"positive_only\",\"unit\":\"\"},{\"function\":\"sum\",\"id\":\"c40e18f0-2c55-11e7-a0ad-277ce466684d\",\"type\":\"series_agg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"37f70440-1b92-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Total Transferred\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.in.bytes\",\"id\":\"37f72b50-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"max\"},{\"field\":\"37f72b50-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"37f72b51-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"37f72b51-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"f9da2dd0-1b92-11e7-a416-41f5ccdba2e6\",\"type\":\"positive_only\",\"unit\":\"\"},{\"field\":\"f9da2dd0-1b92-11e7-a416-41f5ccdba2e6\",\"function\":\"overall_sum\",\"id\":\"3e63c2f0-1b92-11e7-bec4-a5e9ec5cab8b\",\"sigma\":\"\",\"type\":\"series_agg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Inbound Traffic [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Outbound Traffic [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"0e346760-1b92-11e7-bec4-a5e9ec5cab8b\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"-system.network.name:l*\"},\"id\":\"0c761590-1b92-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"0c761591-1b92-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Outbound Traffic\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.out.bytes\",\"id\":\"0c761592-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"max\"},{\"field\":\"0c761592-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"1d659060-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"1d659060-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"f2074f70-1b92-11e7-a416-41f5ccdba2e6\",\"type\":\"positive_only\",\"unit\":\"\"},{\"function\":\"sum\",\"id\":\"a1737470-2c55-11e7-a0ad-277ce466684d\",\"type\":\"series_agg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"37f70440-1b92-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Total Transferred\",\"line_width\":1,\"metrics\":[{\"field\":\"system.network.out.bytes\",\"id\":\"37f72b50-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"max\"},{\"field\":\"37f72b50-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"37f72b51-1b92-11e7-bec4-a5e9ec5cab8b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"37f72b51-1b92-11e7-bec4-a5e9ec5cab8b\",\"id\":\"f9da2dd0-1b92-11e7-a416-41f5ccdba2e6\",\"type\":\"positive_only\",\"unit\":\"\"},{\"field\":\"f9da2dd0-1b92-11e7-a416-41f5ccdba2e6\",\"function\":\"overall_sum\",\"id\":\"3e63c2f0-1b92-11e7-bec4-a5e9ec5cab8b\",\"sigma\":\"\",\"type\":\"series_agg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"system.network.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Outbound Traffic [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1aae9140-1b93-11e7-8ada-3df93aab833e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Disk used [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":\"\",\"gauge_color_rules\":[{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"51921d10-4d1d-11e7-b5f2-2b7c1895bf32\",\"operator\":\"gte\",\"value\":0},{\"gauge\":\"rgba(251,158,0,1)\",\"id\":\"f26de750-4d54-11e7-b5f2-2b7c1895bf32\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(211,49,21,1)\",\"id\":\"fa31d190-4d54-11e7-b5f2-2b7c1895bf32\",\"operator\":\"gte\",\"value\":0.85},{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"45bc0b81-534d-475f-bbda-3f48b49cd1be\",\"operator\":\"empty\",\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"4e4dc780-4d1d-11e7-b5f2-2b7c1895bf32\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"4e4dee90-4d1d-11e7-b5f2-2b7c1895bf32\",\"label\":\"Disk used\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"system.fsstat.total_size.used\",\"id\":\"4e4dee91-4d1d-11e7-b5f2-2b7c1895bf32\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"},{\"agg_with\":\"avg\",\"field\":\"system.fsstat.total_size.total\",\"id\":\"57c96ee0-4d54-11e7-b5f2-2b7c1895bf32\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"},{\"id\":\"6304cca0-4d54-11e7-b5f2-2b7c1895bf32\",\"script\":\"params.used/params.total \",\"type\":\"math\",\"variables\":[{\"field\":\"4e4dee91-4d1d-11e7-b5f2-2b7c1895bf32\",\"id\":\"6da10430-4d54-11e7-b5f2-2b7c1895bf32\",\"name\":\"used\"},{\"field\":\"57c96ee0-4d54-11e7-b5f2-2b7c1895bf32\",\"id\":\"73b8c510-4d54-11e7-b5f2-2b7c1895bf32\",\"name\":\"total\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Disk used [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory Usage Gauge [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":\"\",\"gauge_color_rules\":[{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"a0d522e0-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0},{\"gauge\":\"rgba(254,146,0,1)\",\"id\":\"b45ad8f0-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(211,49,21,1)\",\"id\":\"c06e9550-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0.85},{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"4a3b1da6-e38b-4d74-82b7-cdfde708d5f5\",\"operator\":\"empty\",\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9f51b730-1b91-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"9f51b731-1b91-11e7-bec4-a5e9ec5cab8b\",\"label\":\"Memory Usage\",\"line_width\":1,\"metrics\":[{\"field\":\"system.memory.actual.used.pct\",\"id\":\"9f51b732-1b91-11e7-bec4-a5e9ec5cab8b\",\"type\":\"avg\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Memory Usage Gauge [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"CPU Usage Gauge [Metricbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":\"\",\"gauge_color_rules\":[{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"4ef2c3b0-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0},{\"gauge\":\"rgba(254,146,0,1)\",\"id\":\"e6561ae0-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(211,49,21,1)\",\"id\":\"ec655040-1b91-11e7-bec4-a5e9ec5cab8b\",\"operator\":\"gte\",\"value\":0.85},{\"gauge\":\"rgba(104,188,0,1)\",\"id\":\"c0fd001c-ec63-436b-90f8-8cc93f28c76c\",\"operator\":\"empty\",\"value\":null}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"4c9e2550-1b91-11e7-bec4-a5e9ec5cab8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"4c9e2551-1b91-11e7-bec4-a5e9ec5cab8b\",\"label\":\"CPU Usage\",\"line_width\":1,\"metrics\":[{\"field\":\"system.cpu.user.pct\",\"id\":\"4c9e2552-1b91-11e7-bec4-a5e9ec5cab8b\",\"type\":\"avg\"},{\"field\":\"system.cpu.system.pct\",\"id\":\"225c2140-5fd7-11e7-a63a-a937b7c1a7e1\",\"type\":\"avg\"},{\"field\":\"system.cpu.cores\",\"id\":\"837a30c0-5fd7-11e7-a63a-a937b7c1a7e1\",\"type\":\"avg\"},{\"id\":\"587aa510-1b91-11e7-bec4-a5e9ec5cab8b\",\"script\":\"params.n > 0 ? (params.user+params.system)/params.n : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"4c9e2552-1b91-11e7-bec4-a5e9ec5cab8b\",\"id\":\"5a19af10-1b91-11e7-bec4-a5e9ec5cab8b\",\"name\":\"user\"},{\"field\":\"225c2140-5fd7-11e7-a63a-a937b7c1a7e1\",\"id\":\"32b54f80-5fd7-11e7-a63a-a937b7c1a7e1\",\"name\":\"system\"},{\"field\":\"837a30c0-5fd7-11e7-a63a-a937b7c1a7e1\",\"id\":\"8ba6eef0-5fd7-11e7-a63a-a937b7c1a7e1\",\"name\":\"n\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"CPU Usage Gauge [Metricbeat System] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNjUsMV0="} -{"attributes":{"description":"Overview of system metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"9\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"11\",\"w\":8,\"x\":0,\"y\":4},\"panelIndex\":\"11\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"12\",\"w\":24,\"x\":24,\"y\":12},\"panelIndex\":\"12\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"13\",\"w\":24,\"x\":0,\"y\":12},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":24,\"i\":\"14\",\"w\":48,\"x\":0,\"y\":32},\"panelIndex\":\"14\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0% - 15%\":\"rgb(247,252,245)\",\"15% - 30%\":\"rgb(199,233,192)\",\"30% - 45%\":\"rgb(116,196,118)\",\"45% - 60%\":\"rgb(35,139,69)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"16\",\"w\":8,\"x\":32,\"y\":4},\"panelIndex\":\"16\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"17\",\"w\":8,\"x\":40,\"y\":4},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"18\",\"w\":8,\"x\":24,\"y\":4},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"19\",\"w\":8,\"x\":16,\"y\":4},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"20\",\"w\":8,\"x\":8,\"y\":4},\"panelIndex\":\"20\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_20\"}]","timeRestore":false,"title":"[Metricbeat System] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Metricbeat-system-overview-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"System-Navigation-ecs","name":"9:panel_9","type":"visualization"},{"id":"c6f2ffd0-4d17-11e7-a196-69b9a7a020a9-ecs","name":"11:panel_11","type":"visualization"},{"id":"fe064790-1b1f-11e7-bec4-a5e9ec5cab8b-ecs","name":"12:panel_12","type":"visualization"},{"id":"855899e0-1b1c-11e7-b09e-037021c4f8df-ecs","name":"13:panel_13","type":"visualization"},{"id":"7cdb1330-4d1a-11e7-a196-69b9a7a020a9-ecs","name":"14:panel_14","type":"visualization"},{"id":"522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs","name":"16:panel_16","type":"visualization"},{"id":"1aae9140-1b93-11e7-8ada-3df93aab833e-ecs","name":"17:panel_17","type":"visualization"},{"id":"825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs","name":"18:panel_18","type":"visualization"},{"id":"d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs","name":"19:panel_19","type":"visualization"},{"id":"83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs","name":"20:panel_20","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:51.713Z","version":"WzQxNTUsMV0="} diff --git a/metricbeat/module/system/_meta/kibana/7/dashboard/c431f410-f9ac-11e9-90e8-1fb18e796788.json b/metricbeat/module/system/_meta/kibana/7/dashboard/c431f410-f9ac-11e9-90e8-1fb18e796788.json new file mode 100644 index 000000000000..b2fa1e9e72e4 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/dashboard/c431f410-f9ac-11e9-90e8-1fb18e796788.json @@ -0,0 +1,188 @@ +{ + "attributes": { + "description": "Overview of services on an individual host.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "023b7623-9610-47ee-a10c-64ee8d2ccfa1", + "w": 14, + "x": 0, + "y": 0 + }, + "panelIndex": "023b7623-9610-47ee-a10c-64ee8d2ccfa1", + "panelRefName": "panel_023b7623-9610-47ee-a10c-64ee8d2ccfa1", + "title": "Running Services", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "40ebab84-f48f-4060-a7af-3ffdf833ad3a", + "w": 12, + "x": 14, + "y": 0 + }, + "panelIndex": "40ebab84-f48f-4060-a7af-3ffdf833ad3a", + "panelRefName": "panel_40ebab84-f48f-4060-a7af-3ffdf833ad3a", + "title": "Service States", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "0ad1caa8-2a3f-4429-9631-42d1c57a9e64", + "w": 12, + "x": 26, + "y": 0 + }, + "panelIndex": "0ad1caa8-2a3f-4429-9631-42d1c57a9e64", + "panelRefName": "panel_0ad1caa8-2a3f-4429-9631-42d1c57a9e64", + "title": "Service Sub-State", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "9e37921b-da6f-464d-9683-5c9bd550640b", + "w": 10, + "x": 38, + "y": 0 + }, + "panelIndex": "9e37921b-da6f-464d-9683-5c9bd550640b", + "panelRefName": "panel_9e37921b-da6f-464d-9683-5c9bd550640b", + "title": "Return Codes Of Exited Services", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "e3ec1fe3-a03a-466e-8bc2-69136e3e6302", + "w": 24, + "x": 0, + "y": 11 + }, + "panelIndex": "e3ec1fe3-a03a-466e-8bc2-69136e3e6302", + "panelRefName": "panel_e3ec1fe3-a03a-466e-8bc2-69136e3e6302", + "title": "Top Services By Memory Usage", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "cc928f52-22c9-402d-a7a1-4f32720a4290", + "w": 24, + "x": 24, + "y": 11 + }, + "panelIndex": "cc928f52-22c9-402d-a7a1-4f32720a4290", + "panelRefName": "panel_cc928f52-22c9-402d-a7a1-4f32720a4290", + "title": "Top Services By Task Count", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "c83f16cd-286f-411b-bae9-bade176a8db2", + "w": 48, + "x": 0, + "y": 22 + }, + "panelIndex": "c83f16cd-286f-411b-bae9-bade176a8db2", + "panelRefName": "panel_c83f16cd-286f-411b-bae9-bade176a8db2", + "title": "Service Memory Use Over Time", + "type": "visualization", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat System] Host Services Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "c431f410-f9ac-11e9-90e8-1fb18e796788", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "a30871f0-f98f-11e9-90e8-1fb18e796788", + "name": "023b7623-9610-47ee-a10c-64ee8d2ccfa1:panel_023b7623-9610-47ee-a10c-64ee8d2ccfa1", + "type": "visualization" + }, + { + "id": "bb3a8720-f991-11e9-90e8-1fb18e796788", + "name": "40ebab84-f48f-4060-a7af-3ffdf833ad3a:panel_40ebab84-f48f-4060-a7af-3ffdf833ad3a", + "type": "visualization" + }, + { + "id": "e6e639e0-f992-11e9-90e8-1fb18e796788", + "name": "0ad1caa8-2a3f-4429-9631-42d1c57a9e64:panel_0ad1caa8-2a3f-4429-9631-42d1c57a9e64", + "type": "visualization" + }, + { + "id": "9c69cad0-f9b0-11e9-90e8-1fb18e796788", + "name": "9e37921b-da6f-464d-9683-5c9bd550640b:panel_9e37921b-da6f-464d-9683-5c9bd550640b", + "type": "visualization" + }, + { + "id": "8c071e20-f999-11e9-90e8-1fb18e796788", + "name": "e3ec1fe3-a03a-466e-8bc2-69136e3e6302:panel_e3ec1fe3-a03a-466e-8bc2-69136e3e6302", + "type": "visualization" + }, + { + "id": "4b254630-f998-11e9-90e8-1fb18e796788", + "name": "cc928f52-22c9-402d-a7a1-4f32720a4290:panel_cc928f52-22c9-402d-a7a1-4f32720a4290", + "type": "visualization" + }, + { + "id": "d3f51850-f9b6-11e9-90e8-1fb18e796788", + "name": "c83f16cd-286f-411b-bae9-bade176a8db2:panel_c83f16cd-286f-411b-bae9-bade176a8db2", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:18.402Z", + "version": "WzMyNTMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/089b85d0-1b16-11e7-b09e-037021c4f8df-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/089b85d0-1b16-11e7-b09e-037021c4f8df-ecs.json new file mode 100644 index 000000000000..2bd7f82c3879 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/089b85d0-1b16-11e7-b09e-037021c4f8df-ecs.json @@ -0,0 +1,131 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Network Traffic (Bytes) [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "filter": { + "language": "lucene", + "query": "-system.network.name:l*" + }, + "id": "da1046f0-faa0-11e6-86b1-cd7735ff7e23", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "1", + "formatter": "bytes", + "id": "da1046f1-faa0-11e6-86b1-cd7735ff7e23", + "label": "Inbound ", + "line_width": "0", + "metrics": [ + { + "field": "system.network.in.bytes", + "id": "da1046f2-faa0-11e6-86b1-cd7735ff7e23", + "type": "max" + }, + { + "field": "da1046f2-faa0-11e6-86b1-cd7735ff7e23", + "id": "f41f9280-faa0-11e6-86b1-cd7735ff7e23", + "type": "derivative", + "unit": "1s" + }, + { + "field": "f41f9280-faa0-11e6-86b1-cd7735ff7e23", + "id": "a87398e0-1b93-11e7-8ada-3df93aab833e", + "type": "positive_only", + "unit": "" + }, + { + "function": "sum", + "id": "2d533df0-2c2d-11e7-be71-3162da85303f", + "type": "series_agg" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "system.network.name", + "value_template": "{{value}}/s" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(250,40,255,1)", + "fill": "1", + "formatter": "bytes", + "id": "fbbd5720-faa0-11e6-86b1-cd7735ff7e23", + "label": "Outbound ", + "line_width": "0", + "metrics": [ + { + "field": "system.network.out.bytes", + "id": "fbbd7e30-faa0-11e6-86b1-cd7735ff7e23", + "type": "max" + }, + { + "field": "fbbd7e30-faa0-11e6-86b1-cd7735ff7e23", + "id": "fbbd7e31-faa0-11e6-86b1-cd7735ff7e23", + "type": "derivative", + "unit": "1s" + }, + { + "id": "17e597a0-faa1-11e6-86b1-cd7735ff7e23", + "script": "params.rate != null && params.rate > 0 ? params.rate * -1 : null", + "type": "calculation", + "variables": [ + { + "field": "fbbd7e31-faa0-11e6-86b1-cd7735ff7e23", + "id": "1940bad0-faa1-11e6-86b1-cd7735ff7e23", + "name": "rate" + } + ] + }, + { + "function": "sum", + "id": "533da9b0-2c2d-11e7-be71-3162da85303f", + "type": "series_agg" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "system.network.name", + "value_template": "{{value}}/s" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Mericbeat: Network Traffic (Bytes) ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "089b85d0-1b16-11e7-b09e-037021c4f8df-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NTQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/19e123b0-4d5a-11e7-aee5-fdc812cc3bec-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/19e123b0-4d5a-11e7-aee5-fdc812cc3bec-ecs.json new file mode 100644 index 000000000000..6092a7ef7cf2 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/19e123b0-4d5a-11e7-aee5-fdc812cc3bec-ecs.json @@ -0,0 +1,93 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Swap usage [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "filter": "", + "gauge_color_rules": [ + { + "gauge": "rgba(104,188,0,1)", + "id": "d17c1e90-4d59-11e7-aee5-fdc812cc3bec", + "operator": "gte", + "value": 0 + }, + { + "gauge": "rgba(251,158,0,1)", + "id": "fc1d3490-4d59-11e7-aee5-fdc812cc3bec", + "operator": "gte", + "value": 0.7 + }, + { + "gauge": "rgba(211,49,21,1)", + "id": "0e204240-4d5a-11e7-aee5-fdc812cc3bec", + "operator": "gte", + "value": 0.85 + }, + { + "gauge": "rgba(104,188,0,1)", + "id": "ce0c7e88-0ed8-40c3-aec1-d2587a065282", + "operator": "empty", + "value": null + } + ], + "gauge_inner_width": 10, + "gauge_max": "", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "cee2fd20-4d59-11e7-aee5-fdc812cc3bec", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "percent", + "id": "cee2fd21-4d59-11e7-aee5-fdc812cc3bec", + "label": "Swap usage", + "line_width": 1, + "metrics": [ + { + "field": "system.memory.swap.used.pct", + "id": "cee2fd22-4d59-11e7-aee5-fdc812cc3bec", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Swap usage [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "19e123b0-4d5a-11e7-aee5-fdc812cc3bec-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NjcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/1aae9140-1b93-11e7-8ada-3df93aab833e-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/1aae9140-1b93-11e7-8ada-3df93aab833e-ecs.json new file mode 100644 index 000000000000..4a2e5f8d29cb --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/1aae9140-1b93-11e7-8ada-3df93aab833e-ecs.json @@ -0,0 +1,133 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Outbound Traffic [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "0e346760-1b92-11e7-bec4-a5e9ec5cab8b" + } + ], + "filter": { + "language": "lucene", + "query": "-system.network.name:l*" + }, + "hide_last_value_indicator": true, + "id": "0c761590-1b92-11e7-bec4-a5e9ec5cab8b", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "0c761591-1b92-11e7-bec4-a5e9ec5cab8b", + "label": "Outbound Traffic", + "line_width": 1, + "metrics": [ + { + "field": "system.network.out.bytes", + "id": "0c761592-1b92-11e7-bec4-a5e9ec5cab8b", + "type": "max" + }, + { + "field": "0c761592-1b92-11e7-bec4-a5e9ec5cab8b", + "id": "1d659060-1b92-11e7-bec4-a5e9ec5cab8b", + "type": "derivative", + "unit": "1s" + }, + { + "field": "1d659060-1b92-11e7-bec4-a5e9ec5cab8b", + "id": "f2074f70-1b92-11e7-a416-41f5ccdba2e6", + "type": "positive_only", + "unit": "" + }, + { + "function": "sum", + "id": "a1737470-2c55-11e7-a0ad-277ce466684d", + "type": "series_agg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "system.network.name", + "value_template": "{{value}}/s" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "37f70440-1b92-11e7-bec4-a5e9ec5cab8b", + "label": "Total Transferred", + "line_width": 1, + "metrics": [ + { + "field": "system.network.out.bytes", + "id": "37f72b50-1b92-11e7-bec4-a5e9ec5cab8b", + "type": "max" + }, + { + "field": "37f72b50-1b92-11e7-bec4-a5e9ec5cab8b", + "id": "37f72b51-1b92-11e7-bec4-a5e9ec5cab8b", + "type": "derivative", + "unit": "" + }, + { + "field": "37f72b51-1b92-11e7-bec4-a5e9ec5cab8b", + "id": "f9da2dd0-1b92-11e7-a416-41f5ccdba2e6", + "type": "positive_only", + "unit": "" + }, + { + "field": "f9da2dd0-1b92-11e7-a416-41f5ccdba2e6", + "function": "overall_sum", + "id": "3e63c2f0-1b92-11e7-bec4-a5e9ec5cab8b", + "sigma": "", + "type": "series_agg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "system.network.name", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Outbound Traffic [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1aae9140-1b93-11e7-8ada-3df93aab833e-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:51.713Z", + "version": "WzQxNjIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/26732e20-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/26732e20-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json new file mode 100644 index 000000000000..1858c646e151 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/26732e20-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json @@ -0,0 +1,75 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Gauge [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "feefabd0-1b90-11e7-bec4-a5e9ec5cab8b" + } + ], + "gauge_color_rules": [ + { + "id": "ffd94880-1b90-11e7-bec4-a5e9ec5cab8b" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "fdcc6180-1b90-11e7-bec4-a5e9ec5cab8b", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "fdcc6181-1b90-11e7-bec4-a5e9ec5cab8b", + "label": "5m Load", + "line_width": 1, + "metrics": [ + { + "field": "system.load.5", + "id": "fdcc6182-1b90-11e7-bec4-a5e9ec5cab8b", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Load Gauge [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "26732e20-1b91-11e7-bec4-a5e9ec5cab8b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NjAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/2e224660-1b19-11e7-b09e-037021c4f8df-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/2e224660-1b19-11e7-b09e-037021c4f8df-ecs.json new file mode 100644 index 000000000000..6a1f77eedf05 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/2e224660-1b19-11e7-b09e-037021c4f8df-ecs.json @@ -0,0 +1,91 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Processes By Memory [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "bar_color": "rgba(104,188,0,1)", + "id": "efb9b660-1b18-11e7-b09e-037021c4f8df", + "operator": "gte", + "value": 0 + }, + { + "bar_color": "rgba(254,146,0,1)", + "id": "17fcb820-1b19-11e7-b09e-037021c4f8df", + "operator": "gte", + "value": 0.7 + }, + { + "bar_color": "rgba(211,49,21,1)", + "id": "1dd61070-1b19-11e7-b09e-037021c4f8df", + "operator": "gte", + "value": 0.85 + }, + { + "bar_color": "rgba(104,188,0,1)", + "id": "fe5082f5-bcdc-45e4-a4d2-37d390ec607c", + "operator": "empty", + "value": null + } + ], + "drilldown_url": "", + "filter": "", + "hide_last_value_indicator": true, + "id": "edfceb30-1b18-11e7-b09e-037021c4f8df", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "percent", + "id": "edfceb31-1b18-11e7-b09e-037021c4f8df", + "line_width": 1, + "metrics": [ + { + "field": "system.process.memory.rss.pct", + "id": "edfceb32-1b18-11e7-b09e-037021c4f8df", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "process.name", + "terms_order_by": "edfceb32-1b18-11e7-b09e-037021c4f8df" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Processes By Memory [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2e224660-1b19-11e7-b09e-037021c4f8df-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NTcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/34f97ee0-1b96-11e7-8ada-3df93aab833e-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/34f97ee0-1b96-11e7-8ada-3df93aab833e-ecs.json new file mode 100644 index 000000000000..a3f23a9e6bb2 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/34f97ee0-1b96-11e7-8ada-3df93aab833e-ecs.json @@ -0,0 +1,100 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Disk Usage [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "bar_color": "rgba(104,188,0,1)", + "id": "bf525310-1b95-11e7-8ada-3df93aab833e", + "operator": "gte", + "value": 0 + }, + { + "bar_color": "rgba(254,146,0,1)", + "id": "125fc4c0-1b96-11e7-8ada-3df93aab833e", + "operator": "gte", + "value": 0.7 + }, + { + "bar_color": "rgba(211,49,21,1)", + "id": "1a5c7240-1b96-11e7-8ada-3df93aab833e", + "operator": "gte", + "value": 0.85 + }, + { + "bar_color": "rgba(104,188,0,1)", + "id": "0ddc5a03-77c2-4711-99fc-ce9db3b04b72", + "operator": "empty", + "value": null + } + ], + "drilldown_url": "", + "filter": { + "language": "lucene", + "query": "-system.filesystem.mount_point:\\/run* AND -system.filesystem.mount_point:\\/sys* AND -system.filesystem.mount_point:\\/dev* AND -system.filesystem.mount_point:\\/proc* AND -system.filesystem.mount_point:\\/var* AND -system.filesystem.mount_point:\\/boot" + }, + "hide_last_value_indicator": true, + "id": "9f7e48a0-1b95-11e7-8ada-3df93aab833e", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "percent", + "id": "9f7e48a1-1b95-11e7-8ada-3df93aab833e", + "line_width": 1, + "metrics": [ + { + "agg_with": "avg", + "field": "system.filesystem.used.pct", + "id": "9f7e48a2-1b95-11e7-8ada-3df93aab833e", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "system.filesystem.mount_point" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Disk Usage [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "34f97ee0-1b96-11e7-8ada-3df93aab833e-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NjUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/3d65d450-a9c3-11e7-af20-67db8aecb295-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/3d65d450-a9c3-11e7-af20-67db8aecb295-ecs.json new file mode 100644 index 000000000000..3fe5ad04bc5d --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/3d65d450-a9c3-11e7-af20-67db8aecb295-ecs.json @@ -0,0 +1,29 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Tip [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "**TIP:** To select another host, go to the [System Overview](#/dashboard/Metricbeat-system-overview-ecs) dashboard and double-click a host name." + }, + "title": "Tip [Metricbeat System] ECS", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3d65d450-a9c3-11e7-af20-67db8aecb295-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NzQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/4b254630-f998-11e9-90e8-1fb18e796788.json b/metricbeat/module/system/_meta/kibana/7/visualization/4b254630-f998-11e9-90e8-1fb18e796788.json new file mode 100644 index 000000000000..e907bf9a9843 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/4b254630-f998-11e9-90e8-1fb18e796788.json @@ -0,0 +1,72 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Top Services By Task Count [Metricbeat System]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "3aeae000-f997-11e9-ac67-272468589910" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "hidden": false, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "system.service.resources.tasks.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "system.service.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Top Services By Task Count [Metricbeat System]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4b254630-f998-11e9-90e8-1fb18e796788", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:18.402Z", + "version": "WzMyNTksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/4d546850-1b15-11e7-b09e-037021c4f8df-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/4d546850-1b15-11e7-b09e-037021c4f8df-ecs.json new file mode 100644 index 000000000000..e8c378fefd61 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/4d546850-1b15-11e7-b09e-037021c4f8df-ecs.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "System Load [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "id": "f6264ad0-1b14-11e7-b09e-037021c4f8df", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0", + "formatter": "number", + "id": "f62671e0-1b14-11e7-b09e-037021c4f8df", + "label": "1m", + "line_width": "3", + "metrics": [ + { + "field": "system.load.1", + "id": "f62671e1-1b14-11e7-b09e-037021c4f8df", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "formatter": "number", + "id": "1c324850-1b15-11e7-b09e-037021c4f8df", + "label": "5m", + "line_width": "3", + "metrics": [ + { + "field": "system.load.5", + "id": "1c324851-1b15-11e7-b09e-037021c4f8df", + "type": "avg" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,98,177,1)", + "fill": "0", + "formatter": "number", + "id": "3287e740-1b15-11e7-b09e-037021c4f8df", + "label": "15m", + "line_width": "3", + "metrics": [ + { + "field": "system.load.15", + "id": "32880e50-1b15-11e7-b09e-037021c4f8df", + "type": "avg" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "System Load [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4d546850-1b15-11e7-b09e-037021c4f8df-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NTMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/4e4bb1e0-1b1b-11e7-b09e-037021c4f8df-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/4e4bb1e0-1b1b-11e7-b09e-037021c4f8df-ecs.json new file mode 100644 index 000000000000..5e4284d8bc44 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/4e4bb1e0-1b1b-11e7-b09e-037021c4f8df-ecs.json @@ -0,0 +1,116 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Disk IO (Bytes) [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "filter": "", + "id": "d3c67db0-1b1a-11e7-b09e-037021c4f8df", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(22,165,165,1)", + "fill": "1", + "formatter": "bytes", + "id": "d3c67db1-1b1a-11e7-b09e-037021c4f8df", + "label": "reads", + "line_width": 1, + "metrics": [ + { + "field": "system.diskio.read.bytes", + "id": "d3c67db2-1b1a-11e7-b09e-037021c4f8df", + "type": "max" + }, + { + "field": "d3c67db2-1b1a-11e7-b09e-037021c4f8df", + "id": "f55b9910-1b1a-11e7-b09e-037021c4f8df", + "type": "derivative", + "unit": "1s" + }, + { + "field": "f55b9910-1b1a-11e7-b09e-037021c4f8df", + "id": "dcbbb100-1b93-11e7-8ada-3df93aab833e", + "type": "positive_only", + "unit": "" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}/s" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(251,158,0,1)", + "fill": "1", + "formatter": "bytes", + "id": "144124d0-1b1b-11e7-b09e-037021c4f8df", + "label": "writes", + "line_width": 1, + "metrics": [ + { + "field": "system.diskio.write.bytes", + "id": "144124d1-1b1b-11e7-b09e-037021c4f8df", + "type": "max" + }, + { + "field": "144124d1-1b1b-11e7-b09e-037021c4f8df", + "id": "144124d2-1b1b-11e7-b09e-037021c4f8df", + "type": "derivative", + "unit": "1s" + }, + { + "id": "144124d4-1b1b-11e7-b09e-037021c4f8df", + "script": "params.rate > 0 ? params.rate * -1 : 0", + "type": "calculation", + "variables": [ + { + "field": "144124d2-1b1b-11e7-b09e-037021c4f8df", + "id": "144124d3-1b1b-11e7-b09e-037021c4f8df", + "name": "rate" + } + ] + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}/s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Disk IO (Bytes) [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4e4bb1e0-1b1b-11e7-b09e-037021c4f8df-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NTksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs.json new file mode 100644 index 000000000000..6ae46b42f61a --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs.json @@ -0,0 +1,133 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Inbound Traffic [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "0e346760-1b92-11e7-bec4-a5e9ec5cab8b" + } + ], + "filter": { + "language": "lucene", + "query": "-system.network.name:l*" + }, + "hide_last_value_indicator": true, + "id": "0c761590-1b92-11e7-bec4-a5e9ec5cab8b", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "0c761591-1b92-11e7-bec4-a5e9ec5cab8b", + "label": "Inbound Traffic", + "line_width": 1, + "metrics": [ + { + "field": "system.network.in.bytes", + "id": "0c761592-1b92-11e7-bec4-a5e9ec5cab8b", + "type": "max" + }, + { + "field": "0c761592-1b92-11e7-bec4-a5e9ec5cab8b", + "id": "1d659060-1b92-11e7-bec4-a5e9ec5cab8b", + "type": "derivative", + "unit": "1s" + }, + { + "field": "1d659060-1b92-11e7-bec4-a5e9ec5cab8b", + "id": "f2074f70-1b92-11e7-a416-41f5ccdba2e6", + "type": "positive_only", + "unit": "" + }, + { + "function": "sum", + "id": "c40e18f0-2c55-11e7-a0ad-277ce466684d", + "type": "series_agg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "system.network.name", + "value_template": "{{value}}/s" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "37f70440-1b92-11e7-bec4-a5e9ec5cab8b", + "label": "Total Transferred", + "line_width": 1, + "metrics": [ + { + "field": "system.network.in.bytes", + "id": "37f72b50-1b92-11e7-bec4-a5e9ec5cab8b", + "type": "max" + }, + { + "field": "37f72b50-1b92-11e7-bec4-a5e9ec5cab8b", + "id": "37f72b51-1b92-11e7-bec4-a5e9ec5cab8b", + "type": "derivative", + "unit": "" + }, + { + "field": "37f72b51-1b92-11e7-bec4-a5e9ec5cab8b", + "id": "f9da2dd0-1b92-11e7-a416-41f5ccdba2e6", + "type": "positive_only", + "unit": "" + }, + { + "field": "f9da2dd0-1b92-11e7-a416-41f5ccdba2e6", + "function": "overall_sum", + "id": "3e63c2f0-1b92-11e7-bec4-a5e9ec5cab8b", + "sigma": "", + "type": "series_agg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "system.network.name", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Inbound Traffic [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "522ee670-1b92-11e7-bec4-a5e9ec5cab8b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:51.713Z", + "version": "WzQxNjEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/590a60f0-5d87-11e7-8884-1bb4c3b890e4-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/590a60f0-5d87-11e7-8884-1bb4c3b890e4-ecs.json new file mode 100644 index 000000000000..ef41c83bbe4b --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/590a60f0-5d87-11e7-8884-1bb4c3b890e4-ecs.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Number of processes [Metricbeat System] ECS", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Processes", + "field": "process.pid" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "type": "gauge" + }, + "title": "Number of processes ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "590a60f0-5d87-11e7-8884-1bb4c3b890e4-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NzMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/6b7b9a40-faa1-11e6-86b1-cd7735ff7e23-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/6b7b9a40-faa1-11e6-86b1-cd7735ff7e23-ecs.json new file mode 100644 index 000000000000..e7f6f83ece1e --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/6b7b9a40-faa1-11e6-86b1-cd7735ff7e23-ecs.json @@ -0,0 +1,131 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Network Traffic (Packets) [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "filter": { + "language": "lucene", + "query": "-system.network.name:l*" + }, + "id": "da1046f0-faa0-11e6-86b1-cd7735ff7e23", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "1", + "formatter": "0.[00]a", + "id": "da1046f1-faa0-11e6-86b1-cd7735ff7e23", + "label": "Inbound", + "line_width": "0", + "metrics": [ + { + "field": "system.network.in.packets", + "id": "da1046f2-faa0-11e6-86b1-cd7735ff7e23", + "type": "max" + }, + { + "field": "da1046f2-faa0-11e6-86b1-cd7735ff7e23", + "id": "f41f9280-faa0-11e6-86b1-cd7735ff7e23", + "type": "derivative", + "unit": "1s" + }, + { + "field": "f41f9280-faa0-11e6-86b1-cd7735ff7e23", + "id": "c0da3d80-1b93-11e7-8ada-3df93aab833e", + "type": "positive_only", + "unit": "" + }, + { + "function": "sum", + "id": "ecaad010-2c2c-11e7-be71-3162da85303f", + "type": "series_agg" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "system.network.name", + "value_template": "{{value}}/s" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(250,40,255,1)", + "fill": "1", + "formatter": "0.[00]a", + "id": "fbbd5720-faa0-11e6-86b1-cd7735ff7e23", + "label": "Outbound", + "line_width": "0", + "metrics": [ + { + "field": "system.network.out.packets", + "id": "fbbd7e30-faa0-11e6-86b1-cd7735ff7e23", + "type": "max" + }, + { + "field": "fbbd7e30-faa0-11e6-86b1-cd7735ff7e23", + "id": "fbbd7e31-faa0-11e6-86b1-cd7735ff7e23", + "type": "derivative", + "unit": "1s" + }, + { + "id": "17e597a0-faa1-11e6-86b1-cd7735ff7e23", + "script": "params.rate != null && params.rate > 0 ? params.rate * -1 : null", + "type": "calculation", + "variables": [ + { + "field": "fbbd7e31-faa0-11e6-86b1-cd7735ff7e23", + "id": "1940bad0-faa1-11e6-86b1-cd7735ff7e23", + "name": "rate" + } + ] + }, + { + "function": "sum", + "id": "fe5fbdc0-2c2c-11e7-be71-3162da85303f", + "type": "series_agg" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "system.network.name", + "value_template": "{{value}}/s" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Mericbeat: Network Traffic (Packets) ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6b7b9a40-faa1-11e6-86b1-cd7735ff7e23-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NTIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/7cdb1330-4d1a-11e7-a196-69b9a7a020a9-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/7cdb1330-4d1a-11e7-a196-69b9a7a020a9-ecs.json new file mode 100644 index 000000000000..b4ed7c784319 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/7cdb1330-4d1a-11e7-a196-69b9a7a020a9-ecs.json @@ -0,0 +1,113 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Hosts histogram by CPU usage [Metricbeat System] ECS", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0% - 5%": "rgb(247,252,245)", + "10% - 15%": "rgb(116,196,118)", + "15% - 20%": "rgb(35,139,69)", + "5% - 10%": "rgb(199,233,192)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "CPU usage", + "field": "system.cpu.user.pct" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Hosts", + "field": "host.name", + "order": "desc", + "orderBy": "1", + "size": 20 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "colorSchema": "Greens", + "colorsNumber": 4, + "colorsRange": [], + "enableHover": false, + "invertColors": false, + "legendPosition": "right", + "percentageMode": false, + "setColorRange": false, + "times": [], + "type": "heatmap", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "color": "#555", + "rotate": 0, + "show": false + }, + "scale": { + "defaultYExtents": false, + "type": "linear" + }, + "show": false, + "type": "value" + } + ] + }, + "title": "Hosts histogram by CPU usage [Metricbeat System] ECS", + "type": "heatmap" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7cdb1330-4d1a-11e7-a196-69b9a7a020a9-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:51.713Z", + "version": "WzQxNjAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs.json new file mode 100644 index 000000000000..2daccff853d9 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Disk used [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": "", + "gauge_color_rules": [ + { + "gauge": "rgba(104,188,0,1)", + "id": "51921d10-4d1d-11e7-b5f2-2b7c1895bf32", + "operator": "gte", + "value": 0 + }, + { + "gauge": "rgba(251,158,0,1)", + "id": "f26de750-4d54-11e7-b5f2-2b7c1895bf32", + "operator": "gte", + "value": 0.7 + }, + { + "gauge": "rgba(211,49,21,1)", + "id": "fa31d190-4d54-11e7-b5f2-2b7c1895bf32", + "operator": "gte", + "value": 0.85 + }, + { + "gauge": "rgba(104,188,0,1)", + "id": "45bc0b81-534d-475f-bbda-3f48b49cd1be", + "operator": "empty", + "value": null + } + ], + "gauge_inner_width": 10, + "gauge_max": "1", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "4e4dc780-4d1d-11e7-b5f2-2b7c1895bf32", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "percent", + "id": "4e4dee90-4d1d-11e7-b5f2-2b7c1895bf32", + "label": "Disk used", + "line_width": 1, + "metrics": [ + { + "agg_with": "avg", + "field": "system.fsstat.total_size.used", + "id": "4e4dee91-4d1d-11e7-b5f2-2b7c1895bf32", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + }, + { + "agg_with": "avg", + "field": "system.fsstat.total_size.total", + "id": "57c96ee0-4d54-11e7-b5f2-2b7c1895bf32", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + }, + { + "id": "6304cca0-4d54-11e7-b5f2-2b7c1895bf32", + "script": "params.used/params.total ", + "type": "math", + "variables": [ + { + "field": "4e4dee91-4d1d-11e7-b5f2-2b7c1895bf32", + "id": "6da10430-4d54-11e7-b5f2-2b7c1895bf32", + "name": "used" + }, + { + "field": "57c96ee0-4d54-11e7-b5f2-2b7c1895bf32", + "id": "73b8c510-4d54-11e7-b5f2-2b7c1895bf32", + "name": "total" + } + ] + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Disk used [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "825fdb80-4d1d-11e7-b5f2-2b7c1895bf32-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:51.713Z", + "version": "WzQxNjMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json new file mode 100644 index 000000000000..317ec38bdf3e --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "CPU Usage Gauge [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "filter": "", + "gauge_color_rules": [ + { + "gauge": "rgba(104,188,0,1)", + "id": "4ef2c3b0-1b91-11e7-bec4-a5e9ec5cab8b", + "operator": "gte", + "value": 0 + }, + { + "gauge": "rgba(254,146,0,1)", + "id": "e6561ae0-1b91-11e7-bec4-a5e9ec5cab8b", + "operator": "gte", + "value": 0.7 + }, + { + "gauge": "rgba(211,49,21,1)", + "id": "ec655040-1b91-11e7-bec4-a5e9ec5cab8b", + "operator": "gte", + "value": 0.85 + }, + { + "gauge": "rgba(104,188,0,1)", + "id": "c0fd001c-ec63-436b-90f8-8cc93f28c76c", + "operator": "empty", + "value": null + } + ], + "gauge_inner_width": 10, + "gauge_max": "1", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "4c9e2550-1b91-11e7-bec4-a5e9ec5cab8b", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "percent", + "id": "4c9e2551-1b91-11e7-bec4-a5e9ec5cab8b", + "label": "CPU Usage", + "line_width": 1, + "metrics": [ + { + "field": "system.cpu.user.pct", + "id": "4c9e2552-1b91-11e7-bec4-a5e9ec5cab8b", + "type": "avg" + }, + { + "field": "system.cpu.system.pct", + "id": "225c2140-5fd7-11e7-a63a-a937b7c1a7e1", + "type": "avg" + }, + { + "field": "system.cpu.cores", + "id": "837a30c0-5fd7-11e7-a63a-a937b7c1a7e1", + "type": "avg" + }, + { + "id": "587aa510-1b91-11e7-bec4-a5e9ec5cab8b", + "script": "params.n > 0 ? (params.user+params.system)/params.n : null", + "type": "calculation", + "variables": [ + { + "field": "4c9e2552-1b91-11e7-bec4-a5e9ec5cab8b", + "id": "5a19af10-1b91-11e7-bec4-a5e9ec5cab8b", + "name": "user" + }, + { + "field": "225c2140-5fd7-11e7-a63a-a937b7c1a7e1", + "id": "32b54f80-5fd7-11e7-a63a-a937b7c1a7e1", + "name": "system" + }, + { + "field": "837a30c0-5fd7-11e7-a63a-a937b7c1a7e1", + "id": "8ba6eef0-5fd7-11e7-a63a-a937b7c1a7e1", + "name": "n" + } + ] + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "CPU Usage Gauge [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "83e12df0-1b91-11e7-bec4-a5e9ec5cab8b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:51.713Z", + "version": "WzQxNjUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/855899e0-1b1c-11e7-b09e-037021c4f8df-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/855899e0-1b1c-11e7-b09e-037021c4f8df-ecs.json new file mode 100644 index 000000000000..2b6f3ea53132 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/855899e0-1b1c-11e7-b09e-037021c4f8df-ecs.json @@ -0,0 +1,92 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Top Hosts By CPU (Realtime) [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "bar_color": "rgba(104,188,0,1)", + "id": "33349dd0-1b1c-11e7-b09e-037021c4f8df", + "operator": "gte", + "value": 0 + }, + { + "bar_color": "rgba(254,146,0,1)", + "id": "997dc440-1b1c-11e7-b09e-037021c4f8df", + "operator": "gte", + "value": 0.6 + }, + { + "bar_color": "rgba(211,49,21,1)", + "id": "a10d7f20-1b1c-11e7-b09e-037021c4f8df", + "operator": "gte", + "value": 0.85 + }, + { + "bar_color": "rgba(104,188,0,1)", + "id": "e62488a9-f941-4460-b527-649df900bea6", + "operator": "empty", + "value": null + } + ], + "drilldown_url": "../app/kibana#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs?_a=(query:(language:kuery,query:'host.name:\"{{key}}\"'))", + "filter": "", + "hide_last_value_indicator": true, + "id": "31e5afa0-1b1c-11e7-b09e-037021c4f8df", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "percent", + "id": "31e5afa1-1b1c-11e7-b09e-037021c4f8df", + "line_width": 1, + "metrics": [ + { + "field": "system.cpu.user.pct", + "id": "31e5afa2-1b1c-11e7-b09e-037021c4f8df", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "host.name", + "terms_order_by": "31e5afa2-1b1c-11e7-b09e-037021c4f8df", + "terms_size": "10" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Top Hosts By CPU (Realtime) [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "855899e0-1b1c-11e7-b09e-037021c4f8df-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:51.713Z", + "version": "WzQxNTksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/8c071e20-f999-11e9-90e8-1fb18e796788.json b/metricbeat/module/system/_meta/kibana/7/visualization/8c071e20-f999-11e9-90e8-1fb18e796788.json new file mode 100644 index 000000000000..2b9aa276d395 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/8c071e20-f999-11e9-90e8-1fb18e796788.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Top Services By Memory Usage [Metricbeat System]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "5af08c50-f998-11e9-ac67-272468589910" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "field": "system.service.resources.memory.usage.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "system.service.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Top Services By Memory Usage [Metricbeat System]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8c071e20-f999-11e9-90e8-1fb18e796788", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:18.402Z", + "version": "WzMyNTgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/96976150-4d5d-11e7-aa29-87a97a796de6-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/96976150-4d5d-11e7-aa29-87a97a796de6-ecs.json new file mode 100644 index 000000000000..10c5dcd4d978 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/96976150-4d5d-11e7-aa29-87a97a796de6-ecs.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Packetloss [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "6ba9b1f0-4d5d-11e7-aa29-87a97a796de6" + } + ], + "hide_last_value_indicator": true, + "id": "6984af10-4d5d-11e7-aa29-87a97a796de6", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "6984af11-4d5d-11e7-aa29-87a97a796de6", + "label": "In Packetloss", + "line_width": 1, + "metrics": [ + { + "field": "system.network.in.dropped", + "id": "6984af12-4d5d-11e7-aa29-87a97a796de6", + "type": "max" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "ac2e6b30-4d5d-11e7-aa29-87a97a796de6", + "label": "Out Packetloss", + "line_width": 1, + "metrics": [ + { + "field": "system.network.out.dropped", + "id": "ac2e6b31-4d5d-11e7-aa29-87a97a796de6", + "type": "max" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Packetloss [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "96976150-4d5d-11e7-aa29-87a97a796de6-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NzAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/99381c80-4d60-11e7-9a4c-ed99bbcaa42b-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/99381c80-4d60-11e7-9a4c-ed99bbcaa42b-ecs.json new file mode 100644 index 000000000000..d7c99626fcb1 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/99381c80-4d60-11e7-9a4c-ed99bbcaa42b-ecs.json @@ -0,0 +1,69 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Interfaces by Incoming traffic [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "id": "44596d40-4d60-11e7-9a4c-ed99bbcaa42b" + } + ], + "hide_last_value_indicator": true, + "id": "42ceae90-4d60-11e7-9a4c-ed99bbcaa42b", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "42ced5a0-4d60-11e7-9a4c-ed99bbcaa42b", + "label": "Interfaces by Incoming traffic", + "line_width": 1, + "metrics": [ + { + "field": "system.network.in.bytes", + "id": "42ced5a1-4d60-11e7-9a4c-ed99bbcaa42b", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "system.network.name", + "terms_order_by": "42ced5a1-4d60-11e7-9a4c-ed99bbcaa42b" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Interfaces by Incoming traffic [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "99381c80-4d60-11e7-9a4c-ed99bbcaa42b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NzEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/9c69cad0-f9b0-11e9-90e8-1fb18e796788.json b/metricbeat/module/system/_meta/kibana/7/visualization/9c69cad0-f9b0-11e9-90e8-1fb18e796788.json new file mode 100644 index 000000000000..78df14454f27 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/9c69cad0-f9b0-11e9-90e8-1fb18e796788.json @@ -0,0 +1,138 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "metricset.name", + "negate": false, + "params": { + "query": "service" + }, + "type": "phrase", + "value": "service" + }, + "query": { + "match": { + "metricset.name": { + "query": "service", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Return Codes Of Exited Services [Metricbeat System]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Return Codes Of Exited Services [Metricbeat Services]" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "process.exit_code", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "number", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Return Codes Of Exited Services [Metricbeat System]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c69cad0-f9b0-11e9-90e8-1fb18e796788", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:18.402Z", + "version": "WzMyNTcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/Container-Block-IO-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/Container-Block-IO-ecs.json new file mode 100644 index 000000000000..27b55122ffc3 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/Container-Block-IO-ecs.json @@ -0,0 +1,106 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Container Block IO [Metricbeat System] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Total", + "field": "system.process.cgroup.blkio.total.bytes" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "I/O", + "field": "system.process.cgroup.blkio.total.ios" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Container ID", + "field": "system.process.cgroup.id", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Process name", + "field": "process.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Container Block IO [Metricbeat System] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Container-Block-IO-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:03.451Z", + "version": "WzM3MjcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/Container-CPU-usage-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/Container-CPU-usage-ecs.json new file mode 100644 index 000000000000..28f87b26f7f7 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/Container-CPU-usage-ecs.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Container CPU usage [Metricbeat System] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "CPU user", + "field": "system.process.cgroup.cpuacct.stats.user.ns" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "CPU quota", + "field": "system.process.cgroup.cpu.cfs.quota.us" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Container ID", + "field": "system.process.cgroup.id", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "CPU throttling", + "field": "system.process.cgroup.cpu.stats.throttled.ns" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "CPU kernel", + "field": "system.process.cgroup.cpuacct.stats.system.ns" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "Process name", + "field": "process.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Container CPU usage [Metricbeat System] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Container-CPU-usage-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:03.451Z", + "version": "WzM3MjQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/Container-Memory-stats-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/Container-Memory-stats-ecs.json new file mode 100644 index 000000000000..c0c094448960 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/Container-Memory-stats-ecs.json @@ -0,0 +1,216 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Container Memory stats [Metricbeat System] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "13", + "params": { + "customLabel": "Usage", + "field": "system.process.cgroup.memory.mem.usage.bytes" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "14", + "params": { + "customLabel": "Max usage", + "field": "system.process.cgroup.memory.mem.usage.max.bytes" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Page faults", + "field": "system.process.cgroup.memory.stats.page_faults" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Pages in memory", + "field": "system.process.cgroup.memory.stats.pages_in" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Pages out of memory", + "field": "system.process.cgroup.memory.stats.pages_out" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Container ID", + "field": "system.process.cgroup.id", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Inactive files", + "field": "system.process.cgroup.memory.stats.inactive_file.bytes" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "# Major page faults", + "field": "system.process.cgroup.memory.stats.major_page_faults" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "8", + "params": { + "customLabel": "Process name", + "field": "process.name", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "12", + "params": { + "customLabel": "Failures", + "field": "system.process.cgroup.memory.mem.failures" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "10", + "params": { + "customLabel": "TCP buffers", + "field": "system.process.cgroup.memory.kmem_tcp.usage.bytes" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "11", + "params": { + "customLabel": "Huge pages", + "field": "system.process.cgroup.memory.stats.rss_huge.bytes" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "7", + "params": { + "customLabel": "Swap caches", + "field": "system.process.cgroup.memory.stats.rss.bytes" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "15", + "params": { + "customLabel": "Swap usage", + "field": "system.process.cgroup.memory.stats.swap.bytes" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "16", + "params": { + "customLabel": "Block I/O", + "field": "system.process.cgroup.blkio.total.ios" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Container Memory stats [Metricbeat System] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "Container-Memory-stats-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:03.451Z", + "version": "WzM3MjYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/System-Navigation-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/System-Navigation-ecs.json new file mode 100644 index 000000000000..4fcf1b11e50e --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/System-Navigation-ecs.json @@ -0,0 +1,35 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "System Navigation [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "[System Overview](#/dashboard/Metricbeat-system-overview-ecs) | [Host Overview](#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs) |\n[Containers overview](#/dashboard/CPU-slash-Memory-per-container-ecs)" + }, + "title": "System Navigation [Metricbeat System] ECS", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "System-Navigation-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:51.713Z", + "version": "WzQxNTYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/a30871f0-f98f-11e9-90e8-1fb18e796788.json b/metricbeat/module/system/_meta/kibana/7/visualization/a30871f0-f98f-11e9-90e8-1fb18e796788.json new file mode 100644 index 000000000000..e46fff09510d --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/a30871f0-f98f-11e9-90e8-1fb18e796788.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Running Services [Metricbeat System]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Running Services [Metricbeat Services]", + "field": "system.service.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Running Services [Metricbeat System]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a30871f0-f98f-11e9-90e8-1fb18e796788", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:18.402Z", + "version": "WzMyNTQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/ab2d1e90-1b1a-11e7-b09e-037021c4f8df-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/ab2d1e90-1b1a-11e7-b09e-037021c4f8df-ecs.json new file mode 100644 index 000000000000..8ff88e857b30 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/ab2d1e90-1b1a-11e7-b09e-037021c4f8df-ecs.json @@ -0,0 +1,171 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "CPU Usage [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "id": "80a04950-1b19-11e7-b09e-037021c4f8df", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "1", + "formatter": "percent", + "id": "80a04951-1b19-11e7-b09e-037021c4f8df", + "label": "user", + "line_width": 1, + "metrics": [ + { + "field": "system.cpu.user.pct", + "id": "80a04952-1b19-11e7-b09e-037021c4f8df", + "type": "avg" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "stacked" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": "1", + "formatter": "percent", + "id": "993acf30-1b19-11e7-b09e-037021c4f8df", + "label": "system", + "line_width": 1, + "metrics": [ + { + "field": "system.cpu.system.pct", + "id": "993acf31-1b19-11e7-b09e-037021c4f8df", + "type": "avg" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "stacked" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(123,100,255,1)", + "fill": "1", + "formatter": "percent", + "id": "65ca35e0-1b1a-11e7-b09e-037021c4f8df", + "label": "nice", + "line_width": 1, + "metrics": [ + { + "field": "system.cpu.nice.pct", + "id": "65ca5cf0-1b1a-11e7-b09e-037021c4f8df", + "type": "avg" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "stacked" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(226,115,0,1)", + "fill": "1", + "formatter": "percent", + "id": "741b5f20-1b1a-11e7-b09e-037021c4f8df", + "label": "irq", + "line_width": 1, + "metrics": [ + { + "field": "system.cpu.irq.pct", + "id": "741b5f21-1b1a-11e7-b09e-037021c4f8df", + "type": "avg" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "stacked" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(176,188,0,1)", + "fill": "1", + "formatter": "percent", + "id": "2efc5d40-1b1a-11e7-b09e-037021c4f8df", + "label": "softirq", + "line_width": 1, + "metrics": [ + { + "field": "system.cpu.softirq.pct", + "id": "2efc5d41-1b1a-11e7-b09e-037021c4f8df", + "type": "avg" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "stacked" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(15,20,25,1)", + "fill": "1", + "formatter": "percent", + "id": "ae644a30-1b19-11e7-b09e-037021c4f8df", + "label": "iowait", + "line_width": 1, + "metrics": [ + { + "field": "system.cpu.iowait.pct", + "id": "ae644a31-1b19-11e7-b09e-037021c4f8df", + "type": "avg" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "stacked" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "CPU Usage [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ab2d1e90-1b1a-11e7-b09e-037021c4f8df-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NTgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/bb3a8720-f991-11e9-90e8-1fb18e796788.json b/metricbeat/module/system/_meta/kibana/7/visualization/bb3a8720-f991-11e9-90e8-1fb18e796788.json new file mode 100644 index 000000000000..6e9a4e69268b --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/bb3a8720-f991-11e9-90e8-1fb18e796788.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Service States [Metricbeat System]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Service States [Metricbeat Services]" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "system.service.state", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Service States [Metricbeat System]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bb3a8720-f991-11e9-90e8-1fb18e796788", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:18.402Z", + "version": "WzMyNTUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/bfa5e400-1b16-11e7-b09e-037021c4f8df-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/bfa5e400-1b16-11e7-b09e-037021c4f8df-ecs.json new file mode 100644 index 000000000000..247f4e34121a --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/bfa5e400-1b16-11e7-b09e-037021c4f8df-ecs.json @@ -0,0 +1,127 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Memory Usage [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "id": "32f46f40-1b16-11e7-b09e-037021c4f8df", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": "1", + "formatter": "bytes", + "id": "4ff61fd0-1b16-11e7-b09e-037021c4f8df", + "label": "Used", + "line_width": 1, + "metrics": [ + { + "field": "system.memory.actual.used.bytes", + "id": "4ff61fd1-1b16-11e7-b09e-037021c4f8df", + "type": "avg" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "stacked" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "1", + "formatter": "bytes", + "id": "753a6080-1b16-11e7-b09e-037021c4f8df", + "label": "Cache", + "line_width": 1, + "metrics": [ + { + "field": "system.memory.actual.used.bytes", + "id": "753a6081-1b16-11e7-b09e-037021c4f8df", + "type": "avg" + }, + { + "field": "system.memory.used.bytes", + "id": "7c9d3f00-1b16-11e7-b09e-037021c4f8df", + "type": "avg" + }, + { + "id": "869cc160-1b16-11e7-b09e-037021c4f8df", + "script": "params.actual != null && params.used != null ? params.used - params.actual : null", + "type": "calculation", + "variables": [ + { + "field": "753a6081-1b16-11e7-b09e-037021c4f8df", + "id": "890f9620-1b16-11e7-b09e-037021c4f8df", + "name": "actual" + }, + { + "field": "7c9d3f00-1b16-11e7-b09e-037021c4f8df", + "id": "8f3ab7f0-1b16-11e7-b09e-037021c4f8df", + "name": "used" + } + ] + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "stacked" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "1", + "formatter": "bytes", + "id": "32f46f41-1b16-11e7-b09e-037021c4f8df", + "label": "Free", + "line_width": 1, + "metrics": [ + { + "field": "system.memory.free", + "id": "32f46f42-1b16-11e7-b09e-037021c4f8df", + "type": "avg" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "stacked" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Memory Usage [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bfa5e400-1b16-11e7-b09e-037021c4f8df-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NTUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/c5e3cf90-4d60-11e7-9a4c-ed99bbcaa42b-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/c5e3cf90-4d60-11e7-9a4c-ed99bbcaa42b-ecs.json new file mode 100644 index 000000000000..4561db7b754c --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/c5e3cf90-4d60-11e7-9a4c-ed99bbcaa42b-ecs.json @@ -0,0 +1,69 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Interfaces by Outgoing traffic [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "id": "9db20be0-4d60-11e7-9a4c-ed99bbcaa42b" + } + ], + "hide_last_value_indicator": true, + "id": "9cdba910-4d60-11e7-9a4c-ed99bbcaa42b", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "9cdba911-4d60-11e7-9a4c-ed99bbcaa42b", + "label": "Interfaces by Outgoing traffic", + "line_width": 1, + "metrics": [ + { + "field": "system.network.out.bytes", + "id": "9cdba912-4d60-11e7-9a4c-ed99bbcaa42b", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "system.network.name", + "terms_order_by": "9cdba912-4d60-11e7-9a4c-ed99bbcaa42b" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Interfaces by Outgoing traffic [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c5e3cf90-4d60-11e7-9a4c-ed99bbcaa42b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NzIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/c6f2ffd0-4d17-11e7-a196-69b9a7a020a9-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/c6f2ffd0-4d17-11e7-a196-69b9a7a020a9-ecs.json new file mode 100644 index 000000000000..f834ce54981a --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/c6f2ffd0-4d17-11e7-a196-69b9a7a020a9-ecs.json @@ -0,0 +1,97 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Number of hosts [Metricbeat System] ECS", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Number of hosts", + "field": "host.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": false + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "63", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "type": "gauge" + }, + "title": "Number of hosts [Metricbeat System] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c6f2ffd0-4d17-11e7-a196-69b9a7a020a9-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:51.713Z", + "version": "WzQxNTcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/d2e80340-4d5c-11e7-aa29-87a97a796de6-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/d2e80340-4d5c-11e7-aa29-87a97a796de6-ecs.json new file mode 100644 index 000000000000..b4058c584db3 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/d2e80340-4d5c-11e7-aa29-87a97a796de6-ecs.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Memory usage vs total [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "6f7618b0-4d5c-11e7-aa29-87a97a796de6" + } + ], + "hide_last_value_indicator": true, + "id": "6bc65720-4d5c-11e7-aa29-87a97a796de6", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "6bc65721-4d5c-11e7-aa29-87a97a796de6", + "label": "Memory usage", + "line_width": 1, + "metrics": [ + { + "field": "system.memory.actual.used.bytes", + "id": "6bc65722-4d5c-11e7-aa29-87a97a796de6", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "b8fe6820-4d5c-11e7-aa29-87a97a796de6", + "label": "Total Memory", + "line_width": 1, + "metrics": [ + { + "field": "system.memory.total", + "id": "b8fe6821-4d5c-11e7-aa29-87a97a796de6", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Memory usage vs total ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d2e80340-4d5c-11e7-aa29-87a97a796de6-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NjgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json new file mode 100644 index 000000000000..dd4ca905a945 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs.json @@ -0,0 +1,93 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Memory Usage Gauge [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "filter": "", + "gauge_color_rules": [ + { + "gauge": "rgba(104,188,0,1)", + "id": "a0d522e0-1b91-11e7-bec4-a5e9ec5cab8b", + "operator": "gte", + "value": 0 + }, + { + "gauge": "rgba(254,146,0,1)", + "id": "b45ad8f0-1b91-11e7-bec4-a5e9ec5cab8b", + "operator": "gte", + "value": 0.7 + }, + { + "gauge": "rgba(211,49,21,1)", + "id": "c06e9550-1b91-11e7-bec4-a5e9ec5cab8b", + "operator": "gte", + "value": 0.85 + }, + { + "gauge": "rgba(104,188,0,1)", + "id": "4a3b1da6-e38b-4d74-82b7-cdfde708d5f5", + "operator": "empty", + "value": null + } + ], + "gauge_inner_width": 10, + "gauge_max": "1", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9f51b730-1b91-11e7-bec4-a5e9ec5cab8b", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "percent", + "id": "9f51b731-1b91-11e7-bec4-a5e9ec5cab8b", + "label": "Memory Usage", + "line_width": 1, + "metrics": [ + { + "field": "system.memory.actual.used.pct", + "id": "9f51b732-1b91-11e7-bec4-a5e9ec5cab8b", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Memory Usage Gauge [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d3166e80-1b91-11e7-bec4-a5e9ec5cab8b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:51.713Z", + "version": "WzQxNjQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/d3f51850-f9b6-11e9-90e8-1fb18e796788.json b/metricbeat/module/system/_meta/kibana/7/visualization/d3f51850-f9b6-11e9-90e8-1fb18e796788.json new file mode 100644 index 000000000000..7269f0b8510c --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/d3f51850-f9b6-11e9-90e8-1fb18e796788.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Service Memory Use Over Time [Metricbeat System]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "system.service.resources.memory.usage.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "system.service.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Service Memory Use Over Time [Metricbeat System]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d3f51850-f9b6-11e9-90e8-1fb18e796788", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:18.402Z", + "version": "WzMyNjAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/e0f001c0-1b18-11e7-b09e-037021c4f8df-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/e0f001c0-1b18-11e7-b09e-037021c4f8df-ecs.json new file mode 100644 index 000000000000..3289095a1a1f --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/e0f001c0-1b18-11e7-b09e-037021c4f8df-ecs.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Top Processes By CPU [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "bar_color": "rgba(104,188,0,1)", + "id": "60e11be0-1b18-11e7-b09e-037021c4f8df", + "operator": "gte", + "value": 0 + }, + { + "bar_color": "rgba(104,188,0,1)", + "id": "147a3da2-60a6-4c32-b2c8-18a40db90c6c", + "operator": "empty", + "value": null + } + ], + "drilldown_url": "", + "filter": "", + "hide_last_value_indicator": true, + "id": "5f5b8d50-1b18-11e7-b09e-037021c4f8df", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "percent", + "id": "5f5b8d51-1b18-11e7-b09e-037021c4f8df", + "line_width": 1, + "metrics": [ + { + "field": "system.process.cpu.total.pct", + "id": "5f5b8d52-1b18-11e7-b09e-037021c4f8df", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "process.name", + "terms_order_by": "5f5b8d52-1b18-11e7-b09e-037021c4f8df" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Top Processes By CPU [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e0f001c0-1b18-11e7-b09e-037021c4f8df-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:24.050Z", + "version": "WzM4NTYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/e6e639e0-f992-11e9-90e8-1fb18e796788.json b/metricbeat/module/system/_meta/kibana/7/visualization/e6e639e0-f992-11e9-90e8-1fb18e796788.json new file mode 100644 index 000000000000..0edbe3f56724 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/e6e639e0-f992-11e9-90e8-1fb18e796788.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Service Sub-State [Metricbeat System]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Service Sub-State [Metricbeat Services]" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "system.service.sub_state", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Service Sub-State [Metricbeat System]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e6e639e0-f992-11e9-90e8-1fb18e796788", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:18.402Z", + "version": "WzMyNTYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/_meta/kibana/7/visualization/fe064790-1b1f-11e7-bec4-a5e9ec5cab8b-ecs.json b/metricbeat/module/system/_meta/kibana/7/visualization/fe064790-1b1f-11e7-bec4-a5e9ec5cab8b-ecs.json new file mode 100644 index 000000000000..6771e7dad304 --- /dev/null +++ b/metricbeat/module/system/_meta/kibana/7/visualization/fe064790-1b1f-11e7-bec4-a5e9ec5cab8b-ecs.json @@ -0,0 +1,92 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Top Hosts By Memory (Realtime) [Metricbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "bar_color": "rgba(104,188,0,1)", + "id": "33349dd0-1b1c-11e7-b09e-037021c4f8df", + "operator": "gte", + "value": 0 + }, + { + "bar_color": "rgba(254,146,0,1)", + "id": "997dc440-1b1c-11e7-b09e-037021c4f8df", + "operator": "gte", + "value": 0.6 + }, + { + "bar_color": "rgba(211,49,21,1)", + "id": "a10d7f20-1b1c-11e7-b09e-037021c4f8df", + "operator": "gte", + "value": 0.85 + }, + { + "bar_color": "rgba(104,188,0,1)", + "id": "ba3dee41-14d0-4c3a-adca-ea61021184cd", + "operator": "empty", + "value": null + } + ], + "drilldown_url": "../app/kibana#/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs?_a=(query:(language:kuery,query:'host.name:\"{{key}}\"'))", + "filter": "", + "hide_last_value_indicator": true, + "id": "31e5afa0-1b1c-11e7-b09e-037021c4f8df", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "percent", + "id": "31e5afa1-1b1c-11e7-b09e-037021c4f8df", + "line_width": 1, + "metrics": [ + { + "field": "system.memory.actual.used.pct", + "id": "31e5afa2-1b1c-11e7-b09e-037021c4f8df", + "type": "avg" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "host.name", + "terms_order_by": "31e5afa2-1b1c-11e7-b09e-037021c4f8df", + "terms_size": "10" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Top Hosts By Memory (Realtime) [Metricbeat System] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fe064790-1b1f-11e7-bec4-a5e9ec5cab8b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:51.713Z", + "version": "WzQxNTgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/system/hostnamechange_test.go b/metricbeat/module/system/hostnamechange_test.go index f0023a011258..ecbaa27e7678 100644 --- a/metricbeat/module/system/hostnamechange_test.go +++ b/metricbeat/module/system/hostnamechange_test.go @@ -27,7 +27,7 @@ import ( // that the dashboard loader code magically changes to the hostname on which the Beat // is running. func TestHostDashboardHasChangeableHost(t *testing.T) { - dashPath := "_meta/kibana/7/dashboard/Metricbeat-host-overview.ndjson" + dashPath := "_meta/kibana/7/dashboard/79ffd6e0-faa0-11e6-947f-177f697178b8-ecs.json" contents, err := ioutil.ReadFile(dashPath) if err != nil { t.Fatalf("Error reading file %s: %v", dashPath, err) diff --git a/metricbeat/module/system/module.yml b/metricbeat/module/system/module.yml index 94fbb9409532..1cb7bc8f4b21 100644 --- a/metricbeat/module/system/module.yml +++ b/metricbeat/module/system/module.yml @@ -1,9 +1,9 @@ dashboards: - id: Metricbeat-system-overview - file: Metricbeat-system-overview.ndjson + file: Metricbeat-system-overview.json - id: 79ffd6e0-faa0-11e6-947f-177f697178b8 - file: Metricbeat-host-overview.ndjson + file: Metricbeat-host-overview.json - id: CPU-slash-Memory-per-container - file: Metricbeat-containers-overview.ndjson + file: Metricbeat-containers-overview.json diff --git a/metricbeat/module/uwsgi/_meta/kibana/7/dashboard/32fca290-f0af-11e7-b9ff-9f96241065de-ecs.json b/metricbeat/module/uwsgi/_meta/kibana/7/dashboard/32fca290-f0af-11e7-b9ff-9f96241065de-ecs.json new file mode 100644 index 000000000000..92380e20abfd --- /dev/null +++ b/metricbeat/module/uwsgi/_meta/kibana/7/dashboard/32fca290-f0af-11e7-b9ff-9f96241065de-ecs.json @@ -0,0 +1,119 @@ +{ + "attributes": { + "description": "Overview of uWSGI service metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 24, + "x": 0, + "y": 12 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4", + "w": 24, + "x": 24, + "y": 12 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat uWSGI] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "32fca290-f0af-11e7-b9ff-9f96241065de-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "a5058e70-f0ae-11e7-b9ff-9f96241065de-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "ac7194b0-f0ae-11e7-b9ff-9f96241065de-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "8c5f96e0-f0ae-11e7-b9ff-9f96241065de-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "ba4a80b0-f0ae-11e7-b9ff-9f96241065de-ecs", + "name": "4:panel_4", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:52.731Z", + "version": "WzQxNzEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/uwsgi/_meta/kibana/7/dashboard/Metricbeat-uwsgi-overview.ndjson b/metricbeat/module/uwsgi/_meta/kibana/7/dashboard/Metricbeat-uwsgi-overview.ndjson deleted file mode 100644 index b87beee5b6c8..000000000000 --- a/metricbeat/module/uwsgi/_meta/kibana/7/dashboard/Metricbeat-uwsgi-overview.ndjson +++ /dev/null @@ -1,5 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Overview [Metricbeat uWSGI] ECS","uiStateJSON":"{}","version":1,"visState":"{\"params\":{\"expression\":\".es(metric=avg:uwsgi.status.total.requests).derivative().label('Requests').title('Overview of requests per period'),\\n.es(metric=avg:uwsgi.status.total.exceptions).derivative().label('Exceptions'),\\n.es(metric=max:uwsgi.status.worker.avg_rt).label('Average response time').yaxis(2)\",\"interval\":\"15s\"},\"title\":\"Overview [Metricbeat uWSGI] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"a5058e70-f0ae-11e7-b9ff-9f96241065de-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:52.731Z","version":"WzQxNjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory usage [Metricbeat uWSGI] ECS","uiStateJSON":"{}","version":1,"visState":"{\"params\":{\"expression\":\".es(metric=max:uwsgi.status.worker.rss).label('Currently used (rss)').title('Memory usage'),\\n.es(metric=max:uwsgi.status.worker.vsz).label('Assigned (vsz)').yaxis(2)\",\"interval\":\"15s\"},\"title\":\"Memory usage [Metricbeat uWSGI] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"ac7194b0-f0ae-11e7-b9ff-9f96241065de-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:52.731Z","version":"WzQxNjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Workers [Metricbeat uWSGI] ECS","uiStateJSON":"{}","version":1,"visState":"{\"params\":{\"expression\":\".es(split=uwsgi.status.core.id:16,metric=max:uwsgi.status.core.requests.total).derivative().bars().title('Requests handled by each thread (core) per period')\",\"interval\":\"15s\"},\"title\":\"Workers [Metricbeat uWSGI] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"8c5f96e0-f0ae-11e7-b9ff-9f96241065de-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:52.731Z","version":"WzQxNjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Errors [Metricbeat uWSGI] ECS","uiStateJSON":"{}","version":1,"visState":"{\"params\":{\"expression\":\".es(metric=max:uwsgi.status.total.read_errors).label('Read errors').title('Errors'),\\n.es(metric=max:uwsgi.status.total.write_errors).label('Write errors'),\\n.es(metric=max:uwsgi.status.worker.harakiri_count).label('Timeouted requests')\",\"interval\":\"15s\"},\"title\":\"Errors [Metricbeat uWSGI] ECS\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"ba4a80b0-f0ae-11e7-b9ff-9f96241065de-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:52.731Z","version":"WzQxNjksMV0="} -{"attributes":{"description":"Overview of uWSGI service metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":24,\"h\":12,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":0,\"w\":24,\"h\":12,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":24,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":12,\"w\":24,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Metricbeat uWSGI] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"32fca290-f0af-11e7-b9ff-9f96241065de-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a5058e70-f0ae-11e7-b9ff-9f96241065de-ecs","name":"1:panel_1","type":"visualization"},{"id":"ac7194b0-f0ae-11e7-b9ff-9f96241065de-ecs","name":"2:panel_2","type":"visualization"},{"id":"8c5f96e0-f0ae-11e7-b9ff-9f96241065de-ecs","name":"3:panel_3","type":"visualization"},{"id":"ba4a80b0-f0ae-11e7-b9ff-9f96241065de-ecs","name":"4:panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:52.731Z","version":"WzQxNzEsMV0="} diff --git a/metricbeat/module/uwsgi/_meta/kibana/7/visualization/8c5f96e0-f0ae-11e7-b9ff-9f96241065de-ecs.json b/metricbeat/module/uwsgi/_meta/kibana/7/visualization/8c5f96e0-f0ae-11e7-b9ff-9f96241065de-ecs.json new file mode 100644 index 000000000000..b2409ebbda0e --- /dev/null +++ b/metricbeat/module/uwsgi/_meta/kibana/7/visualization/8c5f96e0-f0ae-11e7-b9ff-9f96241065de-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Workers [Metricbeat uWSGI] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "params": { + "expression": ".es(split=uwsgi.status.core.id:16,metric=max:uwsgi.status.core.requests.total).derivative().bars().title('Requests handled by each thread (core) per period')", + "interval": "15s" + }, + "title": "Workers [Metricbeat uWSGI] ECS", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8c5f96e0-f0ae-11e7-b9ff-9f96241065de-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:52.731Z", + "version": "WzQxNjgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/uwsgi/_meta/kibana/7/visualization/a5058e70-f0ae-11e7-b9ff-9f96241065de-ecs.json b/metricbeat/module/uwsgi/_meta/kibana/7/visualization/a5058e70-f0ae-11e7-b9ff-9f96241065de-ecs.json new file mode 100644 index 000000000000..10bf42d53950 --- /dev/null +++ b/metricbeat/module/uwsgi/_meta/kibana/7/visualization/a5058e70-f0ae-11e7-b9ff-9f96241065de-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Overview [Metricbeat uWSGI] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "params": { + "expression": ".es(metric=avg:uwsgi.status.total.requests).derivative().label('Requests').title('Overview of requests per period'),\n.es(metric=avg:uwsgi.status.total.exceptions).derivative().label('Exceptions'),\n.es(metric=max:uwsgi.status.worker.avg_rt).label('Average response time').yaxis(2)", + "interval": "15s" + }, + "title": "Overview [Metricbeat uWSGI] ECS", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a5058e70-f0ae-11e7-b9ff-9f96241065de-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:52.731Z", + "version": "WzQxNjYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/uwsgi/_meta/kibana/7/visualization/ac7194b0-f0ae-11e7-b9ff-9f96241065de-ecs.json b/metricbeat/module/uwsgi/_meta/kibana/7/visualization/ac7194b0-f0ae-11e7-b9ff-9f96241065de-ecs.json new file mode 100644 index 000000000000..2facd76691d5 --- /dev/null +++ b/metricbeat/module/uwsgi/_meta/kibana/7/visualization/ac7194b0-f0ae-11e7-b9ff-9f96241065de-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Memory usage [Metricbeat uWSGI] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "params": { + "expression": ".es(metric=max:uwsgi.status.worker.rss).label('Currently used (rss)').title('Memory usage'),\n.es(metric=max:uwsgi.status.worker.vsz).label('Assigned (vsz)').yaxis(2)", + "interval": "15s" + }, + "title": "Memory usage [Metricbeat uWSGI] ECS", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ac7194b0-f0ae-11e7-b9ff-9f96241065de-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:52.731Z", + "version": "WzQxNjcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/uwsgi/_meta/kibana/7/visualization/ba4a80b0-f0ae-11e7-b9ff-9f96241065de-ecs.json b/metricbeat/module/uwsgi/_meta/kibana/7/visualization/ba4a80b0-f0ae-11e7-b9ff-9f96241065de-ecs.json new file mode 100644 index 000000000000..2c4edbde3045 --- /dev/null +++ b/metricbeat/module/uwsgi/_meta/kibana/7/visualization/ba4a80b0-f0ae-11e7-b9ff-9f96241065de-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Errors [Metricbeat uWSGI] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "params": { + "expression": ".es(metric=max:uwsgi.status.total.read_errors).label('Read errors').title('Errors'),\n.es(metric=max:uwsgi.status.total.write_errors).label('Write errors'),\n.es(metric=max:uwsgi.status.worker.harakiri_count).label('Timeouted requests')", + "interval": "15s" + }, + "title": "Errors [Metricbeat uWSGI] ECS", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ba4a80b0-f0ae-11e7-b9ff-9f96241065de-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:52.731Z", + "version": "WzQxNjksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/uwsgi/module.yml b/metricbeat/module/uwsgi/module.yml index 2a2713aa8bc9..a22a7fe0a2ca 100644 --- a/metricbeat/module/uwsgi/module.yml +++ b/metricbeat/module/uwsgi/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 32fca290-f0af-11e7-b9ff-9f96241065de - file: Metricbeat-uwsgi-overview.ndjson + file: Metricbeat-uwsgi-overview.json diff --git a/metricbeat/module/vsphere/_meta/kibana/7/dashboard/0ebd0be0-f049-11e9-aaf3-15199b632da7.json b/metricbeat/module/vsphere/_meta/kibana/7/dashboard/0ebd0be0-f049-11e9-aaf3-15199b632da7.json new file mode 100644 index 000000000000..8d1ff232a53d --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/dashboard/0ebd0be0-f049-11e9-aaf3-15199b632da7.json @@ -0,0 +1,181 @@ +{ + "attributes": { + "description": "Overview of VSphere host and cluster metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "5a175530-7b6d-4d40-af46-5c0c518a97bb", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "5a175530-7b6d-4d40-af46-5c0c518a97bb", + "panelRefName": "panel_5a175530-7b6d-4d40-af46-5c0c518a97bb", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "39b334e1-c61e-42c3-8e2f-ac534a19a986", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "39b334e1-c61e-42c3-8e2f-ac534a19a986", + "panelRefName": "panel_39b334e1-c61e-42c3-8e2f-ac534a19a986", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "5eb32eda-4f81-490e-a86f-6fc65ea3892a", + "w": 24, + "x": 0, + "y": 15 + }, + "panelIndex": "5eb32eda-4f81-490e-a86f-6fc65ea3892a", + "panelRefName": "panel_5eb32eda-4f81-490e-a86f-6fc65ea3892a", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "1c91b931-f2ec-4284-90eb-4b257f6f7904", + "w": 48, + "x": 0, + "y": 30 + }, + "panelIndex": "1c91b931-f2ec-4284-90eb-4b257f6f7904", + "panelRefName": "panel_1c91b931-f2ec-4284-90eb-4b257f6f7904", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "712d4e28-54ad-452f-9f00-525764d4850d", + "w": 48, + "x": 0, + "y": 50 + }, + "panelIndex": "712d4e28-54ad-452f-9f00-525764d4850d", + "panelRefName": "panel_712d4e28-54ad-452f-9f00-525764d4850d", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "b8b5096a-30e1-4249-b8ca-eb4509b4ba59", + "w": 48, + "x": 0, + "y": 68 + }, + "panelIndex": "b8b5096a-30e1-4249-b8ca-eb4509b4ba59", + "panelRefName": "panel_b8b5096a-30e1-4249-b8ca-eb4509b4ba59", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "e561ff05-9f8f-4412-a2e1-d656cb965e96", + "w": 24, + "x": 24, + "y": 15 + }, + "panelIndex": "e561ff05-9f8f-4412-a2e1-d656cb965e96", + "panelRefName": "panel_e561ff05-9f8f-4412-a2e1-d656cb965e96", + "type": "visualization", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat VSphere] Hosts Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "0ebd0be0-f049-11e9-aaf3-15199b632da7", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "ab07c5d0-f03f-11e9-aaf3-15199b632da7", + "name": "5a175530-7b6d-4d40-af46-5c0c518a97bb:panel_5a175530-7b6d-4d40-af46-5c0c518a97bb", + "type": "visualization" + }, + { + "id": "47125df0-f040-11e9-aaf3-15199b632da7", + "name": "39b334e1-c61e-42c3-8e2f-ac534a19a986:panel_39b334e1-c61e-42c3-8e2f-ac534a19a986", + "type": "visualization" + }, + { + "id": "783f2c50-f040-11e9-aaf3-15199b632da7", + "name": "5eb32eda-4f81-490e-a86f-6fc65ea3892a:panel_5eb32eda-4f81-490e-a86f-6fc65ea3892a", + "type": "visualization" + }, + { + "id": "867e0c70-f048-11e9-aaf3-15199b632da7", + "name": "1c91b931-f2ec-4284-90eb-4b257f6f7904:panel_1c91b931-f2ec-4284-90eb-4b257f6f7904", + "type": "visualization" + }, + { + "id": "5f74c330-f048-11e9-aaf3-15199b632da7", + "name": "712d4e28-54ad-452f-9f00-525764d4850d:panel_712d4e28-54ad-452f-9f00-525764d4850d", + "type": "visualization" + }, + { + "id": "79dcd290-f047-11e9-aaf3-15199b632da7", + "name": "b8b5096a-30e1-4249-b8ca-eb4509b4ba59:panel_b8b5096a-30e1-4249-b8ca-eb4509b4ba59", + "type": "visualization" + }, + { + "id": "d6370680-f049-11e9-aaf3-15199b632da7", + "name": "e561ff05-9f8f-4412-a2e1-d656cb965e96:panel_e561ff05-9f8f-4412-a2e1-d656cb965e96", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:58.868Z", + "version": "WzQyMDksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/vsphere/_meta/kibana/7/dashboard/8a2d1540-f049-11e9-aaf3-15199b632da7.json b/metricbeat/module/vsphere/_meta/kibana/7/dashboard/8a2d1540-f049-11e9-aaf3-15199b632da7.json new file mode 100644 index 000000000000..90248af83831 --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/dashboard/8a2d1540-f049-11e9-aaf3-15199b632da7.json @@ -0,0 +1,140 @@ +{ + "attributes": { + "description": "Overview of the VSphere virtualmachine metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "80c96802-a5b2-4196-91b7-9e39f59f472b", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "80c96802-a5b2-4196-91b7-9e39f59f472b", + "panelRefName": "panel_80c96802-a5b2-4196-91b7-9e39f59f472b", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "948b7896-98e3-4260-b06e-78ac354bed69", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "948b7896-98e3-4260-b06e-78ac354bed69", + "panelRefName": "panel_948b7896-98e3-4260-b06e-78ac354bed69", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 19, + "i": "b6d0ae24-0b52-4d16-bbcd-a9d6143054d2", + "w": 24, + "x": 0, + "y": 18 + }, + "panelIndex": "b6d0ae24-0b52-4d16-bbcd-a9d6143054d2", + "panelRefName": "panel_b6d0ae24-0b52-4d16-bbcd-a9d6143054d2", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 19, + "i": "52f8ef2e-3fa3-4494-bdb4-179737fc2fda", + "w": 24, + "x": 24, + "y": 18 + }, + "panelIndex": "52f8ef2e-3fa3-4494-bdb4-179737fc2fda", + "panelRefName": "panel_52f8ef2e-3fa3-4494-bdb4-179737fc2fda", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": null + }, + "gridData": { + "h": 35, + "i": "dfc089db-6bab-4410-962d-14cc622d7681", + "w": 48, + "x": 0, + "y": 37 + }, + "panelIndex": "dfc089db-6bab-4410-962d-14cc622d7681", + "panelRefName": "panel_dfc089db-6bab-4410-962d-14cc622d7681", + "type": "visualization", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat VSphere] VMs overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "8a2d1540-f049-11e9-aaf3-15199b632da7", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "dae93d90-f041-11e9-aaf3-15199b632da7", + "name": "80c96802-a5b2-4196-91b7-9e39f59f472b:panel_80c96802-a5b2-4196-91b7-9e39f59f472b", + "type": "visualization" + }, + { + "id": "a6026680-f017-11e9-aaf3-15199b632da7", + "name": "948b7896-98e3-4260-b06e-78ac354bed69:panel_948b7896-98e3-4260-b06e-78ac354bed69", + "type": "visualization" + }, + { + "id": "5c6a93a0-f04c-11e9-aaf3-15199b632da7", + "name": "b6d0ae24-0b52-4d16-bbcd-a9d6143054d2:panel_b6d0ae24-0b52-4d16-bbcd-a9d6143054d2", + "type": "visualization" + }, + { + "id": "9afddd20-f04c-11e9-aaf3-15199b632da7", + "name": "52f8ef2e-3fa3-4494-bdb4-179737fc2fda:panel_52f8ef2e-3fa3-4494-bdb4-179737fc2fda", + "type": "visualization" + }, + { + "id": "e3a3e080-f018-11e9-aaf3-15199b632da7", + "name": "dfc089db-6bab-4410-962d-14cc622d7681:panel_dfc089db-6bab-4410-962d-14cc622d7681", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:59.928Z", + "version": "WzQyMTgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-host.ndjson b/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-host.ndjson deleted file mode 100644 index 5cc2d4f0655a..000000000000 --- a/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-host.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.module: \\\"vsphere\\\" \"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"search for event module [Metricbeat VSphere] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"1411b690-f017-11e9-aaf3-15199b632da7","migrationVersion":{"search":"7.9.3"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:31:59.928Z","version":"WzQyMjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Free vs Used CPU on Cluster stacked [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Free\",\"field\":\"vsphere.host.cpu.free.mhz\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Used\",\"field\":\"vsphere.host.cpu.used.mhz\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"HH:mm:ss\"}},\"params\":{\"bounds\":{\"max\":\"2019-10-16T18:04:26.629Z\",\"min\":\"2019-10-16T17:49:26.629Z\"},\"date\":true,\"format\":\"HH:mm:ss\",\"interval\":\"PT30S\"}},\"y\":[{\"accessor\":1,\"aggType\":\"max\",\"format\":{\"id\":\"number\"},\"params\":{}},{\"accessor\":2,\"aggType\":\"max\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Free\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Used\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#34130C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Free\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Free vs Used CPU on Cluster stacked [Metricbeat VSphere] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"ab07c5d0-f03f-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:58.868Z","version":"WzQyMTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Cluster Memory free vs used stacked [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Used\",\"field\":\"vsphere.host.memory.used.bytes\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Free\",\"field\":\"vsphere.host.memory.free.bytes\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"HH:mm:ss\"}},\"params\":{\"bounds\":{\"max\":\"2019-10-16T18:10:00.451Z\",\"min\":\"2019-10-16T17:55:00.451Z\"},\"date\":true,\"format\":\"HH:mm:ss\",\"interval\":\"PT30S\"}},\"y\":[{\"accessor\":1,\"aggType\":\"max\",\"format\":{\"id\":\"bytes\"},\"params\":{}},{\"accessor\":2,\"aggType\":\"max\",\"format\":{\"id\":\"bytes\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"2\",\"label\":\"Used\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"1\",\"label\":\"Free\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#34130C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Cluster Memory free vs used stacked [Metricbeat VSphere] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"47125df0-f040-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:58.868Z","version":"WzQyMTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Free vs Used Datastore [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Used\",\"field\":\"vsphere.datastore.capacity.used.bytes\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Free\",\"field\":\"vsphere.datastore.capacity.free.bytes\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"HH:mm:ss\"}},\"params\":{\"bounds\":{\"max\":\"2019-10-16T18:11:40.605Z\",\"min\":\"2019-10-16T17:56:40.605Z\"},\"date\":true,\"format\":\"HH:mm:ss\",\"interval\":\"PT30S\"}},\"y\":[{\"accessor\":1,\"aggType\":\"max\",\"format\":{\"id\":\"bytes\"},\"params\":{}},{\"accessor\":2,\"aggType\":\"max\",\"format\":{\"id\":\"bytes\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"2\",\"label\":\"Used\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"1\",\"label\":\"Free\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#34130C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Free\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Free vs Used Datastore [Metricbeat VSphere] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"783f2c50-f040-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:58.868Z","version":"WzQyMTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Host top RAM util [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module : \\\"vsphere\\\" \"},\"gauge_color_rules\":[{\"gauge\":\"rgba(252,220,0,1)\",\"id\":\"3e4e64a0-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gt\",\"value\":0.35},{\"gauge\":\"rgba(251,158,0,1)\",\"id\":\"8e4a5090-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(159,5,0,1)\",\"id\":\"93d7d2d0-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gte\",\"text\":null,\"value\":0.95}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(59,244,64,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"vsphere.host.memory.total.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"vsphere.host.memory.free.bytes\",\"id\":\"51de05c0-f047-11e9-8ffe-6377df51c23d\",\"type\":\"max\"},{\"id\":\"5e69b140-f047-11e9-8ffe-6377df51c23d\",\"script\":\"params.used / params.total\",\"type\":\"calculation\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"5fadf110-f047-11e9-8ffe-6377df51c23d\",\"name\":\"total\"},{\"field\":\"51de05c0-f047-11e9-8ffe-6377df51c23d\",\"id\":\"61c84590-f047-11e9-8ffe-6377df51c23d\",\"name\":\"used\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"vsphere.host.name\",\"terms_order_by\":\"51de05c0-f047-11e9-8ffe-6377df51c23d\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Host top RAM util [Metricbeat VSphere] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"867e0c70-f048-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:58.868Z","version":"WzQyMTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Host top CPU util [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module : \\\"vsphere\\\" \"},\"gauge_color_rules\":[{\"gauge\":\"rgba(252,220,0,1)\",\"id\":\"3e4e64a0-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gt\",\"value\":0.35},{\"gauge\":\"rgba(251,158,0,1)\",\"id\":\"8e4a5090-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(159,5,0,1)\",\"id\":\"93d7d2d0-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gte\",\"text\":null,\"value\":0.95}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(59,244,64,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"vsphere.host.cpu.total.mhz\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"vsphere.host.cpu.used.mhz\",\"id\":\"51de05c0-f047-11e9-8ffe-6377df51c23d\",\"type\":\"max\"},{\"id\":\"5e69b140-f047-11e9-8ffe-6377df51c23d\",\"script\":\"params.used / params.total\",\"type\":\"calculation\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"5fadf110-f047-11e9-8ffe-6377df51c23d\",\"name\":\"total\"},{\"field\":\"51de05c0-f047-11e9-8ffe-6377df51c23d\",\"id\":\"61c84590-f047-11e9-8ffe-6377df51c23d\",\"name\":\"used\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"vsphere.host.name\",\"terms_order_by\":\"51de05c0-f047-11e9-8ffe-6377df51c23d\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Host top CPU util [Metricbeat VSphere] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5f74c330-f048-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:58.868Z","version":"WzQyMTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top Datastore Used [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module : \\\"vsphere\\\" \"},\"gauge_color_rules\":[{\"gauge\":\"rgba(252,220,0,1)\",\"id\":\"3e4e64a0-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gt\",\"value\":0.35},{\"gauge\":\"rgba(251,158,0,1)\",\"id\":\"8e4a5090-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gte\",\"value\":0.7},{\"gauge\":\"rgba(159,5,0,1)\",\"id\":\"93d7d2d0-f047-11e9-8ffe-6377df51c23d\",\"operator\":\"gte\",\"text\":null,\"value\":0.95}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(59,244,64,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"vsphere.datastore.capacity.total.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"vsphere.datastore.capacity.used.bytes\",\"id\":\"51de05c0-f047-11e9-8ffe-6377df51c23d\",\"type\":\"max\"},{\"field\":\"vsphere.datastore.capacity.used.pct\",\"id\":\"5aec7160-f047-11e9-8ffe-6377df51c23d\",\"type\":\"max\"},{\"id\":\"5e69b140-f047-11e9-8ffe-6377df51c23d\",\"script\":\"params.used / params.total\",\"type\":\"calculation\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"5fadf110-f047-11e9-8ffe-6377df51c23d\",\"name\":\"total\"},{\"field\":\"51de05c0-f047-11e9-8ffe-6377df51c23d\",\"id\":\"61c84590-f047-11e9-8ffe-6377df51c23d\",\"name\":\"used\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"vsphere.datastore.name\",\"terms_order_by\":\"5aec7160-f047-11e9-8ffe-6377df51c23d\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top Datastore Used [Metricbeat VSphere] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"79dcd290-f047-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:58.868Z","version":"WzQyMTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Datastore Types [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"vsphere.datastore.fstype\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Datastore types [Metricbeat VSphere] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"d6370680-f049-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:58.868Z","version":"WzQyMTYsMV0="} -{"attributes":{"description":"Overview of VSphere host and cluster metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5a175530-7b6d-4d40-af46-5c0c518a97bb\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"5a175530-7b6d-4d40-af46-5c0c518a97bb\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5a175530-7b6d-4d40-af46-5c0c518a97bb\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"39b334e1-c61e-42c3-8e2f-ac534a19a986\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"39b334e1-c61e-42c3-8e2f-ac534a19a986\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_39b334e1-c61e-42c3-8e2f-ac534a19a986\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5eb32eda-4f81-490e-a86f-6fc65ea3892a\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"5eb32eda-4f81-490e-a86f-6fc65ea3892a\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5eb32eda-4f81-490e-a86f-6fc65ea3892a\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"1c91b931-f2ec-4284-90eb-4b257f6f7904\",\"w\":48,\"x\":0,\"y\":30},\"panelIndex\":\"1c91b931-f2ec-4284-90eb-4b257f6f7904\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1c91b931-f2ec-4284-90eb-4b257f6f7904\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"712d4e28-54ad-452f-9f00-525764d4850d\",\"w\":48,\"x\":0,\"y\":50},\"panelIndex\":\"712d4e28-54ad-452f-9f00-525764d4850d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_712d4e28-54ad-452f-9f00-525764d4850d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"b8b5096a-30e1-4249-b8ca-eb4509b4ba59\",\"w\":48,\"x\":0,\"y\":68},\"panelIndex\":\"b8b5096a-30e1-4249-b8ca-eb4509b4ba59\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_b8b5096a-30e1-4249-b8ca-eb4509b4ba59\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"e561ff05-9f8f-4412-a2e1-d656cb965e96\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"e561ff05-9f8f-4412-a2e1-d656cb965e96\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e561ff05-9f8f-4412-a2e1-d656cb965e96\"}]","timeRestore":false,"title":"[Metricbeat VSphere] Hosts Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"0ebd0be0-f049-11e9-aaf3-15199b632da7","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"ab07c5d0-f03f-11e9-aaf3-15199b632da7","name":"5a175530-7b6d-4d40-af46-5c0c518a97bb:panel_5a175530-7b6d-4d40-af46-5c0c518a97bb","type":"visualization"},{"id":"47125df0-f040-11e9-aaf3-15199b632da7","name":"39b334e1-c61e-42c3-8e2f-ac534a19a986:panel_39b334e1-c61e-42c3-8e2f-ac534a19a986","type":"visualization"},{"id":"783f2c50-f040-11e9-aaf3-15199b632da7","name":"5eb32eda-4f81-490e-a86f-6fc65ea3892a:panel_5eb32eda-4f81-490e-a86f-6fc65ea3892a","type":"visualization"},{"id":"867e0c70-f048-11e9-aaf3-15199b632da7","name":"1c91b931-f2ec-4284-90eb-4b257f6f7904:panel_1c91b931-f2ec-4284-90eb-4b257f6f7904","type":"visualization"},{"id":"5f74c330-f048-11e9-aaf3-15199b632da7","name":"712d4e28-54ad-452f-9f00-525764d4850d:panel_712d4e28-54ad-452f-9f00-525764d4850d","type":"visualization"},{"id":"79dcd290-f047-11e9-aaf3-15199b632da7","name":"b8b5096a-30e1-4249-b8ca-eb4509b4ba59:panel_b8b5096a-30e1-4249-b8ca-eb4509b4ba59","type":"visualization"},{"id":"d6370680-f049-11e9-aaf3-15199b632da7","name":"e561ff05-9f8f-4412-a2e1-d656cb965e96:panel_e561ff05-9f8f-4412-a2e1-d656cb965e96","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:58.868Z","version":"WzQyMDksMV0="} diff --git a/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-vm.ndjson b/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-vm.ndjson deleted file mode 100644 index b66daee8b25a..000000000000 --- a/metricbeat/module/vsphere/_meta/kibana/7/dashboard/metricbeat-vsphere-vm.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.module: \\\"vsphere\\\" \"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"search for event module [Metricbeat VSphere] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"1411b690-f017-11e9-aaf3-15199b632da7","migrationVersion":{"search":"7.9.3"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:31:59.928Z","version":"WzQyMjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"CPU/RAM/Network per VM [Metricbeat VSphere] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Name\",\"field\":\"vsphere.virtualmachine.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Used CPU\",\"field\":\"vsphere.virtualmachine.cpu.used.mhz\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderAgg\":{\"enabled\":true,\"id\":\"5-orderAgg\",\"params\":{\"field\":\"vsphere.virtualmachine.cpu.used.mhz\"},\"schema\":\"orderAgg\",\"type\":\"max\"},\"orderBy\":\"custom\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Total RAM\",\"field\":\"vsphere.virtualmachine.memory.total.guest.bytes\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderAgg\":{\"enabled\":true,\"id\":\"3-orderAgg\",\"params\":{\"field\":\"vsphere.virtualmachine.memory.total.guest.bytes\"},\"schema\":\"orderAgg\",\"type\":\"max\"},\"orderBy\":\"custom\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Networks\",\"field\":\"vsphere.virtualmachine.network_names\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"number\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"bytes\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"CPU/RAM/Network per VM [Metricbeat VSphere] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"dae93d90-f041-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:59.928Z","version":"WzQyMTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"OS Distribution [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Operating Systems\",\"field\":\"vsphere.virtualmachine.os\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"OS Pie [Metricbeat VSphere] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"a6026680-f017-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:59.928Z","version":"WzQyMjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Networks from virtualmachine [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Networks\",\"field\":\"vsphere.virtualmachine.network_names\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Networks from virtualmachine [Metricbeat VSphere] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"5c6a93a0-f04c-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:59.928Z","version":"WzQyMjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"VMs per ESXI host [Metricbeat VSphere] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"VM ESXi Host\",\"field\":\"vsphere.virtualmachine.host.hostname\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"how many VMs run on a ESXI host [Metricbeat VSphere] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"9afddd20-f04c-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:59.928Z","version":"WzQyMjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"VM placements on ESXi Hosts[Metricbeat VSphere] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 40\": \"rgb(247,252,245)\", \"120 - 160\": \"rgb(35,139,69)\", \"40 - 80\": \"rgb(199,233,192)\", \"80 - 120\": \"rgb(116,196,118)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"VM Name\",\"field\":\"vsphere.virtualmachine.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":50},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"ESXi Host\",\"field\":\"vsphere.virtualmachine.host.hostname\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Greens\",\"colorsNumber\":4,\"colorsRange\":[],\"dimensions\":{\"series\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"x\":{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"enableHover\":false,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":false},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"VM placements on ESXi Hosts[Metricbeat VSphere] ECS\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"8.0.0","id":"e3a3e080-f018-11e9-aaf3-15199b632da7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1411b690-f017-11e9-aaf3-15199b632da7","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:31:59.928Z","version":"WzQyMjMsMV0="} -{"attributes":{"description":"Overview of the VSphere virtualmachine metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"80c96802-a5b2-4196-91b7-9e39f59f472b\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"80c96802-a5b2-4196-91b7-9e39f59f472b\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_80c96802-a5b2-4196-91b7-9e39f59f472b\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"948b7896-98e3-4260-b06e-78ac354bed69\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"948b7896-98e3-4260-b06e-78ac354bed69\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_948b7896-98e3-4260-b06e-78ac354bed69\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"b6d0ae24-0b52-4d16-bbcd-a9d6143054d2\",\"w\":24,\"x\":0,\"y\":18},\"panelIndex\":\"b6d0ae24-0b52-4d16-bbcd-a9d6143054d2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_b6d0ae24-0b52-4d16-bbcd-a9d6143054d2\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"52f8ef2e-3fa3-4494-bdb4-179737fc2fda\",\"w\":24,\"x\":24,\"y\":18},\"panelIndex\":\"52f8ef2e-3fa3-4494-bdb4-179737fc2fda\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_52f8ef2e-3fa3-4494-bdb4-179737fc2fda\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":35,\"i\":\"dfc089db-6bab-4410-962d-14cc622d7681\",\"w\":48,\"x\":0,\"y\":37},\"panelIndex\":\"dfc089db-6bab-4410-962d-14cc622d7681\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"panelRefName\":\"panel_dfc089db-6bab-4410-962d-14cc622d7681\"}]","timeRestore":false,"title":"[Metricbeat VSphere] VMs overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"8a2d1540-f049-11e9-aaf3-15199b632da7","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"dae93d90-f041-11e9-aaf3-15199b632da7","name":"80c96802-a5b2-4196-91b7-9e39f59f472b:panel_80c96802-a5b2-4196-91b7-9e39f59f472b","type":"visualization"},{"id":"a6026680-f017-11e9-aaf3-15199b632da7","name":"948b7896-98e3-4260-b06e-78ac354bed69:panel_948b7896-98e3-4260-b06e-78ac354bed69","type":"visualization"},{"id":"5c6a93a0-f04c-11e9-aaf3-15199b632da7","name":"b6d0ae24-0b52-4d16-bbcd-a9d6143054d2:panel_b6d0ae24-0b52-4d16-bbcd-a9d6143054d2","type":"visualization"},{"id":"9afddd20-f04c-11e9-aaf3-15199b632da7","name":"52f8ef2e-3fa3-4494-bdb4-179737fc2fda:panel_52f8ef2e-3fa3-4494-bdb4-179737fc2fda","type":"visualization"},{"id":"e3a3e080-f018-11e9-aaf3-15199b632da7","name":"dfc089db-6bab-4410-962d-14cc622d7681:panel_dfc089db-6bab-4410-962d-14cc622d7681","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:59.928Z","version":"WzQyMTgsMV0="} diff --git a/metricbeat/module/vsphere/_meta/kibana/7/search/1411b690-f017-11e9-aaf3-15199b632da7.json b/metricbeat/module/vsphere/_meta/kibana/7/search/1411b690-f017-11e9-aaf3-15199b632da7.json new file mode 100644 index 000000000000..0b4ebb8cf0ce --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/search/1411b690-f017-11e9-aaf3-15199b632da7.json @@ -0,0 +1,44 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.module: \"vsphere\" " + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "search for event module [Metricbeat VSphere] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "1411b690-f017-11e9-aaf3-15199b632da7", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:31:59.928Z", + "version": "WzQyMjQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/vsphere/_meta/kibana/7/visualization/47125df0-f040-11e9-aaf3-15199b632da7.json b/metricbeat/module/vsphere/_meta/kibana/7/visualization/47125df0-f040-11e9-aaf3-15199b632da7.json new file mode 100644 index 000000000000..bc5cd34a06f8 --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/visualization/47125df0-f040-11e9-aaf3-15199b632da7.json @@ -0,0 +1,211 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Cluster Memory free vs used stacked [Metricbeat VSphere] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Used", + "field": "vsphere.host.memory.used.bytes" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "3", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "timeRange": { + "from": "now-15m", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Free", + "field": "vsphere.host.memory.free.bytes" + }, + "schema": "metric", + "type": "max" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "dimensions": { + "x": { + "accessor": 0, + "aggType": "date_histogram", + "format": { + "id": "date", + "params": { + "pattern": "HH:mm:ss" + } + }, + "params": { + "bounds": { + "max": "2019-10-16T18:10:00.451Z", + "min": "2019-10-16T17:55:00.451Z" + }, + "date": true, + "format": "HH:mm:ss", + "interval": "PT30S" + } + }, + "y": [ + { + "accessor": 1, + "aggType": "max", + "format": { + "id": "bytes" + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "max", + "format": { + "id": "bytes" + }, + "params": {} + } + ] + }, + "fittingFunction": "zero", + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": {}, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "2", + "label": "Used" + }, + "drawLinesBetweenPoints": true, + "interpolate": "cardinal", + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + }, + { + "data": { + "id": "1", + "label": "Free" + }, + "drawLinesBetweenPoints": true, + "interpolate": "cardinal", + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#34130C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "area", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "" + }, + "type": "value" + } + ] + }, + "title": "Cluster Memory free vs used stacked [Metricbeat VSphere] ECS", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "47125df0-f040-11e9-aaf3-15199b632da7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "1411b690-f017-11e9-aaf3-15199b632da7", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:58.868Z", + "version": "WzQyMTEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/vsphere/_meta/kibana/7/visualization/5c6a93a0-f04c-11e9-aaf3-15199b632da7.json b/metricbeat/module/vsphere/_meta/kibana/7/visualization/5c6a93a0-f04c-11e9-aaf3-15199b632da7.json new file mode 100644 index 000000000000..dfb67d5cb705 --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/visualization/5c6a93a0-f04c-11e9-aaf3-15199b632da7.json @@ -0,0 +1,106 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Networks from virtualmachine [Metricbeat VSphere] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Networks", + "field": "vsphere.virtualmachine.network_names", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Networks from virtualmachine [Metricbeat VSphere] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5c6a93a0-f04c-11e9-aaf3-15199b632da7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "1411b690-f017-11e9-aaf3-15199b632da7", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:59.928Z", + "version": "WzQyMjEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/vsphere/_meta/kibana/7/visualization/5f74c330-f048-11e9-aaf3-15199b632da7.json b/metricbeat/module/vsphere/_meta/kibana/7/visualization/5f74c330-f048-11e9-aaf3-15199b632da7.json new file mode 100644 index 000000000000..73c4d189825c --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/visualization/5f74c330-f048-11e9-aaf3-15199b632da7.json @@ -0,0 +1,123 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Host top CPU util [Metricbeat VSphere] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "filter": { + "language": "kuery", + "query": "event.module : \"vsphere\" " + }, + "gauge_color_rules": [ + { + "gauge": "rgba(252,220,0,1)", + "id": "3e4e64a0-f047-11e9-8ffe-6377df51c23d", + "operator": "gt", + "value": 0.35 + }, + { + "gauge": "rgba(251,158,0,1)", + "id": "8e4a5090-f047-11e9-8ffe-6377df51c23d", + "operator": "gte", + "value": 0.7 + }, + { + "gauge": "rgba(159,5,0,1)", + "id": "93d7d2d0-f047-11e9-8ffe-6377df51c23d", + "operator": "gte", + "text": null, + "value": 0.95 + } + ], + "gauge_inner_width": 10, + "gauge_max": "1", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(59,244,64,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "percent", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "vsphere.host.cpu.total.mhz", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "vsphere.host.cpu.used.mhz", + "id": "51de05c0-f047-11e9-8ffe-6377df51c23d", + "type": "max" + }, + { + "id": "5e69b140-f047-11e9-8ffe-6377df51c23d", + "script": "params.used / params.total", + "type": "calculation", + "variables": [ + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "5fadf110-f047-11e9-8ffe-6377df51c23d", + "name": "total" + }, + { + "field": "51de05c0-f047-11e9-8ffe-6377df51c23d", + "id": "61c84590-f047-11e9-8ffe-6377df51c23d", + "name": "used" + } + ] + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "vsphere.host.name", + "terms_order_by": "51de05c0-f047-11e9-8ffe-6377df51c23d" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Host top CPU util [Metricbeat VSphere] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5f74c330-f048-11e9-aaf3-15199b632da7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:58.868Z", + "version": "WzQyMTQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/vsphere/_meta/kibana/7/visualization/783f2c50-f040-11e9-aaf3-15199b632da7.json b/metricbeat/module/vsphere/_meta/kibana/7/visualization/783f2c50-f040-11e9-aaf3-15199b632da7.json new file mode 100644 index 000000000000..c917710eb570 --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/visualization/783f2c50-f040-11e9-aaf3-15199b632da7.json @@ -0,0 +1,211 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Free vs Used Datastore [Metricbeat VSphere] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Used", + "field": "vsphere.datastore.capacity.used.bytes" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "3", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "timeRange": { + "from": "now-15m", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Free", + "field": "vsphere.datastore.capacity.free.bytes" + }, + "schema": "metric", + "type": "max" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "dimensions": { + "x": { + "accessor": 0, + "aggType": "date_histogram", + "format": { + "id": "date", + "params": { + "pattern": "HH:mm:ss" + } + }, + "params": { + "bounds": { + "max": "2019-10-16T18:11:40.605Z", + "min": "2019-10-16T17:56:40.605Z" + }, + "date": true, + "format": "HH:mm:ss", + "interval": "PT30S" + } + }, + "y": [ + { + "accessor": 1, + "aggType": "max", + "format": { + "id": "bytes" + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "max", + "format": { + "id": "bytes" + }, + "params": {} + } + ] + }, + "fittingFunction": "zero", + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": {}, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "2", + "label": "Used" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + }, + { + "data": { + "id": "1", + "label": "Free" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#34130C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "area", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Free" + }, + "type": "value" + } + ] + }, + "title": "Free vs Used Datastore [Metricbeat VSphere] ECS", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "783f2c50-f040-11e9-aaf3-15199b632da7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "1411b690-f017-11e9-aaf3-15199b632da7", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:58.868Z", + "version": "WzQyMTIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/vsphere/_meta/kibana/7/visualization/79dcd290-f047-11e9-aaf3-15199b632da7.json b/metricbeat/module/vsphere/_meta/kibana/7/visualization/79dcd290-f047-11e9-aaf3-15199b632da7.json new file mode 100644 index 000000000000..c98ef1a59fa8 --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/visualization/79dcd290-f047-11e9-aaf3-15199b632da7.json @@ -0,0 +1,128 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Top Datastore Used [Metricbeat VSphere] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "filter": { + "language": "kuery", + "query": "event.module : \"vsphere\" " + }, + "gauge_color_rules": [ + { + "gauge": "rgba(252,220,0,1)", + "id": "3e4e64a0-f047-11e9-8ffe-6377df51c23d", + "operator": "gt", + "value": 0.35 + }, + { + "gauge": "rgba(251,158,0,1)", + "id": "8e4a5090-f047-11e9-8ffe-6377df51c23d", + "operator": "gte", + "value": 0.7 + }, + { + "gauge": "rgba(159,5,0,1)", + "id": "93d7d2d0-f047-11e9-8ffe-6377df51c23d", + "operator": "gte", + "text": null, + "value": 0.95 + } + ], + "gauge_inner_width": 10, + "gauge_max": "1", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(59,244,64,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "percent", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "vsphere.datastore.capacity.total.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "vsphere.datastore.capacity.used.bytes", + "id": "51de05c0-f047-11e9-8ffe-6377df51c23d", + "type": "max" + }, + { + "field": "vsphere.datastore.capacity.used.pct", + "id": "5aec7160-f047-11e9-8ffe-6377df51c23d", + "type": "max" + }, + { + "id": "5e69b140-f047-11e9-8ffe-6377df51c23d", + "script": "params.used / params.total", + "type": "calculation", + "variables": [ + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "5fadf110-f047-11e9-8ffe-6377df51c23d", + "name": "total" + }, + { + "field": "51de05c0-f047-11e9-8ffe-6377df51c23d", + "id": "61c84590-f047-11e9-8ffe-6377df51c23d", + "name": "used" + } + ] + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "vsphere.datastore.name", + "terms_order_by": "5aec7160-f047-11e9-8ffe-6377df51c23d" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Top Datastore Used [Metricbeat VSphere] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "79dcd290-f047-11e9-aaf3-15199b632da7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:58.868Z", + "version": "WzQyMTUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/vsphere/_meta/kibana/7/visualization/867e0c70-f048-11e9-aaf3-15199b632da7.json b/metricbeat/module/vsphere/_meta/kibana/7/visualization/867e0c70-f048-11e9-aaf3-15199b632da7.json new file mode 100644 index 000000000000..a008e690487d --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/visualization/867e0c70-f048-11e9-aaf3-15199b632da7.json @@ -0,0 +1,123 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Host top RAM util [Metricbeat VSphere] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "filter": { + "language": "kuery", + "query": "event.module : \"vsphere\" " + }, + "gauge_color_rules": [ + { + "gauge": "rgba(252,220,0,1)", + "id": "3e4e64a0-f047-11e9-8ffe-6377df51c23d", + "operator": "gt", + "value": 0.35 + }, + { + "gauge": "rgba(251,158,0,1)", + "id": "8e4a5090-f047-11e9-8ffe-6377df51c23d", + "operator": "gte", + "value": 0.7 + }, + { + "gauge": "rgba(159,5,0,1)", + "id": "93d7d2d0-f047-11e9-8ffe-6377df51c23d", + "operator": "gte", + "text": null, + "value": 0.95 + } + ], + "gauge_inner_width": 10, + "gauge_max": "1", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(59,244,64,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "percent", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "vsphere.host.memory.total.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "vsphere.host.memory.free.bytes", + "id": "51de05c0-f047-11e9-8ffe-6377df51c23d", + "type": "max" + }, + { + "id": "5e69b140-f047-11e9-8ffe-6377df51c23d", + "script": "params.used / params.total", + "type": "calculation", + "variables": [ + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "5fadf110-f047-11e9-8ffe-6377df51c23d", + "name": "total" + }, + { + "field": "51de05c0-f047-11e9-8ffe-6377df51c23d", + "id": "61c84590-f047-11e9-8ffe-6377df51c23d", + "name": "used" + } + ] + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "vsphere.host.name", + "terms_order_by": "51de05c0-f047-11e9-8ffe-6377df51c23d" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Host top RAM util [Metricbeat VSphere] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "867e0c70-f048-11e9-aaf3-15199b632da7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:58.868Z", + "version": "WzQyMTMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/vsphere/_meta/kibana/7/visualization/9afddd20-f04c-11e9-aaf3-15199b632da7.json b/metricbeat/module/vsphere/_meta/kibana/7/visualization/9afddd20-f04c-11e9-aaf3-15199b632da7.json new file mode 100644 index 000000000000..69ebc4077787 --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/visualization/9afddd20-f04c-11e9-aaf3-15199b632da7.json @@ -0,0 +1,106 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "VMs per ESXI host [Metricbeat VSphere] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "VM ESXi Host", + "field": "vsphere.virtualmachine.host.hostname", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "how many VMs run on a ESXI host [Metricbeat VSphere] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9afddd20-f04c-11e9-aaf3-15199b632da7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "1411b690-f017-11e9-aaf3-15199b632da7", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:59.928Z", + "version": "WzQyMjIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/vsphere/_meta/kibana/7/visualization/a6026680-f017-11e9-aaf3-15199b632da7.json b/metricbeat/module/vsphere/_meta/kibana/7/visualization/a6026680-f017-11e9-aaf3-15199b632da7.json new file mode 100644 index 000000000000..81c7e1cc9bee --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/visualization/a6026680-f017-11e9-aaf3-15199b632da7.json @@ -0,0 +1,106 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "OS Distribution [Metricbeat VSphere] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Operating Systems", + "field": "vsphere.virtualmachine.os", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "OS Pie [Metricbeat VSphere] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a6026680-f017-11e9-aaf3-15199b632da7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "1411b690-f017-11e9-aaf3-15199b632da7", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:59.928Z", + "version": "WzQyMjAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/vsphere/_meta/kibana/7/visualization/ab07c5d0-f03f-11e9-aaf3-15199b632da7.json b/metricbeat/module/vsphere/_meta/kibana/7/visualization/ab07c5d0-f03f-11e9-aaf3-15199b632da7.json new file mode 100644 index 000000000000..db8f4724f3bc --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/visualization/ab07c5d0-f03f-11e9-aaf3-15199b632da7.json @@ -0,0 +1,211 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Free vs Used CPU on Cluster stacked [Metricbeat VSphere] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Free", + "field": "vsphere.host.cpu.free.mhz" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "timeRange": { + "from": "now-15m", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Used", + "field": "vsphere.host.cpu.used.mhz" + }, + "schema": "metric", + "type": "max" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "dimensions": { + "x": { + "accessor": 0, + "aggType": "date_histogram", + "format": { + "id": "date", + "params": { + "pattern": "HH:mm:ss" + } + }, + "params": { + "bounds": { + "max": "2019-10-16T18:04:26.629Z", + "min": "2019-10-16T17:49:26.629Z" + }, + "date": true, + "format": "HH:mm:ss", + "interval": "PT30S" + } + }, + "y": [ + { + "accessor": 1, + "aggType": "max", + "format": { + "id": "number" + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "max", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "fittingFunction": "zero", + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": {}, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Free" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + }, + { + "data": { + "id": "3", + "label": "Used" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#34130C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "area", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Free" + }, + "type": "value" + } + ] + }, + "title": "Free vs Used CPU on Cluster stacked [Metricbeat VSphere] ECS", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ab07c5d0-f03f-11e9-aaf3-15199b632da7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "1411b690-f017-11e9-aaf3-15199b632da7", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:58.868Z", + "version": "WzQyMTAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/vsphere/_meta/kibana/7/visualization/d6370680-f049-11e9-aaf3-15199b632da7.json b/metricbeat/module/vsphere/_meta/kibana/7/visualization/d6370680-f049-11e9-aaf3-15199b632da7.json new file mode 100644 index 000000000000..21b3a3f33bc8 --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/visualization/d6370680-f049-11e9-aaf3-15199b632da7.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Datastore Types [Metricbeat VSphere] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "vsphere.datastore.fstype", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "metric": { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Datastore types [Metricbeat VSphere] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d6370680-f049-11e9-aaf3-15199b632da7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "1411b690-f017-11e9-aaf3-15199b632da7", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:58.868Z", + "version": "WzQyMTYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/vsphere/_meta/kibana/7/visualization/dae93d90-f041-11e9-aaf3-15199b632da7.json b/metricbeat/module/vsphere/_meta/kibana/7/visualization/dae93d90-f041-11e9-aaf3-15199b632da7.json new file mode 100644 index 000000000000..a4da846a2a9f --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/visualization/dae93d90-f041-11e9-aaf3-15199b632da7.json @@ -0,0 +1,220 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "CPU/RAM/Network per VM [Metricbeat VSphere] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Name", + "field": "vsphere.virtualmachine.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 50 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Used CPU", + "field": "vsphere.virtualmachine.cpu.used.mhz", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderAgg": { + "enabled": true, + "id": "5-orderAgg", + "params": { + "field": "vsphere.virtualmachine.cpu.used.mhz" + }, + "schema": "orderAgg", + "type": "max" + }, + "orderBy": "custom", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Total RAM", + "field": "vsphere.virtualmachine.memory.total.guest.bytes", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderAgg": { + "enabled": true, + "id": "3-orderAgg", + "params": { + "field": "vsphere.virtualmachine.memory.total.guest.bytes" + }, + "schema": "orderAgg", + "type": "max" + }, + "orderBy": "custom", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Networks", + "field": "vsphere.virtualmachine.network_names", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "number", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "bytes", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 3, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 4, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "CPU/RAM/Network per VM [Metricbeat VSphere] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dae93d90-f041-11e9-aaf3-15199b632da7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "1411b690-f017-11e9-aaf3-15199b632da7", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:59.928Z", + "version": "WzQyMTksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/vsphere/_meta/kibana/7/visualization/e3a3e080-f018-11e9-aaf3-15199b632da7.json b/metricbeat/module/vsphere/_meta/kibana/7/visualization/e3a3e080-f018-11e9-aaf3-15199b632da7.json new file mode 100644 index 000000000000..f7085c77708b --- /dev/null +++ b/metricbeat/module/vsphere/_meta/kibana/7/visualization/e3a3e080-f018-11e9-aaf3-15199b632da7.json @@ -0,0 +1,160 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "VM placements on ESXi Hosts[Metricbeat VSphere] ECS", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 40": "rgb(247,252,245)", + "120 - 160": "rgb(35,139,69)", + "40 - 80": "rgb(199,233,192)", + "80 - 120": "rgb(116,196,118)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "VM Name", + "field": "vsphere.virtualmachine.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 50 + }, + "schema": "group", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "ESXi Host", + "field": "vsphere.virtualmachine.host.hostname", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "colorSchema": "Greens", + "colorsNumber": 4, + "colorsRange": [], + "dimensions": { + "series": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "x": { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + "y": [ + { + "accessor": 2, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "enableHover": false, + "invertColors": false, + "legendPosition": "right", + "percentageMode": false, + "setColorRange": false, + "times": [], + "type": "heatmap", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "color": "black", + "overwriteColor": false, + "rotate": 0, + "show": false + }, + "scale": { + "defaultYExtents": false, + "type": "linear" + }, + "show": false, + "type": "value" + } + ] + }, + "title": "VM placements on ESXi Hosts[Metricbeat VSphere] ECS", + "type": "heatmap" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e3a3e080-f018-11e9-aaf3-15199b632da7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "1411b690-f017-11e9-aaf3-15199b632da7", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:59.928Z", + "version": "WzQyMjMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/vsphere/module.yml b/metricbeat/module/vsphere/module.yml index 13996ec04e52..0fe75d87b3dc 100644 --- a/metricbeat/module/vsphere/module.yml +++ b/metricbeat/module/vsphere/module.yml @@ -1,5 +1,5 @@ dashboards: - id: 0ebd0be0-f049-11e9-aaf3-15199b632da7 - file: metricbeat-vsphere-host.ndjson + file: metricbeat-vsphere-host.json - id: 8a2d1540-f049-11e9-aaf3-15199b632da7 - file: metricbeat-vsphere-vm.ndjson \ No newline at end of file + file: metricbeat-vsphere-vm.json \ No newline at end of file diff --git a/metricbeat/module/windows/_meta/kibana/7/dashboard/d9eba730-c991-11e7-9835-2f31fe08873b-ecs.json b/metricbeat/module/windows/_meta/kibana/7/dashboard/d9eba730-c991-11e7-9835-2f31fe08873b-ecs.json new file mode 100644 index 000000000000..cee4f3803817 --- /dev/null +++ b/metricbeat/module/windows/_meta/kibana/7/dashboard/d9eba730-c991-11e7-9835-2f31fe08873b-ecs.json @@ -0,0 +1,166 @@ +{ + "attributes": { + "description": "Overview of the Windows Service States", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 20, + "i": "1", + "w": 36, + "x": 12, + "y": 12 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 20, + "i": "2", + "w": 12, + "x": 0, + "y": 12 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 16, + "x": 0, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 12, + "i": "4", + "w": 16, + "x": 16, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 12, + "i": "5", + "w": 16, + "x": 32, + "y": 0 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Windows] Services ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "d9eba730-c991-11e7-9835-2f31fe08873b-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "eb8277d0-c98c-11e7-9835-2f31fe08873b-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "23a5fff0-c98e-11e7-9835-2f31fe08873b-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "830c45f0-c991-11e7-9835-2f31fe08873b-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "35f5ad60-c996-11e7-9835-2f31fe08873b-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "c36b2ba0-ca29-11e7-9835-2f31fe08873b-ecs", + "name": "5:panel_5", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:32:00.935Z", + "version": "WzQyMzEsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/windows/_meta/kibana/7/dashboard/metricbeat-windows-service.ndjson b/metricbeat/module/windows/_meta/kibana/7/dashboard/metricbeat-windows-service.ndjson deleted file mode 100644 index d1e860c36f01..000000000000 --- a/metricbeat/module/windows/_meta/kibana/7/dashboard/metricbeat-windows-service.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Service States [Metricbeat Windows] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Latest Report\",\"field\":\"@timestamp\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Service\",\"field\":\"windows.service.display_name\",\"order\":\"asc\",\"orderBy\":\"_term\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Host\",\"field\":\"host.name\",\"order\":\"desc\",\"orderBy\":\"_term\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"State\",\"field\":\"windows.service.state\",\"order\":\"desc\",\"orderAgg\":{\"enabled\":true,\"id\":\"3-orderAgg\",\"params\":{\"field\":\"@timestamp\"},\"schema\":\"orderAgg\",\"type\":\"max\"},\"orderBy\":\"custom\",\"size\":1},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Startup Type\",\"field\":\"windows.service.start_type\",\"order\":\"desc\",\"orderAgg\":{\"enabled\":true,\"id\":\"4-orderAgg\",\"params\":{\"field\":\"@timestamp\"},\"schema\":\"orderAgg\",\"type\":\"max\"},\"orderBy\":\"custom\",\"size\":1},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Service States [Metricbeat Windows] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"eb8277d0-c98c-11e7-9835-2f31fe08873b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:32:00.935Z","version":"WzQyMjUsMV0="} -{"attributes":{"columns":["host.name","windows.service.display_name","windows.service.state","windows.service.start_type","windows.service.uptime.ms","windows.service.pid","windows.service.exit_code"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"windows\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"windows\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"windows\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"metricset.name\",\"negate\":false,\"params\":{\"query\":\"service\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"service\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"metricset.name\":{\"query\":\"service\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Services [Metricbeat Windows] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:32:00.935Z","version":"WzQyMzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Hosts [Metricbeat Windows] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Services\",\"field\":\"windows.service.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Host\",\"field\":\"host.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Hosts [Metricbeat Windows] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"23a5fff0-c98e-11e7-9835-2f31fe08873b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:32:00.935Z","version":"WzQyMjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Startup States [Metricbeat Windows] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Service Count\",\"field\":\"windows.service.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Startup Type\",\"field\":\"windows.service.start_type\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"State\",\"field\":\"windows.service.state\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Startup States [Metricbeat Windows] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"830c45f0-c991-11e7-9835-2f31fe08873b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:32:00.935Z","version":"WzQyMjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Unique Services [Metricbeat Windows] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Services\",\"field\":\"windows.service.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":false},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"type\":\"gauge\"},\"title\":\"Unique Services [Metricbeat Windows] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"35f5ad60-c996-11e7-9835-2f31fe08873b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:32:00.935Z","version":"WzQyMjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"windows.service.exit_code\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"windows.service.exit_code\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"windows.service.exit_code\",\"negate\":true,\"params\":{\"query\":\"0\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"0\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"windows.service.exit_code\":{\"query\":\"0\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"windows.service.exit_code\",\"negate\":true,\"params\":{\"query\":\"ERROR_SERVICE_NEVER_STARTED\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"ERROR_SERVICE_NEVER_STARTED\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\"},\"query\":{\"match\":{\"windows.service.exit_code\":{\"query\":\"ERROR_SERVICE_NEVER_STARTED\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Non-zero Service Exit Codes [Metricbeat Windows] ECS","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Non-zero Exit Codes\",\"field\":\"windows.service.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":false},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"type\":\"gauge\"},\"title\":\"Non-zero Service Exit Codes [Metricbeat Windows] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"c36b2ba0-ca29-11e7-9835-2f31fe08873b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:32:00.935Z","version":"WzQyMjksMV0="} -{"attributes":{"description":"Overview of the Windows Service States","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":12,\"w\":36,\"h\":20,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":12,\"h\":20,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":16,\"h\":12,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":0,\"w\":16,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":0,\"w\":16,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Metricbeat Windows] Services ECS","version":1},"coreMigrationVersion":"8.0.0","id":"d9eba730-c991-11e7-9835-2f31fe08873b-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"eb8277d0-c98c-11e7-9835-2f31fe08873b-ecs","name":"1:panel_1","type":"visualization"},{"id":"23a5fff0-c98e-11e7-9835-2f31fe08873b-ecs","name":"2:panel_2","type":"visualization"},{"id":"830c45f0-c991-11e7-9835-2f31fe08873b-ecs","name":"3:panel_3","type":"visualization"},{"id":"35f5ad60-c996-11e7-9835-2f31fe08873b-ecs","name":"4:panel_4","type":"visualization"},{"id":"c36b2ba0-ca29-11e7-9835-2f31fe08873b-ecs","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:32:00.935Z","version":"WzQyMzEsMV0="} diff --git a/metricbeat/module/windows/_meta/kibana/7/search/b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs.json b/metricbeat/module/windows/_meta/kibana/7/search/b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs.json new file mode 100644 index 000000000000..bb07ab8d0f07 --- /dev/null +++ b/metricbeat/module/windows/_meta/kibana/7/search/b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs.json @@ -0,0 +1,113 @@ +{ + "attributes": { + "columns": [ + "host.name", + "windows.service.display_name", + "windows.service.state", + "windows.service.start_type", + "windows.service.uptime.ms", + "windows.service.pid", + "windows.service.exit_code" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "windows", + "type": "phrase" + }, + "type": "phrase", + "value": "windows" + }, + "query": { + "match": { + "event.module": { + "query": "windows", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "metricset.name", + "negate": false, + "params": { + "query": "service", + "type": "phrase" + }, + "type": "phrase", + "value": "service" + }, + "query": { + "match": { + "metricset.name": { + "query": "service", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Services [Metricbeat Windows] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:32:00.935Z", + "version": "WzQyMzAsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/windows/_meta/kibana/7/visualization/23a5fff0-c98e-11e7-9835-2f31fe08873b-ecs.json b/metricbeat/module/windows/_meta/kibana/7/visualization/23a5fff0-c98e-11e7-9835-2f31fe08873b-ecs.json new file mode 100644 index 000000000000..6222114988d5 --- /dev/null +++ b/metricbeat/module/windows/_meta/kibana/7/visualization/23a5fff0-c98e-11e7-9835-2f31fe08873b-ecs.json @@ -0,0 +1,83 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Hosts [Metricbeat Windows] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Total Services", + "field": "windows.service.id" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Host", + "field": "host.name", + "order": "desc", + "orderBy": "1", + "size": 100 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Hosts [Metricbeat Windows] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "23a5fff0-c98e-11e7-9835-2f31fe08873b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:32:00.935Z", + "version": "WzQyMjYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/windows/_meta/kibana/7/visualization/35f5ad60-c996-11e7-9835-2f31fe08873b-ecs.json b/metricbeat/module/windows/_meta/kibana/7/visualization/35f5ad60-c996-11e7-9835-2f31fe08873b-ecs.json new file mode 100644 index 000000000000..e00e6cd103e5 --- /dev/null +++ b/metricbeat/module/windows/_meta/kibana/7/visualization/35f5ad60-c996-11e7-9835-2f31fe08873b-ecs.json @@ -0,0 +1,96 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Unique Services [Metricbeat Windows] ECS", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Services", + "field": "windows.service.id" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": false + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "type": "gauge" + }, + "title": "Unique Services [Metricbeat Windows] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "35f5ad60-c996-11e7-9835-2f31fe08873b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:32:00.935Z", + "version": "WzQyMjgsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/windows/_meta/kibana/7/visualization/830c45f0-c991-11e7-9835-2f31fe08873b-ecs.json b/metricbeat/module/windows/_meta/kibana/7/visualization/830c45f0-c991-11e7-9835-2f31fe08873b-ecs.json new file mode 100644 index 000000000000..21c487aecd81 --- /dev/null +++ b/metricbeat/module/windows/_meta/kibana/7/visualization/830c45f0-c991-11e7-9835-2f31fe08873b-ecs.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Startup States [Metricbeat Windows] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Service Count", + "field": "windows.service.id" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Startup Type", + "field": "windows.service.start_type", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "State", + "field": "windows.service.state", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Startup States [Metricbeat Windows] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "830c45f0-c991-11e7-9835-2f31fe08873b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:32:00.935Z", + "version": "WzQyMjcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/windows/_meta/kibana/7/visualization/c36b2ba0-ca29-11e7-9835-2f31fe08873b-ecs.json b/metricbeat/module/windows/_meta/kibana/7/visualization/c36b2ba0-ca29-11e7-9835-2f31fe08873b-ecs.json new file mode 100644 index 000000000000..ea2e7ba01066 --- /dev/null +++ b/metricbeat/module/windows/_meta/kibana/7/visualization/c36b2ba0-ca29-11e7-9835-2f31fe08873b-ecs.json @@ -0,0 +1,181 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "windows.service.exit_code" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "windows.service.exit_code", + "negate": false, + "type": "exists", + "value": "exists" + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "windows.service.exit_code", + "negate": true, + "params": { + "query": "0", + "type": "phrase" + }, + "type": "phrase", + "value": "0" + }, + "query": { + "match": { + "windows.service.exit_code": { + "query": "0", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "key": "windows.service.exit_code", + "negate": true, + "params": { + "query": "ERROR_SERVICE_NEVER_STARTED", + "type": "phrase" + }, + "type": "phrase", + "value": "ERROR_SERVICE_NEVER_STARTED" + }, + "query": { + "match": { + "windows.service.exit_code": { + "query": "ERROR_SERVICE_NEVER_STARTED", + "type": "phrase" + } + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Non-zero Service Exit Codes [Metricbeat Windows] ECS", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Non-zero Exit Codes", + "field": "windows.service.id" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": false + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "type": "gauge" + }, + "title": "Non-zero Service Exit Codes [Metricbeat Windows] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c36b2ba0-ca29-11e7-9835-2f31fe08873b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "type": "index-pattern" + }, + { + "id": "b6b7ccc0-c98d-11e7-9835-2f31fe08873b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:32:00.935Z", + "version": "WzQyMjksMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/windows/_meta/kibana/7/visualization/eb8277d0-c98c-11e7-9835-2f31fe08873b-ecs.json b/metricbeat/module/windows/_meta/kibana/7/visualization/eb8277d0-c98c-11e7-9835-2f31fe08873b-ecs.json new file mode 100644 index 000000000000..dc6bb57b753b --- /dev/null +++ b/metricbeat/module/windows/_meta/kibana/7/visualization/eb8277d0-c98c-11e7-9835-2f31fe08873b-ecs.json @@ -0,0 +1,144 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Service States [Metricbeat Windows] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "aggregate": "concat", + "customLabel": "Latest Report", + "field": "@timestamp", + "size": 1, + "sortField": "@timestamp", + "sortOrder": "desc" + }, + "schema": "metric", + "type": "top_hits" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Service", + "field": "windows.service.display_name", + "order": "asc", + "orderBy": "_term", + "size": 100 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Host", + "field": "host.name", + "order": "desc", + "orderBy": "_term", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "State", + "field": "windows.service.state", + "order": "desc", + "orderAgg": { + "enabled": true, + "id": "3-orderAgg", + "params": { + "field": "@timestamp" + }, + "schema": "orderAgg", + "type": "max" + }, + "orderBy": "custom", + "size": 1 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Startup Type", + "field": "windows.service.start_type", + "order": "desc", + "orderAgg": { + "enabled": true, + "id": "4-orderAgg", + "params": { + "field": "@timestamp" + }, + "schema": "orderAgg", + "type": "max" + }, + "orderBy": "custom", + "size": 1 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Service States [Metricbeat Windows] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "eb8277d0-c98c-11e7-9835-2f31fe08873b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:32:00.935Z", + "version": "WzQyMjUsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/windows/module.yml b/metricbeat/module/windows/module.yml index 74cff8d766a6..e585b0abf93a 100644 --- a/metricbeat/module/windows/module.yml +++ b/metricbeat/module/windows/module.yml @@ -1,3 +1,3 @@ dashboards: - id: d9eba730-c991-11e7-9835-2f31fe08873b - file: metricbeat-windows-service.ndjson + file: metricbeat-windows-service.json diff --git a/metricbeat/module/zookeeper/_meta/kibana/7/dashboard/467207a0-231e-11e9-bb66-8baac426dfd4-ecs.json b/metricbeat/module/zookeeper/_meta/kibana/7/dashboard/467207a0-231e-11e9-bb66-8baac426dfd4-ecs.json new file mode 100644 index 000000000000..7cd63e6480bb --- /dev/null +++ b/metricbeat/module/zookeeper/_meta/kibana/7/dashboard/467207a0-231e-11e9-bb66-8baac426dfd4-ecs.json @@ -0,0 +1,140 @@ +{ + "attributes": { + "description": "Overview of Zookeeper", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "1", + "w": 15, + "x": 0, + "y": 15 + }, + "panelIndex": "1", + "panelRefName": "panel_0", + "title": "Approximate data size", + "version": "7.0.0-alpha2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "2", + "w": 17, + "x": 15, + "y": 15 + }, + "panelIndex": "2", + "panelRefName": "panel_1", + "title": "Latency", + "version": "7.0.0-alpha2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "3", + "w": 16, + "x": 32, + "y": 15 + }, + "panelIndex": "3", + "panelRefName": "panel_2", + "title": "Alive Connections", + "version": "7.0.0-alpha2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "4", + "w": 25, + "x": 23, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_3", + "title": "Used file descriptors", + "version": "7.0.0-alpha2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "5", + "w": 23, + "x": 0, + "y": 0 + }, + "panelIndex": "5", + "panelRefName": "panel_4", + "title": "Packets received / sent", + "version": "7.0.0-alpha2" + } + ], + "timeRestore": false, + "title": "[Metricbeat Zookeeper] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "467207a0-231e-11e9-bb66-8baac426dfd4-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "8d3b7770-2319-11e9-bb66-8baac426dfd4-ecs", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "c0be43c0-2319-11e9-bb66-8baac426dfd4-ecs", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "1c2f8930-231a-11e9-bb66-8baac426dfd4-ecs", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "ddb13c60-231b-11e9-bb66-8baac426dfd4-ecs", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "d2f52b50-231c-11e9-bb66-8baac426dfd4-ecs", + "name": "panel_4", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:53.758Z", + "version": "WzQxNzcsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/zookeeper/_meta/kibana/7/dashboard/Metricbeat-zookeeper-overview.ndjson b/metricbeat/module/zookeeper/_meta/kibana/7/dashboard/Metricbeat-zookeeper-overview.ndjson deleted file mode 100644 index 29a93a2bb72c..000000000000 --- a/metricbeat/module/zookeeper/_meta/kibana/7/dashboard/Metricbeat-zookeeper-overview.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Approximate data size [Metricbeat Zookeeper] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Approximate data size\",\"line_width\":1,\"metrics\":[{\"field\":\"zookeeper.mntr.approximate_data_size\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Approximate data size [Metricbeat Zookeeper] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8d3b7770-2319-11e9-bb66-8baac426dfd4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:53.758Z","version":"WzQxNzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Latency [Metricbeat Zookeeper] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"ms,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Latency\",\"line_width\":1,\"metrics\":[{\"field\":\"zookeeper.mntr.latency.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Latency [Metricbeat Zookeeper] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c0be43c0-2319-11e9-bb66-8baac426dfd4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:53.758Z","version":"WzQxNzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Alive Connections [Metricbeat Zookeeper] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"0,0.[00]\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Alive connections\",\"line_width\":1,\"metrics\":[{\"field\":\"zookeeper.mntr.num_alive_connections\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Alive Connections [Metricbeat Zookeeper] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1c2f8930-231a-11e9-bb66-8baac426dfd4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:53.758Z","version":"WzQxNzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Used file descriptors [Metricbeat Zookeeper] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_min\":\"0\",\"axis_position\":\"left\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Used file descriptors\",\"line_width\":1,\"metrics\":[{\"field\":\"zookeeper.mntr.open_file_descriptor_count\",\"id\":\"b92e4550-231a-11e9-9e57-679640dc0c7c\",\"metric_agg\":\"avg\",\"type\":\"avg\"},{\"field\":\"zookeeper.mntr.max_file_descriptor_count\",\"id\":\"918d0c60-231b-11e9-9e57-679640dc0c7c\",\"type\":\"avg\"},{\"id\":\"7e4d11e0-231b-11e9-9e57-679640dc0c7c\",\"script\":\"params.a/params.b\",\"type\":\"math\",\"variables\":[{\"field\":\"b92e4550-231a-11e9-9e57-679640dc0c7c\",\"id\":\"81c03fa0-231b-11e9-9e57-679640dc0c7c\",\"name\":\"a\"},{\"field\":\"918d0c60-231b-11e9-9e57-679640dc0c7c\",\"id\":\"8a3af6c0-231b-11e9-9e57-679640dc0c7c\",\"name\":\"b\"}]}],\"point_size\":1,\"separate_axis\":1,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_min\":\"0\",\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,98,177,1)\",\"fill\":\"0\",\"formatter\":\"0,0.[00]\",\"id\":\"dffaffe0-23cc-11e9-b1ff-37c851471450\",\"label\":\"Open file descriptors\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"zookeeper.mntr.open_file_descriptor_count\",\"id\":\"dffaffe1-23cc-11e9-b1ff-37c851471450\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":1,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Used file descriptors [Metricbeat Zookeeper] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ddb13c60-231b-11e9-bb66-8baac426dfd4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:53.758Z","version":"WzQxNzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Packets received / sent [Metricbeat Zookeeper] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"0,0.[00]\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Packets received\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"zookeeper.mntr.packets.received\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"34949540-231c-11e9-9707-f128cdaa3bf2\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"5811d190-231c-11e9-9707-f128cdaa3bf2\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"formatter\":\"0,0.[00]\",\"id\":\"753b2e60-231c-11e9-9707-f128cdaa3bf2\",\"label\":\"Packets sent\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"zookeeper.mntr.packets.sent\",\"id\":\"753b2e61-231c-11e9-9707-f128cdaa3bf2\",\"type\":\"avg\"},{\"field\":\"753b2e61-231c-11e9-9707-f128cdaa3bf2\",\"id\":\"7ed33c60-231c-11e9-9707-f128cdaa3bf2\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Packets received / sent [Metricbeat Zookeeper] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d2f52b50-231c-11e9-bb66-8baac426dfd4-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:53.758Z","version":"WzQxNzYsMV0="} -{"attributes":{"description":"Overview of Zookeeper","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":15,\"x\":0,\"y\":15},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Approximate data size\",\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":17,\"x\":15,\"y\":15},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Latency\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":16,\"x\":32,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Alive Connections\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":25,\"x\":23,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Used file descriptors\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":23,\"x\":0,\"y\":0},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets received / sent\",\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Metricbeat Zookeeper] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"467207a0-231e-11e9-bb66-8baac426dfd4-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"8d3b7770-2319-11e9-bb66-8baac426dfd4-ecs","name":"panel_0","type":"visualization"},{"id":"c0be43c0-2319-11e9-bb66-8baac426dfd4-ecs","name":"panel_1","type":"visualization"},{"id":"1c2f8930-231a-11e9-bb66-8baac426dfd4-ecs","name":"panel_2","type":"visualization"},{"id":"ddb13c60-231b-11e9-bb66-8baac426dfd4-ecs","name":"panel_3","type":"visualization"},{"id":"d2f52b50-231c-11e9-bb66-8baac426dfd4-ecs","name":"panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:53.758Z","version":"WzQxNzcsMV0="} diff --git a/metricbeat/module/zookeeper/_meta/kibana/7/visualization/1c2f8930-231a-11e9-bb66-8baac426dfd4-ecs.json b/metricbeat/module/zookeeper/_meta/kibana/7/visualization/1c2f8930-231a-11e9-bb66-8baac426dfd4-ecs.json new file mode 100644 index 000000000000..a353277e6ff7 --- /dev/null +++ b/metricbeat/module/zookeeper/_meta/kibana/7/visualization/1c2f8930-231a-11e9-bb66-8baac426dfd4-ecs.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Alive Connections [Metricbeat Zookeeper] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "0,0.[00]", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Alive connections", + "line_width": 1, + "metrics": [ + { + "field": "zookeeper.mntr.num_alive_connections", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Alive Connections [Metricbeat Zookeeper] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1c2f8930-231a-11e9-bb66-8baac426dfd4-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:53.758Z", + "version": "WzQxNzQsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/zookeeper/_meta/kibana/7/visualization/8d3b7770-2319-11e9-bb66-8baac426dfd4-ecs.json b/metricbeat/module/zookeeper/_meta/kibana/7/visualization/8d3b7770-2319-11e9-bb66-8baac426dfd4-ecs.json new file mode 100644 index 000000000000..16c58a01d992 --- /dev/null +++ b/metricbeat/module/zookeeper/_meta/kibana/7/visualization/8d3b7770-2319-11e9-bb66-8baac426dfd4-ecs.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Approximate data size [Metricbeat Zookeeper] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Approximate data size", + "line_width": 1, + "metrics": [ + { + "field": "zookeeper.mntr.approximate_data_size", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Approximate data size [Metricbeat Zookeeper] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8d3b7770-2319-11e9-bb66-8baac426dfd4-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:53.758Z", + "version": "WzQxNzIsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/zookeeper/_meta/kibana/7/visualization/c0be43c0-2319-11e9-bb66-8baac426dfd4-ecs.json b/metricbeat/module/zookeeper/_meta/kibana/7/visualization/c0be43c0-2319-11e9-bb66-8baac426dfd4-ecs.json new file mode 100644 index 000000000000..273e7c5937de --- /dev/null +++ b/metricbeat/module/zookeeper/_meta/kibana/7/visualization/c0be43c0-2319-11e9-bb66-8baac426dfd4-ecs.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Latency [Metricbeat Zookeeper] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "ms,ms,2", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Latency", + "line_width": 1, + "metrics": [ + { + "field": "zookeeper.mntr.latency.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Latency [Metricbeat Zookeeper] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c0be43c0-2319-11e9-bb66-8baac426dfd4-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:53.758Z", + "version": "WzQxNzMsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/zookeeper/_meta/kibana/7/visualization/d2f52b50-231c-11e9-bb66-8baac426dfd4-ecs.json b/metricbeat/module/zookeeper/_meta/kibana/7/visualization/d2f52b50-231c-11e9-bb66-8baac426dfd4-ecs.json new file mode 100644 index 000000000000..4be1e64f51fb --- /dev/null +++ b/metricbeat/module/zookeeper/_meta/kibana/7/visualization/d2f52b50-231c-11e9-bb66-8baac426dfd4-ecs.json @@ -0,0 +1,103 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Packets received / sent [Metricbeat Zookeeper] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "0,0.[00]", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Packets received", + "line_width": "2", + "metrics": [ + { + "field": "zookeeper.mntr.packets.received", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "34949540-231c-11e9-9707-f128cdaa3bf2", + "type": "derivative", + "unit": "" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "id": "5811d190-231c-11e9-9707-f128cdaa3bf2" + } + ], + "split_mode": "terms", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0", + "formatter": "0,0.[00]", + "id": "753b2e60-231c-11e9-9707-f128cdaa3bf2", + "label": "Packets sent", + "line_width": "2", + "metrics": [ + { + "field": "zookeeper.mntr.packets.sent", + "id": "753b2e61-231c-11e9-9707-f128cdaa3bf2", + "type": "avg" + }, + { + "field": "753b2e61-231c-11e9-9707-f128cdaa3bf2", + "id": "7ed33c60-231c-11e9-9707-f128cdaa3bf2", + "type": "derivative", + "unit": "" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Packets received / sent [Metricbeat Zookeeper] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d2f52b50-231c-11e9-bb66-8baac426dfd4-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:53.758Z", + "version": "WzQxNzYsMV0=" +} \ No newline at end of file diff --git a/metricbeat/module/zookeeper/_meta/kibana/7/visualization/ddb13c60-231b-11e9-bb66-8baac426dfd4-ecs.json b/metricbeat/module/zookeeper/_meta/kibana/7/visualization/ddb13c60-231b-11e9-bb66-8baac426dfd4-ecs.json new file mode 100644 index 000000000000..e12e1c4378af --- /dev/null +++ b/metricbeat/module/zookeeper/_meta/kibana/7/visualization/ddb13c60-231b-11e9-bb66-8baac426dfd4-ecs.json @@ -0,0 +1,110 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Used file descriptors [Metricbeat Zookeeper] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_min": "0", + "axis_position": "left", + "chart_type": "line", + "color": "#68BC00", + "fill": "0.1", + "formatter": "percent", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Used file descriptors", + "line_width": 1, + "metrics": [ + { + "field": "zookeeper.mntr.open_file_descriptor_count", + "id": "b92e4550-231a-11e9-9e57-679640dc0c7c", + "metric_agg": "avg", + "type": "avg" + }, + { + "field": "zookeeper.mntr.max_file_descriptor_count", + "id": "918d0c60-231b-11e9-9e57-679640dc0c7c", + "type": "avg" + }, + { + "id": "7e4d11e0-231b-11e9-9e57-679640dc0c7c", + "script": "params.a/params.b", + "type": "math", + "variables": [ + { + "field": "b92e4550-231a-11e9-9e57-679640dc0c7c", + "id": "81c03fa0-231b-11e9-9e57-679640dc0c7c", + "name": "a" + }, + { + "field": "918d0c60-231b-11e9-9e57-679640dc0c7c", + "id": "8a3af6c0-231b-11e9-9e57-679640dc0c7c", + "name": "b" + } + ] + } + ], + "point_size": 1, + "separate_axis": 1, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_min": "0", + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,98,177,1)", + "fill": "0", + "formatter": "0,0.[00]", + "id": "dffaffe0-23cc-11e9-b1ff-37c851471450", + "label": "Open file descriptors", + "line_width": "1", + "metrics": [ + { + "field": "zookeeper.mntr.open_file_descriptor_count", + "id": "dffaffe1-23cc-11e9-b1ff-37c851471450", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 1, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Used file descriptors [Metricbeat Zookeeper] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ddb13c60-231b-11e9-bb66-8baac426dfd4-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:53.758Z", + "version": "WzQxNzUsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs.json b/packetbeat/_meta/kibana/7/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs.json new file mode 100644 index 000000000000..c686d760440e --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "Overview of DNS request and response metrics.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "optionsJSON": "{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}", + "panelsJSON": "[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":13,\"x\":0,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":11,\"x\":13,\"y\":15},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]", + "timeRestore": false, + "title": "[Packetbeat] DNS Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "65120940-1454-11e9-9de0-f98d1808db8e-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "DNS-Query-Summary-ecs", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "DNS-Request-Status-Over-Time-ecs", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "DNS-Question-Types-ecs", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "DNS-Top-10-Questions-ecs", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "DNS-Response-Codes-ecs", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "735d25c0-1459-11e9-9de0-f98d1808db8e-ecs", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "bacb6ed0-1459-11e9-9de0-f98d1808db8e-ecs", + "name": "panel_6", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:28:38.010Z", + "version": "WzMxMzYsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/dashboard/DNS-Unique-Domains-ecs.json b/packetbeat/_meta/kibana/7/dashboard/DNS-Unique-Domains-ecs.json new file mode 100644 index 000000000000..9e8fd4d03feb --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/DNS-Unique-Domains-ecs.json @@ -0,0 +1,44 @@ +{ + "attributes": { + "description": "Detecting tunneling over DNS.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"NOT dns.question.type:PTR\"},\"version\":true}" + }, + "optionsJSON": "{\"darkTheme\": false}", + "panelsJSON": "[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"spy\":{\"mode\":{\"fill\":false,\"name\":null}},\"vis\":{\"colors\":{\"Count\":\"#1F78C1\",\"Unique Subdomain Count\":\"#EF843C\",\"Unique count of dns.question.name\":\"#E0752D\"},\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"2\",\"w\":24,\"x\":0,\"y\":35},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":35},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]", + "timeRestore": false, + "title": "[Packetbeat] DNS Tunneling ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "DNS-Unique-Domains-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Unique-FQDNs-per-eTLD 1-ecs", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "Unique-FQDNs-per-eTLD 1-Table-ecs", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "Bytes-Transferred-per-Domain-ecs", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "dc743240-1665-11e7-a6de-cbac1a3d0a7d-ecs", + "name": "panel_3", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:28:38.960Z", + "version": "WzMxNDIsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-Cassandra-ecs.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-Cassandra-ecs.json new file mode 100644 index 000000000000..0f2c5c124b18 --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-Cassandra-ecs.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}" + }, + "optionsJSON": "{\"darkTheme\": false}", + "panelsJSON": "[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":36,\"y\":8,\"w\":12,\"h\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":8,\"w\":12,\"h\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":16,\"w\":48,\"h\":8,\"i\":\"9\"},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":0,\"w\":36,\"h\":8,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":8,\"w\":12,\"h\":8,\"i\":\"11\"},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":24,\"w\":48,\"h\":8,\"i\":\"15\"},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":32,\"w\":48,\"h\":8,\"i\":\"16\"},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":40,\"w\":24,\"h\":12,\"i\":\"17\"},\"panelIndex\":\"17\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":40,\"w\":24,\"h\":12,\"i\":\"18\"},\"panelIndex\":\"18\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":12,\"h\":16,\"i\":\"19\"},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":52,\"w\":48,\"h\":12,\"i\":\"20\"},\"panelIndex\":\"20\",\"embeddableConfig\":{\"columns\":[\"cassandra.request.query\",\"cassandra.response.result.rows.meta.keyspace\",\"cassandra.response.result.rows.meta.table\",\"cassandra.response.result.rows.num_rows\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_20\"}]", + "timeRestore": false, + "title": "[Packetbeat] Cassandra ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Packetbeat-Cassandra-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Cassandra-ResponseKeyspace-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "Cassandra-ResponseType-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "Cassandra-ResponseTime-ecs", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "Cassandra-RequestCount-ecs", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "Cassandra-Ops-ecs", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "Cassandra-RequestCountStackByType-ecs", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "Cassandra-ResponseCountStackByType-ecs", + "name": "16:panel_16", + "type": "visualization" + }, + { + "id": "Cassandra-RequestCountByType-ecs", + "name": "17:panel_17", + "type": "visualization" + }, + { + "id": "Cassandra-ResponseCountByType-ecs", + "name": "18:panel_18", + "type": "visualization" + }, + { + "id": "Navigation-ecs", + "name": "19:panel_19", + "type": "visualization" + }, + { + "id": "Cassandra-QueryView-ecs", + "name": "20:panel_20", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:28:35.924Z", + "version": "WzMxMTksMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-Dashboard-ecs.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-Dashboard-ecs.json new file mode 100644 index 000000000000..72410ab85ade --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-Dashboard-ecs.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "Packetbeat overview dashboard.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}" + }, + "optionsJSON": "{\"darkTheme\": false}", + "panelsJSON": "[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":12,\"x\":12,\"y\":20},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":12,\"x\":36,\"y\":20},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":45},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":60},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":45},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":60},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"9\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"9\",\"embeddableConfig\":{\"mapBounds\":{\"bottom_right\":{\"lat\":-54.97761367069625,\"lon\":153.984375},\"top_left\":{\"lat\":54.97761367069628,\"lon\":-153.984375}},\"mapCollar\":{\"bottom_right\":{\"lat\":-90,\"lon\":180},\"top_left\":{\"lat\":90,\"lon\":-180},\"zoom\":2},\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"10\",\"w\":48,\"x\":0,\"y\":30},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"11\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"12\",\"w\":12,\"x\":0,\"y\":20},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"13\",\"w\":12,\"x\":24,\"y\":20},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"}]", + "timeRestore": false, + "title": "[Packetbeat] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Packetbeat-Dashboard-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Web-transactions-ecs", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "DB-transactions-ecs", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "Response-times-percentiles-ecs", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "Errors-count-over-time-ecs", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "Errors-vs-successful-transactions-ecs", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "Latency-histogram-ecs", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "Client-locations-ecs", + "name": "panel_6", + "type": "visualization" + }, + { + "id": "Response-times-repartition-ecs", + "name": "panel_7", + "type": "visualization" + }, + { + "id": "Navigation-ecs", + "name": "panel_8", + "type": "visualization" + }, + { + "id": "e3f09730-1b80-11e9-83df-75eebb35951e-ecs", + "name": "panel_9", + "type": "visualization" + }, + { + "id": "059fe5e0-d2dd-11e7-9914-4982455b3063-ecs", + "name": "panel_10", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:28:45.121Z", + "version": "WzMyMTAsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-Flows-ecs.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-Flows-ecs.json new file mode 100644 index 000000000000..ebd62007317c --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-Flows-ecs.json @@ -0,0 +1,49 @@ +{ + "attributes": { + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}" + }, + "optionsJSON": "{\"darkTheme\": false}", + "panelsJSON": "[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":35,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":25},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"2\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"3\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":35,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":25},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":35,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":60},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]", + "timeRestore": false, + "title": "[Packetbeat] Flows ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Packetbeat-Flows-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Top-hosts-creating-traffic-ecs", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "Navigation-ecs", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "Connections-over-time-ecs", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "Top-hosts-receiving-traffic-ecs", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "Network-traffic-between-your-hosts-ecs", + "name": "panel_4", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:28:39.992Z", + "version": "WzMxNDksMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-HTTP-ecs.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-HTTP-ecs.json new file mode 100644 index 000000000000..25fb4df04f91 --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-HTTP-ecs.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}" + }, + "optionsJSON": "{\"darkTheme\": false}", + "panelsJSON": "[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":0,\"y\":35},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":35},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"4\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":12,\"x\":0,\"y\":20},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":36,\"x\":12,\"y\":20},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":50},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]", + "timeRestore": false, + "title": "[Packetbeat] HTTP ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Packetbeat-HTTP-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Web-transactions-ecs", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "HTTP-error-codes-ecs", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "HTTP-error-codes-evolution-ecs", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "Navigation-ecs", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "Total-number-of-HTTP-transactions-ecs", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "HTTP-codes-for-the-top-queries-ecs", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "Top-10-HTTP-requests-ecs", + "name": "panel_6", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:28:41.048Z", + "version": "WzMxNTgsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-MongoDB-performance-ecs.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-MongoDB-performance-ecs.json new file mode 100644 index 000000000000..45dc2a4bce7d --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-MongoDB-performance-ecs.json @@ -0,0 +1,64 @@ +{ + "attributes": { + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}" + }, + "optionsJSON": "{\"darkTheme\": false}", + "panelsJSON": "[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"2\",\"w\":20,\"x\":12,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":16,\"x\":0,\"y\":20},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":16,\"x\":16,\"y\":20},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"6\",\"w\":32,\"x\":0,\"y\":35},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"7\",\"w\":16,\"x\":32,\"y\":35},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":16,\"x\":32,\"y\":20},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]", + "timeRestore": false, + "title": "[Packetbeat] MongoDB ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Packetbeat-MongoDB-performance-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Navigation-ecs", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "MongoDB-errors-ecs", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "MongoDB-commands-ecs", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "MongoDB-errors-per-collection-ecs", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "MongoDB-in-slash-out-throughput-ecs", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "MongoDB-response-times-by-collection-ecs", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "Top-slowest-MongoDB-queries-ecs", + "name": "panel_6", + "type": "visualization" + }, + { + "id": "Number-of-MongoDB-transactions-with-writeConcern-w-equal-0-ecs", + "name": "panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:28:42.017Z", + "version": "WzMxNzAsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-MySQL-performance-ecs.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-MySQL-performance-ecs.json new file mode 100644 index 000000000000..4c27326d0d9d --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-MySQL-performance-ecs.json @@ -0,0 +1,64 @@ +{ + "attributes": { + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}" + }, + "optionsJSON": "{\"darkTheme\": false}", + "panelsJSON": "[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":20,\"x\":12,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"2\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":35},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":30,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":50},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":30,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":50},\"panelIndex\":\"6\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":24,\"x\":0,\"y\":35},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]", + "timeRestore": false, + "title": "[Packetbeat] MySQL performance ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Packetbeat-MySQL-performance-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "MySQL-Errors-ecs", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "MySQL-Methods-ecs", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "Navigation-ecs", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "MySQL-throughput-ecs", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "Most-frequent-MySQL-queries-ecs", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "Slowest-MySQL-queries-ecs", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "Mysql-response-times-percentiles-ecs", + "name": "panel_6", + "type": "visualization" + }, + { + "id": "MySQL-Reads-vs-Writes-ecs", + "name": "panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:28:43.059Z", + "version": "WzMxODEsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-NFS-ecs.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-NFS-ecs.json new file mode 100644 index 000000000000..945f02d99e05 --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-NFS-ecs.json @@ -0,0 +1,69 @@ +{ + "attributes": { + "description": "NFSv3 and NFSv4 transactions over TCP.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}" + }, + "optionsJSON": "{\"darkTheme\": false}", + "panelsJSON": "[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"1\",\"w\":16,\"x\":16,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":55},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"spy\":{\"mode\":{\"fill\":false,\"name\":null}},\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":16,\"x\":32,\"y\":10},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":25},\"panelIndex\":\"6\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":40},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":55},\"panelIndex\":\"8\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":30,\"i\":\"9\",\"w\":24,\"x\":0,\"y\":25},\"panelIndex\":\"9\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"10\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]", + "timeRestore": false, + "title": "[Packetbeat] NFS ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Packetbeat-NFS-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "NFS-clients-pie-chart-ecs", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "NFS-operations-area-chart-ecs", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "NFS-top-group-pie-chart-ecs", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "NFS-top-users-pie-chart-ecs", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "NFS-response-times-ecs", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "NFS-errors-ecs", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "NFS-operation-table-ecs", + "name": "panel_6", + "type": "visualization" + }, + { + "id": "NFS-bytes-in-slash-out-ecs", + "name": "panel_7", + "type": "visualization" + }, + { + "id": "Navigation-ecs", + "name": "panel_8", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:28:44.127Z", + "version": "WzMxOTMsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-PgSQL-performance-ecs.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-PgSQL-performance-ecs.json new file mode 100644 index 000000000000..a3be397a9818 --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-PgSQL-performance-ecs.json @@ -0,0 +1,64 @@ +{ + "attributes": { + "description": "Postgres database query performance.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}" + }, + "optionsJSON": "{\"darkTheme\": false}", + "panelsJSON": "[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"2\",\"w\":20,\"x\":12,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":35},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":35},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":30,\"i\":\"7\",\"w\":24,\"x\":0,\"y\":50},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":30,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":50},\"panelIndex\":\"8\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]", + "timeRestore": false, + "title": "[Packetbeat] PgSQL performance ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Packetbeat-PgSQL-performance-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Navigation-ecs", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "PgSQL-Errors-ecs", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "PgSQL-Methods-ecs", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "PgSQL-response-times-percentiles-ecs", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "PgSQL-throughput-ecs", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "PgSQL-Reads-vs-Writes-ecs", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "Most-frequent-PgSQL-queries-ecs", + "name": "panel_6", + "type": "visualization" + }, + { + "id": "Slowest-PgSQL-queries-ecs", + "name": "panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:28:46.172Z", + "version": "WzMyMjEsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-Thrift-performance-ecs.json b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-Thrift-performance-ecs.json new file mode 100644 index 000000000000..821defcf278e --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-Thrift-performance-ecs.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}" + }, + "optionsJSON": "{\"darkTheme\": false}", + "panelsJSON": "[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":12,\"h\":16,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":0,\"w\":20,\"h\":16,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":0,\"w\":16,\"h\":16,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":16,\"w\":24,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":16,\"w\":24,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":24,\"h\":16,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":28,\"w\":24,\"h\":16,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]", + "timeRestore": false, + "title": "[Packetbeat] Thrift performance ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Packetbeat-Thrift-performance-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Navigation-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "Thrift-requests-per-minute-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "Thrift-RPC-Errors-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "Slowest-Thrift-RPC-methods-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "Thrift-response-times-percentiles-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "Top-Thrift-RPC-methods-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "Top-Thrift-RPC-calls-with-errors-ecs", + "name": "7:panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:28:47.238Z", + "version": "WzMyMzEsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-cassandra.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-cassandra.ndjson deleted file mode 100644 index ce046083481a..000000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-cassandra.ndjson +++ /dev/null @@ -1,13 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"cassandra\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"cassandra\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"cassandra\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Cassandra Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra ResponseKeyspace [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"cassandra.response.result.rows.meta.keyspace\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cassandra.response.result.rows.meta.table\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Cassandra ResponseKeyspace ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-ResponseKeyspace-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra ResponseType [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"cassandra.response.result.type\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Cassandra ResponseType ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-ResponseType-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra ResponseTime [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[5,25,50,75,95]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"square root\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Cassandra ResponseTime [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-ResponseTime-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra RequestCount [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"square root\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Cassandra RequestCount ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-RequestCount-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra Ops [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"cassandra.request.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cassandra.response.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Cassandra Ops ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-Ops-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra RequestCountStackByType [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cassandra.request.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Cassandra RequestCountStackByType ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-RequestCountStackByType-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra ResponseCountStackByType [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cassandra.response.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Cassandra ResponseCountStackByType ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-ResponseCountStackByType-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra RequestCountByType [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cassandra.request.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{},\"schema\":\"radius\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":false,\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":\"13\",\"scale\":\"log\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Cassandra RequestCountByType ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-RequestCountByType-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"Cassandra ResponseCountByType [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"id\":\"3\",\"params\":{\"field\":\"cassandra.response.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"},{\"id\":\"4\",\"params\":{},\"schema\":\"radius\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":false,\"interpolate\":\"linear\",\"radiusRatio\":\"15\",\"scale\":\"log\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Cassandra: ResponseCountByType ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Cassandra-ResponseCountByType-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"eaa83e60-190b-11e9-be0d-adde5066235e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} -{"attributes":{"columns":["cassandra.request.query","cassandra.response.result.rows.meta.keyspace","cassandra.response.result.rows.meta.table","cassandra.response.result.rows.num_rows"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"cassandra.request.headers.op\",\"negate\":false,\"params\":{\"query\":\"QUERY\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"QUERY\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"cassandra.request.headers.op\":{\"query\":\"QUERY\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"cassandra.response.headers.op\",\"negate\":true,\"params\":{\"query\":\"ERROR\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"ERROR\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"cassandra.response.headers.op\":{\"query\":\"ERROR\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Cassandra Query Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Cassandra-QueryView-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTcsMV0="} -{"attributes":{"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":36,\"y\":8,\"w\":12,\"h\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":8,\"w\":12,\"h\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":16,\"w\":48,\"h\":8,\"i\":\"9\"},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":0,\"w\":36,\"h\":8,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":8,\"w\":12,\"h\":8,\"i\":\"11\"},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":24,\"w\":48,\"h\":8,\"i\":\"15\"},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":32,\"w\":48,\"h\":8,\"i\":\"16\"},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":40,\"w\":24,\"h\":12,\"i\":\"17\"},\"panelIndex\":\"17\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":40,\"w\":24,\"h\":12,\"i\":\"18\"},\"panelIndex\":\"18\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":12,\"h\":16,\"i\":\"19\"},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":52,\"w\":48,\"h\":12,\"i\":\"20\"},\"panelIndex\":\"20\",\"embeddableConfig\":{\"columns\":[\"cassandra.request.query\",\"cassandra.response.result.rows.meta.keyspace\",\"cassandra.response.result.rows.meta.table\",\"cassandra.response.result.rows.num_rows\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_20\"}]","timeRestore":false,"title":"[Packetbeat] Cassandra ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-Cassandra-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Cassandra-ResponseKeyspace-ecs","name":"3:panel_3","type":"visualization"},{"id":"Cassandra-ResponseType-ecs","name":"4:panel_4","type":"visualization"},{"id":"Cassandra-ResponseTime-ecs","name":"9:panel_9","type":"visualization"},{"id":"Cassandra-RequestCount-ecs","name":"10:panel_10","type":"visualization"},{"id":"Cassandra-Ops-ecs","name":"11:panel_11","type":"visualization"},{"id":"Cassandra-RequestCountStackByType-ecs","name":"15:panel_15","type":"visualization"},{"id":"Cassandra-ResponseCountStackByType-ecs","name":"16:panel_16","type":"visualization"},{"id":"Cassandra-RequestCountByType-ecs","name":"17:panel_17","type":"visualization"},{"id":"Cassandra-ResponseCountByType-ecs","name":"18:panel_18","type":"visualization"},{"id":"Navigation-ecs","name":"19:panel_19","type":"visualization"},{"id":"Cassandra-QueryView-ecs","name":"20:panel_20","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:28:35.924Z","version":"WzMxMTksMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dhcpv4.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dhcpv4.ndjson deleted file mode 100644 index cdeefd52295a..000000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dhcpv4.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Message Types over Time [Packetbeat DHCPv4] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"c2cf4410-8ba8-11e8-ae15-bdcba81344e6\"}],\"drop_last_bucket\":1,\"filter\":{\"query\":\"type:dhcpv4\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"ignore_global_filter\":0,\"index_pattern\":\"packetbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"NOT dhcpv4.option.message_type:nak NOT dhcpv4.option.message_type:decline\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"8abe6eb0-8ba9-11e8-ae15-bdcba81344e6\",\"label\":\"Response\",\"line_width\":1,\"metrics\":[{\"id\":\"8abe6eb1-8ba9-11e8-ae15-bdcba81344e6\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"dhcpv4.option.message_type\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"filter\":{\"query\":\"dhcpv4.option.message_type:nak\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"ae5610d0-8ba9-11e8-ae15-bdcba81344e6\",\"label\":\"nak\",\"line_width\":\"4\",\"metrics\":[{\"id\":\"ae5610d1-8ba9-11e8-ae15-bdcba81344e6\",\"type\":\"count\"}],\"point_size\":\"3\",\"seperate_axis\":0,\"series_drop_last_bucket\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"filter\":{\"query\":\"dhcpv4.option.message_type:decline\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"cf7ba180-8ba9-11e8-ae15-bdcba81344e6\",\"label\":\"decline\",\"line_width\":\"4\",\"metrics\":[{\"id\":\"cf7ba181-8ba9-11e8-ae15-bdcba81344e6\",\"type\":\"count\"}],\"point_size\":\"3\",\"seperate_axis\":0,\"series_drop_last_bucket\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Message Types over Time [Packetbeat DHCPv4] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8460fcd0-8baa-11e8-9676-ef67484126fb-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:36.983Z","version":"WzMxMjAsMV0="} -{"attributes":{"columns":["dhcpv4.transaction_id","dhcpv4.op_code","dhcpv4.option.message_type","source.ip","destination.ip","dhcpv4.client_mac","dhcpv4.option.hostname","dhcpv4.option.class_identifier"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"dhcpv4\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"dhcpv4\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"dhcpv4\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"DHCPv4 [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"b8992150-8ba8-11e8-9676-ef67484126fb-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:36.983Z","version":"WzMxMjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"dhcpv4.option.message_type:nak OR dhcpv4.option.message_type:decline\"}}"},"savedSearchRefName":"search_0","title":"NAK and Decline Count [Packetbeat DHCPv4] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":57,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"NAK and Decline Count [Packetbeat DHCPv4] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"4ad9db20-8bab-11e8-9676-ef67484126fb-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b8992150-8ba8-11e8-9676-ef67484126fb-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:36.983Z","version":"WzMxMjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Message Types [Packetbeat DHCPv4] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Op Code\",\"field\":\"dhcpv4.op_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Message Type\",\"field\":\"dhcpv4.option.message_type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Message Types [Packetbeat DHCPv4] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"418dfbe0-8bac-11e8-9676-ef67484126fb-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b8992150-8ba8-11e8-9676-ef67484126fb-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:36.983Z","version":"WzMxMjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Transaction Count [Packetbeat DHCPv4] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique Transactions\",\"field\":\"dhcpv4.transaction_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Transaction Count [Packetbeat DHCPv4] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"d0120dc0-8bac-11e8-9676-ef67484126fb-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b8992150-8ba8-11e8-9676-ef67484126fb-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:36.983Z","version":"WzMxMjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Client Count [Packetbeat DHCPv4] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique MACs\",\"field\":\"dhcpv4.client_mac\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Client Count [Packetbeat DHCPv4] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"11d33ea0-8bad-11e8-9676-ef67484126fb-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b8992150-8ba8-11e8-9676-ef67484126fb-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:36.983Z","version":"WzMxMjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Data Transfer [Packetbeat DHCPv4] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Requests\",\"field\":\"client.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Responses\",\"field\":\"server.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":24,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Data Transfer [Packetbeat DHCPv4] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"f43a8f20-8bb5-11e8-9676-ef67484126fb-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b8992150-8ba8-11e8-9676-ef67484126fb-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:36.983Z","version":"WzMxMjYsMV0="} -{"attributes":{"description":"DHCPv4 Overview","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1\",\"w\":48,\"x\":0,\"y\":7},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"2\",\"w\":8,\"x\":0,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"3\",\"w\":11,\"x\":37,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":14,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":16},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"6\",\"w\":8,\"x\":8,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"7\",\"w\":8,\"x\":16,\"y\":0},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"8\",\"w\":13,\"x\":24,\"y\":0},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Packetbeat] DHCPv4 ECS","version":1},"coreMigrationVersion":"8.0.0","id":"a7b35890-8baa-11e8-9676-ef67484126fb-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"8460fcd0-8baa-11e8-9676-ef67484126fb-ecs","name":"1:panel_1","type":"visualization"},{"id":"4ad9db20-8bab-11e8-9676-ef67484126fb-ecs","name":"2:panel_2","type":"visualization"},{"id":"418dfbe0-8bac-11e8-9676-ef67484126fb-ecs","name":"3:panel_3","type":"visualization"},{"id":"b8992150-8ba8-11e8-9676-ef67484126fb-ecs","name":"5:panel_5","type":"search"},{"id":"d0120dc0-8bac-11e8-9676-ef67484126fb-ecs","name":"6:panel_6","type":"visualization"},{"id":"11d33ea0-8bad-11e8-9676-ef67484126fb-ecs","name":"7:panel_7","type":"visualization"},{"id":"f43a8f20-8bb5-11e8-9676-ef67484126fb-ecs","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:36.983Z","version":"WzMxMjcsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-overview.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-overview.ndjson deleted file mode 100644 index fd6ef3ff8b2c..000000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"columns":["server.ip","destination.ip","dns.question.name","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"network.protocol\",\"negate\":false,\"params\":{\"query\":\"dns\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"dns\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"dns\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"DNS Protocol [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"DNS Query Summary [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Client Bytes\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Server Bytes\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Avg Response Time (ns)\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"17\",\"handleNoResults\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":28,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"DNS Query Summary [Packetbeat] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"DNS-Query-Summary-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.010Z","version":"WzMxMjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"DNS Request Status Over Time [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Error\": \"#890F02\", \"OK\": \"#0A50A1\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"status\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"DNS Request Status Over Time [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"DNS-Request-Status-Over-Time-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.010Z","version":"WzMxMjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"DNS Question Types [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"dns.question.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"DNS Question Types [Packetbeat] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"DNS-Question-Types-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.010Z","version":"WzMxMzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":false,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"DNS Top 10 Questions [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Question\",\"field\":\"dns.question.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":30},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"DNS Top 10 Questions [Packetbeat] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"DNS-Top-10-Questions-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.010Z","version":"WzMxMzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"savedSearchRefName":"search_0","title":"DNS Response Codes [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Response Code\",\"field\":\"dns.response_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"DNS Response Codes [Packetbeat] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"DNS-Response-Codes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.010Z","version":"WzMxMzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"DNS Min/Max/Avg Response Time Histogram [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Avg Response Time (ns)\": \"#629E51\", \"Max Response Time (ns)\": \"#E24D42\", \"Min Response Time (ns)\": \"#70DBED\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Min Response Time (ns)\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"min\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Avg Response Time (ns)\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Max Response Time (ns)\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"4\",\"label\":\"Min Response Time (ns)\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"1\",\"label\":\"Avg Response Time (ns)\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Max Response Time (ns)\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Average event.duration\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"DNS Min/Max/Avg Response Time Histogram [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"735d25c0-1459-11e9-9de0-f98d1808db8e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.010Z","version":"WzMxMzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"DNS Client and Servers Pie Chart [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Server\",\"field\":\"destination.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Client\",\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"DNS Client and Servers Pie Chart [Packetbeat] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"bacb6ed0-1459-11e9-9de0-f98d1808db8e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.010Z","version":"WzMxMzQsMV0="} -{"attributes":{"description":"Overview of DNS request and response metrics.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":13,\"x\":0,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":11,\"x\":13,\"y\":15},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Packetbeat] DNS Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"65120940-1454-11e9-9de0-f98d1808db8e-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"DNS-Query-Summary-ecs","name":"panel_0","type":"visualization"},{"id":"DNS-Request-Status-Over-Time-ecs","name":"panel_1","type":"visualization"},{"id":"DNS-Question-Types-ecs","name":"panel_2","type":"visualization"},{"id":"DNS-Top-10-Questions-ecs","name":"panel_3","type":"visualization"},{"id":"DNS-Response-Codes-ecs","name":"panel_4","type":"visualization"},{"id":"735d25c0-1459-11e9-9de0-f98d1808db8e-ecs","name":"panel_5","type":"visualization"},{"id":"bacb6ed0-1459-11e9-9de0-f98d1808db8e-ecs","name":"panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:38.010Z","version":"WzMxMzYsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-tunneling.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-tunneling.ndjson deleted file mode 100644 index ea14a301d9ba..000000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-dns-tunneling.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"columns":["server.ip","destination.ip","dns.question.name","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"network.protocol\",\"negate\":false,\"params\":{\"query\":\"dns\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"dns\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"dns\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"DNS Protocol [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Unique FQDNs per eTLD+1 ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Count\": \"#1F78C1\", \"Unique count of dns.question.name\": \"#E0752D\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique Subdomain Count\",\"field\":\"dns.question.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Domains\",\"field\":\"dns.question.etld_plus_one\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":true,\"legendPosition\":\"right\",\"mode\":\"grouped\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Unique FQDNs per eTLD+1 ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Unique-FQDNs-per-eTLD 1-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.960Z","version":"WzMxMzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Unique FQDNs per eTLD+1 Table ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"ETLD+1\",\"field\":\"dns.question.etld_plus_one\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Unique Domains\",\"field\":\"dns.question.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Unique FQDNs per eTLD+1 Table ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Unique-FQDNs-per-eTLD 1-Table-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.960Z","version":"WzMxMzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Bytes Transferred per Domain ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Bytes In\": \"#F2C96D\", \"Bytes Out\": \"#629E51\", \"Count\": \"#1F78C1\", \"Unique count of dns.question.name\": \"#E0752D\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes Out\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Domains\",\"field\":\"dns.question.etld_plus_one\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Bytes In\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"grouped\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Bytes Out\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Bytes In\"},\"mode\":\"normal\",\"show\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":true,\"mode\":\"grouped\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Bytes Transferred per Domain ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Bytes-Transferred-per-Domain-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.960Z","version":"WzMxMzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"type:dns\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Top Domains by Data Volume ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes In\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"ETLD+1\",\"field\":\"dns.question.etld_plus_one\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"3\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Bytes Out\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Domains by Data Volume ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"dc743240-1665-11e7-a6de-cbac1a3d0a7d-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:28:38.960Z","version":"WzMxNDAsMV0="} -{"attributes":{"description":"Detecting tunneling over DNS.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"NOT dns.question.type:PTR\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"spy\":{\"mode\":{\"fill\":false,\"name\":null}},\"vis\":{\"colors\":{\"Count\":\"#1F78C1\",\"Unique Subdomain Count\":\"#EF843C\",\"Unique count of dns.question.name\":\"#E0752D\"},\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"2\",\"w\":24,\"x\":0,\"y\":35},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":35},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Packetbeat] DNS Tunneling ECS","version":1},"coreMigrationVersion":"8.0.0","id":"DNS-Unique-Domains-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Unique-FQDNs-per-eTLD 1-ecs","name":"panel_0","type":"visualization"},{"id":"Unique-FQDNs-per-eTLD 1-Table-ecs","name":"panel_1","type":"visualization"},{"id":"Bytes-Transferred-per-Domain-ecs","name":"panel_2","type":"visualization"},{"id":"dc743240-1665-11e7-a6de-cbac1a3d0a7d-ecs","name":"panel_3","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:38.960Z","version":"WzMxNDIsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-flows.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-flows.ndjson deleted file mode 100644 index 29c42a1b36f2..000000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-flows.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"columns":["type","event.start","event.end","source.ip","source.port","destination.ip","destination.port","source.bytes","destination.bytes"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"type: flow\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Flows Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-Flows-Search-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:39.992Z","version":"WzMxNDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Top Hosts Creating Traffic [Packetbeat Flows] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Source Bytes\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source IP\",\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Source Bytes\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Top Hosts Creating Traffic [Packetbeat Flows] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Top-hosts-creating-traffic-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Packetbeat-Flows-Search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:39.992Z","version":"WzMxNDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Connections over time [Packetbeat Flows] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique Flows\",\"field\":\"flow.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Unique Flows\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Connections over time [Packetbeat Flows] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Connections-over-time-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Packetbeat-Flows-Search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:39.992Z","version":"WzMxNDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Top Hosts Receiving Traffic [Packetbeat Flows] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Destination Bytes\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Destination IP\",\"field\":\"destination.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Destination Bytes\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Top Hosts Receiving Traffic [Packetbeat Flows] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Top-hosts-receiving-traffic-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Packetbeat-Flows-Search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:39.992Z","version":"WzMxNDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Network Traffic Between Hosts [Packetbeat Flows] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Source Bytes\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Bytes\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source IP\",\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination IP\",\"field\":\"destination.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Network Traffic Between Hosts [Packetbeat Flows] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Network-traffic-between-your-hosts-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Packetbeat-Flows-Search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:39.992Z","version":"WzMxNDcsMV0="} -{"attributes":{"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":35,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":25},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"2\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"3\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":35,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":25},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":35,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":60},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Packetbeat] Flows ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-Flows-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Top-hosts-creating-traffic-ecs","name":"panel_0","type":"visualization"},{"id":"Navigation-ecs","name":"panel_1","type":"visualization"},{"id":"Connections-over-time-ecs","name":"panel_2","type":"visualization"},{"id":"Top-hosts-receiving-traffic-ecs","name":"panel_3","type":"visualization"},{"id":"Network-traffic-between-your-hosts-ecs","name":"panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:39.992Z","version":"WzMxNDksMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-http.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-http.ndjson deleted file mode 100644 index 16cfb4159552..000000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-http.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"network.protocol\",\"negate\":false,\"params\":{\"query\":\"http\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"http\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"http\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"HTTP Transactions Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"HTTP Transactions [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"HTTP Transactions [Packetbeat] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Web-transactions-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMxOTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"type\",\"negate\":false,\"params\":{\"query\":\"http\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"http\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"http\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"query\":{\"language\":\"kuery\",\"query\":\"http.response.status_code >= 300\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"HTTP error codes [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"type\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"HTTP Status Code\",\"field\":\"http.response.status_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Unique count of type\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"HTTP error codes [Packetbeat] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"HTTP-error-codes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:28:41.048Z","version":"WzMxNTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"network.protocol\",\"negate\":false,\"params\":{\"query\":\"http\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"http\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"http\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"http.response.status_code\",\"negate\":true,\"params\":{\"gte\":200,\"lt\":299},\"type\":\"range\",\"value\":\"200 to 299\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"range\":{\"http.response.status_code\":{\"gte\":200,\"lte\":299}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"HTTP error codes evolution [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"HTTP Status Code\",\"field\":\"http.response.status_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"HTTP error codes evolution [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"HTTP-error-codes-evolution-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:28:41.048Z","version":"WzMxNTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Total number of HTTP transactions [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"37\",\"handleNoResults\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total number of HTTP transactions [Packetbeat] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"Total-number-of-HTTP-transactions-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:41.048Z","version":"WzMxNTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"HTTP status codes for the top queries [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"HTTP Query\",\"field\":\"query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"HTTP Status Code\",\"field\":\"http.response.status_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"row\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"HTTP status codes for the top queries [Packetbeat] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"HTTP-codes-for-the-top-queries-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:41.048Z","version":"WzMxNTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Top 10 HTTP requests [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"url.full\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 10 HTTP requests [Packetbeat] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Top-10-HTTP-requests-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:41.048Z","version":"WzMxNTYsMV0="} -{"attributes":{"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":0,\"y\":35},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":35},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"4\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":12,\"x\":0,\"y\":20},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":36,\"x\":12,\"y\":20},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":50},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Packetbeat] HTTP ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-HTTP-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Web-transactions-ecs","name":"panel_0","type":"visualization"},{"id":"HTTP-error-codes-ecs","name":"panel_1","type":"visualization"},{"id":"HTTP-error-codes-evolution-ecs","name":"panel_2","type":"visualization"},{"id":"Navigation-ecs","name":"panel_3","type":"visualization"},{"id":"Total-number-of-HTTP-transactions-ecs","name":"panel_4","type":"visualization"},{"id":"HTTP-codes-for-the-top-queries-ecs","name":"panel_5","type":"visualization"},{"id":"Top-10-HTTP-requests-ecs","name":"panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:41.048Z","version":"WzMxNTgsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mongodb.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mongodb.ndjson deleted file mode 100644 index 0c50d9225613..000000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mongodb.ndjson +++ /dev/null @@ -1,12 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"type\",\"negate\":false,\"params\":{\"query\":\"mongodb\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mongodb\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"type\":{\"query\":\"mongodb\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":true,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"MongoDB errors [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"651fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MongoDB errors [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"resource\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":3},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"method\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"spyPerPage\":10,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"row\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MongoDB errors [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-errors-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"651fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjAsMV0="} -{"attributes":{"columns":["method","type","path","event.duration","status","query"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"mongodb\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mongodb\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"mongodb\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"MongoDB Transaction Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"MongoDB-transactions-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MongoDB Commands [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"method\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"silhouette\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"silhouette\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MongoDB Commands [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-commands-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MongoDB errors per collection [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"resource\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"spyPerPage\":10,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MongoDB errors per collection [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-errors-per-collection-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"651fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MongoDB in/out throughput [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Sum of source.bytes\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"4\",\"label\":\"Sum of destination.bytes\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MongoDB in/out throughput [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-in-slash-out-throughput-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MongoDB response times by collection [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[99]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"resource\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{},\"schema\":\"radius\",\"type\":\"count\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":\"9\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"drawLinesBetweenPoints\":false,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":\"9\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MongoDB response times by collection [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"MongoDB-response-times-by-collection-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Top slowest MongoDB queries [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[99]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top slowest MongoDB queries [Packetbeat] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Top-slowest-MongoDB-queries-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjUsMV0="} -{"attributes":{"columns":["method","type","path","event.duration","status","query"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"mongodb\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mongodb\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"mongodb\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"request: \\\"writeConcern w 0\\\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"MongoDB transactions with write concern 0 [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"MongoDB-transactions-with-write-concern-0-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Number of MongoDB transactions with writeConcern w=0 [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{},\"schema\":\"radius\",\"type\":\"count\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Number of MongoDB transactions with writeConcern w=0 [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Number-of-MongoDB-transactions-with-writeConcern-w-equal-0-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MongoDB-transactions-with-write-concern-0-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNjYsMV0="} -{"attributes":{"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"2\",\"w\":20,\"x\":12,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":16,\"x\":0,\"y\":20},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":16,\"x\":16,\"y\":20},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"6\",\"w\":32,\"x\":0,\"y\":35},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"7\",\"w\":16,\"x\":32,\"y\":35},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":16,\"x\":32,\"y\":20},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Packetbeat] MongoDB ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-MongoDB-performance-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Navigation-ecs","name":"panel_0","type":"visualization"},{"id":"MongoDB-errors-ecs","name":"panel_1","type":"visualization"},{"id":"MongoDB-commands-ecs","name":"panel_2","type":"visualization"},{"id":"MongoDB-errors-per-collection-ecs","name":"panel_3","type":"visualization"},{"id":"MongoDB-in-slash-out-throughput-ecs","name":"panel_4","type":"visualization"},{"id":"MongoDB-response-times-by-collection-ecs","name":"panel_5","type":"visualization"},{"id":"Top-slowest-MongoDB-queries-ecs","name":"panel_6","type":"visualization"},{"id":"Number-of-MongoDB-transactions-with-writeConcern-w-equal-0-ecs","name":"panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:42.017Z","version":"WzMxNzAsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mysql.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mysql.ndjson deleted file mode 100644 index 3549efd73a4c..000000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-mysql.ndjson +++ /dev/null @@ -1,11 +0,0 @@ -{"attributes":{"columns":["method","type","path","event.duration","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":true,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"mysql\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mysql\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"mysql\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"MySQL Errors Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"MySQL-errors-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxNzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MySQL Errors [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MySQL Errors [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-Errors-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MySQL-errors-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxNzEsMV0="} -{"attributes":{"columns":["method","type","path","event.duration","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"type\",\"negate\":false,\"params\":{\"query\":\"mysql\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mysql\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"type\":{\"query\":\"mysql\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"MySQL Transactions [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"MySQL-Transactions-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxODAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MySQL Methods [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"method\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"wiggle\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"wiggle\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MySQL Methods [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-Methods-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MySQL-Transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxNzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MySQL throughput [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Sum of destination.bytes\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Sum of source.bytes\"},\"mode\":\"normal\",\"show\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"shareYAxis\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MySQL throughput [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-throughput-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MySQL-Transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxNzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Most frequent MySQL queries ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"field\":\"query\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":true},\"title\":\"Most frequent MySQL queries ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Most-frequent-MySQL-queries-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MySQL-Transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxNzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Slowest MySQL queries ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Avg Response Time\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Slowest MySQL queries ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Slowest-MySQL-queries-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MySQL-Transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxNzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Mysql response times percentiles [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[75,99,99.5]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"shareYAxis\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Mysql response times percentiles [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Mysql-response-times-percentiles-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MySQL-Transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxNzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"MySQL Reads vs Writes [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"filters\":[{\"input\":{\"query\":\"method: SELECT\",\"language\":\"lucene\"}},{\"input\":{\"query\":\"method: INSERT OR method: UPDATE OR method: DELETE\",\"language\":\"lucene\"}}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per 30 seconds\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MySQL Reads vs Writes [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"MySQL-Reads-vs-Writes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"MySQL-Transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxNzgsMV0="} -{"attributes":{"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":20,\"x\":12,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"2\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":35},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":30,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":50},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":30,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":50},\"panelIndex\":\"6\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":24,\"x\":0,\"y\":35},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Packetbeat] MySQL performance ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-MySQL-performance-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"MySQL-Errors-ecs","name":"panel_0","type":"visualization"},{"id":"MySQL-Methods-ecs","name":"panel_1","type":"visualization"},{"id":"Navigation-ecs","name":"panel_2","type":"visualization"},{"id":"MySQL-throughput-ecs","name":"panel_3","type":"visualization"},{"id":"Most-frequent-MySQL-queries-ecs","name":"panel_4","type":"visualization"},{"id":"Slowest-MySQL-queries-ecs","name":"panel_5","type":"visualization"},{"id":"Mysql-response-times-percentiles-ecs","name":"panel_6","type":"visualization"},{"id":"MySQL-Reads-vs-Writes-ecs","name":"panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:43.059Z","version":"WzMxODEsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-nfs.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-nfs.ndjson deleted file mode 100644 index 5233b79d4fdc..000000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-nfs.ndjson +++ /dev/null @@ -1,12 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"nfs-ecs\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"nfs-ecs\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"nfs-ecs\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"NFS Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"nfs-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxOTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"NFS clients pie chart [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"rpc.cred.machinename\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":16},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"NFS clients pie chart [Packetbeat] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"NFS-clients-pie-chart-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"nfs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxODIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"NFS operations area chart ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"field\":\"nfs.opcode\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":16},\"schema\":\"group\",\"type\":\"terms\"},{\"id\":\"3\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"NFS operations area chart ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"NFS-operations-area-chart-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"nfs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxODMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"NFS top group pie chart [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"rpc.cred.gid\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":16},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"NFS top group pie chart [Packetbeat] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"NFS-top-group-pie-chart-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"nfs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxODQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"NFS top users pie chart [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"rpc.cred.uid\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":16},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"NFS top users pie chart [Packetbeat] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"NFS-top-users-pie-chart-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"nfs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxODUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"NFS response times [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[50]},\"schema\":\"metric\",\"type\":\"median\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":true,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":\"9\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Median event.duration\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"normal\",\"radiusRatio\":\"9\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":true,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Median event.duration\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"NFS response times [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"NFS-response-times-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"nfs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxODYsMV0="} -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"nfs.status\",\"negate\":true,\"params\":{\"query\":\"NFSERR_NOENT\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"NFSERR_NOENT\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"nfs.status\":{\"query\":\"NFSERR_NOENT\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"nfs.status\",\"negate\":true,\"params\":{\"query\":\"NFS_OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"NFS_OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"nfs.status\":{\"query\":\"NFS_OK\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"nfs-ecs\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"nfs-ecs\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"nfs-ecs\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"NFS Error Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"NFS-errors-search-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxOTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"NFS errors [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"nfs.status\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":12},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"NFS errors [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"NFS-errors-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"NFS-errors-search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxODcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"NFS operation table [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Avg Response Time\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Opcode\",\"field\":\"nfs.opcode\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":16},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"NFS operation table [Packetbeat] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"NFS-operation-table-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"nfs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxODgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"NFS Request / Response Sizes [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Sum of rpc.reply_size\": \"#7EB26D\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Request Size\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Response Size\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Request Size\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"2\",\"label\":\"Response Size\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"NFS Request / Response Sizes [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"NFS-bytes-in-slash-out-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"nfs-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxODksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} -{"attributes":{"description":"NFSv3 and NFSv4 transactions over TCP.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"1\",\"w\":16,\"x\":16,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":55},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"spy\":{\"mode\":{\"fill\":false,\"name\":null}},\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":16,\"x\":32,\"y\":10},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":25},\"panelIndex\":\"6\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":40},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":55},\"panelIndex\":\"8\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":30,\"i\":\"9\",\"w\":24,\"x\":0,\"y\":25},\"panelIndex\":\"9\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":25,\"i\":\"10\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Packetbeat] NFS ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-NFS-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"NFS-clients-pie-chart-ecs","name":"panel_0","type":"visualization"},{"id":"NFS-operations-area-chart-ecs","name":"panel_1","type":"visualization"},{"id":"NFS-top-group-pie-chart-ecs","name":"panel_2","type":"visualization"},{"id":"NFS-top-users-pie-chart-ecs","name":"panel_3","type":"visualization"},{"id":"NFS-response-times-ecs","name":"panel_4","type":"visualization"},{"id":"NFS-errors-ecs","name":"panel_5","type":"visualization"},{"id":"NFS-operation-table-ecs","name":"panel_6","type":"visualization"},{"id":"NFS-bytes-in-slash-out-ecs","name":"panel_7","type":"visualization"},{"id":"Navigation-ecs","name":"panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:44.127Z","version":"WzMxOTMsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-overview.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-overview.ndjson deleted file mode 100644 index c8fe2e7cc9da..000000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-overview.ndjson +++ /dev/null @@ -1,17 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"network.protocol\",\"negate\":false,\"params\":{\"query\":\"http\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"http\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"http\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"HTTP Transactions Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"HTTP Transactions [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"HTTP Transactions [Packetbeat] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Web-transactions-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMxOTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.type\",\"negate\":true,\"params\":{\"query\":\"flow\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"flow\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.type\":{\"query\":\"flow\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Transaction Types [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.dataset\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Transaction Types [Packetbeat] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"DB-transactions-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMxOTUsMV0="} -{"attributes":{"columns":["client.ip","client.port","server.ip","server.port","event.dataset","query","method","event.duration","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":true,\"params\":{\"query\":\"flow\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"flow\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"flow\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Packetbeat Search ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-Search-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Response times percentiles [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[75,95,99]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Response times percentiles [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Response-times-percentiles-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Packetbeat-Search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMxOTYsMV0="} -{"attributes":{"columns":["client.ip","client.port","server.ip","server.port","event.dataset","query","method","event.duration","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":true,\"params\":{\"query\":\"flow\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"flow\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"flow\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":true,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Transactions Errors Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Transactions-errors-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Errors count over time ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"30s\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"id\":\"3\",\"params\":{\"field\":\"type\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"New Visualization ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Errors-count-over-time-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Transactions-errors-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMxOTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Errors vs successful transactions [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"status\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"percentage\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"percentage\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Errors vs successful transactions [Packetbeat] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Errors-vs-successful-transactions-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Packetbeat-Search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMxOTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Latency Histogram [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"event.duration\",\"interval\":10000000},\"schema\":\"segment\",\"type\":\"histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Latency Histogram [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Latency-histogram-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Packetbeat-Search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMxOTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Client IP Locations (requires GeoIP enrichment) [Packetbeat] ECS","uiStateJSON":"{\"mapCenter\": [0, -0.17578125]}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"client.geo.location\",\"isFilteredByCollar\":true,\"mapBounds\":{\"bottom_right\":{\"lat\":-84.0160220686566,\"lon\":259.80468750000006},\"top_left\":{\"lat\":83.97925949886205,\"lon\":-259.80468750000006}},\"mapCenter\":{\"lat\":-0.17578097424708533,\"lon\":0},\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatBlur\":15,\"heatClusterSize\":1.5,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"origin\":\"elastic_maps_service\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Client IP Locations (requires GeoIP enrichment) [Packetbeat] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"Client-locations-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Response times repartition [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"extended_bounds\":{},\"field\":\"event.duration\",\"interval\":10000000},\"schema\":\"group\",\"type\":\"histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Response times repartition [Packetbeat] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Response-times-repartition-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Packetbeat-Search-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} -{"attributes":{"columns":["server.ip","destination.ip","dns.question.name","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"network.protocol\",\"negate\":false,\"params\":{\"query\":\"dns\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"dns\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"dns\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"DNS Protocol [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"DNS Transactions [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Avg Response Time\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Avg Response Time\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"lineWidth\":3.5,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"}],\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Avg Response Time\"},\"type\":\"value\"},{\"id\":\"ValueAxis-2\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"RightAxis-1\",\"position\":\"right\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"DNS Transactions [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"e3f09730-1b80-11e9-83df-75eebb35951e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMDMsMV0="} -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.established\"},\"meta\":{\"alias\":\"TLS sessions\",\"disabled\":false,\"key\":\"tls.established\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"TLS Sessions [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Sessions [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"false\": \"#E24D42\", \"true\": \"#7EB26D\"}, \"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Sessions per minute\",\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Handshake completed\",\"field\":\"tls.established\",\"json\":\"\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"},\"valueAxis\":\"ValueAxis-1\"},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"TLS Sessions ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"059fe5e0-d2dd-11e7-9914-4982455b3063-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzMsMV0="} -{"attributes":{"description":"Packetbeat overview dashboard.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":12,\"x\":12,\"y\":20},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":12,\"x\":36,\"y\":20},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":45},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":60},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":45},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":60},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"9\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"9\",\"embeddableConfig\":{\"mapBounds\":{\"bottom_right\":{\"lat\":-54.97761367069625,\"lon\":153.984375},\"top_left\":{\"lat\":54.97761367069628,\"lon\":-153.984375}},\"mapCollar\":{\"bottom_right\":{\"lat\":-90,\"lon\":180},\"top_left\":{\"lat\":90,\"lon\":-180},\"zoom\":2},\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"10\",\"w\":48,\"x\":0,\"y\":30},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"11\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"12\",\"w\":12,\"x\":0,\"y\":20},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":10,\"i\":\"13\",\"w\":12,\"x\":24,\"y\":20},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"}]","timeRestore":false,"title":"[Packetbeat] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Web-transactions-ecs","name":"panel_0","type":"visualization"},{"id":"DB-transactions-ecs","name":"panel_1","type":"visualization"},{"id":"Response-times-percentiles-ecs","name":"panel_2","type":"visualization"},{"id":"Errors-count-over-time-ecs","name":"panel_3","type":"visualization"},{"id":"Errors-vs-successful-transactions-ecs","name":"panel_4","type":"visualization"},{"id":"Latency-histogram-ecs","name":"panel_5","type":"visualization"},{"id":"Client-locations-ecs","name":"panel_6","type":"visualization"},{"id":"Response-times-repartition-ecs","name":"panel_7","type":"visualization"},{"id":"Navigation-ecs","name":"panel_8","type":"visualization"},{"id":"e3f09730-1b80-11e9-83df-75eebb35951e-ecs","name":"panel_9","type":"visualization"},{"id":"059fe5e0-d2dd-11e7-9914-4982455b3063-ecs","name":"panel_10","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:45.121Z","version":"WzMyMTAsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-pgsql.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-pgsql.ndjson deleted file mode 100644 index 17cf931d848c..000000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-pgsql.ndjson +++ /dev/null @@ -1,11 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} -{"attributes":{"columns":["method","type","path","event.duration","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":true,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"pgsql\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"pgsql\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"pgsql\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"PgSQL Errors Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"PgSQL-errors-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"PgSQL Errors [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"PgSQL Errors [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"PgSQL-Errors-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"PgSQL-errors-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMTIsMV0="} -{"attributes":{"columns":["method","type","path","event.duration","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"pgsql\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"pgsql\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"pgsql\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"PgSQL Transactions [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"PgSQL-transactions-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"PgSQL Methods [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"method\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"wiggle\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"wiggle\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"PgSQL Methods [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"PgSQL-Methods-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"PgSQL-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"PgSQL response times percentiles [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[75,99,99.5]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"shareYAxis\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"PgSQL response times percentiles [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"PgSQL-response-times-percentiles-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"PgSQL-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"PgSQL Throughput [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Sum of destination.bytes\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"2\",\"label\":\"Sum of source.bytes\"},\"mode\":\"normal\",\"show\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"shareYAxis\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"PgSQL Throughput [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"PgSQL-throughput-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"PgSQL-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"PgSQL Reads vs Writes [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"filters\":[{\"input\":{\"query\":\"method: SELECT\",\"language\":\"lucene\"}},{\"input\":{\"query\":\"method: INSERT OR method: UPDATE OR method: DELETE\",\"language\":\"lucene\"}}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per 30 seconds\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"PgSQL Reads vs Writes [Packetbeat] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"PgSQL-Reads-vs-Writes-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"PgSQL-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Most frequent PgSQL queries [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Most frequent PgSQL queries [Packetbeat] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Most-frequent-PgSQL-queries-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"PgSQL-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Slowest PgSQL Queries [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Average Response Time (ns)\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Slowest PgSQL Queries [Packetbeat] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Slowest-PgSQL-queries-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"PgSQL-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMTgsMV0="} -{"attributes":{"description":"Postgres database query performance.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"2\",\"w\":20,\"x\":12,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":35},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":35},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":30,\"i\":\"7\",\"w\":24,\"x\":0,\"y\":50},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":30,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":50},\"panelIndex\":\"8\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Packetbeat] PgSQL performance ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-PgSQL-performance-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Navigation-ecs","name":"panel_0","type":"visualization"},{"id":"PgSQL-Errors-ecs","name":"panel_1","type":"visualization"},{"id":"PgSQL-Methods-ecs","name":"panel_2","type":"visualization"},{"id":"PgSQL-response-times-percentiles-ecs","name":"panel_3","type":"visualization"},{"id":"PgSQL-throughput-ecs","name":"panel_4","type":"visualization"},{"id":"PgSQL-Reads-vs-Writes-ecs","name":"panel_5","type":"visualization"},{"id":"Most-frequent-PgSQL-queries-ecs","name":"panel_6","type":"visualization"},{"id":"Slowest-PgSQL-queries-ecs","name":"panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:46.172Z","version":"WzMyMjEsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-thrift.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-thrift.ndjson deleted file mode 100644 index a3c02c4df1bb..000000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-thrift.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} -{"attributes":{"columns":["method","type","path","event.duration","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"thrift\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"thrift\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"thrift\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"type: thrift\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Thrift Transactions Search [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Thrift-transactions-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Thrift requests per minute [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"m\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Thrift requests per minute ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Thrift-requests-per-minute-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Thrift-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMjMsMV0="} -{"attributes":{"columns":["method","type","path","event.duration","status"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":true,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"thrift\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"thrift\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"thrift\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"type: thrift\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Thrift Errors [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Thrift-errors-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Thrift RPC Errors [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"yAxis\":{}},\"title\":\"Thrift RPC Errors ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"Thrift-RPC-Errors-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Thrift-errors-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Slowest Thrift RPC methods [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"method\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Slowest Thrift RPC methods [Packetbeat] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"Slowest-Thrift-RPC-methods-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Thrift-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Thrift response times percentiles [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[75,99,99.5]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"shareYAxis\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Thrift response times percentiles [Packetbeat] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"Thrift-response-times-percentiles-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Thrift-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Top Thrift-RPC methods [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"field\":\"method\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Top Thrift-RPC methods ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Top-Thrift-RPC-methods-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Thrift-transactions-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[]}"},"savedSearchRefName":"search_0","title":"Top Thrift-RPC calls with errors [Packetbeat] ECS","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"field\":\"method\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"mode\":\"stacked\",\"shareYAxis\":true},\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"Top-Thrift-RPC-calls-with-errors-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"Thrift-errors-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMjgsMV0="} -{"attributes":{"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":12,\"h\":16,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":0,\"w\":20,\"h\":16,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":0,\"w\":16,\"h\":16,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":16,\"w\":24,\"h\":12,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":16,\"w\":24,\"h\":12,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":24,\"h\":16,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":28,\"w\":24,\"h\":16,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Packetbeat] Thrift performance ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Packetbeat-Thrift-performance-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Navigation-ecs","name":"1:panel_1","type":"visualization"},{"id":"Thrift-requests-per-minute-ecs","name":"2:panel_2","type":"visualization"},{"id":"Thrift-RPC-Errors-ecs","name":"3:panel_3","type":"visualization"},{"id":"Slowest-Thrift-RPC-methods-ecs","name":"4:panel_4","type":"visualization"},{"id":"Thrift-response-times-percentiles-ecs","name":"5:panel_5","type":"visualization"},{"id":"Top-Thrift-RPC-methods-ecs","name":"6:panel_6","type":"visualization"},{"id":"Top-Thrift-RPC-calls-with-errors-ecs","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:47.238Z","version":"WzMyMzEsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-tls.ndjson b/packetbeat/_meta/kibana/7/dashboard/Packetbeat-tls.ndjson deleted file mode 100644 index 266f1f6a85de..000000000000 --- a/packetbeat/_meta/kibana/7/dashboard/Packetbeat-tls.ndjson +++ /dev/null @@ -1,20 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Navigation [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"Navigation-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzIsMV0="} -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.established\"},\"meta\":{\"alias\":\"TLS sessions\",\"disabled\":false,\"key\":\"tls.established\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"TLS Sessions [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Sessions [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"false\": \"#E24D42\", \"true\": \"#7EB26D\"}, \"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Sessions per minute\",\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Handshake completed\",\"field\":\"tls.established\",\"json\":\"\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"},\"valueAxis\":\"ValueAxis-1\"},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"TLS Sessions ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"059fe5e0-d2dd-11e7-9914-4982455b3063-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"query\",\"negate\":false,\"type\":\"custom\",\"value\":\"{\\\"exists\\\":{\\\"field\\\":\\\"tls\\\"}}\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"exists\":{\"field\":\"tls\"}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"TLS Alerts [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"None\": \"#7EB26D\", \"handshake_failure\": \"#E24D42\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"tls.detailed.alert_types\",\"include\":\".*\",\"json\":\"{\\\"missing\\\": \\\"None\\\"}\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"TLS Alerts ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"c14377a0-d353-11e7-9914-4982455b3063-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.established\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.established\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Total Number of TLS Sessions [Packetbeat] ECS","uiStateJSON":"{\"P-5\": {\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}, \"P-7\": {\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total Number of TLS Sessions ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"061de380-d361-11e7-9914-4982455b3063-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzUsMV0="} -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.client.server_name\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.client.server_name\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"TLS Server Name Indication [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"94908e80-d2d8-11e7-9914-4982455b3063-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Server Name Indication [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Server Name Indication\",\"field\":\"tls.client.server_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"hideLabel\":false,\"maxFontSize\":64,\"minFontSize\":14,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"TLS Server Name Indication ECS\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"a28d09d0-d361-11e7-9914-4982455b3063-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"94908e80-d2d8-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzYsMV0="} -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.detailed.version\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.detailed.version\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"TLS Version [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"bf3d23b0-d37c-11e7-9914-4982455b3063-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Versions [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"TLS version\",\"field\":\"tls.detailed.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"TLS Versions ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0af0b790-d37d-11e7-9914-4982455b3063-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"bf3d23b0-d37c-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzcsMV0="} -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.detailed.server_certificate.public_key_size\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.detailed.server_certificate.public_key_size\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Server Public Key Size ECS","version":1},"coreMigrationVersion":"8.0.0","id":"8f0ff590-d37d-11e7-9914-4982455b3063-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Server Public Key Size [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Public Key Size\",\"field\":\"tls.detailed.server_certificate.public_key_size\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Server Public Key Size ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"ae6e33c0-d37d-11e7-9914-4982455b3063-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"8f0ff590-d37d-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Session Resume [Packetbeat] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"exclude\":\"\",\"field\":\"tls.detailed.resumption_method\",\"json\":\"{\\n\\\"missing\\\": \\\"none\\\"\\n}\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"TLS Session Resume [Packetbeat] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"2c467370-d392-11e7-8fa0-232aa9259081-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyMzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Server Certificates [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Subject Common Name\",\"field\":\"tls.detailed.server_certificate.subject.common_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Organization\",\"field\":\"tls.detailed.server_certificate.subject.organization\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"TLS Server Certificates ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"0958a910-d396-11e7-8fa0-232aa9259081-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Client Certificates [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Subject Common Name\",\"field\":\"tls.detailed.client_certificate.subject.common_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Signature Algorithm\",\"field\":\"tls.detailed.client_certificate.signature_algorithm\",\"json\":\"{ \\\"missing\\\": \\\"N/A\\\" }\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"TLS Client Certificates ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"86743f90-d396-11e7-8fa0-232aa9259081-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Cipher [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Cipher\",\"field\":\"tls.cipher\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"TLS Cipher ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"463d2bf0-d3a8-11e7-9081-ab2af08e9961-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDIsMV0="} -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.client.ja3\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.client.ja3\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"TLS Fingerprint [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6b1b1360-d49d-11e7-996f-bd7c1ca4591b-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Fingerprint [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"JA3 Fingerprint\",\"field\":\"tls.client.ja3\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"TLS Fingerprint ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"ad2a8b50-d49d-11e7-996f-bd7c1ca4591b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6b1b1360-d49d-11e7-996f-bd7c1ca4591b-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDMsMV0="} -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.established\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.established\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}},{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"event.duration\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.duration\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"TLS Handshake Latency [Packetbeat] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"8e2af860-d520-11e7-9fff-7b1ebf397ba9-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.duration\",\"negate\":false,\"params\":{\"gte\":0,\"lt\":1000000000},\"type\":\"range\",\"value\":\"0 to 1,000,000,000\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"range\":{\"event.duration\":{\"gte\":0,\"lt\":1000000000}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"TLS Handshake Latency [Packetbeat] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Handshake Latency (ns)\",\"extended_bounds\":{},\"field\":\"event.duration\",\"interval\":2000000},\"schema\":\"segment\",\"type\":\"histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"TLS Handshake Latency ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"d2e15950-d560-11e7-9fff-7b1ebf397ba9-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"packetbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"8e2af860-d520-11e7-9fff-7b1ebf397ba9-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNDQsMV0="} -{"attributes":{"description":"TLS Sessions ECS","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}"},"optionsJSON":"{\"darkTheme\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":16,\"x\":0,\"y\":0,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":36,\"h\":16,\"x\":12,\"y\":0,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":12,\"y\":28,\"i\":\"9\"},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":0,\"y\":16,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":48,\"h\":12,\"x\":0,\"y\":40,\"i\":\"11\"},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":24,\"y\":28,\"i\":\"12\"},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":36,\"y\":28,\"i\":\"13\"},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":0,\"y\":28,\"i\":\"14\"},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":52,\"i\":\"15\"},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":64,\"i\":\"16\"},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":52,\"i\":\"17\"},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":64,\"i\":\"18\"},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":36,\"h\":12,\"x\":12,\"y\":16,\"i\":\"19\"},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"}]","timeRestore":false,"title":"[Packetbeat] TLS Sessions ECS","version":1},"coreMigrationVersion":"8.0.0","id":"tls-sessions-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Navigation-ecs","name":"4:panel_4","type":"visualization"},{"id":"059fe5e0-d2dd-11e7-9914-4982455b3063-ecs","name":"8:panel_8","type":"visualization"},{"id":"c14377a0-d353-11e7-9914-4982455b3063-ecs","name":"9:panel_9","type":"visualization"},{"id":"061de380-d361-11e7-9914-4982455b3063-ecs","name":"10:panel_10","type":"visualization"},{"id":"a28d09d0-d361-11e7-9914-4982455b3063-ecs","name":"11:panel_11","type":"visualization"},{"id":"0af0b790-d37d-11e7-9914-4982455b3063-ecs","name":"12:panel_12","type":"visualization"},{"id":"ae6e33c0-d37d-11e7-9914-4982455b3063-ecs","name":"13:panel_13","type":"visualization"},{"id":"2c467370-d392-11e7-8fa0-232aa9259081-ecs","name":"14:panel_14","type":"visualization"},{"id":"0958a910-d396-11e7-8fa0-232aa9259081-ecs","name":"15:panel_15","type":"visualization"},{"id":"86743f90-d396-11e7-8fa0-232aa9259081-ecs","name":"16:panel_16","type":"visualization"},{"id":"463d2bf0-d3a8-11e7-9081-ab2af08e9961-ecs","name":"17:panel_17","type":"visualization"},{"id":"ad2a8b50-d49d-11e7-996f-bd7c1ca4591b-ecs","name":"18:panel_18","type":"visualization"},{"id":"d2e15950-d560-11e7-9fff-7b1ebf397ba9-ecs","name":"19:panel_19","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:28:48.230Z","version":"WzMyNTEsMV0="} diff --git a/packetbeat/_meta/kibana/7/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs.json b/packetbeat/_meta/kibana/7/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs.json new file mode 100644 index 000000000000..b43dbda01675 --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "DHCPv4 Overview", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}" + }, + "optionsJSON": "{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}", + "panelsJSON": "[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1\",\"w\":48,\"x\":0,\"y\":7},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"2\",\"w\":8,\"x\":0,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"3\",\"w\":11,\"x\":37,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":14,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":16},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"6\",\"w\":8,\"x\":8,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"7\",\"w\":8,\"x\":16,\"y\":0},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"8\",\"w\":13,\"x\":24,\"y\":0},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]", + "timeRestore": false, + "title": "[Packetbeat] DHCPv4 ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "a7b35890-8baa-11e8-9676-ef67484126fb-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "8460fcd0-8baa-11e8-9676-ef67484126fb-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "4ad9db20-8bab-11e8-9676-ef67484126fb-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "418dfbe0-8bac-11e8-9676-ef67484126fb-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "b8992150-8ba8-11e8-9676-ef67484126fb-ecs", + "name": "5:panel_5", + "type": "search" + }, + { + "id": "d0120dc0-8bac-11e8-9676-ef67484126fb-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "11d33ea0-8bad-11e8-9676-ef67484126fb-ecs", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "f43a8f20-8bb5-11e8-9676-ef67484126fb-ecs", + "name": "8:panel_8", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:28:36.983Z", + "version": "WzMxMjcsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/dashboard/tls-sessions-ecs.json b/packetbeat/_meta/kibana/7/dashboard/tls-sessions-ecs.json new file mode 100644 index 000000000000..e81e26e70852 --- /dev/null +++ b/packetbeat/_meta/kibana/7/dashboard/tls-sessions-ecs.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "TLS Sessions ECS", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}" + }, + "optionsJSON": "{\"darkTheme\": false, \"useMargins\": false}", + "panelsJSON": "[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":16,\"x\":0,\"y\":0,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":36,\"h\":16,\"x\":12,\"y\":0,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":12,\"y\":28,\"i\":\"9\"},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":0,\"y\":16,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":48,\"h\":12,\"x\":0,\"y\":40,\"i\":\"11\"},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":24,\"y\":28,\"i\":\"12\"},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":36,\"y\":28,\"i\":\"13\"},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":12,\"h\":12,\"x\":0,\"y\":28,\"i\":\"14\"},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":52,\"i\":\"15\"},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":0,\"y\":64,\"i\":\"16\"},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":52,\"i\":\"17\"},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":24,\"h\":12,\"x\":24,\"y\":64,\"i\":\"18\"},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"w\":36,\"h\":12,\"x\":12,\"y\":16,\"i\":\"19\"},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"}]", + "timeRestore": false, + "title": "[Packetbeat] TLS Sessions ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "tls-sessions-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Navigation-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "059fe5e0-d2dd-11e7-9914-4982455b3063-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "c14377a0-d353-11e7-9914-4982455b3063-ecs", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "061de380-d361-11e7-9914-4982455b3063-ecs", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "a28d09d0-d361-11e7-9914-4982455b3063-ecs", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "0af0b790-d37d-11e7-9914-4982455b3063-ecs", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "ae6e33c0-d37d-11e7-9914-4982455b3063-ecs", + "name": "13:panel_13", + "type": "visualization" + }, + { + "id": "2c467370-d392-11e7-8fa0-232aa9259081-ecs", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "0958a910-d396-11e7-8fa0-232aa9259081-ecs", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "86743f90-d396-11e7-8fa0-232aa9259081-ecs", + "name": "16:panel_16", + "type": "visualization" + }, + { + "id": "463d2bf0-d3a8-11e7-9081-ab2af08e9961-ecs", + "name": "17:panel_17", + "type": "visualization" + }, + { + "id": "ad2a8b50-d49d-11e7-996f-bd7c1ca4591b-ecs", + "name": "18:panel_18", + "type": "visualization" + }, + { + "id": "d2e15950-d560-11e7-9fff-7b1ebf397ba9-ecs", + "name": "19:panel_19", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyNTEsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/651fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs.json b/packetbeat/_meta/kibana/7/search/651fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs.json new file mode 100644 index 000000000000..5fed32fe8e98 --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/651fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs.json @@ -0,0 +1,45 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"type\",\"negate\":false,\"params\":{\"query\":\"mongodb\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mongodb\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"type\":{\"query\":\"mongodb\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":true,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "MongoDB errors [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "651fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:42.017Z", + "version": "WzMxNjcsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/6b1b1360-d49d-11e7-996f-bd7c1ca4591b-ecs.json b/packetbeat/_meta/kibana/7/search/6b1b1360-d49d-11e7-996f-bd7c1ca4591b-ecs.json new file mode 100644 index 000000000000..b6cc21990424 --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/6b1b1360-d49d-11e7-996f-bd7c1ca4591b-ecs.json @@ -0,0 +1,40 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.client.ja3\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.client.ja3\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "TLS Fingerprint [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "6b1b1360-d49d-11e7-996f-bd7c1ca4591b-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyNDksMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs.json b/packetbeat/_meta/kibana/7/search/71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs.json new file mode 100644 index 000000000000..7498f7a45895 --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs.json @@ -0,0 +1,40 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"network.protocol\",\"negate\":false,\"params\":{\"query\":\"http\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"http\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"http\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "HTTP Transactions Search [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:45.121Z", + "version": "WzMyMDUsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/8e2af860-d520-11e7-9fff-7b1ebf397ba9-ecs.json b/packetbeat/_meta/kibana/7/search/8e2af860-d520-11e7-9fff-7b1ebf397ba9-ecs.json new file mode 100644 index 000000000000..15e1a29740b2 --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/8e2af860-d520-11e7-9fff-7b1ebf397ba9-ecs.json @@ -0,0 +1,45 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.established\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.established\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}},{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"event.duration\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.duration\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "TLS Handshake Latency [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "8e2af860-d520-11e7-9fff-7b1ebf397ba9-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyNTAsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/8f0ff590-d37d-11e7-9914-4982455b3063-ecs.json b/packetbeat/_meta/kibana/7/search/8f0ff590-d37d-11e7-9914-4982455b3063-ecs.json new file mode 100644 index 000000000000..db49781cdc86 --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/8f0ff590-d37d-11e7-9914-4982455b3063-ecs.json @@ -0,0 +1,40 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.detailed.server_certificate.public_key_size\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.detailed.server_certificate.public_key_size\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Server Public Key Size ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "8f0ff590-d37d-11e7-9914-4982455b3063-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyNDgsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/94908e80-d2d8-11e7-9914-4982455b3063-ecs.json b/packetbeat/_meta/kibana/7/search/94908e80-d2d8-11e7-9914-4982455b3063-ecs.json new file mode 100644 index 000000000000..3e2a03580e75 --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/94908e80-d2d8-11e7-9914-4982455b3063-ecs.json @@ -0,0 +1,40 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.client.server_name\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.client.server_name\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "TLS Server Name Indication [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "94908e80-d2d8-11e7-9914-4982455b3063-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyNDYsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/Cassandra-QueryView-ecs.json b/packetbeat/_meta/kibana/7/search/Cassandra-QueryView-ecs.json new file mode 100644 index 000000000000..ba17ee012746 --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/Cassandra-QueryView-ecs.json @@ -0,0 +1,48 @@ +{ + "attributes": { + "columns": [ + "cassandra.request.query", + "cassandra.response.result.rows.meta.keyspace", + "cassandra.response.result.rows.meta.table", + "cassandra.response.result.rows.num_rows" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"cassandra.request.headers.op\",\"negate\":false,\"params\":{\"query\":\"QUERY\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"QUERY\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"cassandra.request.headers.op\":{\"query\":\"QUERY\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"cassandra.response.headers.op\",\"negate\":true,\"params\":{\"query\":\"ERROR\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"ERROR\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"cassandra.response.headers.op\":{\"query\":\"ERROR\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Cassandra Query Search [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Cassandra-QueryView-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:35.924Z", + "version": "WzMxMTcsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/MongoDB-transactions-ecs.json b/packetbeat/_meta/kibana/7/search/MongoDB-transactions-ecs.json new file mode 100644 index 000000000000..dddabbc0b7ef --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/MongoDB-transactions-ecs.json @@ -0,0 +1,45 @@ +{ + "attributes": { + "columns": [ + "method", + "type", + "path", + "event.duration", + "status", + "query" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"mongodb\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mongodb\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"mongodb\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "MongoDB Transaction Search [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "MongoDB-transactions-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:42.017Z", + "version": "WzMxNjgsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/MongoDB-transactions-with-write-concern-0-ecs.json b/packetbeat/_meta/kibana/7/search/MongoDB-transactions-with-write-concern-0-ecs.json new file mode 100644 index 000000000000..4dd77612da7d --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/MongoDB-transactions-with-write-concern-0-ecs.json @@ -0,0 +1,45 @@ +{ + "attributes": { + "columns": [ + "method", + "type", + "path", + "event.duration", + "status", + "query" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"mongodb\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mongodb\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"mongodb\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"request: \\\"writeConcern w 0\\\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "MongoDB transactions with write concern 0 [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "MongoDB-transactions-with-write-concern-0-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:42.017Z", + "version": "WzMxNjksMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/MySQL-Transactions-ecs.json b/packetbeat/_meta/kibana/7/search/MySQL-Transactions-ecs.json new file mode 100644 index 000000000000..273b9787f45e --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/MySQL-Transactions-ecs.json @@ -0,0 +1,44 @@ +{ + "attributes": { + "columns": [ + "method", + "type", + "path", + "event.duration", + "status" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"type\",\"negate\":false,\"params\":{\"query\":\"mysql\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mysql\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"type\":{\"query\":\"mysql\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "MySQL Transactions [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "MySQL-Transactions-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:43.059Z", + "version": "WzMxODAsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/MySQL-errors-ecs.json b/packetbeat/_meta/kibana/7/search/MySQL-errors-ecs.json new file mode 100644 index 000000000000..514a9197b24c --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/MySQL-errors-ecs.json @@ -0,0 +1,49 @@ +{ + "attributes": { + "columns": [ + "method", + "type", + "path", + "event.duration", + "status" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":true,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"mysql\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"mysql\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"mysql\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "MySQL Errors Search [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "MySQL-errors-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:43.059Z", + "version": "WzMxNzksMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/NFS-errors-search-ecs.json b/packetbeat/_meta/kibana/7/search/NFS-errors-search-ecs.json new file mode 100644 index 000000000000..2121c3cacd00 --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/NFS-errors-search-ecs.json @@ -0,0 +1,50 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"nfs.status\",\"negate\":true,\"params\":{\"query\":\"NFSERR_NOENT\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"NFSERR_NOENT\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"nfs.status\":{\"query\":\"NFSERR_NOENT\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"nfs.status\",\"negate\":true,\"params\":{\"query\":\"NFS_OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"NFS_OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"nfs.status\":{\"query\":\"NFS_OK\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"nfs-ecs\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"nfs-ecs\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"nfs-ecs\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "NFS Error Search [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "NFS-errors-search-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:44.127Z", + "version": "WzMxOTIsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/Packetbeat-Flows-Search-ecs.json b/packetbeat/_meta/kibana/7/search/Packetbeat-Flows-Search-ecs.json new file mode 100644 index 000000000000..3e7a9f3d7651 --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/Packetbeat-Flows-Search-ecs.json @@ -0,0 +1,43 @@ +{ + "attributes": { + "columns": [ + "type", + "event.start", + "event.end", + "source.ip", + "source.port", + "destination.ip", + "destination.port", + "source.bytes", + "destination.bytes" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"type: flow\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Flows Search [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Packetbeat-Flows-Search-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:39.992Z", + "version": "WzMxNDgsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/Packetbeat-Search-ecs.json b/packetbeat/_meta/kibana/7/search/Packetbeat-Search-ecs.json new file mode 100644 index 000000000000..698f02a13075 --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/Packetbeat-Search-ecs.json @@ -0,0 +1,48 @@ +{ + "attributes": { + "columns": [ + "client.ip", + "client.port", + "server.ip", + "server.port", + "event.dataset", + "query", + "method", + "event.duration", + "status" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":true,\"params\":{\"query\":\"flow\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"flow\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"flow\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Packetbeat Search ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Packetbeat-Search-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:45.121Z", + "version": "WzMyMDYsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/PgSQL-errors-ecs.json b/packetbeat/_meta/kibana/7/search/PgSQL-errors-ecs.json new file mode 100644 index 000000000000..6e5f33e0dc35 --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/PgSQL-errors-ecs.json @@ -0,0 +1,49 @@ +{ + "attributes": { + "columns": [ + "method", + "type", + "path", + "event.duration", + "status" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":true,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"pgsql\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"pgsql\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"pgsql\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "PgSQL Errors Search [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "PgSQL-errors-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:46.172Z", + "version": "WzMyMTksMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/PgSQL-transactions-ecs.json b/packetbeat/_meta/kibana/7/search/PgSQL-transactions-ecs.json new file mode 100644 index 000000000000..2a85f9401293 --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/PgSQL-transactions-ecs.json @@ -0,0 +1,44 @@ +{ + "attributes": { + "columns": [ + "method", + "type", + "path", + "event.duration", + "status" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"pgsql\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"pgsql\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"pgsql\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "PgSQL Transactions [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "PgSQL-transactions-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:46.172Z", + "version": "WzMyMjAsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/Thrift-errors-ecs.json b/packetbeat/_meta/kibana/7/search/Thrift-errors-ecs.json new file mode 100644 index 000000000000..5a99cdebb61b --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/Thrift-errors-ecs.json @@ -0,0 +1,49 @@ +{ + "attributes": { + "columns": [ + "method", + "type", + "path", + "event.duration", + "status" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":true,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"thrift\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"thrift\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"thrift\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"type: thrift\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Thrift Errors [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Thrift-errors-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:47.238Z", + "version": "WzMyMzAsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/Thrift-transactions-ecs.json b/packetbeat/_meta/kibana/7/search/Thrift-transactions-ecs.json new file mode 100644 index 000000000000..9b2fa4fef952 --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/Thrift-transactions-ecs.json @@ -0,0 +1,44 @@ +{ + "attributes": { + "columns": [ + "method", + "type", + "path", + "event.duration", + "status" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"thrift\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"thrift\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"thrift\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"type: thrift\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Thrift Transactions Search [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Thrift-transactions-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:47.238Z", + "version": "WzMyMjksMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/Transactions-errors-ecs.json b/packetbeat/_meta/kibana/7/search/Transactions-errors-ecs.json new file mode 100644 index 000000000000..bcde80d6302e --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/Transactions-errors-ecs.json @@ -0,0 +1,53 @@ +{ + "attributes": { + "columns": [ + "client.ip", + "client.port", + "server.ip", + "server.port", + "event.dataset", + "query", + "method", + "event.duration", + "status" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":true,\"params\":{\"query\":\"flow\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"flow\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"flow\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":true,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Transactions Errors Search [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Transactions-errors-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:45.121Z", + "version": "WzMyMDcsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/b8992150-8ba8-11e8-9676-ef67484126fb-ecs.json b/packetbeat/_meta/kibana/7/search/b8992150-8ba8-11e8-9676-ef67484126fb-ecs.json new file mode 100644 index 000000000000..a20d938e4f8e --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/b8992150-8ba8-11e8-9676-ef67484126fb-ecs.json @@ -0,0 +1,47 @@ +{ + "attributes": { + "columns": [ + "dhcpv4.transaction_id", + "dhcpv4.op_code", + "dhcpv4.option.message_type", + "source.ip", + "destination.ip", + "dhcpv4.client_mac", + "dhcpv4.option.hostname", + "dhcpv4.option.class_identifier" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"dhcpv4\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"dhcpv4\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"dhcpv4\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "DHCPv4 [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "b8992150-8ba8-11e8-9676-ef67484126fb-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:36.983Z", + "version": "WzMxMjMsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/bf3d23b0-d37c-11e7-9914-4982455b3063-ecs.json b/packetbeat/_meta/kibana/7/search/bf3d23b0-d37c-11e7-9914-4982455b3063-ecs.json new file mode 100644 index 000000000000..4bb56ce9185d --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/bf3d23b0-d37c-11e7-9914-4982455b3063-ecs.json @@ -0,0 +1,40 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.detailed.version\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.detailed.version\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "TLS Version [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "bf3d23b0-d37c-11e7-9914-4982455b3063-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyNDcsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs.json b/packetbeat/_meta/kibana/7/search/d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs.json new file mode 100644 index 000000000000..549218e48681 --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs.json @@ -0,0 +1,43 @@ +{ + "attributes": { + "columns": [ + "server.ip", + "destination.ip", + "dns.question.name", + "status" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"network.protocol\",\"negate\":false,\"params\":{\"query\":\"dns\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"dns\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"dns\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "DNS Protocol [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:45.121Z", + "version": "WzMyMDgsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/eaa83e60-190b-11e9-be0d-adde5066235e-ecs.json b/packetbeat/_meta/kibana/7/search/eaa83e60-190b-11e9-be0d-adde5066235e-ecs.json new file mode 100644 index 000000000000..6a2c57c4e1d4 --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/eaa83e60-190b-11e9-be0d-adde5066235e-ecs.json @@ -0,0 +1,40 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"cassandra\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"cassandra\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"cassandra\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Cassandra Search [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:35.924Z", + "version": "WzMxMTgsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs.json b/packetbeat/_meta/kibana/7/search/ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs.json new file mode 100644 index 000000000000..5430a0294141 --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs.json @@ -0,0 +1,40 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.established\"},\"meta\":{\"alias\":\"TLS sessions\",\"disabled\":false,\"key\":\"tls.established\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "TLS Sessions [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyNDUsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/search/nfs-ecs.json b/packetbeat/_meta/kibana/7/search/nfs-ecs.json new file mode 100644 index 000000000000..1c6895e2cb4a --- /dev/null +++ b/packetbeat/_meta/kibana/7/search/nfs-ecs.json @@ -0,0 +1,40 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"nfs-ecs\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"nfs-ecs\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"nfs-ecs\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "NFS Search [Packetbeat] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "nfs-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:28:44.127Z", + "version": "WzMxOTEsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/059fe5e0-d2dd-11e7-9914-4982455b3063-ecs.json b/packetbeat/_meta/kibana/7/visualization/059fe5e0-d2dd-11e7-9914-4982455b3063-ecs.json new file mode 100644 index 000000000000..45dd3628e8d6 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/059fe5e0-d2dd-11e7-9914-4982455b3063-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "TLS Sessions [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"colors\": {\"false\": \"#E24D42\", \"true\": \"#7EB26D\"}, \"legendOpen\": false}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Sessions per minute\",\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Handshake completed\",\"field\":\"tls.established\",\"json\":\"\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"},\"valueAxis\":\"ValueAxis-1\"},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"TLS Sessions ECS\",\"type\":\"histogram\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "059fe5e0-d2dd-11e7-9914-4982455b3063-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyMzMsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/061de380-d361-11e7-9914-4982455b3063-ecs.json b/packetbeat/_meta/kibana/7/visualization/061de380-d361-11e7-9914-4982455b3063-ecs.json new file mode 100644 index 000000000000..f854cedad9d2 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/061de380-d361-11e7-9914-4982455b3063-ecs.json @@ -0,0 +1,32 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"exists\":{\"field\":\"tls.established\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"tls.established\",\"negate\":false,\"type\":\"exists\",\"value\":\"exists\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "title": "Total Number of TLS Sessions [Packetbeat] ECS", + "uiStateJSON": "{\"P-5\": {\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}, \"P-7\": {\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total Number of TLS Sessions ECS\",\"type\":\"metric\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "061de380-d361-11e7-9914-4982455b3063-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyMzUsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/0958a910-d396-11e7-8fa0-232aa9259081-ecs.json b/packetbeat/_meta/kibana/7/visualization/0958a910-d396-11e7-8fa0-232aa9259081-ecs.json new file mode 100644 index 000000000000..b7117abdc370 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/0958a910-d396-11e7-8fa0-232aa9259081-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "TLS Server Certificates [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Subject Common Name\",\"field\":\"tls.detailed.server_certificate.subject.common_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Organization\",\"field\":\"tls.detailed.server_certificate.subject.organization\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"TLS Server Certificates ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "0958a910-d396-11e7-8fa0-232aa9259081-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyNDAsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/0af0b790-d37d-11e7-9914-4982455b3063-ecs.json b/packetbeat/_meta/kibana/7/visualization/0af0b790-d37d-11e7-9914-4982455b3063-ecs.json new file mode 100644 index 000000000000..4f446b604978 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/0af0b790-d37d-11e7-9914-4982455b3063-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "TLS Versions [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"TLS version\",\"field\":\"tls.detailed.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"TLS Versions ECS\",\"type\":\"pie\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "0af0b790-d37d-11e7-9914-4982455b3063-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "bf3d23b0-d37c-11e7-9914-4982455b3063-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyMzcsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/11d33ea0-8bad-11e8-9676-ef67484126fb-ecs.json b/packetbeat/_meta/kibana/7/visualization/11d33ea0-8bad-11e8-9676-ef67484126fb-ecs.json new file mode 100644 index 000000000000..06d44cfc2cdd --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/11d33ea0-8bad-11e8-9676-ef67484126fb-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Client Count [Packetbeat DHCPv4] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique MACs\",\"field\":\"dhcpv4.client_mac\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Client Count [Packetbeat DHCPv4] ECS\",\"type\":\"metric\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "11d33ea0-8bad-11e8-9676-ef67484126fb-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b8992150-8ba8-11e8-9676-ef67484126fb-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:36.983Z", + "version": "WzMxMjUsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/2c467370-d392-11e7-8fa0-232aa9259081-ecs.json b/packetbeat/_meta/kibana/7/visualization/2c467370-d392-11e7-8fa0-232aa9259081-ecs.json new file mode 100644 index 000000000000..144b3d2a2268 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/2c467370-d392-11e7-8fa0-232aa9259081-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "TLS Session Resume [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"exclude\":\"\",\"field\":\"tls.detailed.resumption_method\",\"json\":\"{\\n\\\"missing\\\": \\\"none\\\"\\n}\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"TLS Session Resume [Packetbeat] ECS\",\"type\":\"pie\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "2c467370-d392-11e7-8fa0-232aa9259081-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyMzksMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/418dfbe0-8bac-11e8-9676-ef67484126fb-ecs.json b/packetbeat/_meta/kibana/7/visualization/418dfbe0-8bac-11e8-9676-ef67484126fb-ecs.json new file mode 100644 index 000000000000..ddbb5b2015b2 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/418dfbe0-8bac-11e8-9676-ef67484126fb-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Message Types [Packetbeat DHCPv4] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Op Code\",\"field\":\"dhcpv4.op_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Message Type\",\"field\":\"dhcpv4.option.message_type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Message Types [Packetbeat DHCPv4] ECS\",\"type\":\"pie\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "418dfbe0-8bac-11e8-9676-ef67484126fb-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b8992150-8ba8-11e8-9676-ef67484126fb-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:36.983Z", + "version": "WzMxMjIsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/463d2bf0-d3a8-11e7-9081-ab2af08e9961-ecs.json b/packetbeat/_meta/kibana/7/visualization/463d2bf0-d3a8-11e7-9081-ab2af08e9961-ecs.json new file mode 100644 index 000000000000..86caf92f6686 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/463d2bf0-d3a8-11e7-9081-ab2af08e9961-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "TLS Cipher [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Cipher\",\"field\":\"tls.cipher\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"TLS Cipher ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "463d2bf0-d3a8-11e7-9081-ab2af08e9961-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyNDIsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/4ad9db20-8bab-11e8-9676-ef67484126fb-ecs.json b/packetbeat/_meta/kibana/7/visualization/4ad9db20-8bab-11e8-9676-ef67484126fb-ecs.json new file mode 100644 index 000000000000..195fb71c9d22 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/4ad9db20-8bab-11e8-9676-ef67484126fb-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"dhcpv4.option.message_type:nak OR dhcpv4.option.message_type:decline\"}}" + }, + "savedSearchRefName": "search_0", + "title": "NAK and Decline Count [Packetbeat DHCPv4] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":57,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"NAK and Decline Count [Packetbeat DHCPv4] ECS\",\"type\":\"metric\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "4ad9db20-8bab-11e8-9676-ef67484126fb-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b8992150-8ba8-11e8-9676-ef67484126fb-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:36.983Z", + "version": "WzMxMjEsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/735d25c0-1459-11e9-9de0-f98d1808db8e-ecs.json b/packetbeat/_meta/kibana/7/visualization/735d25c0-1459-11e9-9de0-f98d1808db8e-ecs.json new file mode 100644 index 000000000000..e721e72d88be --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/735d25c0-1459-11e9-9de0-f98d1808db8e-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "DNS Min/Max/Avg Response Time Histogram [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"colors\": {\"Avg Response Time (ns)\": \"#629E51\", \"Max Response Time (ns)\": \"#E24D42\", \"Min Response Time (ns)\": \"#70DBED\"}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Min Response Time (ns)\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"min\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Avg Response Time (ns)\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Max Response Time (ns)\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"4\",\"label\":\"Min Response Time (ns)\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"1\",\"label\":\"Avg Response Time (ns)\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Max Response Time (ns)\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Average event.duration\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"DNS Min/Max/Avg Response Time Histogram [Packetbeat] ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "735d25c0-1459-11e9-9de0-f98d1808db8e-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:38.010Z", + "version": "WzMxMzMsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/8460fcd0-8baa-11e8-9676-ef67484126fb-ecs.json b/packetbeat/_meta/kibana/7/visualization/8460fcd0-8baa-11e8-9676-ef67484126fb-ecs.json new file mode 100644 index 000000000000..1cf98d5f6ba9 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/8460fcd0-8baa-11e8-9676-ef67484126fb-ecs.json @@ -0,0 +1,21 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{}" + }, + "title": "Message Types over Time [Packetbeat DHCPv4] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"c2cf4410-8ba8-11e8-ae15-bdcba81344e6\"}],\"drop_last_bucket\":1,\"filter\":{\"query\":\"type:dhcpv4\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"ignore_global_filter\":0,\"index_pattern\":\"packetbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"NOT dhcpv4.option.message_type:nak NOT dhcpv4.option.message_type:decline\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"8abe6eb0-8ba9-11e8-ae15-bdcba81344e6\",\"label\":\"Response\",\"line_width\":1,\"metrics\":[{\"id\":\"8abe6eb1-8ba9-11e8-ae15-bdcba81344e6\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"dhcpv4.option.message_type\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"filter\":{\"query\":\"dhcpv4.option.message_type:nak\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"ae5610d0-8ba9-11e8-ae15-bdcba81344e6\",\"label\":\"nak\",\"line_width\":\"4\",\"metrics\":[{\"id\":\"ae5610d1-8ba9-11e8-ae15-bdcba81344e6\",\"type\":\"count\"}],\"point_size\":\"3\",\"seperate_axis\":0,\"series_drop_last_bucket\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"filter\":{\"query\":\"dhcpv4.option.message_type:decline\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"cf7ba180-8ba9-11e8-ae15-bdcba81344e6\",\"label\":\"decline\",\"line_width\":\"4\",\"metrics\":[{\"id\":\"cf7ba181-8ba9-11e8-ae15-bdcba81344e6\",\"type\":\"count\"}],\"point_size\":\"3\",\"seperate_axis\":0,\"series_drop_last_bucket\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Message Types over Time [Packetbeat DHCPv4] ECS\",\"type\":\"metrics\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "8460fcd0-8baa-11e8-9676-ef67484126fb-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:28:36.983Z", + "version": "WzMxMjAsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/86743f90-d396-11e7-8fa0-232aa9259081-ecs.json b/packetbeat/_meta/kibana/7/visualization/86743f90-d396-11e7-8fa0-232aa9259081-ecs.json new file mode 100644 index 000000000000..b475cc40f9a4 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/86743f90-d396-11e7-8fa0-232aa9259081-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "TLS Client Certificates [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Subject Common Name\",\"field\":\"tls.detailed.client_certificate.subject.common_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Signature Algorithm\",\"field\":\"tls.detailed.client_certificate.signature_algorithm\",\"json\":\"{ \\\"missing\\\": \\\"N/A\\\" }\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"TLS Client Certificates ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "86743f90-d396-11e7-8fa0-232aa9259081-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "ffc3c0b0-d2d7-11e7-9914-4982455b3063-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyNDEsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Bytes-Transferred-per-Domain-ecs.json b/packetbeat/_meta/kibana/7/visualization/Bytes-Transferred-per-Domain-ecs.json new file mode 100644 index 000000000000..cfc6b045e52b --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Bytes-Transferred-per-Domain-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Bytes Transferred per Domain ECS", + "uiStateJSON": "{\"vis\": {\"colors\": {\"Bytes In\": \"#F2C96D\", \"Bytes Out\": \"#629E51\", \"Count\": \"#1F78C1\", \"Unique count of dns.question.name\": \"#E0752D\"}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes Out\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Domains\",\"field\":\"dns.question.etld_plus_one\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Bytes In\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"grouped\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Bytes Out\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Bytes In\"},\"mode\":\"normal\",\"show\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":true,\"mode\":\"grouped\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Bytes Transferred per Domain ECS\",\"type\":\"histogram\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Bytes-Transferred-per-Domain-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:38.960Z", + "version": "WzMxMzksMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Cassandra-Ops-ecs.json b/packetbeat/_meta/kibana/7/visualization/Cassandra-Ops-ecs.json new file mode 100644 index 000000000000..d35a15aef1fc --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Cassandra-Ops-ecs.json @@ -0,0 +1,33 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "savedSearchRefName": "search_0", + "title": "Cassandra Ops [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"cassandra.request.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cassandra.response.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Cassandra Ops ECS\",\"type\":\"pie\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Cassandra-Ops-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:35.924Z", + "version": "WzMxMTEsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Cassandra-RequestCount-ecs.json b/packetbeat/_meta/kibana/7/visualization/Cassandra-RequestCount-ecs.json new file mode 100644 index 000000000000..ff271123502a --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Cassandra-RequestCount-ecs.json @@ -0,0 +1,33 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "savedSearchRefName": "search_0", + "title": "Cassandra RequestCount [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"square root\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Cassandra RequestCount ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Cassandra-RequestCount-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:35.924Z", + "version": "WzMxMTAsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Cassandra-RequestCountByType-ecs.json b/packetbeat/_meta/kibana/7/visualization/Cassandra-RequestCountByType-ecs.json new file mode 100644 index 000000000000..ad86df8b644f --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Cassandra-RequestCountByType-ecs.json @@ -0,0 +1,33 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "savedSearchRefName": "search_0", + "title": "Cassandra RequestCountByType [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cassandra.request.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{},\"schema\":\"radius\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":false,\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":\"13\",\"scale\":\"log\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Cassandra RequestCountByType ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Cassandra-RequestCountByType-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:35.924Z", + "version": "WzMxMTQsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Cassandra-RequestCountStackByType-ecs.json b/packetbeat/_meta/kibana/7/visualization/Cassandra-RequestCountStackByType-ecs.json new file mode 100644 index 000000000000..eb3862747d6b --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Cassandra-RequestCountStackByType-ecs.json @@ -0,0 +1,33 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "savedSearchRefName": "search_0", + "title": "Cassandra RequestCountStackByType [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cassandra.request.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Cassandra RequestCountStackByType ECS\",\"type\":\"histogram\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Cassandra-RequestCountStackByType-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:35.924Z", + "version": "WzMxMTIsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseCountByType-ecs.json b/packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseCountByType-ecs.json new file mode 100644 index 000000000000..a2d553981503 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseCountByType-ecs.json @@ -0,0 +1,33 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "savedSearchRefName": "search_0", + "title": "Cassandra ResponseCountByType [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"id\":\"3\",\"params\":{\"field\":\"cassandra.response.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"},{\"id\":\"4\",\"params\":{},\"schema\":\"radius\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":false,\"interpolate\":\"linear\",\"radiusRatio\":\"15\",\"scale\":\"log\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Cassandra: ResponseCountByType ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Cassandra-ResponseCountByType-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:35.924Z", + "version": "WzMxMTUsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseCountStackByType-ecs.json b/packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseCountStackByType-ecs.json new file mode 100644 index 000000000000..7a1948fa2b92 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseCountStackByType-ecs.json @@ -0,0 +1,33 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "savedSearchRefName": "search_0", + "title": "Cassandra ResponseCountStackByType [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cassandra.response.headers.op\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Cassandra ResponseCountStackByType ECS\",\"type\":\"histogram\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Cassandra-ResponseCountStackByType-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:35.924Z", + "version": "WzMxMTMsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseKeyspace-ecs.json b/packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseKeyspace-ecs.json new file mode 100644 index 000000000000..874eb987ef84 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseKeyspace-ecs.json @@ -0,0 +1,33 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "savedSearchRefName": "search_0", + "title": "Cassandra ResponseKeyspace [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"cassandra.response.result.rows.meta.keyspace\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cassandra.response.result.rows.meta.table\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Cassandra ResponseKeyspace ECS\",\"type\":\"pie\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Cassandra-ResponseKeyspace-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:35.924Z", + "version": "WzMxMDcsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseTime-ecs.json b/packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseTime-ecs.json new file mode 100644 index 000000000000..db5476207fcd --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseTime-ecs.json @@ -0,0 +1,33 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "savedSearchRefName": "search_0", + "title": "Cassandra ResponseTime [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[5,25,50,75,95]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"square root\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Cassandra ResponseTime [Packetbeat] ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Cassandra-ResponseTime-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:35.924Z", + "version": "WzMxMDksMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseType-ecs.json b/packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseType-ecs.json new file mode 100644 index 000000000000..550a1a4f03b6 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Cassandra-ResponseType-ecs.json @@ -0,0 +1,33 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "savedSearchRefName": "search_0", + "title": "Cassandra ResponseType [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"cassandra.response.result.type\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"shareYAxis\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Cassandra ResponseType ECS\",\"type\":\"pie\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Cassandra-ResponseType-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "eaa83e60-190b-11e9-be0d-adde5066235e-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:35.924Z", + "version": "WzMxMDgsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Client-locations-ecs.json b/packetbeat/_meta/kibana/7/visualization/Client-locations-ecs.json new file mode 100644 index 000000000000..01655bff3996 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Client-locations-ecs.json @@ -0,0 +1,27 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "title": "Client IP Locations (requires GeoIP enrichment) [Packetbeat] ECS", + "uiStateJSON": "{\"mapCenter\": [0, -0.17578125]}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"client.geo.location\",\"isFilteredByCollar\":true,\"mapBounds\":{\"bottom_right\":{\"lat\":-84.0160220686566,\"lon\":259.80468750000006},\"top_left\":{\"lat\":83.97925949886205,\"lon\":-259.80468750000006}},\"mapCenter\":{\"lat\":-0.17578097424708533,\"lon\":0},\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatBlur\":15,\"heatClusterSize\":1.5,\"heatMaxZoom\":16,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"origin\":\"elastic_maps_service\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Client IP Locations (requires GeoIP enrichment) [Packetbeat] ECS\",\"type\":\"tile_map\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Client-locations-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:45.121Z", + "version": "WzMyMDAsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Connections-over-time-ecs.json b/packetbeat/_meta/kibana/7/visualization/Connections-over-time-ecs.json new file mode 100644 index 000000000000..9ef8e4d4e329 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Connections-over-time-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Connections over time [Packetbeat Flows] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique Flows\",\"field\":\"flow.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Unique Flows\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Connections over time [Packetbeat Flows] ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Connections-over-time-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Packetbeat-Flows-Search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:39.992Z", + "version": "WzMxNDUsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/DB-transactions-ecs.json b/packetbeat/_meta/kibana/7/visualization/DB-transactions-ecs.json new file mode 100644 index 000000000000..716d9eb62ee9 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/DB-transactions-ecs.json @@ -0,0 +1,32 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.type\",\"negate\":true,\"params\":{\"query\":\"flow\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"flow\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.type\":{\"query\":\"flow\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "title": "Transaction Types [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.dataset\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Transaction Types [Packetbeat] ECS\",\"type\":\"histogram\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "DB-transactions-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:45.121Z", + "version": "WzMxOTUsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/DNS-Query-Summary-ecs.json b/packetbeat/_meta/kibana/7/visualization/DNS-Query-Summary-ecs.json new file mode 100644 index 000000000000..06b85f59f786 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/DNS-Query-Summary-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "DNS Query Summary [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Client Bytes\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Server Bytes\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Avg Response Time (ns)\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"17\",\"handleNoResults\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":28,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"DNS Query Summary [Packetbeat] ECS\",\"type\":\"metric\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "DNS-Query-Summary-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:38.010Z", + "version": "WzMxMjgsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/DNS-Question-Types-ecs.json b/packetbeat/_meta/kibana/7/visualization/DNS-Question-Types-ecs.json new file mode 100644 index 000000000000..72bb3f0819df --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/DNS-Question-Types-ecs.json @@ -0,0 +1,33 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "savedSearchRefName": "search_0", + "title": "DNS Question Types [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"dns.question.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"DNS Question Types [Packetbeat] ECS\",\"type\":\"pie\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "DNS-Question-Types-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:38.010Z", + "version": "WzMxMzAsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/DNS-Request-Status-Over-Time-ecs.json b/packetbeat/_meta/kibana/7/visualization/DNS-Request-Status-Over-Time-ecs.json new file mode 100644 index 000000000000..2ae73f18daaa --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/DNS-Request-Status-Over-Time-ecs.json @@ -0,0 +1,33 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "savedSearchRefName": "search_0", + "title": "DNS Request Status Over Time [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"colors\": {\"Error\": \"#890F02\", \"OK\": \"#0A50A1\"}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"status\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"DNS Request Status Over Time [Packetbeat] ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "DNS-Request-Status-Over-Time-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:38.010Z", + "version": "WzMxMjksMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/DNS-Response-Codes-ecs.json b/packetbeat/_meta/kibana/7/visualization/DNS-Response-Codes-ecs.json new file mode 100644 index 000000000000..d9622511ae0d --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/DNS-Response-Codes-ecs.json @@ -0,0 +1,33 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "savedSearchRefName": "search_0", + "title": "DNS Response Codes [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Response Code\",\"field\":\"dns.response_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"DNS Response Codes [Packetbeat] ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "DNS-Response-Codes-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:38.010Z", + "version": "WzMxMzIsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/DNS-Top-10-Questions-ecs.json b/packetbeat/_meta/kibana/7/visualization/DNS-Top-10-Questions-ecs.json new file mode 100644 index 000000000000..aac19428d386 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/DNS-Top-10-Questions-ecs.json @@ -0,0 +1,38 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"status\",\"negate\":false,\"params\":{\"query\":\"OK\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"OK\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"status\":{\"query\":\"OK\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"fragment_size\":2147483647,\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"],\"require_field_match\":false},\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "savedSearchRefName": "search_0", + "title": "DNS Top 10 Questions [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Question\",\"field\":\"dns.question.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":30},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"DNS Top 10 Questions [Packetbeat] ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "DNS-Top-10-Questions-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:38.010Z", + "version": "WzMxMzEsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Errors-count-over-time-ecs.json b/packetbeat/_meta/kibana/7/visualization/Errors-count-over-time-ecs.json new file mode 100644 index 000000000000..c6a9fe3153a9 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Errors-count-over-time-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + }, + "savedSearchRefName": "search_0", + "title": "Errors count over time ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"30s\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"id\":\"3\",\"params\":{\"field\":\"type\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"New Visualization ECS\",\"type\":\"histogram\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Errors-count-over-time-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Transactions-errors-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:45.121Z", + "version": "WzMxOTcsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Errors-vs-successful-transactions-ecs.json b/packetbeat/_meta/kibana/7/visualization/Errors-vs-successful-transactions-ecs.json new file mode 100644 index 000000000000..6bb5cb8a8167 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Errors-vs-successful-transactions-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Errors vs successful transactions [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"status\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"percentage\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"percentage\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Errors vs successful transactions [Packetbeat] ECS\",\"type\":\"histogram\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Errors-vs-successful-transactions-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Packetbeat-Search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:45.121Z", + "version": "WzMxOTgsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/HTTP-codes-for-the-top-queries-ecs.json b/packetbeat/_meta/kibana/7/visualization/HTTP-codes-for-the-top-queries-ecs.json new file mode 100644 index 000000000000..dc8d05712b21 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/HTTP-codes-for-the-top-queries-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "HTTP status codes for the top queries [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"HTTP Query\",\"field\":\"query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"HTTP Status Code\",\"field\":\"http.response.status_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"row\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"HTTP status codes for the top queries [Packetbeat] ECS\",\"type\":\"pie\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "HTTP-codes-for-the-top-queries-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:41.048Z", + "version": "WzMxNTUsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/HTTP-error-codes-ecs.json b/packetbeat/_meta/kibana/7/visualization/HTTP-error-codes-ecs.json new file mode 100644 index 000000000000..412307c58b94 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/HTTP-error-codes-ecs.json @@ -0,0 +1,32 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"type\",\"negate\":false,\"params\":{\"query\":\"http\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"http\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"http\",\"type\":\"phrase\"}}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"query\":{\"language\":\"kuery\",\"query\":\"http.response.status_code >= 300\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "title": "HTTP error codes [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"type\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"HTTP Status Code\",\"field\":\"http.response.status_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Unique count of type\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"HTTP error codes [Packetbeat] ECS\",\"type\":\"histogram\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "HTTP-error-codes-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:41.048Z", + "version": "WzMxNTEsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/HTTP-error-codes-evolution-ecs.json b/packetbeat/_meta/kibana/7/visualization/HTTP-error-codes-evolution-ecs.json new file mode 100644 index 000000000000..14243e44d4b6 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/HTTP-error-codes-evolution-ecs.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"network.protocol\",\"negate\":false,\"params\":{\"query\":\"http\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"http\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"network.protocol\":{\"query\":\"http\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"http.response.status_code\",\"negate\":true,\"params\":{\"gte\":200,\"lt\":299},\"type\":\"range\",\"value\":\"200 to 299\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"range\":{\"http.response.status_code\":{\"gte\":200,\"lte\":299}}}],\"highlight\":{\"fields\":{\"*\":{}},\"post_tags\":[\"@/kibana-highlighted-field@\"],\"pre_tags\":[\"@kibana-highlighted-field@\"]},\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "title": "HTTP error codes evolution [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"HTTP Status Code\",\"field\":\"http.response.status_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"HTTP error codes evolution [Packetbeat] ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "HTTP-error-codes-evolution-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:41.048Z", + "version": "WzMxNTIsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Latency-histogram-ecs.json b/packetbeat/_meta/kibana/7/visualization/Latency-histogram-ecs.json new file mode 100644 index 000000000000..d23e0b9d1eaf --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Latency-histogram-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Latency Histogram [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"event.duration\",\"interval\":10000000},\"schema\":\"segment\",\"type\":\"histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Latency Histogram [Packetbeat] ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Latency-histogram-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Packetbeat-Search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:45.121Z", + "version": "WzMxOTksMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/MongoDB-commands-ecs.json b/packetbeat/_meta/kibana/7/visualization/MongoDB-commands-ecs.json new file mode 100644 index 000000000000..49ebb4750b25 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/MongoDB-commands-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "MongoDB Commands [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"method\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"silhouette\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"silhouette\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MongoDB Commands [Packetbeat] ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "MongoDB-commands-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MongoDB-transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:42.017Z", + "version": "WzMxNjEsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/MongoDB-errors-ecs.json b/packetbeat/_meta/kibana/7/visualization/MongoDB-errors-ecs.json new file mode 100644 index 000000000000..e152f6a092fd --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/MongoDB-errors-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "MongoDB errors [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"resource\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":3},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"method\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"spyPerPage\":10,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"row\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MongoDB errors [Packetbeat] ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "MongoDB-errors-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "651fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:42.017Z", + "version": "WzMxNjAsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/MongoDB-errors-per-collection-ecs.json b/packetbeat/_meta/kibana/7/visualization/MongoDB-errors-per-collection-ecs.json new file mode 100644 index 000000000000..4726feb86573 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/MongoDB-errors-per-collection-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "MongoDB errors per collection [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"resource\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"spyPerPage\":10,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MongoDB errors per collection [Packetbeat] ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "MongoDB-errors-per-collection-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "651fd6d0-88d0-11e7-ad9c-db80de0bf8d3-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:42.017Z", + "version": "WzMxNjIsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/MongoDB-in-slash-out-throughput-ecs.json b/packetbeat/_meta/kibana/7/visualization/MongoDB-in-slash-out-throughput-ecs.json new file mode 100644 index 000000000000..1de1ec015d4a --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/MongoDB-in-slash-out-throughput-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "MongoDB in/out throughput [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Sum of source.bytes\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"4\",\"label\":\"Sum of destination.bytes\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MongoDB in/out throughput [Packetbeat] ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "MongoDB-in-slash-out-throughput-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MongoDB-transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:42.017Z", + "version": "WzMxNjMsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/MongoDB-response-times-by-collection-ecs.json b/packetbeat/_meta/kibana/7/visualization/MongoDB-response-times-by-collection-ecs.json new file mode 100644 index 000000000000..36f849825782 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/MongoDB-response-times-by-collection-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "MongoDB response times by collection [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[99]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"resource\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{},\"schema\":\"radius\",\"type\":\"count\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":\"9\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"drawLinesBetweenPoints\":false,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":\"9\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MongoDB response times by collection [Packetbeat] ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "MongoDB-response-times-by-collection-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MongoDB-transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:42.017Z", + "version": "WzMxNjQsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Most-frequent-MySQL-queries-ecs.json b/packetbeat/_meta/kibana/7/visualization/Most-frequent-MySQL-queries-ecs.json new file mode 100644 index 000000000000..8c7c283bfe03 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Most-frequent-MySQL-queries-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + }, + "savedSearchRefName": "search_0", + "title": "Most frequent MySQL queries ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"field\":\"query\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":true},\"title\":\"Most frequent MySQL queries ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Most-frequent-MySQL-queries-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MySQL-Transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:43.059Z", + "version": "WzMxNzUsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Most-frequent-PgSQL-queries-ecs.json b/packetbeat/_meta/kibana/7/visualization/Most-frequent-PgSQL-queries-ecs.json new file mode 100644 index 000000000000..78e6ae3159d4 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Most-frequent-PgSQL-queries-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Most frequent PgSQL queries [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Most frequent PgSQL queries [Packetbeat] ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Most-frequent-PgSQL-queries-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "PgSQL-transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:46.172Z", + "version": "WzMyMTcsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/MySQL-Errors-ecs.json b/packetbeat/_meta/kibana/7/visualization/MySQL-Errors-ecs.json new file mode 100644 index 000000000000..b004091b3160 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/MySQL-Errors-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "MySQL Errors [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MySQL Errors [Packetbeat] ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "MySQL-Errors-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MySQL-errors-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:43.059Z", + "version": "WzMxNzEsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/MySQL-Methods-ecs.json b/packetbeat/_meta/kibana/7/visualization/MySQL-Methods-ecs.json new file mode 100644 index 000000000000..e534b2531094 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/MySQL-Methods-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "MySQL Methods [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"method\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"wiggle\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"wiggle\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MySQL Methods [Packetbeat] ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "MySQL-Methods-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MySQL-Transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:43.059Z", + "version": "WzMxNzIsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/MySQL-Reads-vs-Writes-ecs.json b/packetbeat/_meta/kibana/7/visualization/MySQL-Reads-vs-Writes-ecs.json new file mode 100644 index 000000000000..86af81ec6897 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/MySQL-Reads-vs-Writes-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "MySQL Reads vs Writes [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"filters\":[{\"input\":{\"query\":\"method: SELECT\",\"language\":\"lucene\"}},{\"input\":{\"query\":\"method: INSERT OR method: UPDATE OR method: DELETE\",\"language\":\"lucene\"}}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per 30 seconds\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MySQL Reads vs Writes [Packetbeat] ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "MySQL-Reads-vs-Writes-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MySQL-Transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:43.059Z", + "version": "WzMxNzgsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/MySQL-throughput-ecs.json b/packetbeat/_meta/kibana/7/visualization/MySQL-throughput-ecs.json new file mode 100644 index 000000000000..ea5b7cf55d7e --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/MySQL-throughput-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "MySQL throughput [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Sum of destination.bytes\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Sum of source.bytes\"},\"mode\":\"normal\",\"show\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"shareYAxis\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"MySQL throughput [Packetbeat] ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "MySQL-throughput-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MySQL-Transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:43.059Z", + "version": "WzMxNzQsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Mysql-response-times-percentiles-ecs.json b/packetbeat/_meta/kibana/7/visualization/Mysql-response-times-percentiles-ecs.json new file mode 100644 index 000000000000..be80d2c70177 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Mysql-response-times-percentiles-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Mysql response times percentiles [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[75,99,99.5]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"shareYAxis\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Mysql response times percentiles [Packetbeat] ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Mysql-response-times-percentiles-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MySQL-Transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:43.059Z", + "version": "WzMxNzcsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/NFS-bytes-in-slash-out-ecs.json b/packetbeat/_meta/kibana/7/visualization/NFS-bytes-in-slash-out-ecs.json new file mode 100644 index 000000000000..dad8527ac6ca --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/NFS-bytes-in-slash-out-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "NFS Request / Response Sizes [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"colors\": {\"Sum of rpc.reply_size\": \"#7EB26D\"}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Request Size\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Response Size\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Request Size\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"2\",\"label\":\"Response Size\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"NFS Request / Response Sizes [Packetbeat] ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "NFS-bytes-in-slash-out-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "nfs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:44.127Z", + "version": "WzMxODksMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/NFS-clients-pie-chart-ecs.json b/packetbeat/_meta/kibana/7/visualization/NFS-clients-pie-chart-ecs.json new file mode 100644 index 000000000000..5503728ded56 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/NFS-clients-pie-chart-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "NFS clients pie chart [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"rpc.cred.machinename\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":16},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"NFS clients pie chart [Packetbeat] ECS\",\"type\":\"pie\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "NFS-clients-pie-chart-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "nfs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:44.127Z", + "version": "WzMxODIsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/NFS-errors-ecs.json b/packetbeat/_meta/kibana/7/visualization/NFS-errors-ecs.json new file mode 100644 index 000000000000..a711ff071cc6 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/NFS-errors-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "NFS errors [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"nfs.status\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":12},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"NFS errors [Packetbeat] ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "NFS-errors-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "NFS-errors-search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:44.127Z", + "version": "WzMxODcsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/NFS-operation-table-ecs.json b/packetbeat/_meta/kibana/7/visualization/NFS-operation-table-ecs.json new file mode 100644 index 000000000000..f0b06d49e9dd --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/NFS-operation-table-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "NFS operation table [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Avg Response Time\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Opcode\",\"field\":\"nfs.opcode\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":16},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"NFS operation table [Packetbeat] ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "NFS-operation-table-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "nfs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:44.127Z", + "version": "WzMxODgsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/NFS-operations-area-chart-ecs.json b/packetbeat/_meta/kibana/7/visualization/NFS-operations-area-chart-ecs.json new file mode 100644 index 000000000000..ac710e64fea3 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/NFS-operations-area-chart-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + }, + "savedSearchRefName": "search_0", + "title": "NFS operations area chart ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"field\":\"nfs.opcode\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":16},\"schema\":\"group\",\"type\":\"terms\"},{\"id\":\"3\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"title\":\"NFS operations area chart ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "NFS-operations-area-chart-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "nfs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:44.127Z", + "version": "WzMxODMsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/NFS-response-times-ecs.json b/packetbeat/_meta/kibana/7/visualization/NFS-response-times-ecs.json new file mode 100644 index 000000000000..1e1aff76cf52 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/NFS-response-times-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "NFS response times [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[50]},\"schema\":\"metric\",\"type\":\"median\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":true,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":\"9\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Median event.duration\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"normal\",\"radiusRatio\":\"9\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":true,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Median event.duration\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"NFS response times [Packetbeat] ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "NFS-response-times-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "nfs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:44.127Z", + "version": "WzMxODYsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/NFS-top-group-pie-chart-ecs.json b/packetbeat/_meta/kibana/7/visualization/NFS-top-group-pie-chart-ecs.json new file mode 100644 index 000000000000..dba56b954073 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/NFS-top-group-pie-chart-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "NFS top group pie chart [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"rpc.cred.gid\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":16},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"NFS top group pie chart [Packetbeat] ECS\",\"type\":\"pie\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "NFS-top-group-pie-chart-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "nfs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:44.127Z", + "version": "WzMxODQsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/NFS-top-users-pie-chart-ecs.json b/packetbeat/_meta/kibana/7/visualization/NFS-top-users-pie-chart-ecs.json new file mode 100644 index 000000000000..9b5470b0afbf --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/NFS-top-users-pie-chart-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "NFS top users pie chart [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"rpc.cred.uid\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":16},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"NFS top users pie chart [Packetbeat] ECS\",\"type\":\"pie\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "NFS-top-users-pie-chart-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "nfs-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:44.127Z", + "version": "WzMxODUsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Navigation-ecs.json b/packetbeat/_meta/kibana/7/visualization/Navigation-ecs.json new file mode 100644 index 000000000000..bcaa469911e6 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Navigation-ecs.json @@ -0,0 +1,21 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "title": "Navigation [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Packetbeat:\\n\\n[Overview](#/dashboard/Packetbeat-Dashboard-ecs)\\n\\n[Network Flows](#/dashboard/Packetbeat-Flows-ecs)\\n\\n[DNS Overview](#/dashboard/65120940-1454-11e9-9de0-f98d1808db8e-ecs) | [Tunneling](#/dashboard/DNS-Unique-Domains-ecs)\\n\\n[DHCPv4 Transactions](#/dashboard/a7b35890-8baa-11e8-9676-ef67484126fb-ecs)\\n\\n[TLS Overview](#/dashboard/tls-sessions-ecs)\\n\\n[HTTP transactions](#/dashboard/Packetbeat-HTTP-ecs)\\n\\nDatabases: [MySQL](#/dashboard/Packetbeat-MySQL-performance-ecs) | [PostgreSQL](#/dashboard/Packetbeat-PgSQL-performance-ecs) | [MongoDB](#/dashboard/Packetbeat-MongoDB-performance-ecs) | [Cassandra](#/dashboard/Packetbeat-Cassandra-ecs)\\n\\nRPC: [Thrift](#/dashboard/Packetbeat-Thrift-performance-ecs)\\n\\nStorage: [NFS](#/dashboard/Packetbeat-NFS-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Packetbeat] ECS\",\"type\":\"markdown\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Navigation-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyMzIsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Network-traffic-between-your-hosts-ecs.json b/packetbeat/_meta/kibana/7/visualization/Network-traffic-between-your-hosts-ecs.json new file mode 100644 index 000000000000..03a2bad46707 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Network-traffic-between-your-hosts-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Network Traffic Between Hosts [Packetbeat Flows] ECS", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Source Bytes\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Bytes\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source IP\",\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination IP\",\"field\":\"destination.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Network Traffic Between Hosts [Packetbeat Flows] ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Network-traffic-between-your-hosts-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Packetbeat-Flows-Search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:39.992Z", + "version": "WzMxNDcsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Number-of-MongoDB-transactions-with-writeConcern-w-equal-0-ecs.json b/packetbeat/_meta/kibana/7/visualization/Number-of-MongoDB-transactions-with-writeConcern-w-equal-0-ecs.json new file mode 100644 index 000000000000..b32521cc2b71 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Number-of-MongoDB-transactions-with-writeConcern-w-equal-0-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Number of MongoDB transactions with writeConcern w=0 [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{},\"schema\":\"radius\",\"type\":\"count\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Number of MongoDB transactions with writeConcern w=0 [Packetbeat] ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Number-of-MongoDB-transactions-with-writeConcern-w-equal-0-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MongoDB-transactions-with-write-concern-0-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:42.017Z", + "version": "WzMxNjYsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/PgSQL-Errors-ecs.json b/packetbeat/_meta/kibana/7/visualization/PgSQL-Errors-ecs.json new file mode 100644 index 000000000000..9d60b8f61423 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/PgSQL-Errors-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "PgSQL Errors [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"PgSQL Errors [Packetbeat] ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "PgSQL-Errors-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "PgSQL-errors-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:46.172Z", + "version": "WzMyMTIsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/PgSQL-Methods-ecs.json b/packetbeat/_meta/kibana/7/visualization/PgSQL-Methods-ecs.json new file mode 100644 index 000000000000..e34f308db505 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/PgSQL-Methods-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "PgSQL Methods [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"method\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"wiggle\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"wiggle\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"PgSQL Methods [Packetbeat] ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "PgSQL-Methods-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "PgSQL-transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:46.172Z", + "version": "WzMyMTMsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/PgSQL-Reads-vs-Writes-ecs.json b/packetbeat/_meta/kibana/7/visualization/PgSQL-Reads-vs-Writes-ecs.json new file mode 100644 index 000000000000..06f73611c78a --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/PgSQL-Reads-vs-Writes-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "PgSQL Reads vs Writes [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"filters\":[{\"input\":{\"query\":\"method: SELECT\",\"language\":\"lucene\"}},{\"input\":{\"query\":\"method: INSERT OR method: UPDATE OR method: DELETE\",\"language\":\"lucene\"}}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"@timestamp per 30 seconds\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"PgSQL Reads vs Writes [Packetbeat] ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "PgSQL-Reads-vs-Writes-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "PgSQL-transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:46.172Z", + "version": "WzMyMTYsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/PgSQL-response-times-percentiles-ecs.json b/packetbeat/_meta/kibana/7/visualization/PgSQL-response-times-percentiles-ecs.json new file mode 100644 index 000000000000..927d181c4269 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/PgSQL-response-times-percentiles-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "PgSQL response times percentiles [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[75,99,99.5]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"shareYAxis\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"PgSQL response times percentiles [Packetbeat] ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "PgSQL-response-times-percentiles-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "PgSQL-transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:46.172Z", + "version": "WzMyMTQsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/PgSQL-throughput-ecs.json b/packetbeat/_meta/kibana/7/visualization/PgSQL-throughput-ecs.json new file mode 100644 index 000000000000..083b9ab3876d --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/PgSQL-throughput-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "PgSQL Throughput [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Sum of destination.bytes\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"2\",\"label\":\"Sum of source.bytes\"},\"mode\":\"normal\",\"show\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"shareYAxis\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"PgSQL Throughput [Packetbeat] ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "PgSQL-throughput-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "PgSQL-transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:46.172Z", + "version": "WzMyMTUsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Response-times-percentiles-ecs.json b/packetbeat/_meta/kibana/7/visualization/Response-times-percentiles-ecs.json new file mode 100644 index 000000000000..73bdf48d75e5 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Response-times-percentiles-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Response times percentiles [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[75,95,99]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"normal\",\"radiusRatio\":9,\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Response times percentiles [Packetbeat] ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Response-times-percentiles-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Packetbeat-Search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:45.121Z", + "version": "WzMxOTYsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Response-times-repartition-ecs.json b/packetbeat/_meta/kibana/7/visualization/Response-times-repartition-ecs.json new file mode 100644 index 000000000000..84e0d1fa3daf --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Response-times-repartition-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Response times repartition [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"extended_bounds\":{},\"field\":\"event.duration\",\"interval\":10000000},\"schema\":\"group\",\"type\":\"histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Response times repartition [Packetbeat] ECS\",\"type\":\"histogram\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Response-times-repartition-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Packetbeat-Search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:45.121Z", + "version": "WzMyMDEsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Slowest-MySQL-queries-ecs.json b/packetbeat/_meta/kibana/7/visualization/Slowest-MySQL-queries-ecs.json new file mode 100644 index 000000000000..79eda819d57a --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Slowest-MySQL-queries-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Slowest MySQL queries ECS", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Avg Response Time\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Slowest MySQL queries ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Slowest-MySQL-queries-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MySQL-Transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:43.059Z", + "version": "WzMxNzYsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Slowest-PgSQL-queries-ecs.json b/packetbeat/_meta/kibana/7/visualization/Slowest-PgSQL-queries-ecs.json new file mode 100644 index 000000000000..4198806bc3d3 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Slowest-PgSQL-queries-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Slowest PgSQL Queries [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Average Response Time (ns)\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Slowest PgSQL Queries [Packetbeat] ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Slowest-PgSQL-queries-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "PgSQL-transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:46.172Z", + "version": "WzMyMTgsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Slowest-Thrift-RPC-methods-ecs.json b/packetbeat/_meta/kibana/7/visualization/Slowest-Thrift-RPC-methods-ecs.json new file mode 100644 index 000000000000..c5d5ed098639 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Slowest-Thrift-RPC-methods-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Slowest Thrift RPC methods [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"method\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Slowest Thrift RPC methods [Packetbeat] ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Slowest-Thrift-RPC-methods-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Thrift-transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:47.238Z", + "version": "WzMyMjUsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Thrift-RPC-Errors-ecs.json b/packetbeat/_meta/kibana/7/visualization/Thrift-RPC-Errors-ecs.json new file mode 100644 index 000000000000..03fe27dce212 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Thrift-RPC-Errors-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + }, + "savedSearchRefName": "search_0", + "title": "Thrift RPC Errors [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"yAxis\":{}},\"title\":\"Thrift RPC Errors ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Thrift-RPC-Errors-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Thrift-errors-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:47.238Z", + "version": "WzMyMjQsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Thrift-requests-per-minute-ecs.json b/packetbeat/_meta/kibana/7/visualization/Thrift-requests-per-minute-ecs.json new file mode 100644 index 000000000000..2cd977669f29 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Thrift-requests-per-minute-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + }, + "savedSearchRefName": "search_0", + "title": "Thrift requests per minute [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"m\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Thrift requests per minute ECS\",\"type\":\"histogram\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Thrift-requests-per-minute-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Thrift-transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:47.238Z", + "version": "WzMyMjMsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Thrift-response-times-percentiles-ecs.json b/packetbeat/_meta/kibana/7/visualization/Thrift-response-times-percentiles-ecs.json new file mode 100644 index 000000000000..ba70bf6ad9e9 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Thrift-response-times-percentiles-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Thrift response times percentiles [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[75,99,99.5]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Percentiles of event.duration\"},\"mode\":\"normal\",\"show\":\"true\",\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"shareYAxis\":true,\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Percentiles of event.duration\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Thrift response times percentiles [Packetbeat] ECS\",\"type\":\"line\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Thrift-response-times-percentiles-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Thrift-transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:47.238Z", + "version": "WzMyMjYsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Top-10-HTTP-requests-ecs.json b/packetbeat/_meta/kibana/7/visualization/Top-10-HTTP-requests-ecs.json new file mode 100644 index 000000000000..9e3b1c96b5ac --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Top-10-HTTP-requests-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Top 10 HTTP requests [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"url.full\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 10 HTTP requests [Packetbeat] ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Top-10-HTTP-requests-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:41.048Z", + "version": "WzMxNTYsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Top-Thrift-RPC-calls-with-errors-ecs.json b/packetbeat/_meta/kibana/7/visualization/Top-Thrift-RPC-calls-with-errors-ecs.json new file mode 100644 index 000000000000..d223dceb2e48 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Top-Thrift-RPC-calls-with-errors-ecs.json @@ -0,0 +1,27 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + }, + "savedSearchRefName": "search_0", + "title": "Top Thrift-RPC calls with errors [Packetbeat] ECS", + "version": 1, + "visState": "{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"field\":\"method\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"mode\":\"stacked\",\"shareYAxis\":true},\"type\":\"histogram\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Top-Thrift-RPC-calls-with-errors-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Thrift-errors-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:47.238Z", + "version": "WzMyMjgsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Top-Thrift-RPC-methods-ecs.json b/packetbeat/_meta/kibana/7/visualization/Top-Thrift-RPC-methods-ecs.json new file mode 100644 index 000000000000..415d2162fdd4 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Top-Thrift-RPC-methods-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + }, + "savedSearchRefName": "search_0", + "title": "Top Thrift-RPC methods [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"id\":\"2\",\"params\":{\"field\":\"method\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Top Thrift-RPC methods ECS\",\"type\":\"histogram\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Top-Thrift-RPC-methods-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Thrift-transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:47.238Z", + "version": "WzMyMjcsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Top-hosts-creating-traffic-ecs.json b/packetbeat/_meta/kibana/7/visualization/Top-hosts-creating-traffic-ecs.json new file mode 100644 index 000000000000..04792c939702 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Top-hosts-creating-traffic-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Top Hosts Creating Traffic [Packetbeat Flows] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Source Bytes\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source IP\",\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Source Bytes\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Top Hosts Creating Traffic [Packetbeat Flows] ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Top-hosts-creating-traffic-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Packetbeat-Flows-Search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:39.992Z", + "version": "WzMxNDMsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Top-hosts-receiving-traffic-ecs.json b/packetbeat/_meta/kibana/7/visualization/Top-hosts-receiving-traffic-ecs.json new file mode 100644 index 000000000000..573c72737322 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Top-hosts-receiving-traffic-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Top Hosts Receiving Traffic [Packetbeat Flows] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Destination Bytes\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Destination IP\",\"field\":\"destination.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Destination Bytes\"},\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Top Hosts Receiving Traffic [Packetbeat Flows] ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Top-hosts-receiving-traffic-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "Packetbeat-Flows-Search-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:39.992Z", + "version": "WzMxNDYsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Top-slowest-MongoDB-queries-ecs.json b/packetbeat/_meta/kibana/7/visualization/Top-slowest-MongoDB-queries-ecs.json new file mode 100644 index 000000000000..2daea08a923e --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Top-slowest-MongoDB-queries-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Top slowest MongoDB queries [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"event.duration\",\"percents\":[99]},\"schema\":\"metric\",\"type\":\"percentiles\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top slowest MongoDB queries [Packetbeat] ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Top-slowest-MongoDB-queries-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "MongoDB-transactions-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:42.017Z", + "version": "WzMxNjUsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Total-number-of-HTTP-transactions-ecs.json b/packetbeat/_meta/kibana/7/visualization/Total-number-of-HTTP-transactions-ecs.json new file mode 100644 index 000000000000..9d248c4c1d16 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Total-number-of-HTTP-transactions-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Total number of HTTP transactions [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"37\",\"handleNoResults\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total number of HTTP transactions [Packetbeat] ECS\",\"type\":\"metric\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Total-number-of-HTTP-transactions-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:41.048Z", + "version": "WzMxNTQsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Unique-FQDNs-per-eTLD 1-Table-ecs.json b/packetbeat/_meta/kibana/7/visualization/Unique-FQDNs-per-eTLD 1-Table-ecs.json new file mode 100644 index 000000000000..f65bed30844b --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Unique-FQDNs-per-eTLD 1-Table-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + }, + "savedSearchRefName": "search_0", + "title": "Unique FQDNs per eTLD+1 Table ECS", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"ETLD+1\",\"field\":\"dns.question.etld_plus_one\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Unique Domains\",\"field\":\"dns.question.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Unique FQDNs per eTLD+1 Table ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Unique-FQDNs-per-eTLD 1-Table-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:38.960Z", + "version": "WzMxMzgsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Unique-FQDNs-per-eTLD 1-ecs.json b/packetbeat/_meta/kibana/7/visualization/Unique-FQDNs-per-eTLD 1-ecs.json new file mode 100644 index 000000000000..25f9568fcb2d --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Unique-FQDNs-per-eTLD 1-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[]}" + }, + "savedSearchRefName": "search_0", + "title": "Unique FQDNs per eTLD+1 ECS", + "uiStateJSON": "{\"vis\": {\"colors\": {\"Count\": \"#1F78C1\", \"Unique count of dns.question.name\": \"#E0752D\"}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique Subdomain Count\",\"field\":\"dns.question.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Domains\",\"field\":\"dns.question.etld_plus_one\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":true,\"legendPosition\":\"right\",\"mode\":\"grouped\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"title\":\"Unique FQDNs per eTLD+1 ECS\",\"type\":\"histogram\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Unique-FQDNs-per-eTLD 1-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:38.960Z", + "version": "WzMxMzcsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/Web-transactions-ecs.json b/packetbeat/_meta/kibana/7/visualization/Web-transactions-ecs.json new file mode 100644 index 000000000000..c048a1d0925c --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/Web-transactions-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "HTTP Transactions [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":false,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"HTTP Transactions [Packetbeat] ECS\",\"type\":\"histogram\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "Web-transactions-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "71908f00-88ca-11e7-ad9c-db80de0bf8d3-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:45.121Z", + "version": "WzMxOTQsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/a28d09d0-d361-11e7-9914-4982455b3063-ecs.json b/packetbeat/_meta/kibana/7/visualization/a28d09d0-d361-11e7-9914-4982455b3063-ecs.json new file mode 100644 index 000000000000..6897a2625567 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/a28d09d0-d361-11e7-9914-4982455b3063-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "TLS Server Name Indication [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Server Name Indication\",\"field\":\"tls.client.server_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"hideLabel\":false,\"maxFontSize\":64,\"minFontSize\":14,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"TLS Server Name Indication ECS\",\"type\":\"tagcloud\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "a28d09d0-d361-11e7-9914-4982455b3063-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "94908e80-d2d8-11e7-9914-4982455b3063-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyMzYsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/ad2a8b50-d49d-11e7-996f-bd7c1ca4591b-ecs.json b/packetbeat/_meta/kibana/7/visualization/ad2a8b50-d49d-11e7-996f-bd7c1ca4591b-ecs.json new file mode 100644 index 000000000000..3a6c76b71a77 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/ad2a8b50-d49d-11e7-996f-bd7c1ca4591b-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "TLS Fingerprint [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"JA3 Fingerprint\",\"field\":\"tls.client.ja3\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"TLS Fingerprint ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "ad2a8b50-d49d-11e7-996f-bd7c1ca4591b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "6b1b1360-d49d-11e7-996f-bd7c1ca4591b-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyNDMsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/ae6e33c0-d37d-11e7-9914-4982455b3063-ecs.json b/packetbeat/_meta/kibana/7/visualization/ae6e33c0-d37d-11e7-9914-4982455b3063-ecs.json new file mode 100644 index 000000000000..ed7d5949fde7 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/ae6e33c0-d37d-11e7-9914-4982455b3063-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "TLS Server Public Key Size [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Public Key Size\",\"field\":\"tls.detailed.server_certificate.public_key_size\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Server Public Key Size ECS\",\"type\":\"pie\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "ae6e33c0-d37d-11e7-9914-4982455b3063-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "8f0ff590-d37d-11e7-9914-4982455b3063-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyMzgsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/bacb6ed0-1459-11e9-9de0-f98d1808db8e-ecs.json b/packetbeat/_meta/kibana/7/visualization/bacb6ed0-1459-11e9-9de0-f98d1808db8e-ecs.json new file mode 100644 index 000000000000..e4738792a2c9 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/bacb6ed0-1459-11e9-9de0-f98d1808db8e-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "DNS Client and Servers Pie Chart [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Server\",\"field\":\"destination.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Client\",\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"DNS Client and Servers Pie Chart [Packetbeat] ECS\",\"type\":\"pie\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "bacb6ed0-1459-11e9-9de0-f98d1808db8e-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:38.010Z", + "version": "WzMxMzQsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/c14377a0-d353-11e7-9914-4982455b3063-ecs.json b/packetbeat/_meta/kibana/7/visualization/c14377a0-d353-11e7-9914-4982455b3063-ecs.json new file mode 100644 index 000000000000..18649fa84382 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/c14377a0-d353-11e7-9914-4982455b3063-ecs.json @@ -0,0 +1,32 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"query\",\"negate\":false,\"type\":\"custom\",\"value\":\"{\\\"exists\\\":{\\\"field\\\":\\\"tls\\\"}}\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"exists\":{\"field\":\"tls\"}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "title": "TLS Alerts [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"colors\": {\"None\": \"#7EB26D\", \"handshake_failure\": \"#E24D42\"}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"tls.detailed.alert_types\",\"include\":\".*\",\"json\":\"{\\\"missing\\\": \\\"None\\\"}\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"TLS Alerts ECS\",\"type\":\"pie\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "c14377a0-d353-11e7-9914-4982455b3063-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyMzQsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/d0120dc0-8bac-11e8-9676-ef67484126fb-ecs.json b/packetbeat/_meta/kibana/7/visualization/d0120dc0-8bac-11e8-9676-ef67484126fb-ecs.json new file mode 100644 index 000000000000..ffae13f7acd5 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/d0120dc0-8bac-11e8-9676-ef67484126fb-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Transaction Count [Packetbeat DHCPv4] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique Transactions\",\"field\":\"dhcpv4.transaction_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Transaction Count [Packetbeat DHCPv4] ECS\",\"type\":\"metric\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "d0120dc0-8bac-11e8-9676-ef67484126fb-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b8992150-8ba8-11e8-9676-ef67484126fb-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:36.983Z", + "version": "WzMxMjQsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/d2e15950-d560-11e7-9fff-7b1ebf397ba9-ecs.json b/packetbeat/_meta/kibana/7/visualization/d2e15950-d560-11e7-9fff-7b1ebf397ba9-ecs.json new file mode 100644 index 000000000000..da18f3b2a571 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/d2e15950-d560-11e7-9fff-7b1ebf397ba9-ecs.json @@ -0,0 +1,33 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.duration\",\"negate\":false,\"params\":{\"gte\":0,\"lt\":1000000000},\"type\":\"range\",\"value\":\"0 to 1,000,000,000\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"range\":{\"event.duration\":{\"gte\":0,\"lt\":1000000000}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "TLS Handshake Latency [Packetbeat] ECS", + "uiStateJSON": "{\"vis\": {\"legendOpen\": false}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Handshake Latency (ns)\",\"extended_bounds\":{},\"field\":\"event.duration\",\"interval\":2000000},\"schema\":\"segment\",\"type\":\"histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"TLS Handshake Latency ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "d2e15950-d560-11e7-9fff-7b1ebf397ba9-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "8e2af860-d520-11e7-9fff-7b1ebf397ba9-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:48.230Z", + "version": "WzMyNDQsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/dc743240-1665-11e7-a6de-cbac1a3d0a7d-ecs.json b/packetbeat/_meta/kibana/7/visualization/dc743240-1665-11e7-a6de-cbac1a3d0a7d-ecs.json new file mode 100644 index 000000000000..9246acacd254 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/dc743240-1665-11e7-a6de-cbac1a3d0a7d-ecs.json @@ -0,0 +1,27 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"type:dns\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}" + }, + "title": "Top Domains by Data Volume ECS", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes In\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"ETLD+1\",\"field\":\"dns.question.etld_plus_one\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"3\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Bytes Out\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Domains by Data Volume ECS\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "dc743240-1665-11e7-a6de-cbac1a3d0a7d-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "packetbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:38.960Z", + "version": "WzMxNDAsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/e3f09730-1b80-11e9-83df-75eebb35951e-ecs.json b/packetbeat/_meta/kibana/7/visualization/e3f09730-1b80-11e9-83df-75eebb35951e-ecs.json new file mode 100644 index 000000000000..422de3fa9bc2 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/e3f09730-1b80-11e9-83df-75eebb35951e-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "DNS Transactions [Packetbeat] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Avg Response Time\",\"field\":\"event.duration\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Avg Response Time\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"lineWidth\":3.5,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"}],\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Avg Response Time\"},\"type\":\"value\"},{\"id\":\"ValueAxis-2\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"RightAxis-1\",\"position\":\"right\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"DNS Transactions [Packetbeat] ECS\",\"type\":\"area\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "e3f09730-1b80-11e9-83df-75eebb35951e-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "d19e8485-7df5-47ce-8009-9dc3c42bcf17-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:45.121Z", + "version": "WzMyMDMsMV0=" +} \ No newline at end of file diff --git a/packetbeat/_meta/kibana/7/visualization/f43a8f20-8bb5-11e8-9676-ef67484126fb-ecs.json b/packetbeat/_meta/kibana/7/visualization/f43a8f20-8bb5-11e8-9676-ef67484126fb-ecs.json new file mode 100644 index 000000000000..b1ca8aa7e415 --- /dev/null +++ b/packetbeat/_meta/kibana/7/visualization/f43a8f20-8bb5-11e8-9676-ef67484126fb-ecs.json @@ -0,0 +1,28 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "savedSearchRefName": "search_0", + "title": "Data Transfer [Packetbeat DHCPv4] ECS", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Requests\",\"field\":\"client.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Responses\",\"field\":\"server.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":24,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Data Transfer [Packetbeat DHCPv4] ECS\",\"type\":\"metric\"}" + }, + "coreMigrationVersion": "8.0.0", + "id": "f43a8f20-8bb5-11e8-9676-ef67484126fb-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b8992150-8ba8-11e8-9676-ef67484126fb-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:28:36.983Z", + "version": "WzMxMjYsMV0=" +} \ No newline at end of file diff --git a/winlogbeat/_meta/kibana/7/dashboard/Winlogbeat-Dashboard-ecs.json b/winlogbeat/_meta/kibana/7/dashboard/Winlogbeat-Dashboard-ecs.json new file mode 100644 index 000000000000..176371771ac5 --- /dev/null +++ b/winlogbeat/_meta/kibana/7/dashboard/Winlogbeat-Dashboard-ecs.json @@ -0,0 +1,49 @@ +{ + "attributes": { + "description": "Overview of all Windows Event Logs.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}" + }, + "optionsJSON": "{\"darkTheme\": false}", + "panelsJSON": "[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"4\",\"w\":16,\"x\":16,\"y\":20},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"5\",\"w\":16,\"x\":32,\"y\":20},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"6\",\"w\":16,\"x\":0,\"y\":20},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]", + "timeRestore": false, + "title": "[Winlogbeat] Overview", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "Winlogbeat-Dashboard-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "Number-of-Events-Over-Time-By-Event-Log-ecs", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "Number-of-Events-ecs", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "Top-Event-IDs-ecs", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "Event-Levels-ecs", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "Sources-ecs", + "name": "panel_4", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-11T13:18:52.287Z", + "version": "WzIxNzMsMl0=" +} \ No newline at end of file diff --git a/winlogbeat/_meta/kibana/7/dashboard/Winlogbeat-overview.ndjson b/winlogbeat/_meta/kibana/7/dashboard/Winlogbeat-overview.ndjson deleted file mode 100644 index 5c2f3cb6dcab..000000000000 --- a/winlogbeat/_meta/kibana/7/dashboard/Winlogbeat-overview.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Number of Events Over Time By Channel [Winlogbeat Overview]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15d\",\"mode\":\"relative\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Channel\",\"field\":\"winlog.channel\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":6},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"params\":{\"bounds\":{\"max\":\"2019-02-05T04:30:25.961Z\",\"min\":\"2019-01-21T04:30:25.961Z\"},\"date\":true,\"format\":\"YYYY-MM-DD HH:mm\",\"interval\":43200000}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Number of Events Over Time By Channel [Winlogbeat Overview]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"7.14.0","id":"Number-of-Events-Over-Time-By-Event-Log-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:52.287Z","version":"WzIxNzQsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Number of Events [Winlogbeat Overview]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"fontSize\":60},\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"Number-of-Events-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:52.287Z","version":"WzIxNzUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top Event IDs [Winlogbeat Overview]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Event IDs\",\"field\":\"winlog.event_id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Event IDs [Winlogbeat Overview]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"Top-Event-IDs-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:52.287Z","version":"WzIxNzYsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Event Levels [Winlogbeat Overview]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Log Levels\",\"field\":\"log.level\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Event Levels [Winlogbeat Overview]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"Event-Levels-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:52.287Z","version":"WzIxNzcsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Sources (Provider Names) [Winlogbeat Overview]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"winlog.provider_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":7},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Sources (Provider Names) [Winlogbeat Overview]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"Sources-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:52.287Z","version":"WzIxNzgsMl0="} -{"attributes":{"description":"Overview of all Windows Event Logs.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"3\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"4\",\"w\":16,\"x\":16,\"y\":20},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"5\",\"w\":16,\"x\":32,\"y\":20},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":20,\"i\":\"6\",\"w\":16,\"x\":0,\"y\":20},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Winlogbeat] Overview","version":1},"coreMigrationVersion":"7.14.0","id":"Winlogbeat-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"Number-of-Events-Over-Time-By-Event-Log-ecs","name":"panel_0","type":"visualization"},{"id":"Number-of-Events-ecs","name":"panel_1","type":"visualization"},{"id":"Top-Event-IDs-ecs","name":"panel_2","type":"visualization"},{"id":"Event-Levels-ecs","name":"panel_3","type":"visualization"},{"id":"Sources-ecs","name":"panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-11T13:18:52.287Z","version":"WzIxNzMsMl0="} diff --git a/winlogbeat/_meta/kibana/7/visualization/Event-Levels-ecs.json b/winlogbeat/_meta/kibana/7/visualization/Event-Levels-ecs.json new file mode 100644 index 000000000000..25bc7d8f0784 --- /dev/null +++ b/winlogbeat/_meta/kibana/7/visualization/Event-Levels-ecs.json @@ -0,0 +1,27 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}" + }, + "title": "Event Levels [Winlogbeat Overview]", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Log Levels\",\"field\":\"log.level\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Event Levels [Winlogbeat Overview]\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "7.14.0", + "id": "Event-Levels-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:52.287Z", + "version": "WzIxNzcsMl0=" +} \ No newline at end of file diff --git a/winlogbeat/_meta/kibana/7/visualization/Number-of-Events-Over-Time-By-Event-Log-ecs.json b/winlogbeat/_meta/kibana/7/visualization/Number-of-Events-Over-Time-By-Event-Log-ecs.json new file mode 100644 index 000000000000..5854a208c626 --- /dev/null +++ b/winlogbeat/_meta/kibana/7/visualization/Number-of-Events-Over-Time-By-Event-Log-ecs.json @@ -0,0 +1,27 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}" + }, + "title": "Number of Events Over Time By Channel [Winlogbeat Overview]", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15d\",\"mode\":\"relative\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Channel\",\"field\":\"winlog.channel\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":6},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"params\":{\"bounds\":{\"max\":\"2019-02-05T04:30:25.961Z\",\"min\":\"2019-01-21T04:30:25.961Z\"},\"date\":true,\"format\":\"YYYY-MM-DD HH:mm\",\"interval\":43200000}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"mode\":\"stacked\",\"show\":\"true\",\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"yAxis\":{},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Number of Events Over Time By Channel [Winlogbeat Overview]\",\"type\":\"histogram\"}" + }, + "coreMigrationVersion": "7.14.0", + "id": "Number-of-Events-Over-Time-By-Event-Log-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:52.287Z", + "version": "WzIxNzQsMl0=" +} \ No newline at end of file diff --git a/winlogbeat/_meta/kibana/7/visualization/Number-of-Events-ecs.json b/winlogbeat/_meta/kibana/7/visualization/Number-of-Events-ecs.json new file mode 100644 index 000000000000..09d728b3b64d --- /dev/null +++ b/winlogbeat/_meta/kibana/7/visualization/Number-of-Events-ecs.json @@ -0,0 +1,27 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}" + }, + "title": "Number of Events [Winlogbeat Overview]", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"fontSize\":60},\"type\":\"metric\"}" + }, + "coreMigrationVersion": "7.14.0", + "id": "Number-of-Events-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:52.287Z", + "version": "WzIxNzUsMl0=" +} \ No newline at end of file diff --git a/winlogbeat/_meta/kibana/7/visualization/Sources-ecs.json b/winlogbeat/_meta/kibana/7/visualization/Sources-ecs.json new file mode 100644 index 000000000000..b21a88b9d6f2 --- /dev/null +++ b/winlogbeat/_meta/kibana/7/visualization/Sources-ecs.json @@ -0,0 +1,27 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}" + }, + "title": "Sources (Provider Names) [Winlogbeat Overview]", + "uiStateJSON": "{}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"winlog.provider_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":7},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"shareYAxis\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Sources (Provider Names) [Winlogbeat Overview]\",\"type\":\"pie\"}" + }, + "coreMigrationVersion": "7.14.0", + "id": "Sources-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:52.287Z", + "version": "WzIxNzgsMl0=" +} \ No newline at end of file diff --git a/winlogbeat/_meta/kibana/7/visualization/Top-Event-IDs-ecs.json b/winlogbeat/_meta/kibana/7/visualization/Top-Event-IDs-ecs.json new file mode 100644 index 000000000000..0bd1abb1b1ba --- /dev/null +++ b/winlogbeat/_meta/kibana/7/visualization/Top-Event-IDs-ecs.json @@ -0,0 +1,27 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}" + }, + "title": "Top Event IDs [Winlogbeat Overview]", + "uiStateJSON": "{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}", + "version": 1, + "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Event IDs\",\"field\":\"winlog.event_id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Event IDs [Winlogbeat Overview]\",\"type\":\"table\"}" + }, + "coreMigrationVersion": "7.14.0", + "id": "Top-Event-IDs-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:52.287Z", + "version": "WzIxNzYsMl0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs.json new file mode 100644 index 000000000000..5295143b1457 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs.json @@ -0,0 +1,203 @@ +{ + "attributes": { + "description": "System Packages", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "1", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "2", + "w": 6, + "x": 0, + "y": 4 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "3", + "w": 5, + "x": 6, + "y": 4 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "4", + "w": 13, + "x": 24, + "y": 4 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "5", + "w": 13, + "x": 11, + "y": 4 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "6", + "w": 48, + "x": 0, + "y": 15 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 26, + "i": "7", + "w": 48, + "x": 0, + "y": 23 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "8", + "w": 11, + "x": 37, + "y": 4 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Auditbeat System] Package Dashboard ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "137c52f0-286a-11e9-9d21-0be348776e6c-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "f664fb20-27f3-11e9-89af-fd12d59dac90-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "6ed51940-2868-11e9-9d21-0be348776e6c-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "fe23f530-2868-11e9-9d21-0be348776e6c-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "4e7701d0-2869-11e9-9d21-0be348776e6c-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "391ef230-2868-11e9-9d21-0be348776e6c-ecs", + "name": "7:panel_7", + "type": "search" + }, + { + "id": "8dc55df0-2869-11e9-9d21-0be348776e6c-ecs", + "name": "8:panel_8", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:36:03.951Z", + "version": "WzUwMjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs.json new file mode 100644 index 000000000000..dffdadc07e16 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs.json @@ -0,0 +1,203 @@ +{ + "attributes": { + "description": "System Logins", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "1", + "w": 8, + "x": 0, + "y": 4 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "2", + "w": 10, + "x": 8, + "y": 4 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "4", + "w": 10, + "x": 28, + "y": 4 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "5", + "w": 10, + "x": 38, + "y": 4 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "6", + "w": 48, + "x": 0, + "y": 14 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 26, + "i": "7", + "w": 48, + "x": 0, + "y": 23 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "8", + "w": 10, + "x": 18, + "y": 4 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "9", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Auditbeat System] Login Dashboard ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "2a17f200-285e-11e9-805f-43bf57dfa519-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "8d63c420-27f4-11e9-89af-fd12d59dac90-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "593df9b0-27f7-11e9-89af-fd12d59dac90-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "5eb5f250-285e-11e9-805f-43bf57dfa519-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "a1951650-285e-11e9-805f-43bf57dfa519-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "e4d25fe0-285e-11e9-805f-43bf57dfa519-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "2e04c720-285f-11e9-805f-43bf57dfa519-ecs", + "name": "7:panel_7", + "type": "search" + }, + { + "id": "e8eb58a0-2860-11e9-805f-43bf57dfa519-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", + "name": "9:panel_9", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:36:01.915Z", + "version": "WzUwMDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs.json new file mode 100644 index 000000000000..666b83a25c96 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs.json @@ -0,0 +1,600 @@ +{ + "attributes": { + "description": "Overview of System Information.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": "Host", + "disabled": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "host", + "type": "phrase" + }, + "type": "phrase", + "value": "host" + }, + "query": { + "match": { + "event.dataset": { + "query": "host", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": "Login", + "disabled": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "login", + "type": "phrase" + }, + "type": "phrase", + "value": "login" + }, + "query": { + "match": { + "event.dataset": { + "query": "login", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": "User", + "disabled": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "user", + "type": "phrase" + }, + "type": "phrase", + "value": "user" + }, + "query": { + "match": { + "event.dataset": { + "query": "user", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": "Process", + "disabled": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "process", + "type": "phrase" + }, + "type": "phrase", + "value": "process" + }, + "query": { + "match": { + "event.dataset": { + "query": "process", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": "Socket", + "disabled": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[4].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "socket", + "type": "phrase" + }, + "type": "phrase", + "value": "socket" + }, + "query": { + "match": { + "event.dataset": { + "query": "socket", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": "Package", + "disabled": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[5].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "package", + "type": "phrase" + }, + "type": "phrase", + "value": "package" + }, + "query": { + "match": { + "event.dataset": { + "query": "package", + "type": "phrase" + } + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "1", + "w": 8, + "x": 0, + "y": 4 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "2", + "w": 8, + "x": 24, + "y": 4 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "3", + "w": 8, + "x": 32, + "y": 4 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "4", + "w": 8, + "x": 16, + "y": 4 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "5", + "w": 8, + "x": 40, + "y": 4 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "6", + "w": 8, + "x": 8, + "y": 4 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "8", + "w": 8, + "x": 0, + "y": 12 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "9", + "w": 8, + "x": 8, + "y": 12 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "10", + "w": 8, + "x": 16, + "y": 12 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "11", + "w": 8, + "x": 24, + "y": 12 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "12", + "w": 8, + "x": 24, + "y": 19 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "13", + "w": 8, + "x": 32, + "y": 12 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "14", + "w": 8, + "x": 32, + "y": 19 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "15", + "w": 8, + "x": 40, + "y": 12 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "16", + "w": 48, + "x": 0, + "y": 26 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 19, + "i": "17", + "w": 24, + "x": 0, + "y": 34 + }, + "panelIndex": "17", + "panelRefName": "panel_17", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 19, + "i": "18", + "w": 24, + "x": 24, + "y": 34 + }, + "panelIndex": "18", + "panelRefName": "panel_18", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "19", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "19", + "panelRefName": "panel_19", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Auditbeat System] System Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[4].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[5].meta.index", + "type": "index-pattern" + }, + { + "id": "cf8aa0a0-18ca-11e9-9094-c50574723088-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "7323dd90-27f2-11e9-89af-fd12d59dac90-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "e9225120-27f2-11e9-89af-fd12d59dac90-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "f664fb20-27f3-11e9-89af-fd12d59dac90-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "8d63c420-27f4-11e9-89af-fd12d59dac90-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "9dd991a0-18cb-11e9-9094-c50574723088-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "593df9b0-27f7-11e9-89af-fd12d59dac90-ecs", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "0db90830-27fd-11e9-89af-fd12d59dac90-ecs", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "b885dae0-27fd-11e9-89af-fd12d59dac90-ecs", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "295905e0-27fd-11e9-89af-fd12d59dac90-ecs", + "name": "13:panel_13", + "type": "visualization" + }, + { + "id": "82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "54135e50-27ff-11e9-805f-43bf57dfa519-ecs", + "name": "16:panel_16", + "type": "visualization" + }, + { + "id": "91962a30-1901-11e9-9094-c50574723088-ecs", + "name": "17:panel_17", + "type": "visualization" + }, + { + "id": "d08ebd30-27ff-11e9-805f-43bf57dfa519-ecs", + "name": "18:panel_18", + "type": "search" + }, + { + "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", + "name": "19:panel_19", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:36:02.960Z", + "version": "WzUwMTksMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs.json new file mode 100644 index 000000000000..bb1bee4520ad --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs.json @@ -0,0 +1,224 @@ +{ + "attributes": { + "description": "System Processes", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "1", + "w": 11, + "x": 0, + "y": 4 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "2", + "w": 11, + "x": 11, + "y": 4 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "3", + "w": 11, + "x": 22, + "y": 4 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "4", + "w": 48, + "x": 0, + "y": 38 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "5", + "w": 15, + "x": 33, + "y": 4 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "6", + "w": 48, + "x": 0, + "y": 29 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "7", + "w": 24, + "x": 0, + "y": 14 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "8", + "w": 24, + "x": 24, + "y": 14 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "9", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Auditbeat System] Process Dashboard ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "4c68f110-2863-11e9-97cb-474beda9f119-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "0db90830-27fd-11e9-89af-fd12d59dac90-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "b885dae0-27fd-11e9-89af-fd12d59dac90-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "0f9611b0-2862-11e9-97cb-474beda9f119-ecs", + "name": "4:panel_4", + "type": "search" + }, + { + "id": "91708fd0-2862-11e9-97cb-474beda9f119-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "b1e2af00-2862-11e9-97cb-474beda9f119-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "f1d365a0-2862-11e9-97cb-474beda9f119-ecs", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "30936470-2863-11e9-97cb-474beda9f119-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", + "name": "9:panel_9", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:36:04.954Z", + "version": "WzUwMzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs.json new file mode 100644 index 000000000000..fca70b40a5ee --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs.json @@ -0,0 +1,266 @@ +{ + "attributes": { + "description": "System Sockets", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "1", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "2", + "w": 5, + "x": 0, + "y": 4 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "3", + "w": 5, + "x": 5, + "y": 4 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "4", + "w": 5, + "x": 10, + "y": 4 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "5", + "w": 9, + "x": 15, + "y": 4 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 26, + "i": "6", + "w": 48, + "x": 0, + "y": 23 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "7", + "w": 48, + "x": 0, + "y": 15 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "8", + "w": 6, + "x": 42, + "y": 4 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "9", + "w": 6, + "x": 36, + "y": 4 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "10", + "w": 6, + "x": 24, + "y": 4 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "11", + "w": 6, + "x": 30, + "y": 4 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Auditbeat System] Socket Dashboard ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "957a3ef0-2867-11e9-9d21-0be348776e6c-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "7323dd90-27f2-11e9-89af-fd12d59dac90-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "295905e0-27fd-11e9-89af-fd12d59dac90-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "eb2dbfd0-2866-11e9-9d21-0be348776e6c-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "3bfed610-2867-11e9-9d21-0be348776e6c-ecs", + "name": "6:panel_6", + "type": "search" + }, + { + "id": "536fa900-2867-11e9-9d21-0be348776e6c-ecs", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "78391460-2867-11e9-9d21-0be348776e6c-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "1771daa0-286b-11e9-9d21-0be348776e6c-ecs", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "b899a700-286b-11e9-9d21-0be348776e6c-ecs", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "d32c0540-286b-11e9-9d21-0be348776e6c-ecs", + "name": "11:panel_11", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:36:06.037Z", + "version": "WzUwNTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs.json new file mode 100644 index 000000000000..c1add60210a4 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs.json @@ -0,0 +1,203 @@ +{ + "attributes": { + "description": "System Users", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "1", + "w": 8, + "x": 0, + "y": 4 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "2", + "w": 8, + "x": 8, + "y": 4 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "3", + "w": 11, + "x": 26, + "y": 4 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "4", + "w": 11, + "x": 37, + "y": 4 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "5", + "w": 48, + "x": 0, + "y": 14 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 26, + "i": "6", + "w": 48, + "x": 0, + "y": 23 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "7", + "w": 10, + "x": 16, + "y": 4 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "8", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Auditbeat System] User Dashboard ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "ae96a660-2864-11e9-97cb-474beda9f119-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "e9225120-27f2-11e9-89af-fd12d59dac90-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "dc514de0-2863-11e9-97cb-474beda9f119-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "0bf8b4c0-2864-11e9-97cb-474beda9f119-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "30f4eff0-2864-11e9-97cb-474beda9f119-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "658a3db0-2864-11e9-97cb-474beda9f119-ecs", + "name": "6:panel_6", + "type": "search" + }, + { + "id": "7f480de0-2864-11e9-97cb-474beda9f119-ecs", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", + "name": "8:panel_8", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:36:07.028Z", + "version": "WzUwNTksMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-host-dashboard.ndjson b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-host-dashboard.ndjson deleted file mode 100644 index ae9fd00e4fc3..000000000000 --- a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-host-dashboard.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"system\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"system\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"system\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Host Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Hosts\",\"field\":\"host.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Host Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"cf8aa0a0-18ca-11e9-9094-c50574723088-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"host\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"host\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"host\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"OS Distribution [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"system.audit.host.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"OS\",\"field\":\"system.audit.host.os.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"system.audit.host.os.version\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"OS Distribution [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"9dd991a0-18cb-11e9-9094-c50574723088-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"host\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"host\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"host\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Average Uptime [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Average Uptime in days\",\"field\":\"system.audit.host.uptime\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Average Uptime [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"4d0485f0-18da-11e9-9094-c50574723088-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:00.890Z","version":"WzQ5ODYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"host\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"host\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"host\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Host Documents [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Host States\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Host States\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Host States\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Host Documents [Auditbeat System] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"eea92ad0-18d7-11e9-9094-c50574723088-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:00.890Z","version":"WzQ5ODcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"host\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"host\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"host\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Host List [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 1, \"direction\": \"asc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Hostname\",\"field\":\"system.audit.host.hostname\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"aggregate\":\"max\",\"customLabel\":\"Uptime (days)\",\"field\":\"system.audit.host.uptime\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"OS\",\"field\":\"system.audit.host.os.name\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Version\",\"field\":\"system.audit.host.os.version\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Host ID\",\"field\":\"system.audit.host.id\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Status\",\"field\":\"message\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Host List [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"91962a30-1901-11e9-9094-c50574723088-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMTYsMV0="} -{"attributes":{"columns":["system.audit.host.hostname","event.action","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"host\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"host\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"host\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Host Events [Auditbeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"abe78cd0-18ca-11e9-9094-c50574723088-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:36:00.890Z","version":"WzQ5ODksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Dashboard Links [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard Links [Auditbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTgsMV0="} -{"attributes":{"description":"System Hosts","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":15,\"x\":0,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":17,\"x\":31,\"y\":4},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":16,\"x\":15,\"y\":4},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":14},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":21},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":16,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":33},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"8\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Auditbeat System] Host Dashboard ECS","version":1},"coreMigrationVersion":"8.0.0","id":"dfe62590-18da-11e9-9094-c50574723088-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"cf8aa0a0-18ca-11e9-9094-c50574723088-ecs","name":"1:panel_1","type":"visualization"},{"id":"9dd991a0-18cb-11e9-9094-c50574723088-ecs","name":"2:panel_2","type":"visualization"},{"id":"4d0485f0-18da-11e9-9094-c50574723088-ecs","name":"4:panel_4","type":"visualization"},{"id":"eea92ad0-18d7-11e9-9094-c50574723088-ecs","name":"5:panel_5","type":"visualization"},{"id":"91962a30-1901-11e9-9094-c50574723088-ecs","name":"6:panel_6","type":"visualization"},{"id":"abe78cd0-18ca-11e9-9094-c50574723088-ecs","name":"7:panel_7","type":"search"},{"id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:36:00.890Z","version":"WzQ5OTEsMV0="} diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-login-dashboard.ndjson b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-login-dashboard.ndjson deleted file mode 100644 index 742ebca4ab04..000000000000 --- a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-login-dashboard.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Login Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Login Events\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Login Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"8d63c420-27f4-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Login Actions [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Login Actions [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"593df9b0-27f7-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.outcome\",\"negate\":false,\"params\":{\"query\":\"success\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"success\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.outcome\":{\"query\":\"success\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Login Success Table [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Successful Logins\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"User\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":8,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Login Success Table [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"5eb5f250-285e-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:01.915Z","version":"WzQ5OTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.outcome\",\"negate\":false,\"params\":{\"query\":\"failure\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"failure\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.outcome\":{\"query\":\"failure\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Login Failures Table [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Failed Logins\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"User\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":8,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Login Failures Table [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"a1951650-285e-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:01.915Z","version":"WzQ5OTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Login Event Histogram [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Login Event Histogram [Auditbeat System] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"e4d25fe0-285e-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:01.915Z","version":"WzQ5OTYsMV0="} -{"attributes":{"columns":["host.hostname","user.name","event.outcome","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Login Events [Auditbeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"2e04c720-285f-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:36:01.915Z","version":"WzQ5OTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Login OS Distribution [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"host.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"OS\",\"field\":\"host.os.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"host.os.version\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Login OS Distribution [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"e8eb58a0-2860-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:01.915Z","version":"WzQ5OTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Dashboard Links [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard Links [Auditbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTgsMV0="} -{"attributes":{"description":"System Logins","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":8,\"x\":0,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":10,\"x\":8,\"y\":4},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":10,\"x\":28,\"y\":4},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5\",\"w\":10,\"x\":38,\"y\":4},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":14},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":26,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":23},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"8\",\"w\":10,\"x\":18,\"y\":4},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"9\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"}]","timeRestore":false,"title":"[Auditbeat System] Login Dashboard ECS","version":1},"coreMigrationVersion":"8.0.0","id":"2a17f200-285e-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"8d63c420-27f4-11e9-89af-fd12d59dac90-ecs","name":"1:panel_1","type":"visualization"},{"id":"593df9b0-27f7-11e9-89af-fd12d59dac90-ecs","name":"2:panel_2","type":"visualization"},{"id":"5eb5f250-285e-11e9-805f-43bf57dfa519-ecs","name":"4:panel_4","type":"visualization"},{"id":"a1951650-285e-11e9-805f-43bf57dfa519-ecs","name":"5:panel_5","type":"visualization"},{"id":"e4d25fe0-285e-11e9-805f-43bf57dfa519-ecs","name":"6:panel_6","type":"visualization"},{"id":"2e04c720-285f-11e9-805f-43bf57dfa519-ecs","name":"7:panel_7","type":"search"},{"id":"e8eb58a0-2860-11e9-805f-43bf57dfa519-ecs","name":"8:panel_8","type":"visualization"},{"id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","name":"9:panel_9","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:36:01.915Z","version":"WzUwMDAsMV0="} diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-overview-dashboard.ndjson b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-overview-dashboard.ndjson deleted file mode 100644 index f77b6678046c..000000000000 --- a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-overview-dashboard.ndjson +++ /dev/null @@ -1,19 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"system\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"system\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"system\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Host Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Hosts\",\"field\":\"host.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Host Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"cf8aa0a0-18ca-11e9-9094-c50574723088-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Processes\",\"field\":\"process.entity_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Process Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Socket Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Sockets\",\"field\":\"socket.entity_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Socket Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"7323dd90-27f2-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"User Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Users\",\"field\":\"user.entity_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"User Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"e9225120-27f2-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Package Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Packages\",\"field\":\"system.audit.package.entity_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Package Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"f664fb20-27f3-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Login Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Login Events\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Login Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"8d63c420-27f4-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"host\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"host\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"host\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"OS Distribution [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"system.audit.host.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"OS\",\"field\":\"system.audit.host.os.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"system.audit.host.os.version\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"OS Distribution [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"9dd991a0-18cb-11e9-9094-c50574723088-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Login Actions [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Login Actions [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"593df9b0-27f7-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":true,\"params\":{\"query\":\"existing_user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"existing_user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"existing_user\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"User Changes [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"User Changes\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"User Changes [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"process_started\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process_started\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"process_started\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Starts [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Started\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Process Starts [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"0db90830-27fd-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"process_stopped\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process_stopped\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"process_stopped\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Stops [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Stopped\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Process Stops [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"b885dae0-27fd-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"socket_opened\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket_opened\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"socket_opened\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Sockets Opened [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Opened\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Sockets Opened [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"295905e0-27fd-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"socket_closed\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket_closed\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"socket_closed\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Sockets Closed [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Closed\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Sockets Closed [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":true,\"params\":{\"query\":\"existing_package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"existing_package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"existing_package\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Package Changes [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Changes\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Package Changes [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"system\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"system\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"system\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.kind\",\"negate\":false,\"params\":{\"query\":\"event\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"event\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.kind\":{\"query\":\"event\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"System Event Histogram [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"System Event Histogram [Auditbeat System] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"54135e50-27ff-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"host\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"host\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"host\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Host List [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 1, \"direction\": \"asc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Hostname\",\"field\":\"system.audit.host.hostname\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"aggregate\":\"max\",\"customLabel\":\"Uptime (days)\",\"field\":\"system.audit.host.uptime\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"OS\",\"field\":\"system.audit.host.os.name\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Version\",\"field\":\"system.audit.host.os.version\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Host ID\",\"field\":\"system.audit.host.id\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Status\",\"field\":\"message\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Host List [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"91962a30-1901-11e9-9094-c50574723088-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMTYsMV0="} -{"attributes":{"columns":["host.hostname","event.dataset","event.action","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.module\",\"negate\":false,\"params\":{\"query\":\"system\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"system\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.module\":{\"query\":\"system\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.kind\",\"negate\":false,\"params\":{\"query\":\"event\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"event\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.kind\":{\"query\":\"event\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"System Events [Auditbeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"d08ebd30-27ff-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Dashboard Links [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard Links [Auditbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTgsMV0="} -{"attributes":{"description":"Overview of System Information.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":\"Host\",\"disabled\":true,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"host\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"host\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"host\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":\"Login\",\"disabled\":true,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"login\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"login\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"login\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":\"User\",\"disabled\":true,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":\"Process\",\"disabled\":true,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":\"Socket\",\"disabled\":true,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[4].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":\"Package\",\"disabled\":true,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[5].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1\",\"w\":8,\"x\":0,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"2\",\"w\":8,\"x\":24,\"y\":4},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"3\",\"w\":8,\"x\":32,\"y\":4},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"4\",\"w\":8,\"x\":16,\"y\":4},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"5\",\"w\":8,\"x\":40,\"y\":4},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"6\",\"w\":8,\"x\":8,\"y\":4},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"8\",\"w\":8,\"x\":0,\"y\":12},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"9\",\"w\":8,\"x\":8,\"y\":12},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"10\",\"w\":8,\"x\":16,\"y\":12},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"11\",\"w\":8,\"x\":24,\"y\":12},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"12\",\"w\":8,\"x\":24,\"y\":19},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"13\",\"w\":8,\"x\":32,\"y\":12},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"14\",\"w\":8,\"x\":32,\"y\":19},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"15\",\"w\":8,\"x\":40,\"y\":12},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"16\",\"w\":48,\"x\":0,\"y\":26},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"17\",\"w\":24,\"x\":0,\"y\":34},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":19,\"i\":\"18\",\"w\":24,\"x\":24,\"y\":34},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"19\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"}]","timeRestore":false,"title":"[Auditbeat System] System Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[4].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[5].meta.index","type":"index-pattern"},{"id":"cf8aa0a0-18ca-11e9-9094-c50574723088-ecs","name":"1:panel_1","type":"visualization"},{"id":"bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs","name":"2:panel_2","type":"visualization"},{"id":"7323dd90-27f2-11e9-89af-fd12d59dac90-ecs","name":"3:panel_3","type":"visualization"},{"id":"e9225120-27f2-11e9-89af-fd12d59dac90-ecs","name":"4:panel_4","type":"visualization"},{"id":"f664fb20-27f3-11e9-89af-fd12d59dac90-ecs","name":"5:panel_5","type":"visualization"},{"id":"8d63c420-27f4-11e9-89af-fd12d59dac90-ecs","name":"6:panel_6","type":"visualization"},{"id":"9dd991a0-18cb-11e9-9094-c50574723088-ecs","name":"8:panel_8","type":"visualization"},{"id":"593df9b0-27f7-11e9-89af-fd12d59dac90-ecs","name":"9:panel_9","type":"visualization"},{"id":"00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs","name":"10:panel_10","type":"visualization"},{"id":"0db90830-27fd-11e9-89af-fd12d59dac90-ecs","name":"11:panel_11","type":"visualization"},{"id":"b885dae0-27fd-11e9-89af-fd12d59dac90-ecs","name":"12:panel_12","type":"visualization"},{"id":"295905e0-27fd-11e9-89af-fd12d59dac90-ecs","name":"13:panel_13","type":"visualization"},{"id":"82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs","name":"14:panel_14","type":"visualization"},{"id":"bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs","name":"15:panel_15","type":"visualization"},{"id":"54135e50-27ff-11e9-805f-43bf57dfa519-ecs","name":"16:panel_16","type":"visualization"},{"id":"91962a30-1901-11e9-9094-c50574723088-ecs","name":"17:panel_17","type":"visualization"},{"id":"d08ebd30-27ff-11e9-805f-43bf57dfa519-ecs","name":"18:panel_18","type":"search"},{"id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","name":"19:panel_19","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:36:02.960Z","version":"WzUwMTksMV0="} diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-package-dashboard.ndjson b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-package-dashboard.ndjson deleted file mode 100644 index 6c2e6f2a9451..000000000000 --- a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-package-dashboard.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Dashboard Links [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard Links [Auditbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Package Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Packages\",\"field\":\"system.audit.package.entity_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Package Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"f664fb20-27f3-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":true,\"params\":{\"query\":\"existing_package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"existing_package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"existing_package\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Package Changes [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Changes\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Package Changes [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Package OS Distribution [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"host.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"OS\",\"field\":\"host.os.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"host.os.version\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Package OS Distribution [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"6ed51940-2868-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.kind\",\"negate\":false,\"params\":{\"query\":\"event\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"event\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.kind\":{\"query\":\"event\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Package Change Actions [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Package Change Actions [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"fe23f530-2868-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Package Document Histogram [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Package Document Histogram [Auditbeat System] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"4e7701d0-2869-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjUsMV0="} -{"attributes":{"columns":["host.hostname","event.action","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Package Documents [Auditbeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"391ef230-2868-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"package\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"package\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"package\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Package Names [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"system.audit.package.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":5,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Package Names [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"8dc55df0-2869-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjcsMV0="} -{"attributes":{"description":"System Packages","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"1\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"2\",\"w\":6,\"x\":0,\"y\":4},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"3\",\"w\":5,\"x\":6,\"y\":4},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"4\",\"w\":13,\"x\":24,\"y\":4},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"5\",\"w\":13,\"x\":11,\"y\":4},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":15},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":26,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":23},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"8\",\"w\":11,\"x\":37,\"y\":4},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Auditbeat System] Package Dashboard ECS","version":1},"coreMigrationVersion":"8.0.0","id":"137c52f0-286a-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","name":"1:panel_1","type":"visualization"},{"id":"f664fb20-27f3-11e9-89af-fd12d59dac90-ecs","name":"2:panel_2","type":"visualization"},{"id":"bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs","name":"3:panel_3","type":"visualization"},{"id":"6ed51940-2868-11e9-9d21-0be348776e6c-ecs","name":"4:panel_4","type":"visualization"},{"id":"fe23f530-2868-11e9-9d21-0be348776e6c-ecs","name":"5:panel_5","type":"visualization"},{"id":"4e7701d0-2869-11e9-9d21-0be348776e6c-ecs","name":"6:panel_6","type":"visualization"},{"id":"391ef230-2868-11e9-9d21-0be348776e6c-ecs","name":"7:panel_7","type":"search"},{"id":"8dc55df0-2869-11e9-9d21-0be348776e6c-ecs","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:36:03.951Z","version":"WzUwMjgsMV0="} diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-process-dashboard.ndjson b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-process-dashboard.ndjson deleted file mode 100644 index 34f6c89c5257..000000000000 --- a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-process-dashboard.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Processes\",\"field\":\"process.entity_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Process Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"process_started\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process_started\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"process_started\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Starts [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Started\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Process Starts [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"0db90830-27fd-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"process_stopped\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process_stopped\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"process_stopped\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Stops [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Stopped\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Process Stops [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"b885dae0-27fd-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzEsMV0="} -{"attributes":{"columns":["host.hostname","user.name","event.action","process.pid","process.name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Process Events [Auditbeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"0f9611b0-2862-11e9-97cb-474beda9f119-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process OS Distribution [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"host.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"OS\",\"field\":\"host.os.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"host.os.version\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Process OS Distribution [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"91708fd0-2862-11e9-97cb-474beda9f119-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Event Histogram [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Process Event Histogram [Auditbeat System] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"b1e2af00-2862-11e9-97cb-474beda9f119-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Names [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Process\",\"field\":\"process.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":8},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"perPage\":8,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Process Names [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"f1d365a0-2862-11e9-97cb-474beda9f119-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"process\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"process\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"process\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Process Users [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Process\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":8},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"perPage\":8,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Process Users [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"30936470-2863-11e9-97cb-474beda9f119-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Dashboard Links [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard Links [Auditbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTgsMV0="} -{"attributes":{"description":"System Processes","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":11,\"x\":0,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":11,\"x\":11,\"y\":4},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3\",\"w\":11,\"x\":22,\"y\":4},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":14,\"i\":\"4\",\"w\":48,\"x\":0,\"y\":38},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5\",\"w\":15,\"x\":33,\"y\":4},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":29},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":0,\"y\":14},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":14},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"9\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"}]","timeRestore":false,"title":"[Auditbeat System] Process Dashboard ECS","version":1},"coreMigrationVersion":"8.0.0","id":"4c68f110-2863-11e9-97cb-474beda9f119-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs","name":"1:panel_1","type":"visualization"},{"id":"0db90830-27fd-11e9-89af-fd12d59dac90-ecs","name":"2:panel_2","type":"visualization"},{"id":"b885dae0-27fd-11e9-89af-fd12d59dac90-ecs","name":"3:panel_3","type":"visualization"},{"id":"0f9611b0-2862-11e9-97cb-474beda9f119-ecs","name":"4:panel_4","type":"search"},{"id":"91708fd0-2862-11e9-97cb-474beda9f119-ecs","name":"5:panel_5","type":"visualization"},{"id":"b1e2af00-2862-11e9-97cb-474beda9f119-ecs","name":"6:panel_6","type":"visualization"},{"id":"f1d365a0-2862-11e9-97cb-474beda9f119-ecs","name":"7:panel_7","type":"visualization"},{"id":"30936470-2863-11e9-97cb-474beda9f119-ecs","name":"8:panel_8","type":"visualization"},{"id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","name":"9:panel_9","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:36:04.954Z","version":"WzUwMzgsMV0="} diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-socket-dashboard.ndjson b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-socket-dashboard.ndjson deleted file mode 100644 index 7f7ef27143d6..000000000000 --- a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-socket-dashboard.ndjson +++ /dev/null @@ -1,12 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Dashboard Links [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard Links [Auditbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Socket Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Sockets\",\"field\":\"socket.entity_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Socket Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"7323dd90-27f2-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"socket_opened\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket_opened\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"socket_opened\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Sockets Opened [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Opened\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Sockets Opened [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"295905e0-27fd-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":false,\"params\":{\"query\":\"socket_closed\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket_closed\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"socket_closed\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Sockets Closed [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Closed\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Sockets Closed [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Socket Types [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.direction\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Socket Types [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"eb2dbfd0-2866-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDMsMV0="} -{"attributes":{"columns":["host.hostname","network.direction","process.name","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Socket Documents [Auditbeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"3bfed610-2867-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Socket Document Histogram [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Socket Document Histogram [Auditbeat System] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"536fa900-2867-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Socket Users [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":8},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":8,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Socket Users [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"78391460-2867-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Destination Ports [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"destination.port\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":30},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Destination Ports [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"1771daa0-286b-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Socket Source IPs [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":30},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Socket Source IPs [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"b899a700-286b-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"socket\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"socket\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"socket\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Socket Destination IPs [Auditbeat System] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"destination.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":30},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Socket Destination IPs [Auditbeat System] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"d32c0540-286b-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNDksMV0="} -{"attributes":{"description":"System Sockets","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"1\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"2\",\"w\":5,\"x\":0,\"y\":4},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"3\",\"w\":5,\"x\":5,\"y\":4},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"4\",\"w\":5,\"x\":10,\"y\":4},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"5\",\"w\":9,\"x\":15,\"y\":4},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":26,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":23},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":15},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"8\",\"w\":6,\"x\":42,\"y\":4},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"9\",\"w\":6,\"x\":36,\"y\":4},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"10\",\"w\":6,\"x\":24,\"y\":4},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"11\",\"w\":6,\"x\":30,\"y\":4},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"}]","timeRestore":false,"title":"[Auditbeat System] Socket Dashboard ECS","version":1},"coreMigrationVersion":"8.0.0","id":"957a3ef0-2867-11e9-9d21-0be348776e6c-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","name":"1:panel_1","type":"visualization"},{"id":"7323dd90-27f2-11e9-89af-fd12d59dac90-ecs","name":"2:panel_2","type":"visualization"},{"id":"295905e0-27fd-11e9-89af-fd12d59dac90-ecs","name":"3:panel_3","type":"visualization"},{"id":"82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs","name":"4:panel_4","type":"visualization"},{"id":"eb2dbfd0-2866-11e9-9d21-0be348776e6c-ecs","name":"5:panel_5","type":"visualization"},{"id":"3bfed610-2867-11e9-9d21-0be348776e6c-ecs","name":"6:panel_6","type":"search"},{"id":"536fa900-2867-11e9-9d21-0be348776e6c-ecs","name":"7:panel_7","type":"visualization"},{"id":"78391460-2867-11e9-9d21-0be348776e6c-ecs","name":"8:panel_8","type":"visualization"},{"id":"1771daa0-286b-11e9-9d21-0be348776e6c-ecs","name":"9:panel_9","type":"visualization"},{"id":"b899a700-286b-11e9-9d21-0be348776e6c-ecs","name":"10:panel_10","type":"visualization"},{"id":"d32c0540-286b-11e9-9d21-0be348776e6c-ecs","name":"11:panel_11","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:36:06.037Z","version":"WzUwNTAsMV0="} diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-user-dashboard.ndjson b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-user-dashboard.ndjson deleted file mode 100644 index 1ed82572e158..000000000000 --- a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/auditbeat-system-user-dashboard.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"User Count [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Users\",\"field\":\"user.entity_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"User Count [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"e9225120-27f2-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":true,\"params\":{\"query\":\"existing_user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"existing_user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"existing_user\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"User Changes [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"User Changes\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"User Changes [Auditbeat System] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.action\",\"negate\":true,\"params\":{\"query\":\"existing_user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"existing_user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\"},\"query\":{\"match\":{\"event.action\":{\"query\":\"existing_user\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"User Change Actions [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"User Change Actions [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"dc514de0-2863-11e9-97cb-474beda9f119-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Password Types [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"system.audit.user.password.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Password Types [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0bf8b4c0-2864-11e9-97cb-474beda9f119-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"User Documents Histogram [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"User Documents Histogram [Auditbeat System] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"30f4eff0-2864-11e9-97cb-474beda9f119-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTUsMV0="} -{"attributes":{"columns":["host.hostname","system.audit.user.name","system.audit.user.password.type","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"User Documents [Auditbeat System] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"658a3db0-2864-11e9-97cb-474beda9f119-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"user\",\"type\":\"phrase\"},\"type\":\"phrase\",\"value\":\"user\",\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\"},\"query\":{\"match\":{\"event.dataset\":{\"query\":\"user\",\"type\":\"phrase\"}}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"User OS Distribution [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"host.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"OS\",\"field\":\"host.os.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"host.os.version\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"User OS Distribution [Auditbeat System] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7f480de0-2864-11e9-97cb-474beda9f119-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"auditbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Dashboard Links [Auditbeat System] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard Links [Auditbeat System] ECS\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTgsMV0="} -{"attributes":{"description":"System Users","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":8,\"x\":0,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":8,\"x\":8,\"y\":4},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3\",\"w\":11,\"x\":26,\"y\":4},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":11,\"x\":37,\"y\":4},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":14},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":26,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":23},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"7\",\"w\":10,\"x\":16,\"y\":4},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"8\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Auditbeat System] User Dashboard ECS","version":1},"coreMigrationVersion":"8.0.0","id":"ae96a660-2864-11e9-97cb-474beda9f119-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"e9225120-27f2-11e9-89af-fd12d59dac90-ecs","name":"1:panel_1","type":"visualization"},{"id":"00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs","name":"2:panel_2","type":"visualization"},{"id":"dc514de0-2863-11e9-97cb-474beda9f119-ecs","name":"3:panel_3","type":"visualization"},{"id":"0bf8b4c0-2864-11e9-97cb-474beda9f119-ecs","name":"4:panel_4","type":"visualization"},{"id":"30f4eff0-2864-11e9-97cb-474beda9f119-ecs","name":"5:panel_5","type":"visualization"},{"id":"658a3db0-2864-11e9-97cb-474beda9f119-ecs","name":"6:panel_6","type":"search"},{"id":"7f480de0-2864-11e9-97cb-474beda9f119-ecs","name":"7:panel_7","type":"visualization"},{"id":"4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:36:07.028Z","version":"WzUwNTksMV0="} diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs.json new file mode 100644 index 000000000000..0b1356ea5f25 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs.json @@ -0,0 +1,182 @@ +{ + "attributes": { + "description": "System Hosts", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "1", + "w": 15, + "x": 0, + "y": 4 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "2", + "w": 17, + "x": 31, + "y": 4 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "4", + "w": 16, + "x": 15, + "y": 4 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "5", + "w": 48, + "x": 0, + "y": 14 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6", + "w": 48, + "x": 0, + "y": 21 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "7", + "w": 48, + "x": 0, + "y": 33 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "8", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Auditbeat System] Host Dashboard ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "dfe62590-18da-11e9-9094-c50574723088-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "cf8aa0a0-18ca-11e9-9094-c50574723088-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "9dd991a0-18cb-11e9-9094-c50574723088-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "4d0485f0-18da-11e9-9094-c50574723088-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "eea92ad0-18d7-11e9-9094-c50574723088-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "91962a30-1901-11e9-9094-c50574723088-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "abe78cd0-18ca-11e9-9094-c50574723088-ecs", + "name": "7:panel_7", + "type": "search" + }, + { + "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", + "name": "8:panel_8", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:36:00.890Z", + "version": "WzQ5OTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/search/0f9611b0-2862-11e9-97cb-474beda9f119-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/search/0f9611b0-2862-11e9-97cb-474beda9f119-ecs.json new file mode 100644 index 000000000000..b86c8d615782 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/search/0f9611b0-2862-11e9-97cb-474beda9f119-ecs.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "columns": [ + "host.hostname", + "user.name", + "event.action", + "process.pid", + "process.name" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "process", + "type": "phrase" + }, + "type": "phrase", + "value": "process" + }, + "query": { + "match": { + "event.dataset": { + "query": "process", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Process Events [Auditbeat System] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "0f9611b0-2862-11e9-97cb-474beda9f119-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:36:04.954Z", + "version": "WzUwMzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/search/2e04c720-285f-11e9-805f-43bf57dfa519-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/search/2e04c720-285f-11e9-805f-43bf57dfa519-ecs.json new file mode 100644 index 000000000000..4314855d2817 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/search/2e04c720-285f-11e9-805f-43bf57dfa519-ecs.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "columns": [ + "host.hostname", + "user.name", + "event.outcome", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "login", + "type": "phrase" + }, + "type": "phrase", + "value": "login" + }, + "query": { + "match": { + "event.dataset": { + "query": "login", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Login Events [Auditbeat System] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "2e04c720-285f-11e9-805f-43bf57dfa519-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:36:01.915Z", + "version": "WzQ5OTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/search/391ef230-2868-11e9-9d21-0be348776e6c-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/search/391ef230-2868-11e9-9d21-0be348776e6c-ecs.json new file mode 100644 index 000000000000..2ebbb6675a42 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/search/391ef230-2868-11e9-9d21-0be348776e6c-ecs.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "columns": [ + "host.hostname", + "event.action", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "package", + "type": "phrase" + }, + "type": "phrase", + "value": "package" + }, + "query": { + "match": { + "event.dataset": { + "query": "package", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Package Documents [Auditbeat System] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "391ef230-2868-11e9-9d21-0be348776e6c-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:36:03.951Z", + "version": "WzUwMjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/search/3bfed610-2867-11e9-9d21-0be348776e6c-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/search/3bfed610-2867-11e9-9d21-0be348776e6c-ecs.json new file mode 100644 index 000000000000..68311d9bf1b1 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/search/3bfed610-2867-11e9-9d21-0be348776e6c-ecs.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "columns": [ + "host.hostname", + "network.direction", + "process.name", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "socket", + "type": "phrase" + }, + "type": "phrase", + "value": "socket" + }, + "query": { + "match": { + "event.dataset": { + "query": "socket", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Socket Documents [Auditbeat System] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "3bfed610-2867-11e9-9d21-0be348776e6c-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:36:06.037Z", + "version": "WzUwNDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/search/658a3db0-2864-11e9-97cb-474beda9f119-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/search/658a3db0-2864-11e9-97cb-474beda9f119-ecs.json new file mode 100644 index 000000000000..42334404d2c5 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/search/658a3db0-2864-11e9-97cb-474beda9f119-ecs.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "columns": [ + "host.hostname", + "system.audit.user.name", + "system.audit.user.password.type", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "user", + "type": "phrase" + }, + "type": "phrase", + "value": "user" + }, + "query": { + "match": { + "event.dataset": { + "query": "user", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "User Documents [Auditbeat System] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "658a3db0-2864-11e9-97cb-474beda9f119-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:36:07.028Z", + "version": "WzUwNTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/search/abe78cd0-18ca-11e9-9094-c50574723088-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/search/abe78cd0-18ca-11e9-9094-c50574723088-ecs.json new file mode 100644 index 000000000000..ddbb604a58c0 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/search/abe78cd0-18ca-11e9-9094-c50574723088-ecs.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "columns": [ + "system.audit.host.hostname", + "event.action", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "host", + "type": "phrase" + }, + "type": "phrase", + "value": "host" + }, + "query": { + "match": { + "event.dataset": { + "query": "host", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Host Events [Auditbeat System] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "abe78cd0-18ca-11e9-9094-c50574723088-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:36:00.890Z", + "version": "WzQ5ODksMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/search/d08ebd30-27ff-11e9-805f-43bf57dfa519-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/search/d08ebd30-27ff-11e9-805f-43bf57dfa519-ecs.json new file mode 100644 index 000000000000..a36c229785ce --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/search/d08ebd30-27ff-11e9-805f-43bf57dfa519-ecs.json @@ -0,0 +1,110 @@ +{ + "attributes": { + "columns": [ + "host.hostname", + "event.dataset", + "event.action", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "system", + "type": "phrase" + }, + "type": "phrase", + "value": "system" + }, + "query": { + "match": { + "event.module": { + "query": "system", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.kind", + "negate": false, + "params": { + "query": "event", + "type": "phrase" + }, + "type": "phrase", + "value": "event" + }, + "query": { + "match": { + "event.kind": { + "query": "event", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "System Events [Auditbeat System] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "d08ebd30-27ff-11e9-805f-43bf57dfa519-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:36:02.960Z", + "version": "WzUwMTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs.json new file mode 100644 index 000000000000..861819b775d0 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "user", + "type": "phrase" + }, + "type": "phrase", + "value": "user" + }, + "query": { + "match": { + "event.dataset": { + "query": "user", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.action", + "negate": true, + "params": { + "query": "existing_user", + "type": "phrase" + }, + "type": "phrase", + "value": "existing_user" + }, + "query": { + "match": { + "event.action": { + "query": "existing_user", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "User Changes [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "User Changes" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "User Changes [Auditbeat System] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "00fa0d20-27fc-11e9-89af-fd12d59dac90-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:07.028Z", + "version": "WzUwNTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/0bf8b4c0-2864-11e9-97cb-474beda9f119-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/0bf8b4c0-2864-11e9-97cb-474beda9f119-ecs.json new file mode 100644 index 000000000000..c479f72fde10 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/0bf8b4c0-2864-11e9-97cb-474beda9f119-ecs.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "user", + "type": "phrase" + }, + "type": "phrase", + "value": "user" + }, + "query": { + "match": { + "event.dataset": { + "query": "user", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Password Types [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "system.audit.user.password.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Password Types [Auditbeat System] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0bf8b4c0-2864-11e9-97cb-474beda9f119-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:07.028Z", + "version": "WzUwNTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/0db90830-27fd-11e9-89af-fd12d59dac90-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/0db90830-27fd-11e9-89af-fd12d59dac90-ecs.json new file mode 100644 index 000000000000..39e720b52924 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/0db90830-27fd-11e9-89af-fd12d59dac90-ecs.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "process", + "type": "phrase" + }, + "type": "phrase", + "value": "process" + }, + "query": { + "match": { + "event.dataset": { + "query": "process", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.action", + "negate": false, + "params": { + "query": "process_started", + "type": "phrase" + }, + "type": "phrase", + "value": "process_started" + }, + "query": { + "match": { + "event.action": { + "query": "process_started", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Process Starts [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Started" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Process Starts [Auditbeat System] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0db90830-27fd-11e9-89af-fd12d59dac90-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:04.954Z", + "version": "WzUwMzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/1771daa0-286b-11e9-9d21-0be348776e6c-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/1771daa0-286b-11e9-9d21-0be348776e6c-ecs.json new file mode 100644 index 000000000000..d9352185cb27 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/1771daa0-286b-11e9-9d21-0be348776e6c-ecs.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "socket", + "type": "phrase" + }, + "type": "phrase", + "value": "socket" + }, + "query": { + "match": { + "event.dataset": { + "query": "socket", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Destination Ports [Auditbeat System] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "destination.port", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 30 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Destination Ports [Auditbeat System] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1771daa0-286b-11e9-9d21-0be348776e6c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:06.037Z", + "version": "WzUwNDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/295905e0-27fd-11e9-89af-fd12d59dac90-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/295905e0-27fd-11e9-89af-fd12d59dac90-ecs.json new file mode 100644 index 000000000000..a89e93a7bd3d --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/295905e0-27fd-11e9-89af-fd12d59dac90-ecs.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "socket", + "type": "phrase" + }, + "type": "phrase", + "value": "socket" + }, + "query": { + "match": { + "event.dataset": { + "query": "socket", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.action", + "negate": false, + "params": { + "query": "socket_opened", + "type": "phrase" + }, + "type": "phrase", + "value": "socket_opened" + }, + "query": { + "match": { + "event.action": { + "query": "socket_opened", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Sockets Opened [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Opened" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Sockets Opened [Auditbeat System] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "295905e0-27fd-11e9-89af-fd12d59dac90-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:06.037Z", + "version": "WzUwNDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/30936470-2863-11e9-97cb-474beda9f119-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/30936470-2863-11e9-97cb-474beda9f119-ecs.json new file mode 100644 index 000000000000..b052733dc44e --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/30936470-2863-11e9-97cb-474beda9f119-ecs.json @@ -0,0 +1,116 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "process", + "type": "phrase" + }, + "type": "phrase", + "value": "process" + }, + "query": { + "match": { + "event.dataset": { + "query": "process", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Process Users [Auditbeat System] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Process", + "field": "user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 8 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + } + ], + "params": { + "perPage": 8, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Process Users [Auditbeat System] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "30936470-2863-11e9-97cb-474beda9f119-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:04.954Z", + "version": "WzUwMzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/30f4eff0-2864-11e9-97cb-474beda9f119-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/30f4eff0-2864-11e9-97cb-474beda9f119-ecs.json new file mode 100644 index 000000000000..e688019370f5 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/30f4eff0-2864-11e9-97cb-474beda9f119-ecs.json @@ -0,0 +1,167 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "user", + "type": "phrase" + }, + "type": "phrase", + "value": "user" + }, + "query": { + "match": { + "event.dataset": { + "query": "user", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "User Documents Histogram [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "User Documents Histogram [Auditbeat System] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "30f4eff0-2864-11e9-97cb-474beda9f119-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:07.028Z", + "version": "WzUwNTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs.json new file mode 100644 index 000000000000..6c8b2ba2adfa --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Dashboard Links [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "**Dashboards**: [System Overview](#/dashboard/2be46cb0-27f2-11e9-89af-fd12d59dac90-ecs) | [Hosts](#/dashboard/dfe62590-18da-11e9-9094-c50574723088-ecs) | [Logins](#/dashboard/2a17f200-285e-11e9-805f-43bf57dfa519-ecs) | [Users](#/dashboard/ae96a660-2864-11e9-97cb-474beda9f119-ecs) | [Processes](#/dashboard/4c68f110-2863-11e9-97cb-474beda9f119-ecs) | [Sockets](#/dashboard/957a3ef0-2867-11e9-9d21-0be348776e6c-ecs) | [Packages](#/dashboard/137c52f0-286a-11e9-9d21-0be348776e6c-ecs)", + "openLinksInNewTab": false + }, + "title": "Dashboard Links [Auditbeat System] ECS", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4ccc5b50-27f6-11e9-89af-fd12d59dac90-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:36:07.028Z", + "version": "WzUwNTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/4d0485f0-18da-11e9-9094-c50574723088-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/4d0485f0-18da-11e9-9094-c50574723088-ecs.json new file mode 100644 index 000000000000..53cb79b97623 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/4d0485f0-18da-11e9-9094-c50574723088-ecs.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "host", + "type": "phrase" + }, + "type": "phrase", + "value": "host" + }, + "query": { + "match": { + "event.dataset": { + "query": "host", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Average Uptime [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Average Uptime in days", + "field": "system.audit.host.uptime" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Average Uptime [Auditbeat System] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4d0485f0-18da-11e9-9094-c50574723088-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:00.890Z", + "version": "WzQ5ODYsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/4e7701d0-2869-11e9-9d21-0be348776e6c-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/4e7701d0-2869-11e9-9d21-0be348776e6c-ecs.json new file mode 100644 index 000000000000..093ea6a44d41 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/4e7701d0-2869-11e9-9d21-0be348776e6c-ecs.json @@ -0,0 +1,167 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "package", + "type": "phrase" + }, + "type": "phrase", + "value": "package" + }, + "query": { + "match": { + "event.dataset": { + "query": "package", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Package Document Histogram [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Package Document Histogram [Auditbeat System] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4e7701d0-2869-11e9-9d21-0be348776e6c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:03.951Z", + "version": "WzUwMjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/536fa900-2867-11e9-9d21-0be348776e6c-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/536fa900-2867-11e9-9d21-0be348776e6c-ecs.json new file mode 100644 index 000000000000..3ce5737ac4ba --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/536fa900-2867-11e9-9d21-0be348776e6c-ecs.json @@ -0,0 +1,167 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "socket", + "type": "phrase" + }, + "type": "phrase", + "value": "socket" + }, + "query": { + "match": { + "event.dataset": { + "query": "socket", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Socket Document Histogram [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Socket Document Histogram [Auditbeat System] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "536fa900-2867-11e9-9d21-0be348776e6c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:06.037Z", + "version": "WzUwNDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/54135e50-27ff-11e9-805f-43bf57dfa519-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/54135e50-27ff-11e9-805f-43bf57dfa519-ecs.json new file mode 100644 index 000000000000..adb661854b28 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/54135e50-27ff-11e9-805f-43bf57dfa519-ecs.json @@ -0,0 +1,198 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "system", + "type": "phrase" + }, + "type": "phrase", + "value": "system" + }, + "query": { + "match": { + "event.module": { + "query": "system", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.kind", + "negate": false, + "params": { + "query": "event", + "type": "phrase" + }, + "type": "phrase", + "value": "event" + }, + "query": { + "match": { + "event.kind": { + "query": "event", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "System Event Histogram [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "System Event Histogram [Auditbeat System] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "54135e50-27ff-11e9-805f-43bf57dfa519-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:02.960Z", + "version": "WzUwMTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/593df9b0-27f7-11e9-89af-fd12d59dac90-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/593df9b0-27f7-11e9-89af-fd12d59dac90-ecs.json new file mode 100644 index 000000000000..4bcc2e0cd633 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/593df9b0-27f7-11e9-89af-fd12d59dac90-ecs.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "login", + "type": "phrase" + }, + "type": "phrase", + "value": "login" + }, + "query": { + "match": { + "event.dataset": { + "query": "login", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Login Actions [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Login Actions [Auditbeat System] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "593df9b0-27f7-11e9-89af-fd12d59dac90-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:02.960Z", + "version": "WzUwMDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/5eb5f250-285e-11e9-805f-43bf57dfa519-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/5eb5f250-285e-11e9-805f-43bf57dfa519-ecs.json new file mode 100644 index 000000000000..de1658a0f23f --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/5eb5f250-285e-11e9-805f-43bf57dfa519-ecs.json @@ -0,0 +1,149 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "login", + "type": "phrase" + }, + "type": "phrase", + "value": "login" + }, + "query": { + "match": { + "event.dataset": { + "query": "login", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.outcome", + "negate": false, + "params": { + "query": "success", + "type": "phrase" + }, + "type": "phrase", + "value": "success" + }, + "query": { + "match": { + "event.outcome": { + "query": "success", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Login Success Table [Auditbeat System] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Successful Logins" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "User", + "field": "user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 8, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Login Success Table [Auditbeat System] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5eb5f250-285e-11e9-805f-43bf57dfa519-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:01.915Z", + "version": "WzQ5OTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/6ed51940-2868-11e9-9d21-0be348776e6c-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/6ed51940-2868-11e9-9d21-0be348776e6c-ecs.json new file mode 100644 index 000000000000..0455d139550b --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/6ed51940-2868-11e9-9d21-0be348776e6c-ecs.json @@ -0,0 +1,131 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "package", + "type": "phrase" + }, + "type": "phrase", + "value": "package" + }, + "query": { + "match": { + "event.dataset": { + "query": "package", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Package OS Distribution [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "host.id" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "OS", + "field": "host.os.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "host.os.version", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Package OS Distribution [Auditbeat System] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6ed51940-2868-11e9-9d21-0be348776e6c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:03.951Z", + "version": "WzUwMjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/7323dd90-27f2-11e9-89af-fd12d59dac90-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/7323dd90-27f2-11e9-89af-fd12d59dac90-ecs.json new file mode 100644 index 000000000000..aef46cf83b03 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/7323dd90-27f2-11e9-89af-fd12d59dac90-ecs.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "socket", + "type": "phrase" + }, + "type": "phrase", + "value": "socket" + }, + "query": { + "match": { + "event.dataset": { + "query": "socket", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Socket Count [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Sockets", + "field": "socket.entity_id" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Socket Count [Auditbeat System] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7323dd90-27f2-11e9-89af-fd12d59dac90-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:06.037Z", + "version": "WzUwNDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/78391460-2867-11e9-9d21-0be348776e6c-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/78391460-2867-11e9-9d21-0be348776e6c-ecs.json new file mode 100644 index 000000000000..c8824d04a151 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/78391460-2867-11e9-9d21-0be348776e6c-ecs.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "socket", + "type": "phrase" + }, + "type": "phrase", + "value": "socket" + }, + "query": { + "match": { + "event.dataset": { + "query": "socket", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Socket Users [Auditbeat System] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 8 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 8, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Socket Users [Auditbeat System] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "78391460-2867-11e9-9d21-0be348776e6c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:06.037Z", + "version": "WzUwNDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/7f480de0-2864-11e9-97cb-474beda9f119-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/7f480de0-2864-11e9-97cb-474beda9f119-ecs.json new file mode 100644 index 000000000000..3b18dc7f6c62 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/7f480de0-2864-11e9-97cb-474beda9f119-ecs.json @@ -0,0 +1,131 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "user", + "type": "phrase" + }, + "type": "phrase", + "value": "user" + }, + "query": { + "match": { + "event.dataset": { + "query": "user", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "User OS Distribution [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "host.id" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "OS", + "field": "host.os.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "host.os.version", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "User OS Distribution [Auditbeat System] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7f480de0-2864-11e9-97cb-474beda9f119-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:07.028Z", + "version": "WzUwNTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs.json new file mode 100644 index 000000000000..9036a21fb61f --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "socket", + "type": "phrase" + }, + "type": "phrase", + "value": "socket" + }, + "query": { + "match": { + "event.dataset": { + "query": "socket", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.action", + "negate": false, + "params": { + "query": "socket_closed", + "type": "phrase" + }, + "type": "phrase", + "value": "socket_closed" + }, + "query": { + "match": { + "event.action": { + "query": "socket_closed", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Sockets Closed [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Closed" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Sockets Closed [Auditbeat System] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "82d46ec0-27fd-11e9-89af-fd12d59dac90-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:06.037Z", + "version": "WzUwNDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/8d63c420-27f4-11e9-89af-fd12d59dac90-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/8d63c420-27f4-11e9-89af-fd12d59dac90-ecs.json new file mode 100644 index 000000000000..c6ed96aa6409 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/8d63c420-27f4-11e9-89af-fd12d59dac90-ecs.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "login", + "type": "phrase" + }, + "type": "phrase", + "value": "login" + }, + "query": { + "match": { + "event.dataset": { + "query": "login", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Login Count [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Login Events" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Login Count [Auditbeat System] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8d63c420-27f4-11e9-89af-fd12d59dac90-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:02.960Z", + "version": "WzUwMDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/8dc55df0-2869-11e9-9d21-0be348776e6c-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/8dc55df0-2869-11e9-9d21-0be348776e6c-ecs.json new file mode 100644 index 000000000000..0f8731bd3f5f --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/8dc55df0-2869-11e9-9d21-0be348776e6c-ecs.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "package", + "type": "phrase" + }, + "type": "phrase", + "value": "package" + }, + "query": { + "match": { + "event.dataset": { + "query": "package", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Package Names [Auditbeat System] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "system.audit.package.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 25 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 5, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Package Names [Auditbeat System] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8dc55df0-2869-11e9-9d21-0be348776e6c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:03.951Z", + "version": "WzUwMjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/91708fd0-2862-11e9-97cb-474beda9f119-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/91708fd0-2862-11e9-97cb-474beda9f119-ecs.json new file mode 100644 index 000000000000..27cc8e9c82a6 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/91708fd0-2862-11e9-97cb-474beda9f119-ecs.json @@ -0,0 +1,131 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "process", + "type": "phrase" + }, + "type": "phrase", + "value": "process" + }, + "query": { + "match": { + "event.dataset": { + "query": "process", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Process OS Distribution [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "host.id" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "OS", + "field": "host.os.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "host.os.version", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Process OS Distribution [Auditbeat System] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "91708fd0-2862-11e9-97cb-474beda9f119-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:04.954Z", + "version": "WzUwMzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/91962a30-1901-11e9-9094-c50574723088-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/91962a30-1901-11e9-9094-c50574723088-ecs.json new file mode 100644 index 000000000000..8b4d46773755 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/91962a30-1901-11e9-9094-c50574723088-ecs.json @@ -0,0 +1,179 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "host", + "type": "phrase" + }, + "type": "phrase", + "value": "host" + }, + "query": { + "match": { + "event.dataset": { + "query": "host", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Host List [Auditbeat System] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": 1, + "direction": "asc" + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Hostname", + "field": "system.audit.host.hostname", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "aggregate": "max", + "customLabel": "Uptime (days)", + "field": "system.audit.host.uptime", + "size": 1, + "sortField": "@timestamp", + "sortOrder": "desc" + }, + "schema": "metric", + "type": "top_hits" + }, + { + "enabled": true, + "id": "3", + "params": { + "aggregate": "concat", + "customLabel": "OS", + "field": "system.audit.host.os.name", + "size": 1, + "sortField": "@timestamp", + "sortOrder": "desc" + }, + "schema": "metric", + "type": "top_hits" + }, + { + "enabled": true, + "id": "4", + "params": { + "aggregate": "concat", + "customLabel": "Version", + "field": "system.audit.host.os.version", + "size": 1, + "sortField": "@timestamp", + "sortOrder": "desc" + }, + "schema": "metric", + "type": "top_hits" + }, + { + "enabled": true, + "id": "1", + "params": { + "aggregate": "concat", + "customLabel": "Host ID", + "field": "system.audit.host.id", + "size": 1, + "sortField": "@timestamp", + "sortOrder": "desc" + }, + "schema": "metric", + "type": "top_hits" + }, + { + "enabled": true, + "id": "6", + "params": { + "aggregate": "concat", + "customLabel": "Status", + "field": "message", + "size": 1, + "sortField": "@timestamp", + "sortOrder": "desc" + }, + "schema": "metric", + "type": "top_hits" + } + ], + "params": { + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Host List [Auditbeat System] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "91962a30-1901-11e9-9094-c50574723088-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:02.960Z", + "version": "WzUwMTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/9dd991a0-18cb-11e9-9094-c50574723088-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/9dd991a0-18cb-11e9-9094-c50574723088-ecs.json new file mode 100644 index 000000000000..98e4a6349376 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/9dd991a0-18cb-11e9-9094-c50574723088-ecs.json @@ -0,0 +1,131 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "host", + "type": "phrase" + }, + "type": "phrase", + "value": "host" + }, + "query": { + "match": { + "event.dataset": { + "query": "host", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "OS Distribution [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "system.audit.host.id" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "OS", + "field": "system.audit.host.os.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "system.audit.host.os.version", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "OS Distribution [Auditbeat System] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9dd991a0-18cb-11e9-9094-c50574723088-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:02.960Z", + "version": "WzUwMDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/a1951650-285e-11e9-805f-43bf57dfa519-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/a1951650-285e-11e9-805f-43bf57dfa519-ecs.json new file mode 100644 index 000000000000..57df389012e1 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/a1951650-285e-11e9-805f-43bf57dfa519-ecs.json @@ -0,0 +1,149 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "login", + "type": "phrase" + }, + "type": "phrase", + "value": "login" + }, + "query": { + "match": { + "event.dataset": { + "query": "login", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.outcome", + "negate": false, + "params": { + "query": "failure", + "type": "phrase" + }, + "type": "phrase", + "value": "failure" + }, + "query": { + "match": { + "event.outcome": { + "query": "failure", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Login Failures Table [Auditbeat System] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Failed Logins" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "User", + "field": "user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 8, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Login Failures Table [Auditbeat System] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a1951650-285e-11e9-805f-43bf57dfa519-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:01.915Z", + "version": "WzQ5OTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/b1e2af00-2862-11e9-97cb-474beda9f119-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/b1e2af00-2862-11e9-97cb-474beda9f119-ecs.json new file mode 100644 index 000000000000..4fb0cbd1cf21 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/b1e2af00-2862-11e9-97cb-474beda9f119-ecs.json @@ -0,0 +1,167 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "process", + "type": "phrase" + }, + "type": "phrase", + "value": "process" + }, + "query": { + "match": { + "event.dataset": { + "query": "process", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Process Event Histogram [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Process Event Histogram [Auditbeat System] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b1e2af00-2862-11e9-97cb-474beda9f119-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:04.954Z", + "version": "WzUwMzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/b885dae0-27fd-11e9-89af-fd12d59dac90-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/b885dae0-27fd-11e9-89af-fd12d59dac90-ecs.json new file mode 100644 index 000000000000..2af871cc1b37 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/b885dae0-27fd-11e9-89af-fd12d59dac90-ecs.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.action", + "negate": false, + "params": { + "query": "process_stopped", + "type": "phrase" + }, + "type": "phrase", + "value": "process_stopped" + }, + "query": { + "match": { + "event.action": { + "query": "process_stopped", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "process", + "type": "phrase" + }, + "type": "phrase", + "value": "process" + }, + "query": { + "match": { + "event.dataset": { + "query": "process", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Process Stops [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Stopped" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Process Stops [Auditbeat System] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b885dae0-27fd-11e9-89af-fd12d59dac90-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:04.954Z", + "version": "WzUwMzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/b899a700-286b-11e9-9d21-0be348776e6c-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/b899a700-286b-11e9-9d21-0be348776e6c-ecs.json new file mode 100644 index 000000000000..2399bc7302a5 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/b899a700-286b-11e9-9d21-0be348776e6c-ecs.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "socket", + "type": "phrase" + }, + "type": "phrase", + "value": "socket" + }, + "query": { + "match": { + "event.dataset": { + "query": "socket", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Socket Source IPs [Auditbeat System] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "source.ip", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 30 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Socket Source IPs [Auditbeat System] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b899a700-286b-11e9-9d21-0be348776e6c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:06.037Z", + "version": "WzUwNDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs.json new file mode 100644 index 000000000000..ae227c172557 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "process", + "type": "phrase" + }, + "type": "phrase", + "value": "process" + }, + "query": { + "match": { + "event.dataset": { + "query": "process", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Process Count [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Processes", + "field": "process.entity_id" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Process Count [Auditbeat System] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bb0d1870-27f1-11e9-89af-fd12d59dac90-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:04.954Z", + "version": "WzUwMjksMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs.json new file mode 100644 index 000000000000..b8e487a57135 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "package", + "type": "phrase" + }, + "type": "phrase", + "value": "package" + }, + "query": { + "match": { + "event.dataset": { + "query": "package", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.action", + "negate": true, + "params": { + "query": "existing_package", + "type": "phrase" + }, + "type": "phrase", + "value": "existing_package" + }, + "query": { + "match": { + "event.action": { + "query": "existing_package", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Package Changes [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Changes" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Package Changes [Auditbeat System] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bdf9c530-27fe-11e9-805f-43bf57dfa519-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:03.951Z", + "version": "WzUwMjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/cf8aa0a0-18ca-11e9-9094-c50574723088-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/cf8aa0a0-18ca-11e9-9094-c50574723088-ecs.json new file mode 100644 index 000000000000..511f8548d99d --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/cf8aa0a0-18ca-11e9-9094-c50574723088-ecs.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "system", + "type": "phrase" + }, + "type": "phrase", + "value": "system" + }, + "query": { + "match": { + "event.module": { + "query": "system", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Host Count [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Hosts", + "field": "host.id" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Host Count [Auditbeat System] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "cf8aa0a0-18ca-11e9-9094-c50574723088-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:02.960Z", + "version": "WzUwMDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/d32c0540-286b-11e9-9d21-0be348776e6c-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/d32c0540-286b-11e9-9d21-0be348776e6c-ecs.json new file mode 100644 index 000000000000..91c3cfde7fa3 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/d32c0540-286b-11e9-9d21-0be348776e6c-ecs.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "socket", + "type": "phrase" + }, + "type": "phrase", + "value": "socket" + }, + "query": { + "match": { + "event.dataset": { + "query": "socket", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Socket Destination IPs [Auditbeat System] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "destination.ip", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 30 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Socket Destination IPs [Auditbeat System] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d32c0540-286b-11e9-9d21-0be348776e6c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:06.037Z", + "version": "WzUwNDksMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/dc514de0-2863-11e9-97cb-474beda9f119-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/dc514de0-2863-11e9-97cb-474beda9f119-ecs.json new file mode 100644 index 000000000000..d1f285c59e95 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/dc514de0-2863-11e9-97cb-474beda9f119-ecs.json @@ -0,0 +1,143 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "user", + "type": "phrase" + }, + "type": "phrase", + "value": "user" + }, + "query": { + "match": { + "event.dataset": { + "query": "user", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.action", + "negate": true, + "params": { + "query": "existing_user", + "type": "phrase" + }, + "type": "phrase", + "value": "existing_user" + }, + "query": { + "match": { + "event.action": { + "query": "existing_user", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "User Change Actions [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "User Change Actions [Auditbeat System] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dc514de0-2863-11e9-97cb-474beda9f119-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:07.028Z", + "version": "WzUwNTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/e4d25fe0-285e-11e9-805f-43bf57dfa519-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/e4d25fe0-285e-11e9-805f-43bf57dfa519-ecs.json new file mode 100644 index 000000000000..00ee4fb406ae --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/e4d25fe0-285e-11e9-805f-43bf57dfa519-ecs.json @@ -0,0 +1,167 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "login", + "type": "phrase" + }, + "type": "phrase", + "value": "login" + }, + "query": { + "match": { + "event.dataset": { + "query": "login", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Login Event Histogram [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Login Event Histogram [Auditbeat System] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e4d25fe0-285e-11e9-805f-43bf57dfa519-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:01.915Z", + "version": "WzQ5OTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/e8eb58a0-2860-11e9-805f-43bf57dfa519-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/e8eb58a0-2860-11e9-805f-43bf57dfa519-ecs.json new file mode 100644 index 000000000000..0238eb1a6563 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/e8eb58a0-2860-11e9-805f-43bf57dfa519-ecs.json @@ -0,0 +1,131 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "login", + "type": "phrase" + }, + "type": "phrase", + "value": "login" + }, + "query": { + "match": { + "event.dataset": { + "query": "login", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Login OS Distribution [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "host.id" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "OS", + "field": "host.os.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "host.os.version", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Login OS Distribution [Auditbeat System] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e8eb58a0-2860-11e9-805f-43bf57dfa519-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:01.915Z", + "version": "WzQ5OTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/e9225120-27f2-11e9-89af-fd12d59dac90-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/e9225120-27f2-11e9-89af-fd12d59dac90-ecs.json new file mode 100644 index 000000000000..fbf3861efe1d --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/e9225120-27f2-11e9-89af-fd12d59dac90-ecs.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "user", + "type": "phrase" + }, + "type": "phrase", + "value": "user" + }, + "query": { + "match": { + "event.dataset": { + "query": "user", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "User Count [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Users", + "field": "user.entity_id" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "User Count [Auditbeat System] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e9225120-27f2-11e9-89af-fd12d59dac90-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:07.028Z", + "version": "WzUwNTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/eb2dbfd0-2866-11e9-9d21-0be348776e6c-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/eb2dbfd0-2866-11e9-9d21-0be348776e6c-ecs.json new file mode 100644 index 000000000000..18016c5733bc --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/eb2dbfd0-2866-11e9-9d21-0be348776e6c-ecs.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "socket", + "type": "phrase" + }, + "type": "phrase", + "value": "socket" + }, + "query": { + "match": { + "event.dataset": { + "query": "socket", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Socket Types [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "network.direction", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Socket Types [Auditbeat System] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "eb2dbfd0-2866-11e9-9d21-0be348776e6c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:06.037Z", + "version": "WzUwNDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/eea92ad0-18d7-11e9-9094-c50574723088-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/eea92ad0-18d7-11e9-9094-c50574723088-ecs.json new file mode 100644 index 000000000000..89fce957d443 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/eea92ad0-18d7-11e9-9094-c50574723088-ecs.json @@ -0,0 +1,169 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "host", + "type": "phrase" + }, + "type": "phrase", + "value": "host" + }, + "query": { + "match": { + "event.dataset": { + "query": "host", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Host Documents [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Host States" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Host States" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Host States" + }, + "type": "value" + } + ] + }, + "title": "Host Documents [Auditbeat System] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "eea92ad0-18d7-11e9-9094-c50574723088-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:00.890Z", + "version": "WzQ5ODcsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/f1d365a0-2862-11e9-97cb-474beda9f119-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/f1d365a0-2862-11e9-97cb-474beda9f119-ecs.json new file mode 100644 index 000000000000..4ba0c5881827 --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/f1d365a0-2862-11e9-97cb-474beda9f119-ecs.json @@ -0,0 +1,116 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "process", + "type": "phrase" + }, + "type": "phrase", + "value": "process" + }, + "query": { + "match": { + "event.dataset": { + "query": "process", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Process Names [Auditbeat System] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Process", + "field": "process.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 8 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + } + ], + "params": { + "perPage": 8, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Process Names [Auditbeat System] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f1d365a0-2862-11e9-97cb-474beda9f119-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:04.954Z", + "version": "WzUwMzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/f664fb20-27f3-11e9-89af-fd12d59dac90-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/f664fb20-27f3-11e9-89af-fd12d59dac90-ecs.json new file mode 100644 index 000000000000..0a2978b388ab --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/f664fb20-27f3-11e9-89af-fd12d59dac90-ecs.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "package", + "type": "phrase" + }, + "type": "phrase", + "value": "package" + }, + "query": { + "match": { + "event.dataset": { + "query": "package", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Package Count [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Packages", + "field": "system.audit.package.entity_id" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Package Count [Auditbeat System] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f664fb20-27f3-11e9-89af-fd12d59dac90-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:03.951Z", + "version": "WzUwMjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/fe23f530-2868-11e9-9d21-0be348776e6c-ecs.json b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/fe23f530-2868-11e9-9d21-0be348776e6c-ecs.json new file mode 100644 index 000000000000..9cced333a47e --- /dev/null +++ b/x-pack/auditbeat/module/system/_meta/kibana/7/visualization/fe23f530-2868-11e9-9d21-0be348776e6c-ecs.json @@ -0,0 +1,143 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "package", + "type": "phrase" + }, + "type": "phrase", + "value": "package" + }, + "query": { + "match": { + "event.dataset": { + "query": "package", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.kind", + "negate": false, + "params": { + "query": "event", + "type": "phrase" + }, + "type": "phrase", + "value": "event" + }, + "query": { + "match": { + "event.kind": { + "query": "event", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Package Change Actions [Auditbeat System] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Package Change Actions [Auditbeat System] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fe23f530-2868-11e9-9d21-0be348776e6c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "auditbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:36:03.951Z", + "version": "WzUwMjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/26434790-1464-11ea-8fd8-030a13064883.json b/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/26434790-1464-11ea-8fd8-030a13064883.json new file mode 100644 index 000000000000..798a13cbc242 --- /dev/null +++ b/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/26434790-1464-11ea-8fd8-030a13064883.json @@ -0,0 +1,97 @@ +{ + "attributes": { + "description": "This dashboard shows application logs collected by the ActiveMQ filebeat module.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "f0cad176-b0ef-4623-bd59-a9ce65db8b73", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "f0cad176-b0ef-4623-bd59-a9ce65db8b73", + "panelRefName": "panel_f0cad176-b0ef-4623-bd59-a9ce65db8b73", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "7e3a3b6b-5fd9-491d-ad73-423bca90206f", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "7e3a3b6b-5fd9-491d-ad73-423bca90206f", + "panelRefName": "panel_7e3a3b6b-5fd9-491d-ad73-423bca90206f", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 22, + "i": "a3093cd3-7edf-4e25-949e-631f3e5e8dec", + "w": 48, + "x": 0, + "y": 15 + }, + "panelIndex": "a3093cd3-7edf-4e25-949e-631f3e5e8dec", + "panelRefName": "panel_a3093cd3-7edf-4e25-949e-631f3e5e8dec", + "type": "search", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Filebeat ActiveMQ] Application Events", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "26434790-1464-11ea-8fd8-030a13064883", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "a0f15d50-1460-11ea-8fd8-030a13064883", + "name": "f0cad176-b0ef-4623-bd59-a9ce65db8b73:panel_f0cad176-b0ef-4623-bd59-a9ce65db8b73", + "type": "visualization" + }, + { + "id": "026da780-1463-11ea-8fd8-030a13064883", + "name": "7e3a3b6b-5fd9-491d-ad73-423bca90206f:panel_7e3a3b6b-5fd9-491d-ad73-423bca90206f", + "type": "visualization" + }, + { + "id": "d784ec10-1460-11ea-8fd8-030a13064883", + "name": "a3093cd3-7edf-4e25-949e-631f3e5e8dec:panel_a3093cd3-7edf-4e25-949e-631f3e5e8dec", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:53.367Z", + "version": "WzQzMjksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-application-events.ndjson b/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-application-events.ndjson deleted file mode 100644 index 7b651d28b14f..000000000000 --- a/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-application-events.ndjson +++ /dev/null @@ -1,4 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"activemq.log\"}, \"type\": \"phrase\", \"value\": \"activemq.log\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"activemq.log\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Application Event Results [Filebeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-2d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"log.level\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"splitColumn\":[{\"accessor\":1,\"aggType\":\"filters\",\"format\":{},\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"params\":{\"bounds\":{\"max\":\"2019-12-01T17:52:01.645Z\",\"min\":\"2019-11-29T17:52:01.645Z\"},\"date\":true,\"format\":\"YYYY-MM-DD HH:mm\",\"interval\":\"PT1H\"}},\"y\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"radiusRatio\":50,\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#34130C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Application Event Results [Filebeat ActiveMQ]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"a0f15d50-1460-11ea-8fd8-030a13064883","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:53.367Z","version":"WzQzMzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"log.level\", \"negate\": false, \"params\": {\"query\": \"ERROR\"}, \"type\": \"phrase\", \"value\": \"ERROR\"}, \"query\": {\"match\": {\"log.level\": {\"query\": \"ERROR\", \"type\": \"phrase\"}}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"activemq.log\"}, \"type\": \"phrase\", \"value\": \"activemq.log\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"activemq.log\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top ERROR callers [Filebeat ActiveMQ]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"activemq.caller\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top ERROR callers [Filebeat ActiveMQ]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"026da780-1463-11ea-8fd8-030a13064883","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:53.367Z","version":"WzQzMzEsMV0="} -{"attributes":{"columns":["log.level","message","activemq.thread"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"activemq.log\\\" \"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Application Events [Filebeat ActiveMQ]","version":1},"coreMigrationVersion":"8.0.0","id":"d784ec10-1460-11ea-8fd8-030a13064883","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:53.367Z","version":"WzQzMzIsMV0="} -{"attributes":{"description":"This dashboard shows application logs collected by the ActiveMQ filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"f0cad176-b0ef-4623-bd59-a9ce65db8b73\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"f0cad176-b0ef-4623-bd59-a9ce65db8b73\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_f0cad176-b0ef-4623-bd59-a9ce65db8b73\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7e3a3b6b-5fd9-491d-ad73-423bca90206f\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"7e3a3b6b-5fd9-491d-ad73-423bca90206f\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7e3a3b6b-5fd9-491d-ad73-423bca90206f\"},{\"version\":\"7.4.0\",\"type\":\"search\",\"gridData\":{\"h\":22,\"i\":\"a3093cd3-7edf-4e25-949e-631f3e5e8dec\",\"w\":48,\"x\":0,\"y\":15},\"panelIndex\":\"a3093cd3-7edf-4e25-949e-631f3e5e8dec\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a3093cd3-7edf-4e25-949e-631f3e5e8dec\"}]","timeRestore":false,"title":"[Filebeat ActiveMQ] Application Events","version":1},"coreMigrationVersion":"8.0.0","id":"26434790-1464-11ea-8fd8-030a13064883","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a0f15d50-1460-11ea-8fd8-030a13064883","name":"f0cad176-b0ef-4623-bd59-a9ce65db8b73:panel_f0cad176-b0ef-4623-bd59-a9ce65db8b73","type":"visualization"},{"id":"026da780-1463-11ea-8fd8-030a13064883","name":"7e3a3b6b-5fd9-491d-ad73-423bca90206f:panel_7e3a3b6b-5fd9-491d-ad73-423bca90206f","type":"visualization"},{"id":"d784ec10-1460-11ea-8fd8-030a13064883","name":"a3093cd3-7edf-4e25-949e-631f3e5e8dec:panel_a3093cd3-7edf-4e25-949e-631f3e5e8dec","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:53.367Z","version":"WzQzMjksMV0="} diff --git a/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-audit-events.ndjson b/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-audit-events.ndjson deleted file mode 100644 index e72683b17786..000000000000 --- a/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/Filebeat-activemq-audit-events.ndjson +++ /dev/null @@ -1,4 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"activemq.audit\"}, \"type\": \"phrase\", \"value\": \"activemq.audit\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"activemq.audit\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Audit Event Results [Filebeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-1d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"event.dataset : \\\"activemq.audit\\\"\"},\"label\":\"\"}],\"row\":false},\"schema\":\"split\",\"type\":\"filters\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"log.level\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"HH:mm\"}},\"params\":{\"bounds\":{\"max\":\"2019-12-01T16:41:18.507Z\",\"min\":\"2019-11-30T16:41:18.507Z\"},\"date\":true,\"format\":\"HH:mm\",\"interval\":\"PT30M\"}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"radiusRatio\":50,\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#34130C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Audit Event Results [Filebeat ActiveMQ]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"38011a70-145a-11ea-8fd8-030a13064883","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:54.354Z","version":"WzQzMzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"activemq.audit\"}, \"type\": \"phrase\", \"value\": \"activemq.audit\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"activemq.audit\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Audit Account Tag Cloud [Filebeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"activemq.user\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"type\":\"vis_dimension\"},\"maxFontSize\":72,\"metric\":{\"accessor\":1,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Audit Account Tag Cloud [Filebeat ActiveMQ]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"38874920-1454-11ea-8fd8-030a13064883","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:54.354Z","version":"WzQzMzUsMV0="} -{"attributes":{"columns":["log.level","activemq.user","message"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"activemq.audit\\\"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Audit Events [Filebeat ActiveMQ]","version":1},"coreMigrationVersion":"8.0.0","id":"896ef3a0-145f-11ea-8fd8-030a13064883","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:54.354Z","version":"WzQzMzYsMV0="} -{"attributes":{"description":"This dashboard shows audit logs collected by the ActiveMQ filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"11105044-eb78-45ab-9206-571e86f5f10d\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"11105044-eb78-45ab-9206-571e86f5f10d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11105044-eb78-45ab-9206-571e86f5f10d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"8f349d14-40d9-4a10-b7d5-0f57c2a69f69\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"8f349d14-40d9-4a10-b7d5-0f57c2a69f69\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8f349d14-40d9-4a10-b7d5-0f57c2a69f69\"},{\"version\":\"7.4.0\",\"type\":\"search\",\"gridData\":{\"h\":23,\"i\":\"f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54\",\"w\":48,\"x\":0,\"y\":15},\"panelIndex\":\"f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54\"}]","timeRestore":false,"title":"[Filebeat ActiveMQ] Audit Events","version":1},"coreMigrationVersion":"8.0.0","id":"ffe86390-145f-11ea-8fd8-030a13064883","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"38011a70-145a-11ea-8fd8-030a13064883","name":"11105044-eb78-45ab-9206-571e86f5f10d:panel_11105044-eb78-45ab-9206-571e86f5f10d","type":"visualization"},{"id":"38874920-1454-11ea-8fd8-030a13064883","name":"8f349d14-40d9-4a10-b7d5-0f57c2a69f69:panel_8f349d14-40d9-4a10-b7d5-0f57c2a69f69","type":"visualization"},{"id":"896ef3a0-145f-11ea-8fd8-030a13064883","name":"f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54:panel_f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:54.354Z","version":"WzQzMzMsMV0="} diff --git a/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/ffe86390-145f-11ea-8fd8-030a13064883.json b/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/ffe86390-145f-11ea-8fd8-030a13064883.json new file mode 100644 index 000000000000..f54d8eecfe1a --- /dev/null +++ b/x-pack/filebeat/module/activemq/_meta/kibana/7/dashboard/ffe86390-145f-11ea-8fd8-030a13064883.json @@ -0,0 +1,97 @@ +{ + "attributes": { + "description": "This dashboard shows audit logs collected by the ActiveMQ filebeat module.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "11105044-eb78-45ab-9206-571e86f5f10d", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "11105044-eb78-45ab-9206-571e86f5f10d", + "panelRefName": "panel_11105044-eb78-45ab-9206-571e86f5f10d", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "8f349d14-40d9-4a10-b7d5-0f57c2a69f69", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "8f349d14-40d9-4a10-b7d5-0f57c2a69f69", + "panelRefName": "panel_8f349d14-40d9-4a10-b7d5-0f57c2a69f69", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 23, + "i": "f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54", + "w": 48, + "x": 0, + "y": 15 + }, + "panelIndex": "f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54", + "panelRefName": "panel_f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54", + "type": "search", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Filebeat ActiveMQ] Audit Events", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "ffe86390-145f-11ea-8fd8-030a13064883", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "38011a70-145a-11ea-8fd8-030a13064883", + "name": "11105044-eb78-45ab-9206-571e86f5f10d:panel_11105044-eb78-45ab-9206-571e86f5f10d", + "type": "visualization" + }, + { + "id": "38874920-1454-11ea-8fd8-030a13064883", + "name": "8f349d14-40d9-4a10-b7d5-0f57c2a69f69:panel_8f349d14-40d9-4a10-b7d5-0f57c2a69f69", + "type": "visualization" + }, + { + "id": "896ef3a0-145f-11ea-8fd8-030a13064883", + "name": "f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54:panel_f2a1e6f8-cd1a-4fbd-a0b1-da4ee9db7c54", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:54.354Z", + "version": "WzQzMzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/activemq/_meta/kibana/7/search/896ef3a0-145f-11ea-8fd8-030a13064883.json b/x-pack/filebeat/module/activemq/_meta/kibana/7/search/896ef3a0-145f-11ea-8fd8-030a13064883.json new file mode 100644 index 000000000000..019a3def86f1 --- /dev/null +++ b/x-pack/filebeat/module/activemq/_meta/kibana/7/search/896ef3a0-145f-11ea-8fd8-030a13064883.json @@ -0,0 +1,46 @@ +{ + "attributes": { + "columns": [ + "log.level", + "activemq.user", + "message" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset :\"activemq.audit\"" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Audit Events [Filebeat ActiveMQ]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "896ef3a0-145f-11ea-8fd8-030a13064883", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:54.354Z", + "version": "WzQzMzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/activemq/_meta/kibana/7/search/d784ec10-1460-11ea-8fd8-030a13064883.json b/x-pack/filebeat/module/activemq/_meta/kibana/7/search/d784ec10-1460-11ea-8fd8-030a13064883.json new file mode 100644 index 000000000000..8a2d0286d074 --- /dev/null +++ b/x-pack/filebeat/module/activemq/_meta/kibana/7/search/d784ec10-1460-11ea-8fd8-030a13064883.json @@ -0,0 +1,46 @@ +{ + "attributes": { + "columns": [ + "log.level", + "message", + "activemq.thread" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset :\"activemq.log\" " + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Application Events [Filebeat ActiveMQ]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "d784ec10-1460-11ea-8fd8-030a13064883", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:53.367Z", + "version": "WzQzMzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/activemq/_meta/kibana/7/visualization/026da780-1463-11ea-8fd8-030a13064883.json b/x-pack/filebeat/module/activemq/_meta/kibana/7/visualization/026da780-1463-11ea-8fd8-030a13064883.json new file mode 100644 index 000000000000..699a21f6e308 --- /dev/null +++ b/x-pack/filebeat/module/activemq/_meta/kibana/7/visualization/026da780-1463-11ea-8fd8-030a13064883.json @@ -0,0 +1,172 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "log.level", + "negate": false, + "params": { + "query": "ERROR" + }, + "type": "phrase", + "value": "ERROR" + }, + "query": { + "match": { + "log.level": { + "query": "ERROR", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "activemq.log" + }, + "type": "phrase", + "value": "activemq.log" + }, + "query": { + "match": { + "event.dataset": { + "query": "activemq.log", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Top ERROR callers [Filebeat ActiveMQ]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "activemq.caller", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top ERROR callers [Filebeat ActiveMQ]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "026da780-1463-11ea-8fd8-030a13064883", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:53.367Z", + "version": "WzQzMzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/activemq/_meta/kibana/7/visualization/38011a70-145a-11ea-8fd8-030a13064883.json b/x-pack/filebeat/module/activemq/_meta/kibana/7/visualization/38011a70-145a-11ea-8fd8-030a13064883.json new file mode 100644 index 000000000000..1156772ff5dc --- /dev/null +++ b/x-pack/filebeat/module/activemq/_meta/kibana/7/visualization/38011a70-145a-11ea-8fd8-030a13064883.json @@ -0,0 +1,258 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "activemq.audit" + }, + "type": "phrase", + "value": "activemq.audit" + }, + "query": { + "match": { + "event.dataset": { + "query": "activemq.audit", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Audit Event Results [Filebeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "timeRange": { + "from": "now-1d", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "filters": [ + { + "input": { + "language": "kuery", + "query": "event.dataset : \"activemq.audit\"" + }, + "label": "" + } + ], + "row": false + }, + "schema": "split", + "type": "filters" + }, + { + "enabled": true, + "id": "4", + "params": { + "field": "log.level", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "dimensions": { + "series": [ + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "x": { + "accessor": 0, + "aggType": "date_histogram", + "format": { + "id": "date", + "params": { + "pattern": "HH:mm" + } + }, + "params": { + "bounds": { + "max": "2019-12-01T16:41:18.507Z", + "min": "2019-11-30T16:41:18.507Z" + }, + "date": true, + "format": "HH:mm", + "interval": "PT30M" + } + }, + "y": [ + { + "accessor": 2, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": { + "show": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "radiusRatio": 50, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#34130C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Audit Event Results [Filebeat ActiveMQ]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "38011a70-145a-11ea-8fd8-030a13064883", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:54.354Z", + "version": "WzQzMzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/activemq/_meta/kibana/7/visualization/38874920-1454-11ea-8fd8-030a13064883.json b/x-pack/filebeat/module/activemq/_meta/kibana/7/visualization/38874920-1454-11ea-8fd8-030a13064883.json new file mode 100644 index 000000000000..daa5d037938a --- /dev/null +++ b/x-pack/filebeat/module/activemq/_meta/kibana/7/visualization/38874920-1454-11ea-8fd8-030a13064883.json @@ -0,0 +1,124 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "activemq.audit" + }, + "type": "phrase", + "value": "activemq.audit" + }, + "query": { + "match": { + "event.dataset": { + "query": "activemq.audit", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Audit Account Tag Cloud [Filebeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "activemq.user", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "bucket": { + "accessor": 0, + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "type": "vis_dimension" + }, + "maxFontSize": 72, + "metric": { + "accessor": 1, + "format": { + "id": "string", + "params": {} + }, + "type": "vis_dimension" + }, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": true + }, + "title": "Audit Account Tag Cloud [Filebeat ActiveMQ]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "38874920-1454-11ea-8fd8-030a13064883", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:54.354Z", + "version": "WzQzMzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/activemq/_meta/kibana/7/visualization/a0f15d50-1460-11ea-8fd8-030a13064883.json b/x-pack/filebeat/module/activemq/_meta/kibana/7/visualization/a0f15d50-1460-11ea-8fd8-030a13064883.json new file mode 100644 index 000000000000..c4bcc82387ee --- /dev/null +++ b/x-pack/filebeat/module/activemq/_meta/kibana/7/visualization/a0f15d50-1460-11ea-8fd8-030a13064883.json @@ -0,0 +1,248 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "activemq.log" + }, + "type": "phrase", + "value": "activemq.log" + }, + "query": { + "match": { + "event.dataset": { + "query": "activemq.log", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Application Event Results [Filebeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "timeRange": { + "from": "now-2d", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "4", + "params": { + "field": "log.level", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "dimensions": { + "series": [ + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "splitColumn": [ + { + "accessor": 1, + "aggType": "filters", + "format": {}, + "params": {} + } + ], + "x": { + "accessor": 0, + "aggType": "date_histogram", + "format": { + "id": "date", + "params": { + "pattern": "YYYY-MM-DD HH:mm" + } + }, + "params": { + "bounds": { + "max": "2019-12-01T17:52:01.645Z", + "min": "2019-11-29T17:52:01.645Z" + }, + "date": true, + "format": "YYYY-MM-DD HH:mm", + "interval": "PT1H" + } + }, + "y": [ + { + "accessor": 3, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": { + "show": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "radiusRatio": 50, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#34130C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Application Event Results [Filebeat ActiveMQ]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a0f15d50-1460-11ea-8fd8-030a13064883", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:53.367Z", + "version": "WzQzMzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/activemq/module.yml b/x-pack/filebeat/module/activemq/module.yml index 79ddc8c1c08b..052ae43b923a 100644 --- a/x-pack/filebeat/module/activemq/module.yml +++ b/x-pack/filebeat/module/activemq/module.yml @@ -1,5 +1,5 @@ dashboards: - id: ffe86390-145f-11ea-8fd8-030a13064883 - file: Filebeat-activemq-audit-events.ndjson + file: Filebeat-activemq-audit-events.json - id: 26434790-1464-11ea-8fd8-030a13064883 - file: Filebeat-activemq-application-events.ndjson + file: Filebeat-activemq-application-events.json diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/15503340-4488-11ea-ad63-791a5dc86f10.json b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/15503340-4488-11ea-ad63-791a5dc86f10.json new file mode 100644 index 000000000000..5391706e012b --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/15503340-4488-11ea-ad63-791a5dc86f10.json @@ -0,0 +1,151 @@ +{ + "attributes": { + "description": "Filebeat AWS VPC Flow Log Overview Dashboard", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "c802177f-038c-4a35-a82d-0fa42c857d02", + "w": 18, + "x": 0, + "y": 0 + }, + "panelIndex": "c802177f-038c-4a35-a82d-0fa42c857d02", + "panelRefName": "panel_c802177f-038c-4a35-a82d-0fa42c857d02", + "title": "S3 Bucket Filter", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "isLayerTOCOpen": true, + "mapCenter": { + "lat": 12.09237, + "lon": 60.11722, + "zoom": 0.47 + }, + "openTOCDetails": [] + }, + "gridData": { + "h": 17, + "i": "380eed85-225b-4d5d-88bc-1c70a3643ddb", + "w": 30, + "x": 18, + "y": 0 + }, + "panelIndex": "380eed85-225b-4d5d-88bc-1c70a3643ddb", + "panelRefName": "panel_380eed85-225b-4d5d-88bc-1c70a3643ddb", + "title": "VPC Flow Action Geo Location", + "type": "map", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3dde08df-2d7e-464e-825d-03179e43e175", + "w": 18, + "x": 0, + "y": 5 + }, + "panelIndex": "3dde08df-2d7e-464e-825d-03179e43e175", + "panelRefName": "panel_3dde08df-2d7e-464e-825d-03179e43e175", + "title": "VPC Flow Top IP Addresses", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "f7c6de04-c771-47ff-a32d-00a7940e414a", + "w": 48, + "x": 0, + "y": 17 + }, + "panelIndex": "f7c6de04-c771-47ff-a32d-00a7940e414a", + "panelRefName": "panel_f7c6de04-c771-47ff-a32d-00a7940e414a", + "title": "VPC Flow Total Requests", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "b4dbbe72-0dc0-428b-b21e-91c6cc82745c", + "w": 48, + "x": 0, + "y": 29 + }, + "panelIndex": "b4dbbe72-0dc0-428b-b21e-91c6cc82745c", + "panelRefName": "panel_b4dbbe72-0dc0-428b-b21e-91c6cc82745c", + "title": "VPC Flow Reject Logs", + "type": "search", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Filebeat AWS] VPC Flow Log Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "15503340-4488-11ea-ad63-791a5dc86f10", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "247e2990-4699-11ea-ad63-791a5dc86f10", + "name": "c802177f-038c-4a35-a82d-0fa42c857d02:panel_c802177f-038c-4a35-a82d-0fa42c857d02", + "type": "visualization" + }, + { + "id": "513a3d70-4482-11ea-ad63-791a5dc86f10", + "name": "380eed85-225b-4d5d-88bc-1c70a3643ddb:panel_380eed85-225b-4d5d-88bc-1c70a3643ddb", + "type": "map" + }, + { + "id": "75853f20-4484-11ea-ad63-791a5dc86f10", + "name": "3dde08df-2d7e-464e-825d-03179e43e175:panel_3dde08df-2d7e-464e-825d-03179e43e175", + "type": "visualization" + }, + { + "id": "bad8c910-4485-11ea-ad63-791a5dc86f10", + "name": "f7c6de04-c771-47ff-a32d-00a7940e414a:panel_f7c6de04-c771-47ff-a32d-00a7940e414a", + "type": "visualization" + }, + { + "id": "c1aee600-4487-11ea-ad63-791a5dc86f10", + "name": "b4dbbe72-0dc0-428b-b21e-91c6cc82745c:panel_b4dbbe72-0dc0-428b-b21e-91c6cc82745c", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:00.470Z", + "version": "WzQzNzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/3af47420-3e7b-11ea-bb0a-69c3ca1d410f.json b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/3af47420-3e7b-11ea-bb0a-69c3ca1d410f.json new file mode 100644 index 000000000000..4401adbbc0a7 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/3af47420-3e7b-11ea-bb0a-69c3ca1d410f.json @@ -0,0 +1,239 @@ +{ + "attributes": { + "description": "Filebeat AWS ELB Access Log Overview Dashboard", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "isLayerTOCOpen": false, + "mapCenter": { + "lat": 51.63808, + "lon": 17.07232, + "zoom": 3.47 + }, + "openTOCDetails": [] + }, + "gridData": { + "h": 14, + "i": "2c97b32e-5548-429d-9ce0-1bbc3d2398ac", + "w": 16, + "x": 0, + "y": 0 + }, + "panelIndex": "2c97b32e-5548-429d-9ce0-1bbc3d2398ac", + "panelRefName": "panel_2c97b32e-5548-429d-9ce0-1bbc3d2398ac", + "title": "ELB Requests Geolocation", + "type": "map", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9", + "w": 16, + "x": 16, + "y": 0 + }, + "panelIndex": "26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9", + "panelRefName": "panel_26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9", + "title": "ELB Inbound Traffic", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "48ecb39f-57a5-4805-a8a9-77385a996d75", + "w": 16, + "x": 32, + "y": 14 + }, + "panelIndex": "48ecb39f-57a5-4805-a8a9-77385a996d75", + "panelRefName": "panel_48ecb39f-57a5-4805-a8a9-77385a996d75", + "title": "ELB Top User Agents", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "9812996e-ba10-41bd-b134-c9705a0973b4", + "w": 16, + "x": 0, + "y": 14 + }, + "panelIndex": "9812996e-ba10-41bd-b134-c9705a0973b4", + "panelRefName": "panel_9812996e-ba10-41bd-b134-c9705a0973b4", + "title": "ELB Total Requests", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "bb25b36e-0787-48fd-aa22-7ba8c08a9c36", + "w": 16, + "x": 16, + "y": 14 + }, + "panelIndex": "bb25b36e-0787-48fd-aa22-7ba8c08a9c36", + "panelRefName": "panel_bb25b36e-0787-48fd-aa22-7ba8c08a9c36", + "title": "ELB Top IP Addresses", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "bf43580d-cc26-415b-ae36-d678a232b544", + "w": 16, + "x": 32, + "y": 0 + }, + "panelIndex": "bf43580d-cc26-415b-ae36-d678a232b544", + "panelRefName": "panel_bf43580d-cc26-415b-ae36-d678a232b544", + "title": "ELB Outbound Traffic", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "466e825b-6ee2-43c3-b221-21abe27612dd", + "w": 16, + "x": 0, + "y": 28 + }, + "panelIndex": "466e825b-6ee2-43c3-b221-21abe27612dd", + "panelRefName": "panel_466e825b-6ee2-43c3-b221-21abe27612dd", + "title": "ELB HTTP 2xx", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "d42994a6-922c-4f86-bf99-a46f87ff106d", + "w": 16, + "x": 16, + "y": 28 + }, + "panelIndex": "d42994a6-922c-4f86-bf99-a46f87ff106d", + "panelRefName": "panel_d42994a6-922c-4f86-bf99-a46f87ff106d", + "title": "ELB HTTP 4xx", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "f45aaa2c-c244-4d1a-8ad4-4794130b9827", + "w": 16, + "x": 32, + "y": 28 + }, + "panelIndex": "f45aaa2c-c244-4d1a-8ad4-4794130b9827", + "panelRefName": "panel_f45aaa2c-c244-4d1a-8ad4-4794130b9827", + "title": "ELB HTTP 5xx", + "type": "visualization", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Filebeat AWS] ELB Access Log Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "3af47420-3e7b-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "0edf0640-3e7e-11ea-bb0a-69c3ca1d410f", + "name": "2c97b32e-5548-429d-9ce0-1bbc3d2398ac:panel_2c97b32e-5548-429d-9ce0-1bbc3d2398ac", + "type": "map" + }, + { + "id": "76af8140-3e84-11ea-bb0a-69c3ca1d410f", + "name": "26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9:panel_26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9", + "type": "visualization" + }, + { + "id": "73970bc0-3e86-11ea-bb0a-69c3ca1d410f", + "name": "48ecb39f-57a5-4805-a8a9-77385a996d75:panel_48ecb39f-57a5-4805-a8a9-77385a996d75", + "type": "visualization" + }, + { + "id": "e50c51e0-3e7f-11ea-bb0a-69c3ca1d410f", + "name": "9812996e-ba10-41bd-b134-c9705a0973b4:panel_9812996e-ba10-41bd-b134-c9705a0973b4", + "type": "visualization" + }, + { + "id": "ceb7c030-3e86-11ea-bb0a-69c3ca1d410f", + "name": "bb25b36e-0787-48fd-aa22-7ba8c08a9c36:panel_bb25b36e-0787-48fd-aa22-7ba8c08a9c36", + "type": "visualization" + }, + { + "id": "bd37d720-3e84-11ea-bb0a-69c3ca1d410f", + "name": "bf43580d-cc26-415b-ae36-d678a232b544:panel_bf43580d-cc26-415b-ae36-d678a232b544", + "type": "visualization" + }, + { + "id": "219c1850-3e82-11ea-bb0a-69c3ca1d410f", + "name": "466e825b-6ee2-43c3-b221-21abe27612dd:panel_466e825b-6ee2-43c3-b221-21abe27612dd", + "type": "visualization" + }, + { + "id": "b6a308f0-3e82-11ea-bb0a-69c3ca1d410f", + "name": "d42994a6-922c-4f86-bf99-a46f87ff106d:panel_d42994a6-922c-4f86-bf99-a46f87ff106d", + "type": "visualization" + }, + { + "id": "d8b1e830-3e82-11ea-bb0a-69c3ca1d410f", + "name": "f45aaa2c-c244-4d1a-8ad4-4794130b9827:panel_f45aaa2c-c244-4d1a-8ad4-4794130b9827", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:58.419Z", + "version": "WzQzNTksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/4746e000-bacd-11e9-9f70-1f7bda85a5eb.json b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/4746e000-bacd-11e9-9f70-1f7bda85a5eb.json new file mode 100644 index 000000000000..1db0b8f08ae3 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/4746e000-bacd-11e9-9f70-1f7bda85a5eb.json @@ -0,0 +1,100 @@ +{ + "attributes": { + "description": "Filebeat AWS S3 Server Access Log Overview Dashboard", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "1", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Top URLs", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "2", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Http Status over time", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "3", + "w": 48, + "x": 0, + "y": 15 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Error Logs", + "type": "search", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Filebeat AWS] S3 Server Access Log Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "4746e000-bacd-11e9-9f70-1f7bda85a5eb", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "99ffdb00-bacb-11e9-9f70-1f7bda85a5eb", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "5c93cd10-bac3-11e9-9f70-1f7bda85a5eb", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "5e5a3c90-bac0-11e9-9f70-1f7bda85a5eb", + "name": "3:panel_3", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:59.495Z", + "version": "WzQzNjksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/9c09cd20-7399-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/9c09cd20-7399-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..d785b5b7e90d --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/9c09cd20-7399-11ea-a345-f985c61fe654.json @@ -0,0 +1,219 @@ +{ + "attributes": { + "description": "Summary of events from AWS CloudTrail.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "hiddenLayers": [], + "isLayerTOCOpen": false, + "mapCenter": { + "lat": 17.90562, + "lon": -12.20429, + "zoom": 0.97 + }, + "openTOCDetails": [] + }, + "gridData": { + "h": 15, + "i": "85d26d9a-2a71-4b98-a026-5f513094d6e5", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "85d26d9a-2a71-4b98-a026-5f513094d6e5", + "panelRefName": "panel_85d26d9a-2a71-4b98-a026-5f513094d6e5", + "type": "map", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "colors": { + "failure": "#E24D42" + }, + "enhancements": {}, + "vis": { + "colors": { + "failure": "#E24D42", + "success": "#629E51" + } + } + }, + "gridData": { + "h": 15, + "i": "6b3eff90-3071-451e-a827-ca569e0ac10b", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "6b3eff90-3071-451e-a827-ca569e0ac10b", + "panelRefName": "panel_6b3eff90-3071-451e-a827-ca569e0ac10b", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "952e456a-e9ae-4606-b838-e16019375336", + "w": 12, + "x": 0, + "y": 15 + }, + "panelIndex": "952e456a-e9ae-4606-b838-e16019375336", + "panelRefName": "panel_952e456a-e9ae-4606-b838-e16019375336", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "802ad09d-5883-4e41-99ac-6c356144d24d", + "w": 12, + "x": 12, + "y": 15 + }, + "panelIndex": "802ad09d-5883-4e41-99ac-6c356144d24d", + "panelRefName": "panel_802ad09d-5883-4e41-99ac-6c356144d24d", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "3e617d87-3acf-4203-b03b-c907c9145fce", + "w": 12, + "x": 24, + "y": 15 + }, + "panelIndex": "3e617d87-3acf-4203-b03b-c907c9145fce", + "panelRefName": "panel_3e617d87-3acf-4203-b03b-c907c9145fce", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "d6f03440-c717-4f5e-928c-72ae9d450318", + "w": 12, + "x": 36, + "y": 15 + }, + "panelIndex": "d6f03440-c717-4f5e-928c-72ae9d450318", + "panelRefName": "panel_d6f03440-c717-4f5e-928c-72ae9d450318", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "2b82a2c9-3809-447c-8e95-52125acccb42", + "w": 30, + "x": 0, + "y": 28 + }, + "panelIndex": "2b82a2c9-3809-447c-8e95-52125acccb42", + "panelRefName": "panel_2b82a2c9-3809-447c-8e95-52125acccb42", + "type": "search", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50", + "w": 18, + "x": 30, + "y": 28 + }, + "panelIndex": "40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50", + "panelRefName": "panel_40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Filebeat AWS] CloudTrail", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "9c09cd20-7399-11ea-a345-f985c61fe654", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "dae24080-739a-11ea-a345-f985c61fe654", + "name": "85d26d9a-2a71-4b98-a026-5f513094d6e5:panel_85d26d9a-2a71-4b98-a026-5f513094d6e5", + "type": "map" + }, + { + "id": "4c23e4c0-739a-11ea-a345-f985c61fe654", + "name": "6b3eff90-3071-451e-a827-ca569e0ac10b:panel_6b3eff90-3071-451e-a827-ca569e0ac10b", + "type": "visualization" + }, + { + "id": "396089c0-7399-11ea-a345-f985c61fe654", + "name": "952e456a-e9ae-4606-b838-e16019375336:panel_952e456a-e9ae-4606-b838-e16019375336", + "type": "visualization" + }, + { + "id": "0f056420-739e-11ea-a345-f985c61fe654", + "name": "802ad09d-5883-4e41-99ac-6c356144d24d:panel_802ad09d-5883-4e41-99ac-6c356144d24d", + "type": "visualization" + }, + { + "id": "7bca4f50-739c-11ea-a345-f985c61fe654", + "name": "3e617d87-3acf-4203-b03b-c907c9145fce:panel_3e617d87-3acf-4203-b03b-c907c9145fce", + "type": "visualization" + }, + { + "id": "f8b63860-739e-11ea-a345-f985c61fe654", + "name": "d6f03440-c717-4f5e-928c-72ae9d450318:panel_d6f03440-c717-4f5e-928c-72ae9d450318", + "type": "visualization" + }, + { + "id": "30ccde50-7397-11ea-a345-f985c61fe654", + "name": "2b82a2c9-3809-447c-8e95-52125acccb42:panel_2b82a2c9-3809-447c-8e95-52125acccb42", + "type": "search" + }, + { + "id": "8ec43590-739b-11ea-a345-f985c61fe654", + "name": "40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50:panel_40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:35.213Z", + "version": "WzQ2ODgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-elb-overview.ndjson b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-elb-overview.ndjson deleted file mode 100644 index 6bdcb7ef9261..000000000000 --- a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-elb-overview.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"description":"","layerListJSON":"[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"19047c4c-18d7-4aec-b0ce-98de2828244d\",\"label\":\"Hits\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"type\":\"ES_GEO_GRID\",\"id\":\"1e82f50f-424a-4718-905b-ad45db14db62\",\"geoField\":\"source.geo.location\",\"requestType\":\"point\",\"resolution\":\"COARSE\",\"indexPatternRefName\":\"layer_1_source_index_pattern\",\"applyGlobalQuery\":true},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"DYNAMIC\",\"options\":{\"field\":{\"label\":\"count\",\"name\":\"doc_count\",\"origin\":\"source\"},\"color\":\"Blues\",\"fieldMetaOptions\":{\"isEnabled\":false,\"sigma\":3}}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#167a6d\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"DYNAMIC\",\"options\":{\"field\":{\"label\":\"count\",\"name\":\"doc_count\",\"origin\":\"source\"},\"minSize\":4,\"maxSize\":32,\"fieldMetaOptions\":{\"isEnabled\":false,\"sigma\":3}}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"airfield\"}}}},\"id\":\"1d457cd4-01be-4f96-95fd-af4ac535ebea\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\"}]","mapStateJSON":"{\"zoom\":3.9,\"center\":{\"lon\":13.666,\"lat\":50.97903},\"timeFilters\":{\"from\":\"now-15m\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[{\"meta\":{\"index\":\"filebeat-*\",\"alias\":null,\"negate\":false,\"disabled\":false,\"type\":\"phrase\",\"key\":\"fileset.name\",\"value\":\"elb\",\"params\":{\"query\":\"elb\"}},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"elb\",\"type\":\"phrase\"}}},\"$state\":{\"store\":\"appState\"}}],\"settings\":{\"autoFitToDataBounds\":false}}","title":"ELB Requests Geolocation [Filebeat AWS] ECS","uiStateJSON":"{\"isLayerTOCOpen\": true, \"openTOCDetails\": []}"},"coreMigrationVersion":"8.0.0","id":"0edf0640-3e7e-11ea-bb0a-69c3ca1d410f","migrationVersion":{"map":"7.14.0"},"references":[{"id":"filebeat-*","name":"layer_1_source_index_pattern","type":"index-pattern"}],"type":"map","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Inbound Traffic [Filebeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"elb\\\"\"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Inbound\",\"line_width\":1,\"metrics\":[{\"field\":\"source.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.elb.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB Inbound Traffic [Filebeat AWS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"76af8140-3e84-11ea-bb0a-69c3ca1d410f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Top User Agents [Filebeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"29527130-3e86-11ea-9067-cf383a4ea3b3\"}],\"bar_color_rules\":[{\"id\":\"cc6d5070-3e85-11ea-9067-cf383a4ea3b3\"}],\"gauge_color_rules\":[{\"id\":\"2b29c940-3e86-11ea-9067-cf383a4ea3b3\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"pivot_id\":\"user_agent.original\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"color_rules\":[{\"id\":\"42e14220-3e86-11ea-9067-cf383a4ea3b3\"}],\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"elb\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"User Agent\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"2010cb20-3e87-11ea-9067-cf383a4ea3b3\",\"type\":\"cumulative_sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"user_agent.original\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ELB Top User Agents [Filebeat AWS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"73970bc0-3e86-11ea-bb0a-69c3ca1d410f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Total Requests [Filebeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"elb\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total Requests\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.elb.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB Total Requests [Filebeat AWS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e50c51e0-3e7f-11ea-bb0a-69c3ca1d410f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Top IP Addresses [Filebeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"29527130-3e86-11ea-9067-cf383a4ea3b3\"}],\"bar_color_rules\":[{\"id\":\"cc6d5070-3e85-11ea-9067-cf383a4ea3b3\"}],\"gauge_color_rules\":[{\"id\":\"2b29c940-3e86-11ea-9067-cf383a4ea3b3\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"pivot_id\":\"user_agent.original\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"color_rules\":[{\"id\":\"42e14220-3e86-11ea-9067-cf383a4ea3b3\"}],\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"elb\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"IP address\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"40c52370-3e87-11ea-9067-cf383a4ea3b3\",\"type\":\"cumulative_sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"source.ip\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ELB Top IP Addresses [Filebeat AWS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ceb7c030-3e86-11ea-bb0a-69c3ca1d410f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Outbound Traffic [Filebeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(253,161,255,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"elb\\\"\"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Outbound\",\"line_width\":1,\"metrics\":[{\"field\":\"destination.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.elb.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB Outbound Traffic [Filebeat AWS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bd37d720-3e84-11ea-bb0a-69c3ca1d410f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB HTTP 2xx [Filebeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"elb\\\" and http.response.status_code >= 200 and http.response.status_code\\t< 300\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"HTTP 2xx\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.elb.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB HTTP 2xx [Filebeat AWS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"219c1850-3e82-11ea-bb0a-69c3ca1d410f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB HTTP 4xx [Filebeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"elb\\\" and http.response.status_code >= 400 and http.response.status_code < 500\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"HTTP 4xx\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.elb.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB HTTP 4xx [Filebeat AWS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b6a308f0-3e82-11ea-bb0a-69c3ca1d410f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB HTTP 5xx [Filebeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"elb\\\" and http.response.status_code >= 500 and http.response.status_code < 600\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"HTTP 5xx\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.elb.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB HTTP 5xx [Filebeat AWS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d8b1e830-3e82-11ea-bb0a-69c3ca1d410f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNjgsMV0="} -{"attributes":{"description":"Filebeat AWS ELB Access Log Overview Dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"map\",\"gridData\":{\"h\":14,\"i\":\"2c97b32e-5548-429d-9ce0-1bbc3d2398ac\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"2c97b32e-5548-429d-9ce0-1bbc3d2398ac\",\"embeddableConfig\":{\"isLayerTOCOpen\":false,\"mapCenter\":{\"lat\":51.63808,\"lon\":17.07232,\"zoom\":3.47},\"openTOCDetails\":[],\"enhancements\":{}},\"title\":\"ELB Requests Geolocation\",\"panelRefName\":\"panel_2c97b32e-5548-429d-9ce0-1bbc3d2398ac\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9\",\"w\":16,\"x\":16,\"y\":0},\"panelIndex\":\"26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ELB Inbound Traffic\",\"panelRefName\":\"panel_26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"48ecb39f-57a5-4805-a8a9-77385a996d75\",\"w\":16,\"x\":32,\"y\":14},\"panelIndex\":\"48ecb39f-57a5-4805-a8a9-77385a996d75\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ELB Top User Agents\",\"panelRefName\":\"panel_48ecb39f-57a5-4805-a8a9-77385a996d75\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"9812996e-ba10-41bd-b134-c9705a0973b4\",\"w\":16,\"x\":0,\"y\":14},\"panelIndex\":\"9812996e-ba10-41bd-b134-c9705a0973b4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ELB Total Requests\",\"panelRefName\":\"panel_9812996e-ba10-41bd-b134-c9705a0973b4\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"bb25b36e-0787-48fd-aa22-7ba8c08a9c36\",\"w\":16,\"x\":16,\"y\":14},\"panelIndex\":\"bb25b36e-0787-48fd-aa22-7ba8c08a9c36\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ELB Top IP Addresses\",\"panelRefName\":\"panel_bb25b36e-0787-48fd-aa22-7ba8c08a9c36\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"bf43580d-cc26-415b-ae36-d678a232b544\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"bf43580d-cc26-415b-ae36-d678a232b544\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ELB Outbound Traffic\",\"panelRefName\":\"panel_bf43580d-cc26-415b-ae36-d678a232b544\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"466e825b-6ee2-43c3-b221-21abe27612dd\",\"w\":16,\"x\":0,\"y\":28},\"panelIndex\":\"466e825b-6ee2-43c3-b221-21abe27612dd\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ELB HTTP 2xx\",\"panelRefName\":\"panel_466e825b-6ee2-43c3-b221-21abe27612dd\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"d42994a6-922c-4f86-bf99-a46f87ff106d\",\"w\":16,\"x\":16,\"y\":28},\"panelIndex\":\"d42994a6-922c-4f86-bf99-a46f87ff106d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ELB HTTP 4xx\",\"panelRefName\":\"panel_d42994a6-922c-4f86-bf99-a46f87ff106d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"f45aaa2c-c244-4d1a-8ad4-4794130b9827\",\"w\":16,\"x\":32,\"y\":28},\"panelIndex\":\"f45aaa2c-c244-4d1a-8ad4-4794130b9827\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ELB HTTP 5xx\",\"panelRefName\":\"panel_f45aaa2c-c244-4d1a-8ad4-4794130b9827\"}]","timeRestore":false,"title":"[Filebeat AWS] ELB Access Log Overview","version":1},"coreMigrationVersion":"8.0.0","id":"3af47420-3e7b-11ea-bb0a-69c3ca1d410f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"0edf0640-3e7e-11ea-bb0a-69c3ca1d410f","name":"2c97b32e-5548-429d-9ce0-1bbc3d2398ac:panel_2c97b32e-5548-429d-9ce0-1bbc3d2398ac","type":"map"},{"id":"76af8140-3e84-11ea-bb0a-69c3ca1d410f","name":"26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9:panel_26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9","type":"visualization"},{"id":"73970bc0-3e86-11ea-bb0a-69c3ca1d410f","name":"48ecb39f-57a5-4805-a8a9-77385a996d75:panel_48ecb39f-57a5-4805-a8a9-77385a996d75","type":"visualization"},{"id":"e50c51e0-3e7f-11ea-bb0a-69c3ca1d410f","name":"9812996e-ba10-41bd-b134-c9705a0973b4:panel_9812996e-ba10-41bd-b134-c9705a0973b4","type":"visualization"},{"id":"ceb7c030-3e86-11ea-bb0a-69c3ca1d410f","name":"bb25b36e-0787-48fd-aa22-7ba8c08a9c36:panel_bb25b36e-0787-48fd-aa22-7ba8c08a9c36","type":"visualization"},{"id":"bd37d720-3e84-11ea-bb0a-69c3ca1d410f","name":"bf43580d-cc26-415b-ae36-d678a232b544:panel_bf43580d-cc26-415b-ae36-d678a232b544","type":"visualization"},{"id":"219c1850-3e82-11ea-bb0a-69c3ca1d410f","name":"466e825b-6ee2-43c3-b221-21abe27612dd:panel_466e825b-6ee2-43c3-b221-21abe27612dd","type":"visualization"},{"id":"b6a308f0-3e82-11ea-bb0a-69c3ca1d410f","name":"d42994a6-922c-4f86-bf99-a46f87ff106d:panel_d42994a6-922c-4f86-bf99-a46f87ff106d","type":"visualization"},{"id":"d8b1e830-3e82-11ea-bb0a-69c3ca1d410f","name":"f45aaa2c-c244-4d1a-8ad4-4794130b9827:panel_f45aaa2c-c244-4d1a-8ad4-4794130b9827","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:58.419Z","version":"WzQzNTksMV0="} diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-s3access-overview.ndjson b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-s3access-overview.ndjson deleted file mode 100644 index d0f137591689..000000000000 --- a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-s3access-overview.ndjson +++ /dev/null @@ -1,4 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top URLs [Filebeat AWS]","uiStateJSON":"{\"vis\": {\"colors\": {\"404\": \"#EAB839\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Request Uri\",\"field\":\"aws.s3access.request_uri\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"HTTP Status\",\"field\":\"aws.s3access.http_status\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"number\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}},\"splitColumn\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}]},\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"row\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top URLs [Filebeat AWS]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"99ffdb00-bacb-11e9-9f70-1f7bda85a5eb","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:59.495Z","version":"WzQzNzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Http Status over time [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"lucene\",\"query\":\"event.module:aws AND fileset.name:s3access\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Http Status\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"aws.s3access.http_status < 300 and aws.s3access.http_status >= 200\"},\"id\":\"5acdc750-a29d-11e7-a062-a1c3587f4874\",\"label\":\"200s\"},{\"color\":\"rgba(252,196,0,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"aws.s3access.http_status < 400 and aws.s3access.http_status >= 300\"},\"id\":\"6efd2ae0-a29d-11e7-a062-a1c3587f4874\",\"label\":\"300s\"},{\"color\":\"rgba(211,49,21,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"aws.s3access.http_status < 500 and aws.s3access.http_status >= 400\"},\"id\":\"76089a90-a29d-11e7-a062-a1c3587f4874\",\"label\":\"400s\"},{\"color\":\"rgba(171,20,158,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"aws.s3access.http_status < 600 and aws.s3access.http_status >= 500\"},\"id\":\"7c7929d0-a29d-11e7-a062-a1c3587f4874\",\"label\":\"500s\"}],\"split_mode\":\"filters\",\"stacked\":\"stacked\",\"terms_field\":\"http.response.status_code\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Http Status over time [Filebeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5c93cd10-bac3-11e9-9f70-1f7bda85a5eb","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:59.495Z","version":"WzQzNzEsMV0="} -{"attributes":{"columns":["aws.s3access.http_status","aws.s3access.error_code","aws.s3access.operation","aws.s3access.request_uri"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"aws.s3access.http_status\", \"negate\": true, \"params\": {\"query\": \"200\"}, \"type\": \"phrase\", \"value\": \"200\"}, \"query\": {\"match\": {\"aws.s3access.http_status\": {\"query\": \"200\", \"type\": \"phrase\"}}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"fileset.name\", \"negate\": false, \"params\": {\"query\": \"s3access\"}, \"type\": \"phrase\", \"value\": \"s3access\"}, \"query\": {\"match\": {\"fileset.name\": {\"query\": \"s3access\", \"type\": \"phrase\"}}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Error Logs [Filebeat AWS]","version":1},"coreMigrationVersion":"8.0.0","id":"5e5a3c90-bac0-11e9-9f70-1f7bda85a5eb","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:59.495Z","version":"WzQzNzIsMV0="} -{"attributes":{"description":"Filebeat AWS S3 Server Access Log Overview Dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top URLs\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Http Status over time\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.4.0\",\"type\":\"search\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":48,\"x\":0,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Error Logs\",\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Filebeat AWS] S3 Server Access Log Overview","version":1},"coreMigrationVersion":"8.0.0","id":"4746e000-bacd-11e9-9f70-1f7bda85a5eb","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"99ffdb00-bacb-11e9-9f70-1f7bda85a5eb","name":"1:panel_1","type":"visualization"},{"id":"5c93cd10-bac3-11e9-9f70-1f7bda85a5eb","name":"2:panel_2","type":"visualization"},{"id":"5e5a3c90-bac0-11e9-9f70-1f7bda85a5eb","name":"3:panel_3","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:59.495Z","version":"WzQzNjksMV0="} diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-vpcflow-overview.ndjson b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-vpcflow-overview.ndjson deleted file mode 100644 index 78f84db29700..000000000000 --- a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/Filebeat-aws-vpcflow-overview.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"S3 Bucket Name Filter [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"aws.s3.bucket.name\",\"id\":\"1565034367477\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"S3 Bucket Names\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"S3 Bucket Name Filter [Filebeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"247e2990-4699-11ea-ad63-791a5dc86f10","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:00.470Z","version":"WzQzNzQsMV0="} -{"attributes":{"description":"","layerListJSON":"[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"842c201e-96d7-413d-8688-de5ee4f8a1e0\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"id\":\"97903038-e08d-4451-bbd2-eb92c894bdf5\",\"type\":\"ES_SEARCH\",\"geoField\":\"destination.geo.location\",\"filterByMapBounds\":true,\"tooltipProperties\":[],\"topHitsSize\":1,\"indexPatternRefName\":\"layer_1_source_index_pattern\",\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\",\"applyGlobalQuery\":true,\"scalingType\":\"LIMIT\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#1EA593\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#167a6d\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":5}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"airfield\"}}}},\"id\":\"401944dd-a371-4698-be17-bc4542e9a5d4\",\"label\":\"vpc flow action accept\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"query\":{\"query\":\"aws.vpcflow.action : \\\"ACCEPT\\\" \",\"language\":\"kuery\"}},{\"sourceDescriptor\":{\"id\":\"9c0e7cce-4f21-4bcd-bb50-ae36c0fffffb\",\"type\":\"ES_SEARCH\",\"geoField\":\"source.geo.location\",\"filterByMapBounds\":true,\"tooltipProperties\":[],\"topHitsSize\":1,\"indexPatternRefName\":\"layer_2_source_index_pattern\",\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\",\"applyGlobalQuery\":true,\"scalingType\":\"LIMIT\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#f00f0b\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#7a1a18\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":5}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"airfield\"}}}},\"id\":\"b1d44a5c-3a04-4c80-8080-57585b02fd48\",\"label\":\"vpc flow action reject\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"query\":{\"query\":\"aws.vpcflow.action : \\\"REJECT\\\" \",\"language\":\"kuery\"}}]","mapStateJSON":"{\"zoom\":0.47,\"center\":{\"lon\":-108.92402,\"lat\":0},\"timeFilters\":{\"from\":\"now-15d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false}}","title":"VPC Flow Action Geo Location[Filebeat AWS]","uiStateJSON":"{\"isLayerTOCOpen\": false, \"openTOCDetails\": []}"},"coreMigrationVersion":"8.0.0","id":"513a3d70-4482-11ea-ad63-791a5dc86f10","migrationVersion":{"map":"7.14.0"},"references":[{"id":"filebeat-*","name":"layer_1_source_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"layer_2_source_index_pattern","type":"index-pattern"}],"type":"map","updated_at":"2021-08-04T16:34:00.470Z","version":"WzQzNzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VPC Flow Top IP Addresses [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"29527130-3e86-11ea-9067-cf383a4ea3b3\"}],\"bar_color_rules\":[{\"id\":\"cc6d5070-3e85-11ea-9067-cf383a4ea3b3\"}],\"gauge_color_rules\":[{\"id\":\"2b29c940-3e86-11ea-9067-cf383a4ea3b3\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"pivot_id\":\"user_agent.original\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"color_rules\":[{\"id\":\"42e14220-3e86-11ea-9067-cf383a4ea3b3\"}],\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"vpcflow\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"IP address\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"40c52370-3e87-11ea-9067-cf383a4ea3b3\",\"type\":\"cumulative_sum\"}],\"override_index_pattern\":1,\"point_size\":1,\"separate_axis\":0,\"series_drop_last_bucket\":0,\"series_index_pattern\":\"filebeat-*\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"source.ip\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"VPC Flow Top IP Addresses [Filebeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"75853f20-4484-11ea-ad63-791a5dc86f10","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:00.470Z","version":"WzQzNzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VPC Flow Total Requests [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":\"rgba(255,255,255,1)\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"right\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"vpcflow\\\" and aws.vpcflow.action : \\\"REJECT\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"REJECT\",\"line_width\":\"2\",\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"override_index_pattern\":1,\"point_size\":\"3\",\"separate_axis\":0,\"series_drop_last_bucket\":0,\"series_index_pattern\":\"filebeat-*\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.vpcflow.action\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"vpcflow\\\" and aws.vpcflow.action : \\\"ACCEPT\\\" \"},\"formatter\":\"number\",\"id\":\"7ec99260-4485-11ea-9ee9-2d27e9149ae8\",\"label\":\"ACCEPT\",\"line_width\":\"2\",\"metrics\":[{\"id\":\"7ec99261-4485-11ea-9ee9-2d27e9149ae8\",\"type\":\"count\"}],\"override_index_pattern\":1,\"point_size\":\"3\",\"separate_axis\":0,\"series_drop_last_bucket\":0,\"series_index_pattern\":\"filebeat-*\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.vpcflow.action\",\"terms_order_by\":\"7ec99261-4485-11ea-9ee9-2d27e9149ae8\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"vpcflow\\\" and aws.vpcflow.action : \\\"-\\\" \"},\"formatter\":\"number\",\"id\":\"8d550580-4485-11ea-9ee9-2d27e9149ae8\",\"label\":\"-\",\"line_width\":\"2\",\"metrics\":[{\"id\":\"8d552c90-4485-11ea-9ee9-2d27e9149ae8\",\"type\":\"count\"}],\"override_index_pattern\":1,\"point_size\":\"3\",\"separate_axis\":0,\"series_drop_last_bucket\":0,\"series_index_pattern\":\"filebeat-*\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.vpcflow.action\",\"terms_order_by\":\"8d552c90-4485-11ea-9ee9-2d27e9149ae8\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0.5\",\"filter\":{\"language\":\"kuery\",\"query\":\"fileset.name : \\\"vpcflow\\\"\"},\"formatter\":\"number\",\"id\":\"c8c27df0-4485-11ea-9ee9-2d27e9149ae8\",\"label\":\"Total Requests\",\"line_width\":\"2\",\"metrics\":[{\"id\":\"c8c27df1-4485-11ea-9ee9-2d27e9149ae8\",\"type\":\"count\"}],\"override_index_pattern\":1,\"point_size\":\"3\",\"separate_axis\":0,\"series_drop_last_bucket\":0,\"series_index_pattern\":\"filebeat-*\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.vpcflow.action\",\"terms_order_by\":\"c8c27df1-4485-11ea-9ee9-2d27e9149ae8\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VPC Flow Total Requests [Filebeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bad8c910-4485-11ea-ad63-791a5dc86f10","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:00.470Z","version":"WzQzNzcsMV0="} -{"attributes":{"columns":["source.ip","source.port","event.original"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"fileset.name\", \"negate\": false, \"params\": {\"query\": \"vpcflow\"}, \"type\": \"phrase\", \"value\": \"vpcflow\"}, \"query\": {\"match\": {\"fileset.name\": {\"query\": \"vpcflow\", \"type\": \"phrase\"}}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"aws.vpcflow.action\", \"negate\": false, \"params\": {\"query\": \"REJECT\"}, \"type\": \"phrase\", \"value\": \"REJECT\"}, \"query\": {\"match\": {\"aws.vpcflow.action\": {\"query\": \"REJECT\", \"type\": \"phrase\"}}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"VPC Flow Reject Logs [Filebeat AWS]","version":1},"coreMigrationVersion":"8.0.0","id":"c1aee600-4487-11ea-ad63-791a5dc86f10","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:00.470Z","version":"WzQzNzgsMV0="} -{"attributes":{"description":"Filebeat AWS VPC Flow Log Overview Dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"c802177f-038c-4a35-a82d-0fa42c857d02\",\"w\":18,\"x\":0,\"y\":0},\"panelIndex\":\"c802177f-038c-4a35-a82d-0fa42c857d02\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"S3 Bucket Filter\",\"panelRefName\":\"panel_c802177f-038c-4a35-a82d-0fa42c857d02\"},{\"version\":\"7.4.0\",\"type\":\"map\",\"gridData\":{\"h\":17,\"i\":\"380eed85-225b-4d5d-88bc-1c70a3643ddb\",\"w\":30,\"x\":18,\"y\":0},\"panelIndex\":\"380eed85-225b-4d5d-88bc-1c70a3643ddb\",\"embeddableConfig\":{\"isLayerTOCOpen\":true,\"mapCenter\":{\"lat\":12.09237,\"lon\":60.11722,\"zoom\":0.47},\"openTOCDetails\":[],\"enhancements\":{}},\"title\":\"VPC Flow Action Geo Location\",\"panelRefName\":\"panel_380eed85-225b-4d5d-88bc-1c70a3643ddb\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"3dde08df-2d7e-464e-825d-03179e43e175\",\"w\":18,\"x\":0,\"y\":5},\"panelIndex\":\"3dde08df-2d7e-464e-825d-03179e43e175\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VPC Flow Top IP Addresses\",\"panelRefName\":\"panel_3dde08df-2d7e-464e-825d-03179e43e175\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"f7c6de04-c771-47ff-a32d-00a7940e414a\",\"w\":48,\"x\":0,\"y\":17},\"panelIndex\":\"f7c6de04-c771-47ff-a32d-00a7940e414a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VPC Flow Total Requests\",\"panelRefName\":\"panel_f7c6de04-c771-47ff-a32d-00a7940e414a\"},{\"version\":\"7.4.0\",\"type\":\"search\",\"gridData\":{\"h\":15,\"i\":\"b4dbbe72-0dc0-428b-b21e-91c6cc82745c\",\"w\":48,\"x\":0,\"y\":29},\"panelIndex\":\"b4dbbe72-0dc0-428b-b21e-91c6cc82745c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VPC Flow Reject Logs\",\"panelRefName\":\"panel_b4dbbe72-0dc0-428b-b21e-91c6cc82745c\"}]","timeRestore":false,"title":"[Filebeat AWS] VPC Flow Log Overview","version":1},"coreMigrationVersion":"8.0.0","id":"15503340-4488-11ea-ad63-791a5dc86f10","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"247e2990-4699-11ea-ad63-791a5dc86f10","name":"c802177f-038c-4a35-a82d-0fa42c857d02:panel_c802177f-038c-4a35-a82d-0fa42c857d02","type":"visualization"},{"id":"513a3d70-4482-11ea-ad63-791a5dc86f10","name":"380eed85-225b-4d5d-88bc-1c70a3643ddb:panel_380eed85-225b-4d5d-88bc-1c70a3643ddb","type":"map"},{"id":"75853f20-4484-11ea-ad63-791a5dc86f10","name":"3dde08df-2d7e-464e-825d-03179e43e175:panel_3dde08df-2d7e-464e-825d-03179e43e175","type":"visualization"},{"id":"bad8c910-4485-11ea-ad63-791a5dc86f10","name":"f7c6de04-c771-47ff-a32d-00a7940e414a:panel_f7c6de04-c771-47ff-a32d-00a7940e414a","type":"visualization"},{"id":"c1aee600-4487-11ea-ad63-791a5dc86f10","name":"b4dbbe72-0dc0-428b-b21e-91c6cc82745c:panel_b4dbbe72-0dc0-428b-b21e-91c6cc82745c","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:00.470Z","version":"WzQzNzMsMV0="} diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/filebeat-aws-cloudtrail.ndjson b/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/filebeat-aws-cloudtrail.ndjson deleted file mode 100644 index 3b2277429560..000000000000 --- a/x-pack/filebeat/module/aws/_meta/kibana/7/dashboard/filebeat-aws-cloudtrail.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","layerListJSON":"[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"2c7b49fb-3fb5-4e18-b27f-fabe930971f3\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"id\":\"7bfe2df9-9398-4f1a-8cf7-b57aa5f3f31e\",\"geoField\":\"source.geo.location\",\"filterByMapBounds\":true,\"scalingType\":\"LIMIT\",\"topHitsSize\":1,\"type\":\"ES_SEARCH\",\"tooltipProperties\":[],\"sortField\":\"\",\"sortOrder\":\"desc\",\"applyGlobalQuery\":true,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#54B399\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#41937c\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"a10fa758-30ad-4e2a-bf9d-472e133a7f17\",\"label\":\"CloudTrail Soure Location\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"joins\":[],\"query\":{\"query\":\"event.dataset:aws.cloudtrail\",\"language\":\"kuery\"}}]","mapStateJSON":"{\"zoom\":1.97,\"center\":{\"lon\":0,\"lat\":19.94277},\"timeFilters\":{\"from\":\"now-15m\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false}}","title":"CloudTrail Source Location [Filebeat AWS]","uiStateJSON":"{\"isLayerTOCOpen\": true, \"openTOCDetails\": []}"},"coreMigrationVersion":"8.0.0","id":"dae24080-739a-11ea-a345-f985c61fe654","migrationVersion":{"map":"7.14.0"},"references":[{"id":"filebeat-*","name":"layer_1_source_index_pattern","type":"index-pattern"}],"type":"map","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2ODksMV0="} -{"attributes":{"columns":["user.id","event.provider","aws.cloudtrail.event_type","event.action","event.outcome","source.address","source.geo.region_name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"aws.cloudtrail\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"aws.cloudtrail\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[],"title":"CloudTrail Events [Filebeat AWS]","version":1},"coreMigrationVersion":"8.0.0","id":"30ccde50-7397-11ea-a345-f985c61fe654","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2OTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"CloudTrail Event Outcome over time [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-24h\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":true,\"missingBucketLabel\":\"[unknown]\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"CloudTrail Event Outcome over time [Filebeat AWS]\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"4c23e4c0-739a-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"30ccde50-7397-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2OTAsMV0="} -{"attributes":{"description":"event.action values separated by event.provider.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"CloudTrail Actions [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.provider\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"CloudTrail Actions [Filebeat AWS]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"396089c0-7399-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"30ccde50-7397-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2OTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"CloudTrail Event Type [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"CloudTrail Event Type\",\"field\":\"aws.cloudtrail.event_type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"CloudTrail Event Type [Filebeat AWS]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0f056420-739e-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"30ccde50-7397-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2OTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"CloudTrail User Agents [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"CloudTrail User Agents [Filebeat AWS]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7bca4f50-739c-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"30ccde50-7397-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2OTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"CloudTrail Error Code [Filebeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"aws.cloudtrail.error_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"CloudTrail Error Code [Filebeat AWS]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"f8b63860-739e-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"30ccde50-7397-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2OTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"CloudTrail Top User IDs [Filebeat AWS]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"User ID\",\"field\":\"user.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"CloudTrail Top User IDs [Filebeat AWS]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"8ec43590-739b-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"30ccde50-7397-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2OTYsMV0="} -{"attributes":{"description":"Summary of events from AWS CloudTrail.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"map\",\"gridData\":{\"h\":15,\"i\":\"85d26d9a-2a71-4b98-a026-5f513094d6e5\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"85d26d9a-2a71-4b98-a026-5f513094d6e5\",\"embeddableConfig\":{\"hiddenLayers\":[],\"isLayerTOCOpen\":false,\"mapCenter\":{\"lat\":17.90562,\"lon\":-12.20429,\"zoom\":0.97},\"openTOCDetails\":[],\"enhancements\":{}},\"panelRefName\":\"panel_85d26d9a-2a71-4b98-a026-5f513094d6e5\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"6b3eff90-3071-451e-a827-ca569e0ac10b\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"6b3eff90-3071-451e-a827-ca569e0ac10b\",\"embeddableConfig\":{\"colors\":{\"failure\":\"#E24D42\"},\"vis\":{\"colors\":{\"failure\":\"#E24D42\",\"success\":\"#629E51\"}},\"enhancements\":{}},\"panelRefName\":\"panel_6b3eff90-3071-451e-a827-ca569e0ac10b\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"952e456a-e9ae-4606-b838-e16019375336\",\"w\":12,\"x\":0,\"y\":15},\"panelIndex\":\"952e456a-e9ae-4606-b838-e16019375336\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_952e456a-e9ae-4606-b838-e16019375336\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"802ad09d-5883-4e41-99ac-6c356144d24d\",\"w\":12,\"x\":12,\"y\":15},\"panelIndex\":\"802ad09d-5883-4e41-99ac-6c356144d24d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_802ad09d-5883-4e41-99ac-6c356144d24d\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"3e617d87-3acf-4203-b03b-c907c9145fce\",\"w\":12,\"x\":24,\"y\":15},\"panelIndex\":\"3e617d87-3acf-4203-b03b-c907c9145fce\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3e617d87-3acf-4203-b03b-c907c9145fce\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"d6f03440-c717-4f5e-928c-72ae9d450318\",\"w\":12,\"x\":36,\"y\":15},\"panelIndex\":\"d6f03440-c717-4f5e-928c-72ae9d450318\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_d6f03440-c717-4f5e-928c-72ae9d450318\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"search\",\"gridData\":{\"h\":13,\"i\":\"2b82a2c9-3809-447c-8e95-52125acccb42\",\"w\":30,\"x\":0,\"y\":28},\"panelIndex\":\"2b82a2c9-3809-447c-8e95-52125acccb42\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2b82a2c9-3809-447c-8e95-52125acccb42\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50\",\"w\":18,\"x\":30,\"y\":28},\"panelIndex\":\"40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50\"}]","timeRestore":false,"title":"[Filebeat AWS] CloudTrail","version":1},"coreMigrationVersion":"8.0.0","id":"9c09cd20-7399-11ea-a345-f985c61fe654","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"dae24080-739a-11ea-a345-f985c61fe654","name":"85d26d9a-2a71-4b98-a026-5f513094d6e5:panel_85d26d9a-2a71-4b98-a026-5f513094d6e5","type":"map"},{"id":"4c23e4c0-739a-11ea-a345-f985c61fe654","name":"6b3eff90-3071-451e-a827-ca569e0ac10b:panel_6b3eff90-3071-451e-a827-ca569e0ac10b","type":"visualization"},{"id":"396089c0-7399-11ea-a345-f985c61fe654","name":"952e456a-e9ae-4606-b838-e16019375336:panel_952e456a-e9ae-4606-b838-e16019375336","type":"visualization"},{"id":"0f056420-739e-11ea-a345-f985c61fe654","name":"802ad09d-5883-4e41-99ac-6c356144d24d:panel_802ad09d-5883-4e41-99ac-6c356144d24d","type":"visualization"},{"id":"7bca4f50-739c-11ea-a345-f985c61fe654","name":"3e617d87-3acf-4203-b03b-c907c9145fce:panel_3e617d87-3acf-4203-b03b-c907c9145fce","type":"visualization"},{"id":"f8b63860-739e-11ea-a345-f985c61fe654","name":"d6f03440-c717-4f5e-928c-72ae9d450318:panel_d6f03440-c717-4f5e-928c-72ae9d450318","type":"visualization"},{"id":"30ccde50-7397-11ea-a345-f985c61fe654","name":"2b82a2c9-3809-447c-8e95-52125acccb42:panel_2b82a2c9-3809-447c-8e95-52125acccb42","type":"search"},{"id":"8ec43590-739b-11ea-a345-f985c61fe654","name":"40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50:panel_40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:35.213Z","version":"WzQ2ODgsMV0="} diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/map/0edf0640-3e7e-11ea-bb0a-69c3ca1d410f.json b/x-pack/filebeat/module/aws/_meta/kibana/7/map/0edf0640-3e7e-11ea-bb0a-69c3ca1d410f.json new file mode 100644 index 000000000000..5082eae2c9ed --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/map/0edf0640-3e7e-11ea-bb0a-69c3ca1d410f.json @@ -0,0 +1,27 @@ +{ + "attributes": { + "description": "", + "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"19047c4c-18d7-4aec-b0ce-98de2828244d\",\"label\":\"Hits\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"type\":\"ES_GEO_GRID\",\"id\":\"1e82f50f-424a-4718-905b-ad45db14db62\",\"geoField\":\"source.geo.location\",\"requestType\":\"point\",\"resolution\":\"COARSE\",\"indexPatternRefName\":\"layer_1_source_index_pattern\",\"applyGlobalQuery\":true},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"DYNAMIC\",\"options\":{\"field\":{\"label\":\"count\",\"name\":\"doc_count\",\"origin\":\"source\"},\"color\":\"Blues\",\"fieldMetaOptions\":{\"isEnabled\":false,\"sigma\":3}}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#167a6d\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"DYNAMIC\",\"options\":{\"field\":{\"label\":\"count\",\"name\":\"doc_count\",\"origin\":\"source\"},\"minSize\":4,\"maxSize\":32,\"fieldMetaOptions\":{\"isEnabled\":false,\"sigma\":3}}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"airfield\"}}}},\"id\":\"1d457cd4-01be-4f96-95fd-af4ac535ebea\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\"}]", + "mapStateJSON": "{\"zoom\":3.9,\"center\":{\"lon\":13.666,\"lat\":50.97903},\"timeFilters\":{\"from\":\"now-15m\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[{\"meta\":{\"index\":\"filebeat-*\",\"alias\":null,\"negate\":false,\"disabled\":false,\"type\":\"phrase\",\"key\":\"fileset.name\",\"value\":\"elb\",\"params\":{\"query\":\"elb\"}},\"query\":{\"match\":{\"fileset.name\":{\"query\":\"elb\",\"type\":\"phrase\"}}},\"$state\":{\"store\":\"appState\"}}],\"settings\":{\"autoFitToDataBounds\":false}}", + "title": "ELB Requests Geolocation [Filebeat AWS] ECS", + "uiStateJSON": { + "isLayerTOCOpen": true, + "openTOCDetails": [] + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0edf0640-3e7e-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "map": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "layer_1_source_index_pattern", + "type": "index-pattern" + } + ], + "type": "map", + "updated_at": "2021-08-04T16:33:58.419Z", + "version": "WzQzNjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/map/513a3d70-4482-11ea-ad63-791a5dc86f10.json b/x-pack/filebeat/module/aws/_meta/kibana/7/map/513a3d70-4482-11ea-ad63-791a5dc86f10.json new file mode 100644 index 000000000000..558f5987a064 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/map/513a3d70-4482-11ea-ad63-791a5dc86f10.json @@ -0,0 +1,32 @@ +{ + "attributes": { + "description": "", + "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"842c201e-96d7-413d-8688-de5ee4f8a1e0\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"id\":\"97903038-e08d-4451-bbd2-eb92c894bdf5\",\"type\":\"ES_SEARCH\",\"geoField\":\"destination.geo.location\",\"filterByMapBounds\":true,\"tooltipProperties\":[],\"topHitsSize\":1,\"indexPatternRefName\":\"layer_1_source_index_pattern\",\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\",\"applyGlobalQuery\":true,\"scalingType\":\"LIMIT\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#1EA593\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#167a6d\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":5}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"airfield\"}}}},\"id\":\"401944dd-a371-4698-be17-bc4542e9a5d4\",\"label\":\"vpc flow action accept\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"query\":{\"query\":\"aws.vpcflow.action : \\\"ACCEPT\\\" \",\"language\":\"kuery\"}},{\"sourceDescriptor\":{\"id\":\"9c0e7cce-4f21-4bcd-bb50-ae36c0fffffb\",\"type\":\"ES_SEARCH\",\"geoField\":\"source.geo.location\",\"filterByMapBounds\":true,\"tooltipProperties\":[],\"topHitsSize\":1,\"indexPatternRefName\":\"layer_2_source_index_pattern\",\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\",\"applyGlobalQuery\":true,\"scalingType\":\"LIMIT\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#f00f0b\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#7a1a18\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":5}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"airfield\"}}}},\"id\":\"b1d44a5c-3a04-4c80-8080-57585b02fd48\",\"label\":\"vpc flow action reject\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"query\":{\"query\":\"aws.vpcflow.action : \\\"REJECT\\\" \",\"language\":\"kuery\"}}]", + "mapStateJSON": "{\"zoom\":0.47,\"center\":{\"lon\":-108.92402,\"lat\":0},\"timeFilters\":{\"from\":\"now-15d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false}}", + "title": "VPC Flow Action Geo Location[Filebeat AWS]", + "uiStateJSON": { + "isLayerTOCOpen": false, + "openTOCDetails": [] + } + }, + "coreMigrationVersion": "8.0.0", + "id": "513a3d70-4482-11ea-ad63-791a5dc86f10", + "migrationVersion": { + "map": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "layer_1_source_index_pattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "layer_2_source_index_pattern", + "type": "index-pattern" + } + ], + "type": "map", + "updated_at": "2021-08-04T16:34:00.470Z", + "version": "WzQzNzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/map/dae24080-739a-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/aws/_meta/kibana/7/map/dae24080-739a-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..1908bdc747b0 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/map/dae24080-739a-11ea-a345-f985c61fe654.json @@ -0,0 +1,27 @@ +{ + "attributes": { + "description": "", + "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"2c7b49fb-3fb5-4e18-b27f-fabe930971f3\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"id\":\"7bfe2df9-9398-4f1a-8cf7-b57aa5f3f31e\",\"geoField\":\"source.geo.location\",\"filterByMapBounds\":true,\"scalingType\":\"LIMIT\",\"topHitsSize\":1,\"type\":\"ES_SEARCH\",\"tooltipProperties\":[],\"sortField\":\"\",\"sortOrder\":\"desc\",\"applyGlobalQuery\":true,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#54B399\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#41937c\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"a10fa758-30ad-4e2a-bf9d-472e133a7f17\",\"label\":\"CloudTrail Soure Location\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"joins\":[],\"query\":{\"query\":\"event.dataset:aws.cloudtrail\",\"language\":\"kuery\"}}]", + "mapStateJSON": "{\"zoom\":1.97,\"center\":{\"lon\":0,\"lat\":19.94277},\"timeFilters\":{\"from\":\"now-15m\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false}}", + "title": "CloudTrail Source Location [Filebeat AWS]", + "uiStateJSON": { + "isLayerTOCOpen": true, + "openTOCDetails": [] + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dae24080-739a-11ea-a345-f985c61fe654", + "migrationVersion": { + "map": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "layer_1_source_index_pattern", + "type": "index-pattern" + } + ], + "type": "map", + "updated_at": "2021-08-04T16:34:35.213Z", + "version": "WzQ2ODksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/search/30ccde50-7397-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/aws/_meta/kibana/7/search/30ccde50-7397-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..7daa9c0414b5 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/search/30ccde50-7397-11ea-a345-f985c61fe654.json @@ -0,0 +1,72 @@ +{ + "attributes": { + "columns": [ + "user.id", + "event.provider", + "aws.cloudtrail.event_type", + "event.action", + "event.outcome", + "source.address", + "source.geo.region_name" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "aws.cloudtrail" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "aws.cloudtrail" + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [], + "title": "CloudTrail Events [Filebeat AWS]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "30ccde50-7397-11ea-a345-f985c61fe654", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:35.213Z", + "version": "WzQ2OTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/search/5e5a3c90-bac0-11e9-9f70-1f7bda85a5eb.json b/x-pack/filebeat/module/aws/_meta/kibana/7/search/5e5a3c90-bac0-11e9-9f70-1f7bda85a5eb.json new file mode 100644 index 000000000000..1added8073c8 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/search/5e5a3c90-bac0-11e9-9f70-1f7bda85a5eb.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "columns": [ + "aws.s3access.http_status", + "aws.s3access.error_code", + "aws.s3access.operation", + "aws.s3access.request_uri" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "aws.s3access.http_status", + "negate": true, + "params": { + "query": "200" + }, + "type": "phrase", + "value": "200" + }, + "query": { + "match": { + "aws.s3access.http_status": { + "query": "200", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "fileset.name", + "negate": false, + "params": { + "query": "s3access" + }, + "type": "phrase", + "value": "s3access" + }, + "query": { + "match": { + "fileset.name": { + "query": "s3access", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Error Logs [Filebeat AWS]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "5e5a3c90-bac0-11e9-9f70-1f7bda85a5eb", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:59.495Z", + "version": "WzQzNzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/search/c1aee600-4487-11ea-ad63-791a5dc86f10.json b/x-pack/filebeat/module/aws/_meta/kibana/7/search/c1aee600-4487-11ea-ad63-791a5dc86f10.json new file mode 100644 index 000000000000..dd54e7586022 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/search/c1aee600-4487-11ea-ad63-791a5dc86f10.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "columns": [ + "source.ip", + "source.port", + "event.original" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "fileset.name", + "negate": false, + "params": { + "query": "vpcflow" + }, + "type": "phrase", + "value": "vpcflow" + }, + "query": { + "match": { + "fileset.name": { + "query": "vpcflow", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "aws.vpcflow.action", + "negate": false, + "params": { + "query": "REJECT" + }, + "type": "phrase", + "value": "REJECT" + }, + "query": { + "match": { + "aws.vpcflow.action": { + "query": "REJECT", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "VPC Flow Reject Logs [Filebeat AWS]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "c1aee600-4487-11ea-ad63-791a5dc86f10", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:00.470Z", + "version": "WzQzNzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/0f056420-739e-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/0f056420-739e-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..6e859df33571 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/0f056420-739e-11ea-a345-f985c61fe654.json @@ -0,0 +1,81 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "CloudTrail Event Type [Filebeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "CloudTrail Event Type", + "field": "aws.cloudtrail.event_type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "CloudTrail Event Type [Filebeat AWS]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0f056420-739e-11ea-a345-f985c61fe654", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "30ccde50-7397-11ea-a345-f985c61fe654", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:35.213Z", + "version": "WzQ2OTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/219c1850-3e82-11ea-bb0a-69c3ca1d410f.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/219c1850-3e82-11ea-bb0a-69c3ca1d410f.json new file mode 100644 index 000000000000..289183a61f48 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/219c1850-3e82-11ea-bb0a-69c3ca1d410f.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ELB HTTP 2xx [Filebeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"elb\" and http.response.status_code >= 200 and http.response.status_code\t< 300" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "HTTP 2xx", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.elb.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "ELB HTTP 2xx [Filebeat AWS] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "219c1850-3e82-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:33:58.419Z", + "version": "WzQzNjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/247e2990-4699-11ea-ad63-791a5dc86f10.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/247e2990-4699-11ea-ad63-791a5dc86f10.json new file mode 100644 index 000000000000..685fa78e12bc --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/247e2990-4699-11ea-ad63-791a5dc86f10.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "S3 Bucket Name Filter [Filebeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "aws.s3.bucket.name", + "id": "1565034367477", + "indexPatternRefName": "control_0_index_pattern", + "label": "S3 Bucket Names", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": true + }, + "title": "S3 Bucket Name Filter [Filebeat AWS]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "247e2990-4699-11ea-ad63-791a5dc86f10", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:00.470Z", + "version": "WzQzNzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/396089c0-7399-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/396089c0-7399-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..10c15d92fcb8 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/396089c0-7399-11ea-a345-f985c61fe654.json @@ -0,0 +1,96 @@ +{ + "attributes": { + "description": "event.action values separated by event.provider.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "CloudTrail Actions [Filebeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "event.provider", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "CloudTrail Actions [Filebeat AWS]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "396089c0-7399-11ea-a345-f985c61fe654", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "30ccde50-7397-11ea-a345-f985c61fe654", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:35.213Z", + "version": "WzQ2OTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/4c23e4c0-739a-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/4c23e4c0-739a-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..5d704c97c321 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/4c23e4c0-739a-11ea-a345-f985c61fe654.json @@ -0,0 +1,164 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "CloudTrail Event Outcome over time [Filebeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "now-24h", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "event.outcome", + "missingBucket": true, + "missingBucketLabel": "[unknown]", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": {}, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "lineWidth": 2, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "area", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "CloudTrail Event Outcome over time [Filebeat AWS]", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4c23e4c0-739a-11ea-a345-f985c61fe654", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "30ccde50-7397-11ea-a345-f985c61fe654", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:35.213Z", + "version": "WzQ2OTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/5c93cd10-bac3-11e9-9f70-1f7bda85a5eb.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/5c93cd10-bac3-11e9-9f70-1f7bda85a5eb.json new file mode 100644 index 000000000000..1ae6780e63af --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/5c93cd10-bac3-11e9-9f70-1f7bda85a5eb.json @@ -0,0 +1,106 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Http Status over time [Filebeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "lucene", + "query": "event.module:aws AND fileset.name:s3access" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Http Status", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "aws.s3access.http_status < 300 and aws.s3access.http_status >= 200" + }, + "id": "5acdc750-a29d-11e7-a062-a1c3587f4874", + "label": "200s" + }, + { + "color": "rgba(252,196,0,1)", + "filter": { + "language": "kuery", + "query": "aws.s3access.http_status < 400 and aws.s3access.http_status >= 300" + }, + "id": "6efd2ae0-a29d-11e7-a062-a1c3587f4874", + "label": "300s" + }, + { + "color": "rgba(211,49,21,1)", + "filter": { + "language": "kuery", + "query": "aws.s3access.http_status < 500 and aws.s3access.http_status >= 400" + }, + "id": "76089a90-a29d-11e7-a062-a1c3587f4874", + "label": "400s" + }, + { + "color": "rgba(171,20,158,1)", + "filter": { + "language": "kuery", + "query": "aws.s3access.http_status < 600 and aws.s3access.http_status >= 500" + }, + "id": "7c7929d0-a29d-11e7-a062-a1c3587f4874", + "label": "500s" + } + ], + "split_mode": "filters", + "stacked": "stacked", + "terms_field": "http.response.status_code", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Http Status over time [Filebeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5c93cd10-bac3-11e9-9f70-1f7bda85a5eb", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:33:59.495Z", + "version": "WzQzNzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/73970bc0-3e86-11ea-bb0a-69c3ca1d410f.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/73970bc0-3e86-11ea-bb0a-69c3ca1d410f.json new file mode 100644 index 000000000000..08cea3c9d792 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/73970bc0-3e86-11ea-bb0a-69c3ca1d410f.json @@ -0,0 +1,101 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ELB Top User Agents [Filebeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "29527130-3e86-11ea-9067-cf383a4ea3b3" + } + ], + "bar_color_rules": [ + { + "id": "cc6d5070-3e85-11ea-9067-cf383a4ea3b3" + } + ], + "gauge_color_rules": [ + { + "id": "2b29c940-3e86-11ea-9067-cf383a4ea3b3" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "pivot_id": "user_agent.original", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "color_rules": [ + { + "id": "42e14220-3e86-11ea-9067-cf383a4ea3b3" + } + ], + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"elb\" " + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "User Agent", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "2010cb20-3e87-11ea-9067-cf383a4ea3b3", + "type": "cumulative_sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "user_agent.original", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "ELB Top User Agents [Filebeat AWS] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "73970bc0-3e86-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:33:58.419Z", + "version": "WzQzNjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/75853f20-4484-11ea-ad63-791a5dc86f10.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/75853f20-4484-11ea-ad63-791a5dc86f10.json new file mode 100644 index 000000000000..4ce69622a348 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/75853f20-4484-11ea-ad63-791a5dc86f10.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VPC Flow Top IP Addresses [Filebeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "29527130-3e86-11ea-9067-cf383a4ea3b3" + } + ], + "bar_color_rules": [ + { + "id": "cc6d5070-3e85-11ea-9067-cf383a4ea3b3" + } + ], + "gauge_color_rules": [ + { + "id": "2b29c940-3e86-11ea-9067-cf383a4ea3b3" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "pivot_id": "user_agent.original", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "color_rules": [ + { + "id": "42e14220-3e86-11ea-9067-cf383a4ea3b3" + } + ], + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"vpcflow\" " + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "IP address", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "40c52370-3e87-11ea-9067-cf383a4ea3b3", + "type": "cumulative_sum" + } + ], + "override_index_pattern": 1, + "point_size": 1, + "separate_axis": 0, + "series_drop_last_bucket": 0, + "series_index_pattern": "filebeat-*", + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "source.ip", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "VPC Flow Top IP Addresses [Filebeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "75853f20-4484-11ea-ad63-791a5dc86f10", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:00.470Z", + "version": "WzQzNzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/76af8140-3e84-11ea-bb0a-69c3ca1d410f.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/76af8140-3e84-11ea-bb0a-69c3ca1d410f.json new file mode 100644 index 000000000000..d1f34102a0c8 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/76af8140-3e84-11ea-bb0a-69c3ca1d410f.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ELB Inbound Traffic [Filebeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"elb\"" + }, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Inbound", + "line_width": 1, + "metrics": [ + { + "field": "source.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.elb.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "ELB Inbound Traffic [Filebeat AWS] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "76af8140-3e84-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:33:58.419Z", + "version": "WzQzNjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/7bca4f50-739c-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/7bca4f50-739c-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..857b5203ae94 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/7bca4f50-739c-11ea-a345-f985c61fe654.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "CloudTrail User Agents [Filebeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user_agent.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "CloudTrail User Agents [Filebeat AWS]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7bca4f50-739c-11ea-a345-f985c61fe654", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "30ccde50-7397-11ea-a345-f985c61fe654", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:35.213Z", + "version": "WzQ2OTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/8ec43590-739b-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/8ec43590-739b-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..13f73948e58f --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/8ec43590-739b-11ea-a345-f985c61fe654.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "CloudTrail Top User IDs [Filebeat AWS]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Event Count" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "User ID", + "field": "user.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 25 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "CloudTrail Top User IDs [Filebeat AWS]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8ec43590-739b-11ea-a345-f985c61fe654", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "30ccde50-7397-11ea-a345-f985c61fe654", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:35.213Z", + "version": "WzQ2OTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/99ffdb00-bacb-11e9-9f70-1f7bda85a5eb.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/99ffdb00-bacb-11e9-9f70-1f7bda85a5eb.json new file mode 100644 index 000000000000..39894905042a --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/99ffdb00-bacb-11e9-9f70-1f7bda85a5eb.json @@ -0,0 +1,145 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Top URLs [Filebeat AWS]", + "uiStateJSON": { + "vis": { + "colors": { + "404": "#EAB839" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Request Uri", + "field": "aws.s3access.request_uri", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "split", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "HTTP Status", + "field": "aws.s3access.http_status", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "number", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metric": { + "accessor": 3, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + }, + "splitColumn": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ] + }, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "row": false, + "type": "pie" + }, + "title": "Top URLs [Filebeat AWS]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "99ffdb00-bacb-11e9-9f70-1f7bda85a5eb", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:59.495Z", + "version": "WzQzNzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/b6a308f0-3e82-11ea-bb0a-69c3ca1d410f.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/b6a308f0-3e82-11ea-bb0a-69c3ca1d410f.json new file mode 100644 index 000000000000..0022a0efb303 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/b6a308f0-3e82-11ea-bb0a-69c3ca1d410f.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ELB HTTP 4xx [Filebeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(174,161,255,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"elb\" and http.response.status_code >= 400 and http.response.status_code < 500" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "HTTP 4xx", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.elb.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "ELB HTTP 4xx [Filebeat AWS] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b6a308f0-3e82-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:33:58.419Z", + "version": "WzQzNjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/bad8c910-4485-11ea-ad63-791a5dc86f10.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/bad8c910-4485-11ea-ad63-791a5dc86f10.json new file mode 100644 index 000000000000..d9013b9e0a36 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/bad8c910-4485-11ea-ad63-791a5dc86f10.json @@ -0,0 +1,172 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VPC Flow Total Requests [Filebeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color": "rgba(255,255,255,1)", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "right", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "fileset.name : \"vpcflow\" and aws.vpcflow.action : \"REJECT\" " + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "REJECT", + "line_width": "2", + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "override_index_pattern": 1, + "point_size": "3", + "separate_axis": 0, + "series_drop_last_bucket": 0, + "series_index_pattern": "filebeat-*", + "series_time_field": "@timestamp", + "split_color_mode": "rainbow", + "split_mode": "everything", + "stacked": "none", + "terms_field": "aws.vpcflow.action", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "fileset.name : \"vpcflow\" and aws.vpcflow.action : \"ACCEPT\" " + }, + "formatter": "number", + "id": "7ec99260-4485-11ea-9ee9-2d27e9149ae8", + "label": "ACCEPT", + "line_width": "2", + "metrics": [ + { + "id": "7ec99261-4485-11ea-9ee9-2d27e9149ae8", + "type": "count" + } + ], + "override_index_pattern": 1, + "point_size": "3", + "separate_axis": 0, + "series_drop_last_bucket": 0, + "series_index_pattern": "filebeat-*", + "series_time_field": "@timestamp", + "split_color_mode": "rainbow", + "split_mode": "everything", + "stacked": "none", + "terms_field": "aws.vpcflow.action", + "terms_order_by": "7ec99261-4485-11ea-9ee9-2d27e9149ae8", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "fileset.name : \"vpcflow\" and aws.vpcflow.action : \"-\" " + }, + "formatter": "number", + "id": "8d550580-4485-11ea-9ee9-2d27e9149ae8", + "label": "-", + "line_width": "2", + "metrics": [ + { + "id": "8d552c90-4485-11ea-9ee9-2d27e9149ae8", + "type": "count" + } + ], + "override_index_pattern": 1, + "point_size": "3", + "separate_axis": 0, + "series_drop_last_bucket": 0, + "series_index_pattern": "filebeat-*", + "series_time_field": "@timestamp", + "split_color_mode": "rainbow", + "split_mode": "everything", + "stacked": "none", + "terms_field": "aws.vpcflow.action", + "terms_order_by": "8d552c90-4485-11ea-9ee9-2d27e9149ae8", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0.5", + "filter": { + "language": "kuery", + "query": "fileset.name : \"vpcflow\"" + }, + "formatter": "number", + "id": "c8c27df0-4485-11ea-9ee9-2d27e9149ae8", + "label": "Total Requests", + "line_width": "2", + "metrics": [ + { + "id": "c8c27df1-4485-11ea-9ee9-2d27e9149ae8", + "type": "count" + } + ], + "override_index_pattern": 1, + "point_size": "3", + "separate_axis": 0, + "series_drop_last_bucket": 0, + "series_index_pattern": "filebeat-*", + "series_time_field": "@timestamp", + "split_color_mode": "rainbow", + "split_mode": "everything", + "stacked": "none", + "terms_field": "aws.vpcflow.action", + "terms_order_by": "c8c27df1-4485-11ea-9ee9-2d27e9149ae8", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VPC Flow Total Requests [Filebeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bad8c910-4485-11ea-ad63-791a5dc86f10", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:00.470Z", + "version": "WzQzNzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/bd37d720-3e84-11ea-bb0a-69c3ca1d410f.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/bd37d720-3e84-11ea-bb0a-69c3ca1d410f.json new file mode 100644 index 000000000000..e8e2ccd2454f --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/bd37d720-3e84-11ea-bb0a-69c3ca1d410f.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ELB Outbound Traffic [Filebeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(253,161,255,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"elb\"" + }, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Outbound", + "line_width": 1, + "metrics": [ + { + "field": "destination.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.elb.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "ELB Outbound Traffic [Filebeat AWS] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bd37d720-3e84-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:33:58.419Z", + "version": "WzQzNjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/ceb7c030-3e86-11ea-bb0a-69c3ca1d410f.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/ceb7c030-3e86-11ea-bb0a-69c3ca1d410f.json new file mode 100644 index 000000000000..7e6e6c186635 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/ceb7c030-3e86-11ea-bb0a-69c3ca1d410f.json @@ -0,0 +1,101 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ELB Top IP Addresses [Filebeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "29527130-3e86-11ea-9067-cf383a4ea3b3" + } + ], + "bar_color_rules": [ + { + "id": "cc6d5070-3e85-11ea-9067-cf383a4ea3b3" + } + ], + "gauge_color_rules": [ + { + "id": "2b29c940-3e86-11ea-9067-cf383a4ea3b3" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "pivot_id": "user_agent.original", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "color_rules": [ + { + "id": "42e14220-3e86-11ea-9067-cf383a4ea3b3" + } + ], + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"elb\" " + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "IP address", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "40c52370-3e87-11ea-9067-cf383a4ea3b3", + "type": "cumulative_sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "source.ip", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "ELB Top IP Addresses [Filebeat AWS] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ceb7c030-3e86-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:33:58.419Z", + "version": "WzQzNjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/d8b1e830-3e82-11ea-bb0a-69c3ca1d410f.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/d8b1e830-3e82-11ea-bb0a-69c3ca1d410f.json new file mode 100644 index 000000000000..a2db777f81bd --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/d8b1e830-3e82-11ea-bb0a-69c3ca1d410f.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ELB HTTP 5xx [Filebeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"elb\" and http.response.status_code >= 500 and http.response.status_code < 600" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "HTTP 5xx", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.elb.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "ELB HTTP 5xx [Filebeat AWS] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d8b1e830-3e82-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:33:58.419Z", + "version": "WzQzNjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/e50c51e0-3e7f-11ea-bb0a-69c3ca1d410f.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/e50c51e0-3e7f-11ea-bb0a-69c3ca1d410f.json new file mode 100644 index 000000000000..07dc3a7b6279 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/e50c51e0-3e7f-11ea-bb0a-69c3ca1d410f.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ELB Total Requests [Filebeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "fileset.name : \"elb\" " + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Total Requests", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.elb.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "ELB Total Requests [Filebeat AWS] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e50c51e0-3e7f-11ea-bb0a-69c3ca1d410f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:33:58.419Z", + "version": "WzQzNjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/f8b63860-739e-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/f8b63860-739e-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..c8cf30f77a35 --- /dev/null +++ b/x-pack/filebeat/module/aws/_meta/kibana/7/visualization/f8b63860-739e-11ea-a345-f985c61fe654.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "CloudTrail Error Code [Filebeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "aws.cloudtrail.error_code", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "CloudTrail Error Code [Filebeat AWS]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f8b63860-739e-11ea-a345-f985c61fe654", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "30ccde50-7397-11ea-a345-f985c61fe654", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:35.213Z", + "version": "WzQ2OTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/aws/module.yml b/x-pack/filebeat/module/aws/module.yml index d6c08701fba7..dc4a096b4a19 100644 --- a/x-pack/filebeat/module/aws/module.yml +++ b/x-pack/filebeat/module/aws/module.yml @@ -1,2 +1,2 @@ - id: Filebeat-aws-cloudtrail-Dashboard - file: Filebeat-aws-cloudtrail.ndjson + file: Filebeat-aws-cloudtrail.json diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/0f559cc0-f0d5-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/0f559cc0-f0d5-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..884e3b065f7b --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/0f559cc0-f0d5-11e9-90ec-112a988266d5.json @@ -0,0 +1,141 @@ +{ + "attributes": { + "description": "This dashboard provides expanded alerts overview for Azure cloud", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060", + "w": 7, + "x": 0, + "y": 0 + }, + "panelIndex": "9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060", + "panelRefName": "panel_9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060", + "title": "", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "676fd632-a9c1-46ed-829b-ca5b55817379", + "w": 14, + "x": 7, + "y": 0 + }, + "panelIndex": "676fd632-a9c1-46ed-829b-ca5b55817379", + "panelRefName": "panel_676fd632-a9c1-46ed-829b-ca5b55817379", + "title": "", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "096b4eaa-072e-455f-befa-3076f71be12d", + "w": 27, + "x": 21, + "y": 0 + }, + "panelIndex": "096b4eaa-072e-455f-befa-3076f71be12d", + "panelRefName": "panel_096b4eaa-072e-455f-befa-3076f71be12d", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "162fb43e-fff3-4f50-aa9b-a713418bd651", + "w": 27, + "x": 21, + "y": 15 + }, + "panelIndex": "162fb43e-fff3-4f50-aa9b-a713418bd651", + "panelRefName": "panel_162fb43e-fff3-4f50-aa9b-a713418bd651", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "36fb5c08-80d9-4a1c-8fde-9c063381fdd8", + "w": 21, + "x": 0, + "y": 4 + }, + "panelIndex": "36fb5c08-80d9-4a1c-8fde-9c063381fdd8", + "panelRefName": "panel_36fb5c08-80d9-4a1c-8fde-9c063381fdd8", + "type": "visualization", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Azure] Alerts Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "0f559cc0-f0d5-11e9-90ec-112a988266d5", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "46544960-f0d5-11e9-90ec-112a988266d5", + "name": "9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060:panel_9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060", + "type": "visualization" + }, + { + "id": "097d74d0-f044-11e9-90ec-112a988266d5", + "name": "676fd632-a9c1-46ed-829b-ca5b55817379:panel_676fd632-a9c1-46ed-829b-ca5b55817379", + "type": "visualization" + }, + { + "id": "52c2a4e0-ec1f-11e9-90ec-112a988266d5", + "name": "096b4eaa-072e-455f-befa-3076f71be12d:panel_096b4eaa-072e-455f-befa-3076f71be12d", + "type": "visualization" + }, + { + "id": "f684a750-ec23-11e9-90ec-112a988266d5", + "name": "162fb43e-fff3-4f50-aa9b-a713418bd651:panel_162fb43e-fff3-4f50-aa9b-a713418bd651", + "type": "visualization" + }, + { + "id": "c704b050-f0de-11e9-90ec-112a988266d5", + "name": "36fb5c08-80d9-4a1c-8fde-9c063381fdd8:panel_36fb5c08-80d9-4a1c-8fde-9c063381fdd8", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:01.505Z", + "version": "WzQzNzksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/41e84340-ec20-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/41e84340-ec20-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..4e8e3b6a13e7 --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/41e84340-ec20-11e9-90ec-112a988266d5.json @@ -0,0 +1,329 @@ +{ + "attributes": { + "description": "This dashboard provides an overview of user activity, alerts and resource in Azure cloud.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "6b6e7452-979c-4f78-afc2-cc58fcf105ff", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "6b6e7452-979c-4f78-afc2-cc58fcf105ff", + "panelRefName": "panel_6b6e7452-979c-4f78-afc2-cc58fcf105ff", + "title": "", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "042f777a-5e41-41e8-9d6e-d842473a8aed", + "w": 15, + "x": 9, + "y": 0 + }, + "panelIndex": "042f777a-5e41-41e8-9d6e-d842473a8aed", + "panelRefName": "panel_042f777a-5e41-41e8-9d6e-d842473a8aed", + "title": "", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "1e73bca7-8569-41b5-830e-2f762602219a", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "1e73bca7-8569-41b5-830e-2f762602219a", + "panelRefName": "panel_1e73bca7-8569-41b5-830e-2f762602219a", + "title": "Activity Level", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "d9465e9f-49f1-4173-b1a4-fea9ee3120ab", + "w": 24, + "x": 0, + "y": 4 + }, + "panelIndex": "d9465e9f-49f1-4173-b1a4-fea9ee3120ab", + "panelRefName": "panel_d9465e9f-49f1-4173-b1a4-fea9ee3120ab", + "title": "", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "18ec1e20-202b-4a40-8d0d-22060ac3e23c", + "w": 24, + "x": 24, + "y": 8 + }, + "panelIndex": "18ec1e20-202b-4a40-8d0d-22060ac3e23c", + "panelRefName": "panel_18ec1e20-202b-4a40-8d0d-22060ac3e23c", + "title": "Access Requests", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "d2bdec0f-dde1-4925-bf7e-afbc430c0eca", + "w": 24, + "x": 0, + "y": 10 + }, + "panelIndex": "d2bdec0f-dde1-4925-bf7e-afbc430c0eca", + "panelRefName": "panel_d2bdec0f-dde1-4925-bf7e-afbc430c0eca", + "title": "Top Active Users", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "3bcc964d-6862-4fdd-9d82-f7510cc02162", + "w": 12, + "x": 24, + "y": 15 + }, + "panelIndex": "3bcc964d-6862-4fdd-9d82-f7510cc02162", + "panelRefName": "panel_3bcc964d-6862-4fdd-9d82-f7510cc02162", + "title": "Alerts Overview", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "74436614-9dfc-4c38-bc58-8cb76c348f37", + "w": 12, + "x": 36, + "y": 15 + }, + "panelIndex": "74436614-9dfc-4c38-bc58-8cb76c348f37", + "panelRefName": "panel_74436614-9dfc-4c38-bc58-8cb76c348f37", + "title": "Service Health", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 19, + "i": "a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8", + "w": 24, + "x": 0, + "y": 21 + }, + "panelIndex": "a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8", + "panelRefName": "panel_a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8", + "title": "Top Resource Groups", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "644c6151-fd05-4b2e-b18e-30843697e932", + "w": 12, + "x": 24, + "y": 22 + }, + "panelIndex": "644c6151-fd05-4b2e-b18e-30843697e932", + "panelRefName": "panel_644c6151-fd05-4b2e-b18e-30843697e932", + "title": "", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "3d5ccff8-6576-4a1c-b3ee-363ae665906e", + "w": 12, + "x": 36, + "y": 22 + }, + "panelIndex": "3d5ccff8-6576-4a1c-b3ee-363ae665906e", + "panelRefName": "panel_3d5ccff8-6576-4a1c-b3ee-363ae665906e", + "title": "", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "legendOpen": false, + "vis": { + "legendOpen": true + } + }, + "gridData": { + "h": 12, + "i": "1a6dce1d-d039-4d18-87c7-1b700da676c2", + "w": 12, + "x": 24, + "y": 28 + }, + "panelIndex": "1a6dce1d-d039-4d18-87c7-1b700da676c2", + "panelRefName": "panel_1a6dce1d-d039-4d18-87c7-1b700da676c2", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "legendOpen": false, + "vis": { + "legendOpen": true + } + }, + "gridData": { + "h": 12, + "i": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0", + "w": 12, + "x": 36, + "y": 28 + }, + "panelIndex": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0", + "panelRefName": "panel_8fddd3bb-c1e6-4533-b075-1ab7361b3af0", + "type": "visualization", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Azure] Cloud Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "41e84340-ec20-11e9-90ec-112a988266d5", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "fe24ac90-f05a-11e9-90ec-112a988266d5", + "name": "6b6e7452-979c-4f78-afc2-cc58fcf105ff:panel_6b6e7452-979c-4f78-afc2-cc58fcf105ff", + "type": "visualization" + }, + { + "id": "097d74d0-f044-11e9-90ec-112a988266d5", + "name": "042f777a-5e41-41e8-9d6e-d842473a8aed:panel_042f777a-5e41-41e8-9d6e-d842473a8aed", + "type": "visualization" + }, + { + "id": "da67d650-ec14-11e9-90ec-112a988266d5", + "name": "1e73bca7-8569-41b5-830e-2f762602219a:panel_1e73bca7-8569-41b5-830e-2f762602219a", + "type": "visualization" + }, + { + "id": "e4c7f4b0-f045-11e9-90ec-112a988266d5", + "name": "d9465e9f-49f1-4173-b1a4-fea9ee3120ab:panel_d9465e9f-49f1-4173-b1a4-fea9ee3120ab", + "type": "visualization" + }, + { + "id": "709995e0-ec16-11e9-90ec-112a988266d5", + "name": "18ec1e20-202b-4a40-8d0d-22060ac3e23c:panel_18ec1e20-202b-4a40-8d0d-22060ac3e23c", + "type": "visualization" + }, + { + "id": "ffe22180-ec1c-11e9-90ec-112a988266d5", + "name": "d2bdec0f-dde1-4925-bf7e-afbc430c0eca:panel_d2bdec0f-dde1-4925-bf7e-afbc430c0eca", + "type": "visualization" + }, + { + "id": "52c2a4e0-ec1f-11e9-90ec-112a988266d5", + "name": "3bcc964d-6862-4fdd-9d82-f7510cc02162:panel_3bcc964d-6862-4fdd-9d82-f7510cc02162", + "type": "visualization" + }, + { + "id": "bc65e840-ec1e-11e9-90ec-112a988266d5", + "name": "74436614-9dfc-4c38-bc58-8cb76c348f37:panel_74436614-9dfc-4c38-bc58-8cb76c348f37", + "type": "visualization" + }, + { + "id": "71b62ca0-ec1a-11e9-90ec-112a988266d5", + "name": "a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8:panel_a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8", + "type": "visualization" + }, + { + "id": "f684a750-ec23-11e9-90ec-112a988266d5", + "name": "644c6151-fd05-4b2e-b18e-30843697e932:panel_644c6151-fd05-4b2e-b18e-30843697e932", + "type": "visualization" + }, + { + "id": "e37cd3d0-ec23-11e9-90ec-112a988266d5", + "name": "3d5ccff8-6576-4a1c-b3ee-363ae665906e:panel_3d5ccff8-6576-4a1c-b3ee-363ae665906e", + "type": "visualization" + }, + { + "id": "d91ce8d0-53e8-11ea-b1b7-7de801e1c297", + "name": "1a6dce1d-d039-4d18-87c7-1b700da676c2:panel_1a6dce1d-d039-4d18-87c7-1b700da676c2", + "type": "visualization" + }, + { + "id": "6db84660-53e9-11ea-b1b7-7de801e1c297", + "name": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0:panel_8fddd3bb-c1e6-4533-b075-1ab7361b3af0", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:02.545Z", + "version": "WzQzODUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/87095750-f05a-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/87095750-f05a-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..dd8405a59b6d --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/87095750-f05a-11e9-90ec-112a988266d5.json @@ -0,0 +1,284 @@ +{ + "attributes": { + "description": "This dashboard shows expanded user activity in Azure cloud.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "azure.activitylogs.identity.claims_initiated_by_user.fullname" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "azure.activitylogs.identity.claims_initiated_by_user.fullname", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "675f172f-dbec-44fe-b45c-fe854a967695", + "w": 8, + "x": 0, + "y": 0 + }, + "panelIndex": "675f172f-dbec-44fe-b45c-fe854a967695", + "panelRefName": "panel_675f172f-dbec-44fe-b45c-fe854a967695", + "title": "", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "705596b5-db2e-4c45-875d-95d98bfb7ee8", + "w": 16, + "x": 8, + "y": 0 + }, + "panelIndex": "705596b5-db2e-4c45-875d-95d98bfb7ee8", + "panelRefName": "panel_705596b5-db2e-4c45-875d-95d98bfb7ee8", + "title": "", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "ace19840-2084-45bd-bf86-9ab31b04a17b", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "ace19840-2084-45bd-bf86-9ab31b04a17b", + "panelRefName": "panel_ace19840-2084-45bd-bf86-9ab31b04a17b", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "d4d708e1-d179-4688-8005-54e2162a82d2", + "w": 11, + "x": 0, + "y": 4 + }, + "panelIndex": "d4d708e1-d179-4688-8005-54e2162a82d2", + "panelRefName": "panel_d4d708e1-d179-4688-8005-54e2162a82d2", + "title": "Users List", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "5774219c-fb45-4480-bdfb-75a69bdc2cfe", + "w": 13, + "x": 11, + "y": 4 + }, + "panelIndex": "5774219c-fb45-4480-bdfb-75a69bdc2cfe", + "panelRefName": "panel_5774219c-fb45-4480-bdfb-75a69bdc2cfe", + "title": "Top Caller IPs", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "5deee186-fe00-4edc-9e5b-86d8d09f6550", + "w": 24, + "x": 24, + "y": 9 + }, + "panelIndex": "5deee186-fe00-4edc-9e5b-86d8d09f6550", + "panelRefName": "panel_5deee186-fe00-4edc-9e5b-86d8d09f6550", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 15, + "i": "2fa13b32-c544-45f7-9132-620d09d121eb", + "w": 16, + "x": 0, + "y": 19 + }, + "panelIndex": "2fa13b32-c544-45f7-9132-620d09d121eb", + "panelRefName": "panel_2fa13b32-c544-45f7-9132-620d09d121eb", + "title": "Top Resource Groups", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "legendOpen": false, + "vis": { + "legendOpen": true + } + }, + "gridData": { + "h": 7, + "i": "1a6dce1d-d039-4d18-87c7-1b700da676c2", + "w": 17, + "x": 16, + "y": 19 + }, + "panelIndex": "1a6dce1d-d039-4d18-87c7-1b700da676c2", + "panelRefName": "panel_1a6dce1d-d039-4d18-87c7-1b700da676c2", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "legendOpen": false, + "vis": { + "legendOpen": true + } + }, + "gridData": { + "h": 8, + "i": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0", + "w": 17, + "x": 16, + "y": 26 + }, + "panelIndex": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0", + "panelRefName": "panel_8fddd3bb-c1e6-4533-b075-1ab7361b3af0", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "84583e62-1aad-4f03-a25a-c4f9eaace8c0", + "w": 15, + "x": 33, + "y": 19 + }, + "panelIndex": "84583e62-1aad-4f03-a25a-c4f9eaace8c0", + "panelRefName": "panel_84583e62-1aad-4f03-a25a-c4f9eaace8c0", + "title": "Top Resource Types", + "type": "visualization", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Azure] User Activity", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "87095750-f05a-11e9-90ec-112a988266d5", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "c43855e0-f05a-11e9-90ec-112a988266d5", + "name": "675f172f-dbec-44fe-b45c-fe854a967695:panel_675f172f-dbec-44fe-b45c-fe854a967695", + "type": "visualization" + }, + { + "id": "b0471750-f05b-11e9-90ec-112a988266d5", + "name": "705596b5-db2e-4c45-875d-95d98bfb7ee8:panel_705596b5-db2e-4c45-875d-95d98bfb7ee8", + "type": "visualization" + }, + { + "id": "e0203fc0-f05f-11e9-90ec-112a988266d5", + "name": "ace19840-2084-45bd-bf86-9ab31b04a17b:panel_ace19840-2084-45bd-bf86-9ab31b04a17b", + "type": "visualization" + }, + { + "id": "52da1700-f05d-11e9-90ec-112a988266d5", + "name": "d4d708e1-d179-4688-8005-54e2162a82d2:panel_d4d708e1-d179-4688-8005-54e2162a82d2", + "type": "visualization" + }, + { + "id": "6ece76d0-f0cc-11e9-90ec-112a988266d5", + "name": "5774219c-fb45-4480-bdfb-75a69bdc2cfe:panel_5774219c-fb45-4480-bdfb-75a69bdc2cfe", + "type": "visualization" + }, + { + "id": "0dd135c0-f0cc-11e9-90ec-112a988266d5", + "name": "5deee186-fe00-4edc-9e5b-86d8d09f6550:panel_5deee186-fe00-4edc-9e5b-86d8d09f6550", + "type": "visualization" + }, + { + "id": "71b62ca0-ec1a-11e9-90ec-112a988266d5", + "name": "2fa13b32-c544-45f7-9132-620d09d121eb:panel_2fa13b32-c544-45f7-9132-620d09d121eb", + "type": "visualization" + }, + { + "id": "d91ce8d0-53e8-11ea-b1b7-7de801e1c297", + "name": "1a6dce1d-d039-4d18-87c7-1b700da676c2:panel_1a6dce1d-d039-4d18-87c7-1b700da676c2", + "type": "visualization" + }, + { + "id": "6db84660-53e9-11ea-b1b7-7de801e1c297", + "name": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0:panel_8fddd3bb-c1e6-4533-b075-1ab7361b3af0", + "type": "visualization" + }, + { + "id": "9ed46680-f0ce-11e9-90ec-112a988266d5", + "name": "84583e62-1aad-4f03-a25a-c4f9eaace8c0:panel_84583e62-1aad-4f03-a25a-c4f9eaace8c0", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:03.514Z", + "version": "WzQzOTksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-alerts-overview.ndjson b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-alerts-overview.ndjson deleted file mode 100644 index 5f6e55d71c1d..000000000000 --- a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-alerts-overview.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Alerts [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Azure Monitoring\\n\\n[Overview](#/dashboard/41e84340-ec20-11e9-90ec-112a988266d5) | [Users](#/dashboard/87095750-f05a-11e9-90ec-112a988266d5) | [**Alerts**](#/dashboard/0f559cc0-f0d5-11e9-90ec-112a988266d5) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Alerts [Filebeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"46544960-f0d5-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:01.505Z","version":"WzQzODAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Subscriptions Filter [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1571250866125\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription ID\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Subscriptions Filter [Filebeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"097d74d0-f044-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzODcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Alerts Overview [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category : \\\"Alert\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type: \\\"Activated\\\"\"},\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type: \\\"Resolved\\\" or azure.activitylogs.result_type: \\\"Succeeded\\\"\"},\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"5a52f170-ec1e-11e9-b6a7-21d19b63822a\",\"line_width\":1,\"metrics\":[{\"id\":\"5a52f171-ec1e-11e9-b6a7-21d19b63822a\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Alerts Overview [Filebeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"52c2a4e0-ec1f-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzOTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category : \\\"Alert\\\" \"}}"},"title":"Alerts Count [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Alerts\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Activated\\\"\"},\"label\":\"Activated\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Resolved\\\"\"},\"label\":\"Resolved\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Succeeded\\\"\"},\"label\":\"Succeeded\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"metrics\":[{\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Alerts Count [Filebeat Azure]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"f684a750-ec23-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzOTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category : \\\"Alert\\\" \"}}"},"title":"Alerts Heatmap [Filebeat Azure]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0\": \"rgb(247,252,245)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Provider\",\"field\":\"azure.resource.provider\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Resource Group\",\"field\":\"azure.resource.group\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Greens\",\"colorsNumber\":4,\"colorsRange\":[],\"dimensions\":{\"x\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},\"y\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"enableHover\":false,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":false},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Alerts Heatmap [Filebeat Azure]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"8.0.0","id":"c704b050-f0de-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:01.505Z","version":"WzQzODQsMV0="} -{"attributes":{"description":"This dashboard provides expanded alerts overview for Azure cloud","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060\",\"w\":7,\"x\":0,\"y\":0},\"panelIndex\":\"9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"676fd632-a9c1-46ed-829b-ca5b55817379\",\"w\":14,\"x\":7,\"y\":0},\"panelIndex\":\"676fd632-a9c1-46ed-829b-ca5b55817379\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_676fd632-a9c1-46ed-829b-ca5b55817379\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"096b4eaa-072e-455f-befa-3076f71be12d\",\"w\":27,\"x\":21,\"y\":0},\"panelIndex\":\"096b4eaa-072e-455f-befa-3076f71be12d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_096b4eaa-072e-455f-befa-3076f71be12d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"162fb43e-fff3-4f50-aa9b-a713418bd651\",\"w\":27,\"x\":21,\"y\":15},\"panelIndex\":\"162fb43e-fff3-4f50-aa9b-a713418bd651\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_162fb43e-fff3-4f50-aa9b-a713418bd651\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"36fb5c08-80d9-4a1c-8fde-9c063381fdd8\",\"w\":21,\"x\":0,\"y\":4},\"panelIndex\":\"36fb5c08-80d9-4a1c-8fde-9c063381fdd8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_36fb5c08-80d9-4a1c-8fde-9c063381fdd8\"}]","timeRestore":false,"title":"[Filebeat Azure] Alerts Overview","version":1},"coreMigrationVersion":"8.0.0","id":"0f559cc0-f0d5-11e9-90ec-112a988266d5","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"46544960-f0d5-11e9-90ec-112a988266d5","name":"9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060:panel_9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060","type":"visualization"},{"id":"097d74d0-f044-11e9-90ec-112a988266d5","name":"676fd632-a9c1-46ed-829b-ca5b55817379:panel_676fd632-a9c1-46ed-829b-ca5b55817379","type":"visualization"},{"id":"52c2a4e0-ec1f-11e9-90ec-112a988266d5","name":"096b4eaa-072e-455f-befa-3076f71be12d:panel_096b4eaa-072e-455f-befa-3076f71be12d","type":"visualization"},{"id":"f684a750-ec23-11e9-90ec-112a988266d5","name":"162fb43e-fff3-4f50-aa9b-a713418bd651:panel_162fb43e-fff3-4f50-aa9b-a713418bd651","type":"visualization"},{"id":"c704b050-f0de-11e9-90ec-112a988266d5","name":"36fb5c08-80d9-4a1c-8fde-9c063381fdd8:panel_36fb5c08-80d9-4a1c-8fde-9c063381fdd8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:01.505Z","version":"WzQzNzksMV0="} diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-overview.ndjson b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-overview.ndjson deleted file mode 100644 index affa85cc8a63..000000000000 --- a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-overview.ndjson +++ /dev/null @@ -1,14 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Overview [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Azure Monitoring\\n\\n[**Overview**](#/dashboard/41e84340-ec20-11e9-90ec-112a988266d5) | [Users](#/dashboard/87095750-f05a-11e9-90ec-112a988266d5) | [Alerts](#/dashboard/0f559cc0-f0d5-11e9-90ec-112a988266d5) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Overview [Filebeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"fe24ac90-f05a-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzODYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Subscriptions Filter [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1571250866125\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription ID\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Subscriptions Filter [Filebeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"097d74d0-f044-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzODcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Activity Level [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category :\\\"Administrative\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Activity Level [Filebeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"da67d650-ec14-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzODgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset : \\\"azure.activitylogs\\\" \"}}"},"title":"Activity Stats [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Resources\",\"field\":\"azure.resource.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Users\",\"field\":\"azure.activitylogs.identity.claims_initiated_by_user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Resource Groups\",\"field\":\"azure.resource.group\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Subscriptions\",\"field\":\"azure.subscription_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"},{\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"},{\"accessor\":2,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Activity Stats [Filebeat Azure]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"e4c7f4b0-f045-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzODksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Access Requests [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.operation_name : *LISTKEYS*\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.outcome : \\\"success\\\" or event.outcome : \\\"Success\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Success\",\"line_width\":\"2\",\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.outcome : \\\"Failure\\\" or event.outcome : \\\"failure\\\" \"},\"formatter\":\"number\",\"id\":\"1b5f75a0-ec15-11e9-b6a7-21d19b63822a\",\"label\":\"Failure\",\"line_width\":\"2\",\"metrics\":[{\"id\":\"1b5f75a1-ec15-11e9-b6a7-21d19b63822a\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Access Requests [Filebeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"709995e0-ec16-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzOTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"User Tag Cloud [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"azure.activitylogs.identity.claims_initiated_by_user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"type\":\"vis_dimension\"},\"maxFontSize\":32,\"metric\":{\"accessor\":1,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"minFontSize\":12,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"User Tag Cloud [Filebeat Azure]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"ffe22180-ec1c-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzOTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Alerts Overview [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category : \\\"Alert\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type: \\\"Activated\\\"\"},\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type: \\\"Resolved\\\" or azure.activitylogs.result_type: \\\"Succeeded\\\"\"},\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"5a52f170-ec1e-11e9-b6a7-21d19b63822a\",\"line_width\":1,\"metrics\":[{\"id\":\"5a52f171-ec1e-11e9-b6a7-21d19b63822a\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Alerts Overview [Filebeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"52c2a4e0-ec1f-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzOTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Service Health Overview [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category : \\\"ServiceHealth\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type: \\\"Active\\\"\"},\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type: \\\"Resolved\\\" \"},\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"5a52f170-ec1e-11e9-b6a7-21d19b63822a\",\"line_width\":1,\"metrics\":[{\"id\":\"5a52f171-ec1e-11e9-b6a7-21d19b63822a\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Service Health Overview [Filebeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bc65e840-ec1e-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzOTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top Resource Groups [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Resource Groups\",\"field\":\"azure.resource.group\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"x\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},\"y\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":false,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Top Resource Groups [Filebeat Azure]\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"71b62ca0-ec1a-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category : \\\"Alert\\\" \"}}"},"title":"Alerts Count [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Alerts\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Activated\\\"\"},\"label\":\"Activated\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Resolved\\\"\"},\"label\":\"Resolved\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Succeeded\\\"\"},\"label\":\"Succeeded\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"metrics\":[{\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Alerts Count [Filebeat Azure]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"f684a750-ec23-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzOTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category : \\\"ServiceHealth\\\" \"}}"},"title":"Service Health Count [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Incidents\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Active\\\"\"},\"label\":\"Active\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Resolved\\\"\"},\"label\":\"Resolved\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"metrics\":[{\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Service Health Count [Filebeat Azure]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"e37cd3d0-ec23-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzOTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" \"}}"},"title":"Resource Creations [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"Resource Creations [Filebeat Azure]\",\"type\":\"horizontal_bar\",\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"label\":\"Creations\",\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"label\":\"Resource type\",\"params\":{}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}]},\"grid\":{\"categoryLines\":false,\"valueAxis\":\"\"},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":false,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"azure.resource.provider\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"customLabel\":\"Resource type\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"azure.activitylogs.identity.authorization.action\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"include\":\".*write\",\"customLabel\":\"Creations\"}}]}"},"coreMigrationVersion":"8.0.0","id":"d91ce8d0-53e8-11ea-b1b7-7de801e1c297","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" \"}}"},"title":"Resource Deletions [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"Resource Deletions [Filebeat Azure]\",\"type\":\"horizontal_bar\",\"params\":{\"type\":\"histogram\",\"grid\":{\"categoryLines\":false},\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"type\":\"category\",\"position\":\"left\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\"},\"labels\":{\"show\":true,\"rotate\":0,\"filter\":false,\"truncate\":200},\"title\":{}}],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"name\":\"LeftAxis-1\",\"type\":\"value\",\"position\":\"bottom\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\",\"mode\":\"normal\"},\"labels\":{\"show\":false,\"rotate\":75,\"filter\":true,\"truncate\":100},\"title\":{\"text\":\"Count\"}}],\"seriesParams\":[{\"show\":true,\"type\":\"histogram\",\"mode\":\"normal\",\"data\":{\"label\":\"Count\",\"id\":\"1\"},\"valueAxis\":\"ValueAxis-1\",\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"showCircles\":true}],\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"times\":[],\"addTimeMarker\":false,\"labels\":{},\"thresholdLine\":{\"show\":false,\"value\":10,\"width\":1,\"style\":\"full\",\"color\":\"#E7664C\"},\"dimensions\":{\"x\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"label\":\"azure.resource.provider: Descending\",\"aggType\":\"terms\"},\"y\":[{\"accessor\":2,\"format\":{\"id\":\"number\"},\"params\":{},\"label\":\"Count\",\"aggType\":\"count\"}],\"series\":[{\"accessor\":1,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"label\":\"Deletions\",\"aggType\":\"terms\"}]},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"azure.resource.provider\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"customLabel\":\"Resource type\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"azure.activitylogs.identity.authorization.action\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"include\":\".*delete\",\"customLabel\":\"Deletions\"}}]}"},"coreMigrationVersion":"8.0.0","id":"6db84660-53e9-11ea-b1b7-7de801e1c297","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDgsMV0="} -{"attributes":{"description":"This dashboard provides an overview of user activity, alerts and resource in Azure cloud.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"6b6e7452-979c-4f78-afc2-cc58fcf105ff\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"6b6e7452-979c-4f78-afc2-cc58fcf105ff\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_6b6e7452-979c-4f78-afc2-cc58fcf105ff\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"042f777a-5e41-41e8-9d6e-d842473a8aed\",\"w\":15,\"x\":9,\"y\":0},\"panelIndex\":\"042f777a-5e41-41e8-9d6e-d842473a8aed\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_042f777a-5e41-41e8-9d6e-d842473a8aed\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1e73bca7-8569-41b5-830e-2f762602219a\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"1e73bca7-8569-41b5-830e-2f762602219a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Activity Level\",\"panelRefName\":\"panel_1e73bca7-8569-41b5-830e-2f762602219a\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"d9465e9f-49f1-4173-b1a4-fea9ee3120ab\",\"w\":24,\"x\":0,\"y\":4},\"panelIndex\":\"d9465e9f-49f1-4173-b1a4-fea9ee3120ab\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_d9465e9f-49f1-4173-b1a4-fea9ee3120ab\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"18ec1e20-202b-4a40-8d0d-22060ac3e23c\",\"w\":24,\"x\":24,\"y\":8},\"panelIndex\":\"18ec1e20-202b-4a40-8d0d-22060ac3e23c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Access Requests\",\"panelRefName\":\"panel_18ec1e20-202b-4a40-8d0d-22060ac3e23c\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"d2bdec0f-dde1-4925-bf7e-afbc430c0eca\",\"w\":24,\"x\":0,\"y\":10},\"panelIndex\":\"d2bdec0f-dde1-4925-bf7e-afbc430c0eca\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Active Users\",\"panelRefName\":\"panel_d2bdec0f-dde1-4925-bf7e-afbc430c0eca\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"3bcc964d-6862-4fdd-9d82-f7510cc02162\",\"w\":12,\"x\":24,\"y\":15},\"panelIndex\":\"3bcc964d-6862-4fdd-9d82-f7510cc02162\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Alerts Overview\",\"panelRefName\":\"panel_3bcc964d-6862-4fdd-9d82-f7510cc02162\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"74436614-9dfc-4c38-bc58-8cb76c348f37\",\"w\":12,\"x\":36,\"y\":15},\"panelIndex\":\"74436614-9dfc-4c38-bc58-8cb76c348f37\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Service Health\",\"panelRefName\":\"panel_74436614-9dfc-4c38-bc58-8cb76c348f37\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8\",\"w\":24,\"x\":0,\"y\":21},\"panelIndex\":\"a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Top Resource Groups\",\"panelRefName\":\"panel_a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"644c6151-fd05-4b2e-b18e-30843697e932\",\"w\":12,\"x\":24,\"y\":22},\"panelIndex\":\"644c6151-fd05-4b2e-b18e-30843697e932\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_644c6151-fd05-4b2e-b18e-30843697e932\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"3d5ccff8-6576-4a1c-b3ee-363ae665906e\",\"w\":12,\"x\":36,\"y\":22},\"panelIndex\":\"3d5ccff8-6576-4a1c-b3ee-363ae665906e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_3d5ccff8-6576-4a1c-b3ee-363ae665906e\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":28,\"w\":12,\"h\":12,\"i\":\"1a6dce1d-d039-4d18-87c7-1b700da676c2\"},\"panelIndex\":\"1a6dce1d-d039-4d18-87c7-1b700da676c2\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"legendOpen\":false,\"enhancements\":{}},\"panelRefName\":\"panel_1a6dce1d-d039-4d18-87c7-1b700da676c2\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"x\":36,\"y\":28,\"w\":12,\"h\":12,\"i\":\"8fddd3bb-c1e6-4533-b075-1ab7361b3af0\"},\"panelIndex\":\"8fddd3bb-c1e6-4533-b075-1ab7361b3af0\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"legendOpen\":false,\"enhancements\":{}},\"panelRefName\":\"panel_8fddd3bb-c1e6-4533-b075-1ab7361b3af0\"}]","timeRestore":false,"title":"[Filebeat Azure] Cloud Overview","version":1},"coreMigrationVersion":"8.0.0","id":"41e84340-ec20-11e9-90ec-112a988266d5","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"fe24ac90-f05a-11e9-90ec-112a988266d5","name":"6b6e7452-979c-4f78-afc2-cc58fcf105ff:panel_6b6e7452-979c-4f78-afc2-cc58fcf105ff","type":"visualization"},{"id":"097d74d0-f044-11e9-90ec-112a988266d5","name":"042f777a-5e41-41e8-9d6e-d842473a8aed:panel_042f777a-5e41-41e8-9d6e-d842473a8aed","type":"visualization"},{"id":"da67d650-ec14-11e9-90ec-112a988266d5","name":"1e73bca7-8569-41b5-830e-2f762602219a:panel_1e73bca7-8569-41b5-830e-2f762602219a","type":"visualization"},{"id":"e4c7f4b0-f045-11e9-90ec-112a988266d5","name":"d9465e9f-49f1-4173-b1a4-fea9ee3120ab:panel_d9465e9f-49f1-4173-b1a4-fea9ee3120ab","type":"visualization"},{"id":"709995e0-ec16-11e9-90ec-112a988266d5","name":"18ec1e20-202b-4a40-8d0d-22060ac3e23c:panel_18ec1e20-202b-4a40-8d0d-22060ac3e23c","type":"visualization"},{"id":"ffe22180-ec1c-11e9-90ec-112a988266d5","name":"d2bdec0f-dde1-4925-bf7e-afbc430c0eca:panel_d2bdec0f-dde1-4925-bf7e-afbc430c0eca","type":"visualization"},{"id":"52c2a4e0-ec1f-11e9-90ec-112a988266d5","name":"3bcc964d-6862-4fdd-9d82-f7510cc02162:panel_3bcc964d-6862-4fdd-9d82-f7510cc02162","type":"visualization"},{"id":"bc65e840-ec1e-11e9-90ec-112a988266d5","name":"74436614-9dfc-4c38-bc58-8cb76c348f37:panel_74436614-9dfc-4c38-bc58-8cb76c348f37","type":"visualization"},{"id":"71b62ca0-ec1a-11e9-90ec-112a988266d5","name":"a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8:panel_a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8","type":"visualization"},{"id":"f684a750-ec23-11e9-90ec-112a988266d5","name":"644c6151-fd05-4b2e-b18e-30843697e932:panel_644c6151-fd05-4b2e-b18e-30843697e932","type":"visualization"},{"id":"e37cd3d0-ec23-11e9-90ec-112a988266d5","name":"3d5ccff8-6576-4a1c-b3ee-363ae665906e:panel_3d5ccff8-6576-4a1c-b3ee-363ae665906e","type":"visualization"},{"id":"d91ce8d0-53e8-11ea-b1b7-7de801e1c297","name":"1a6dce1d-d039-4d18-87c7-1b700da676c2:panel_1a6dce1d-d039-4d18-87c7-1b700da676c2","type":"visualization"},{"id":"6db84660-53e9-11ea-b1b7-7de801e1c297","name":"8fddd3bb-c1e6-4533-b075-1ab7361b3af0:panel_8fddd3bb-c1e6-4533-b075-1ab7361b3af0","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:02.545Z","version":"WzQzODUsMV0="} diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-user-activity.ndjson b/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-user-activity.ndjson deleted file mode 100644 index 9a4d6db99b28..000000000000 --- a/x-pack/filebeat/module/azure/_meta/kibana/7/dashboard/Filebeat-azure-user-activity.ndjson +++ /dev/null @@ -1,11 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Users [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Azure Monitoring\\n\\n[Overview](#/dashboard/41e84340-ec20-11e9-90ec-112a988266d5) | [**Users**](#/dashboard/87095750-f05a-11e9-90ec-112a988266d5) | [Alerts](#/dashboard/0f559cc0-f0d5-11e9-90ec-112a988266d5) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Users [Filebeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"c43855e0-f05a-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"User Filters [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1517598395667\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":100,\"type\":\"terms\"},\"type\":\"list\"},{\"fieldName\":\"azure.activitylogs.identity.claims_initiated_by_user.name\",\"id\":\"1518843942322\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"User Email\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":100,\"type\":\"terms\"},\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"User Filters [Filebeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b0471750-f05b-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"User Activity Overview [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.event_category :\\\"Administrative\\\" and azure.activitylogs.identity.claims_initiated_by_user.fullname :*\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"rgba(1,155,143,1)\",\"fill\":\"0.4\",\"filter\":\"\",\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Actions\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"rgba(244,78,59,1)\",\"filter\":{\"query\":\"_exists_:identity.claims.name\",\"language\":\"lucene\"},\"id\":\"a5302500-1399-11e8-a699-f390e75f4dd5\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":null,\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"User Activity Overview [Filebeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e0203fc0-f05f-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Users List [Filebeat Azure]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Email\",\"field\":\"azure.activitylogs.identity.claims_initiated_by_user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Name\",\"field\":\"azure.activitylogs.identity.claims_initiated_by_user.fullname\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"IPs\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Actions\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":2,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"params\":{}},{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users List [Filebeat Azure]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"52da1700-f05d-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" \"}}"},"title":"Caller IP [Filebeat Azure]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Caller IP\",\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"5\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Country\",\"field\":\"geo.country_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"5\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Email\",\"field\":\"azure.activitylogs.identity.claims_initiated_by_user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"ip\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Caller IP [Filebeat Azure]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"6ece76d0-f0cc-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Authorization Activity User [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset :\\\"azure.activitylogs\\\" and azure.activitylogs.operation_name : *LISTKEYS* \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Success\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Success\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"terms_field\":\"azure.activitylogs.result_type\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"azure.activitylogs.result_type : \\\"Fail\\\" \"},\"formatter\":\"number\",\"id\":\"78e85470-f0cb-11e9-bf79-0db2fc8554f1\",\"label\":\"Failure\",\"line_width\":1,\"metrics\":[{\"id\":\"78e85471-f0cb-11e9-bf79-0db2fc8554f1\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Authorization Activity User [Filebeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0dd135c0-f0cc-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top Resource Groups [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Resource Groups\",\"field\":\"azure.resource.group\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"x\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},\"y\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":false,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Top Resource Groups [Filebeat Azure]\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"71b62ca0-ec1a-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" \"}}"},"title":"Resource Creations [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"Resource Creations [Filebeat Azure]\",\"type\":\"horizontal_bar\",\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"label\":\"Creations\",\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"label\":\"Resource type\",\"params\":{}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}]},\"grid\":{\"categoryLines\":false,\"valueAxis\":\"\"},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":false,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"azure.resource.provider\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"customLabel\":\"Resource type\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"azure.activitylogs.identity.authorization.action\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"include\":\".*write\",\"customLabel\":\"Creations\"}}]}"},"coreMigrationVersion":"8.0.0","id":"d91ce8d0-53e8-11ea-b1b7-7de801e1c297","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" \"}}"},"title":"Resource Deletions [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"title\":\"Resource Deletions [Filebeat Azure]\",\"type\":\"horizontal_bar\",\"params\":{\"type\":\"histogram\",\"grid\":{\"categoryLines\":false},\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"type\":\"category\",\"position\":\"left\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\"},\"labels\":{\"show\":true,\"rotate\":0,\"filter\":false,\"truncate\":200},\"title\":{}}],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"name\":\"LeftAxis-1\",\"type\":\"value\",\"position\":\"bottom\",\"show\":true,\"style\":{},\"scale\":{\"type\":\"linear\",\"mode\":\"normal\"},\"labels\":{\"show\":false,\"rotate\":75,\"filter\":true,\"truncate\":100},\"title\":{\"text\":\"Count\"}}],\"seriesParams\":[{\"show\":true,\"type\":\"histogram\",\"mode\":\"normal\",\"data\":{\"label\":\"Count\",\"id\":\"1\"},\"valueAxis\":\"ValueAxis-1\",\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"showCircles\":true}],\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"times\":[],\"addTimeMarker\":false,\"labels\":{},\"thresholdLine\":{\"show\":false,\"value\":10,\"width\":1,\"style\":\"full\",\"color\":\"#E7664C\"},\"dimensions\":{\"x\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"label\":\"azure.resource.provider: Descending\",\"aggType\":\"terms\"},\"y\":[{\"accessor\":2,\"format\":{\"id\":\"number\"},\"params\":{},\"label\":\"Count\",\"aggType\":\"count\"}],\"series\":[{\"accessor\":1,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"otherBucketLabel\":\"Other\",\"missingBucketLabel\":\"Missing\"}},\"params\":{},\"label\":\"Deletions\",\"aggType\":\"terms\"}]},\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"azure.resource.provider\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"customLabel\":\"Resource type\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"azure.activitylogs.identity.authorization.action\",\"orderBy\":\"1\",\"order\":\"desc\",\"size\":15,\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"include\":\".*delete\",\"customLabel\":\"Deletions\"}}]}"},"coreMigrationVersion":"8.0.0","id":"6db84660-53e9-11ea-b1b7-7de801e1c297","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset :\\\"azure.activitylogs\\\" \"}}"},"title":"Resource Type Breakdown [Filebeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"azure.resource.provider\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Resource Type Breakdown [Filebeat Azure]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"9ed46680-f0ce-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQ0MDksMV0="} -{"attributes":{"description":"This dashboard shows expanded user activity in Azure cloud.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"azure.activitylogs.identity.claims_initiated_by_user.fullname\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"azure.activitylogs.identity.claims_initiated_by_user.fullname\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"675f172f-dbec-44fe-b45c-fe854a967695\",\"w\":8,\"x\":0,\"y\":0},\"panelIndex\":\"675f172f-dbec-44fe-b45c-fe854a967695\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_675f172f-dbec-44fe-b45c-fe854a967695\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"705596b5-db2e-4c45-875d-95d98bfb7ee8\",\"w\":16,\"x\":8,\"y\":0},\"panelIndex\":\"705596b5-db2e-4c45-875d-95d98bfb7ee8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_705596b5-db2e-4c45-875d-95d98bfb7ee8\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"ace19840-2084-45bd-bf86-9ab31b04a17b\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"ace19840-2084-45bd-bf86-9ab31b04a17b\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_ace19840-2084-45bd-bf86-9ab31b04a17b\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"d4d708e1-d179-4688-8005-54e2162a82d2\",\"w\":11,\"x\":0,\"y\":4},\"panelIndex\":\"d4d708e1-d179-4688-8005-54e2162a82d2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Users List\",\"panelRefName\":\"panel_d4d708e1-d179-4688-8005-54e2162a82d2\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5774219c-fb45-4480-bdfb-75a69bdc2cfe\",\"w\":13,\"x\":11,\"y\":4},\"panelIndex\":\"5774219c-fb45-4480-bdfb-75a69bdc2cfe\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Caller IPs\",\"panelRefName\":\"panel_5774219c-fb45-4480-bdfb-75a69bdc2cfe\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5deee186-fe00-4edc-9e5b-86d8d09f6550\",\"w\":24,\"x\":24,\"y\":9},\"panelIndex\":\"5deee186-fe00-4edc-9e5b-86d8d09f6550\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5deee186-fe00-4edc-9e5b-86d8d09f6550\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2fa13b32-c544-45f7-9132-620d09d121eb\",\"w\":16,\"x\":0,\"y\":19},\"panelIndex\":\"2fa13b32-c544-45f7-9132-620d09d121eb\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Top Resource Groups\",\"panelRefName\":\"panel_2fa13b32-c544-45f7-9132-620d09d121eb\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":19,\"w\":17,\"h\":7,\"i\":\"1a6dce1d-d039-4d18-87c7-1b700da676c2\"},\"panelIndex\":\"1a6dce1d-d039-4d18-87c7-1b700da676c2\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"legendOpen\":false,\"enhancements\":{}},\"panelRefName\":\"panel_1a6dce1d-d039-4d18-87c7-1b700da676c2\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":26,\"w\":17,\"h\":8,\"i\":\"8fddd3bb-c1e6-4533-b075-1ab7361b3af0\"},\"panelIndex\":\"8fddd3bb-c1e6-4533-b075-1ab7361b3af0\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"legendOpen\":false,\"enhancements\":{}},\"panelRefName\":\"panel_8fddd3bb-c1e6-4533-b075-1ab7361b3af0\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"84583e62-1aad-4f03-a25a-c4f9eaace8c0\",\"w\":15,\"x\":33,\"y\":19},\"panelIndex\":\"84583e62-1aad-4f03-a25a-c4f9eaace8c0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Resource Types\",\"panelRefName\":\"panel_84583e62-1aad-4f03-a25a-c4f9eaace8c0\"}]","timeRestore":false,"title":"[Filebeat Azure] User Activity","version":1},"coreMigrationVersion":"8.0.0","id":"87095750-f05a-11e9-90ec-112a988266d5","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"c43855e0-f05a-11e9-90ec-112a988266d5","name":"675f172f-dbec-44fe-b45c-fe854a967695:panel_675f172f-dbec-44fe-b45c-fe854a967695","type":"visualization"},{"id":"b0471750-f05b-11e9-90ec-112a988266d5","name":"705596b5-db2e-4c45-875d-95d98bfb7ee8:panel_705596b5-db2e-4c45-875d-95d98bfb7ee8","type":"visualization"},{"id":"e0203fc0-f05f-11e9-90ec-112a988266d5","name":"ace19840-2084-45bd-bf86-9ab31b04a17b:panel_ace19840-2084-45bd-bf86-9ab31b04a17b","type":"visualization"},{"id":"52da1700-f05d-11e9-90ec-112a988266d5","name":"d4d708e1-d179-4688-8005-54e2162a82d2:panel_d4d708e1-d179-4688-8005-54e2162a82d2","type":"visualization"},{"id":"6ece76d0-f0cc-11e9-90ec-112a988266d5","name":"5774219c-fb45-4480-bdfb-75a69bdc2cfe:panel_5774219c-fb45-4480-bdfb-75a69bdc2cfe","type":"visualization"},{"id":"0dd135c0-f0cc-11e9-90ec-112a988266d5","name":"5deee186-fe00-4edc-9e5b-86d8d09f6550:panel_5deee186-fe00-4edc-9e5b-86d8d09f6550","type":"visualization"},{"id":"71b62ca0-ec1a-11e9-90ec-112a988266d5","name":"2fa13b32-c544-45f7-9132-620d09d121eb:panel_2fa13b32-c544-45f7-9132-620d09d121eb","type":"visualization"},{"id":"d91ce8d0-53e8-11ea-b1b7-7de801e1c297","name":"1a6dce1d-d039-4d18-87c7-1b700da676c2:panel_1a6dce1d-d039-4d18-87c7-1b700da676c2","type":"visualization"},{"id":"6db84660-53e9-11ea-b1b7-7de801e1c297","name":"8fddd3bb-c1e6-4533-b075-1ab7361b3af0:panel_8fddd3bb-c1e6-4533-b075-1ab7361b3af0","type":"visualization"},{"id":"9ed46680-f0ce-11e9-90ec-112a988266d5","name":"84583e62-1aad-4f03-a25a-c4f9eaace8c0:panel_84583e62-1aad-4f03-a25a-c4f9eaace8c0","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:03.514Z","version":"WzQzOTksMV0="} diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/097d74d0-f044-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/097d74d0-f044-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..072081920394 --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/097d74d0-f044-11e9-90ec-112a988266d5.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Subscriptions Filter [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "azure.subscription_id", + "id": "1571250866125", + "indexPatternRefName": "control_0_index_pattern", + "label": "Subscription ID", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "Subscriptions Filter [Filebeat Azure]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "097d74d0-f044-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:02.545Z", + "version": "WzQzODcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/0dd135c0-f0cc-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/0dd135c0-f0cc-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..0ee0a93b11b5 --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/0dd135c0-f0cc-11e9-90ec-112a988266d5.json @@ -0,0 +1,96 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Authorization Activity User [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "event.dataset :\"azure.activitylogs\" and azure.activitylogs.operation_name : *LISTKEYS* " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "azure.activitylogs.result_type : \"Success\" " + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Success", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "filter", + "stacked": "none", + "terms_field": "azure.activitylogs.result_type" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "azure.activitylogs.result_type : \"Fail\" " + }, + "formatter": "number", + "id": "78e85470-f0cb-11e9-bf79-0db2fc8554f1", + "label": "Failure", + "line_width": 1, + "metrics": [ + { + "id": "78e85471-f0cb-11e9-bf79-0db2fc8554f1", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "filter", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 0, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Authorization Activity User [Filebeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0dd135c0-f0cc-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:03.514Z", + "version": "WzQ0MDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/46544960-f0d5-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/46544960-f0d5-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..55e78afd80ed --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/46544960-f0d5-11e9-90ec-112a988266d5.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Navigation Alerts [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "### Azure Monitoring\n\n[Overview](#/dashboard/41e84340-ec20-11e9-90ec-112a988266d5) | [Users](#/dashboard/87095750-f05a-11e9-90ec-112a988266d5) | [**Alerts**](#/dashboard/0f559cc0-f0d5-11e9-90ec-112a988266d5) ", + "openLinksInNewTab": false + }, + "title": "Navigation Alerts [Filebeat Azure]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "46544960-f0d5-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:01.505Z", + "version": "WzQzODAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/52c2a4e0-ec1f-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/52c2a4e0-ec1f-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..23044632d40b --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/52c2a4e0-ec1f-11e9-90ec-112a988266d5.json @@ -0,0 +1,95 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Alerts Overview [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "event.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category : \"Alert\"" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "azure.activitylogs.result_type: \"Activated\"" + }, + "formatter": "number", + "hide_in_legend": 0, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "filter", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "azure.activitylogs.result_type: \"Resolved\" or azure.activitylogs.result_type: \"Succeeded\"" + }, + "formatter": "number", + "hide_in_legend": 0, + "id": "5a52f170-ec1e-11e9-b6a7-21d19b63822a", + "line_width": 1, + "metrics": [ + { + "id": "5a52f171-ec1e-11e9-b6a7-21d19b63822a", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "filter", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 0, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Alerts Overview [Filebeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "52c2a4e0-ec1f-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:02.545Z", + "version": "WzQzOTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/52da1700-f05d-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/52da1700-f05d-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..b296a5fca951 --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/52da1700-f05d-11e9-90ec-112a988266d5.json @@ -0,0 +1,162 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "" + } + } + }, + "title": "Users List [Filebeat Azure]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Email", + "field": "azure.activitylogs.identity.claims_initiated_by_user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Name", + "field": "azure.activitylogs.identity.claims_initiated_by_user.fullname", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "IPs", + "field": "source.ip" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Actions" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 2, + "aggType": "cardinality", + "format": { + "id": "number" + }, + "params": {} + }, + { + "accessor": 3, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Users List [Filebeat Azure]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "52da1700-f05d-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:03.514Z", + "version": "WzQ0MDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/6db84660-53e9-11ea-b1b7-7de801e1c297.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/6db84660-53e9-11ea-b1b7-7de801e1c297.json new file mode 100644 index 000000000000..1e5f3db13282 --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/6db84660-53e9-11ea-b1b7-7de801e1c297.json @@ -0,0 +1,206 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset :\"azure.activitylogs\" " + } + } + }, + "title": "Resource Deletions [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Resource type", + "field": "azure.resource.provider", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Deletions", + "field": "azure.activitylogs.identity.authorization.action", + "include": ".*delete", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 200 + }, + "position": "left", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "dimensions": { + "series": [ + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "label": "Deletions", + "params": {} + } + ], + "x": { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "label": "azure.resource.provider: Descending", + "params": {} + }, + "y": [ + { + "accessor": 2, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + } + ] + }, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": {}, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": true, + "rotate": 75, + "show": false, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "bottom", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Resource Deletions [Filebeat Azure]", + "type": "horizontal_bar" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6db84660-53e9-11ea-b1b7-7de801e1c297", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:03.514Z", + "version": "WzQ0MDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/6ece76d0-f0cc-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/6ece76d0-f0cc-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..36d16ac5c300 --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/6ece76d0-f0cc-11e9-90ec-112a988266d5.json @@ -0,0 +1,172 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset :\"azure.activitylogs\" " + } + } + }, + "title": "Caller IP [Filebeat Azure]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Caller IP", + "field": "source.ip", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "5", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 100 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Country", + "field": "geo.country_name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "5", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 100 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Email", + "field": "azure.activitylogs.identity.claims_initiated_by_user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": {}, + "schema": "metric", + "type": "count" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "ip", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 3, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Caller IP [Filebeat Azure]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6ece76d0-f0cc-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:03.514Z", + "version": "WzQ0MDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/709995e0-ec16-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/709995e0-ec16-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..6a9d5055f0cf --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/709995e0-ec16-11e9-90ec-112a988266d5.json @@ -0,0 +1,95 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Access Requests [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "event.dataset :\"azure.activitylogs\" and azure.activitylogs.operation_name : *LISTKEYS*" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "event.outcome : \"success\" or event.outcome : \"Success\" " + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Success", + "line_width": "2", + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "filter", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(226,115,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "event.outcome : \"Failure\" or event.outcome : \"failure\" " + }, + "formatter": "number", + "id": "1b5f75a0-ec15-11e9-b6a7-21d19b63822a", + "label": "Failure", + "line_width": "2", + "metrics": [ + { + "id": "1b5f75a1-ec15-11e9-b6a7-21d19b63822a", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "filter", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 0, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Access Requests [Filebeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "709995e0-ec16-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:02.545Z", + "version": "WzQzOTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/71b62ca0-ec1a-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/71b62ca0-ec1a-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..3edf83ee8abb --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/71b62ca0-ec1a-11e9-90ec-112a988266d5.json @@ -0,0 +1,162 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Top Resource Groups [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Resource Groups", + "field": "azure.resource.group", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 200 + }, + "position": "left", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "dimensions": { + "x": { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + "y": [ + { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": {}, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": true, + "rotate": 75, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "bottom", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": false, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Top Resource Groups [Filebeat Azure]", + "type": "horizontal_bar" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "71b62ca0-ec1a-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:03.514Z", + "version": "WzQ0MDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/9ed46680-f0ce-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/9ed46680-f0ce-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..ca3daab20056 --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/9ed46680-f0ce-11e9-90ec-112a988266d5.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset :\"azure.activitylogs\" " + } + } + }, + "title": "Resource Type Breakdown [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "azure.resource.provider", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Resource Type Breakdown [Filebeat Azure]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9ed46680-f0ce-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:03.514Z", + "version": "WzQ0MDksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/b0471750-f05b-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/b0471750-f05b-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..a7e41ff00cfe --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/b0471750-f05b-11e9-90ec-112a988266d5.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "User Filters [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "azure.subscription_id", + "id": "1517598395667", + "indexPatternRefName": "control_0_index_pattern", + "label": "Subscription", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 100, + "type": "terms" + }, + "type": "list" + }, + { + "fieldName": "azure.activitylogs.identity.claims_initiated_by_user.name", + "id": "1518843942322", + "indexPatternRefName": "control_1_index_pattern", + "label": "User Email", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 100, + "type": "terms" + }, + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "User Filters [Filebeat Azure]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b0471750-f05b-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:03.514Z", + "version": "WzQ0MDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/bc65e840-ec1e-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/bc65e840-ec1e-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..29c071d8ec5e --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/bc65e840-ec1e-11e9-90ec-112a988266d5.json @@ -0,0 +1,95 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Service Health Overview [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "event.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category : \"ServiceHealth\"" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "azure.activitylogs.result_type: \"Active\"" + }, + "formatter": "number", + "hide_in_legend": 0, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "filter", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "azure.activitylogs.result_type: \"Resolved\" " + }, + "formatter": "number", + "hide_in_legend": 0, + "id": "5a52f170-ec1e-11e9-b6a7-21d19b63822a", + "line_width": 1, + "metrics": [ + { + "id": "5a52f171-ec1e-11e9-b6a7-21d19b63822a", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "filter", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 0, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Service Health Overview [Filebeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bc65e840-ec1e-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:02.545Z", + "version": "WzQzOTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/c43855e0-f05a-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/c43855e0-f05a-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..04b9e1fa1e6e --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/c43855e0-f05a-11e9-90ec-112a988266d5.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Navigation Users [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "### Azure Monitoring\n\n[Overview](#/dashboard/41e84340-ec20-11e9-90ec-112a988266d5) | [**Users**](#/dashboard/87095750-f05a-11e9-90ec-112a988266d5) | [Alerts](#/dashboard/0f559cc0-f0d5-11e9-90ec-112a988266d5) ", + "openLinksInNewTab": false + }, + "title": "Navigation Users [Filebeat Azure]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c43855e0-f05a-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:03.514Z", + "version": "WzQ0MDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/c704b050-f0de-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/c704b050-f0de-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..697178595be3 --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/c704b050-f0de-11e9-90ec-112a988266d5.json @@ -0,0 +1,142 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category : \"Alert\" " + } + } + }, + "title": "Alerts Heatmap [Filebeat Azure]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0": "rgb(247,252,245)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Provider", + "field": "azure.resource.provider", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Resource Group", + "field": "azure.resource.group", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "colorSchema": "Greens", + "colorsNumber": 4, + "colorsRange": [], + "dimensions": { + "x": { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + "y": [ + { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "enableHover": false, + "invertColors": false, + "legendPosition": "right", + "percentageMode": false, + "setColorRange": false, + "times": [], + "type": "heatmap", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "color": "black", + "overwriteColor": false, + "rotate": 0, + "show": false + }, + "scale": { + "defaultYExtents": false, + "type": "linear" + }, + "show": false, + "type": "value" + } + ] + }, + "title": "Alerts Heatmap [Filebeat Azure]", + "type": "heatmap" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c704b050-f0de-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:01.505Z", + "version": "WzQzODQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/d91ce8d0-53e8-11ea-b1b7-7de801e1c297.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/d91ce8d0-53e8-11ea-b1b7-7de801e1c297.json new file mode 100644 index 000000000000..fc5b1a43aec1 --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/d91ce8d0-53e8-11ea-b1b7-7de801e1c297.json @@ -0,0 +1,207 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset :\"azure.activitylogs\" " + } + } + }, + "title": "Resource Creations [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Resource type", + "field": "azure.resource.provider", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Creations", + "field": "azure.activitylogs.identity.authorization.action", + "include": ".*write", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 200 + }, + "position": "left", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "dimensions": { + "series": [ + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "label": "Creations", + "params": {} + } + ], + "x": { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "label": "Resource type", + "params": {} + }, + "y": [ + { + "accessor": 2, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + } + ] + }, + "grid": { + "categoryLines": false, + "valueAxis": "" + }, + "isVislibVis": true, + "labels": {}, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": true, + "rotate": 75, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "bottom", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": false, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Resource Creations [Filebeat Azure]", + "type": "horizontal_bar" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d91ce8d0-53e8-11ea-b1b7-7de801e1c297", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:03.514Z", + "version": "WzQ0MDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/da67d650-ec14-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/da67d650-ec14-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..379e0bf68ea9 --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/da67d650-ec14-11e9-90ec-112a988266d5.json @@ -0,0 +1,65 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Activity Level [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "event.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category :\"Administrative\" " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 0, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Activity Level [Filebeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "da67d650-ec14-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:02.545Z", + "version": "WzQzODgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/e0203fc0-f05f-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/e0203fc0-f05f-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..85ae71584991 --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/e0203fc0-f05f-11e9-90ec-112a988266d5.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "User Activity Overview [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "event.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category :\"Administrative\" and azure.activitylogs.identity.claims_initiated_by_user.fullname :*" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "rgba(1,155,143,1)", + "fill": "0.4", + "filter": "", + "formatter": "number", + "hide_in_legend": 0, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Actions", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "rgba(244,78,59,1)", + "filter": { + "language": "lucene", + "query": "_exists_:identity.claims.name" + }, + "id": "a5302500-1399-11e8-a699-f390e75f4dd5", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 0, + "time_field": null, + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "User Activity Overview [Filebeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e0203fc0-f05f-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:03.514Z", + "version": "WzQ0MDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/e37cd3d0-ec23-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/e37cd3d0-ec23-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..6e7ba46bea49 --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/e37cd3d0-ec23-11e9-90ec-112a988266d5.json @@ -0,0 +1,121 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category : \"ServiceHealth\" " + } + } + }, + "title": "Service Health Count [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Incidents" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "filters": [ + { + "input": { + "language": "kuery", + "query": "azure.activitylogs.result_type : \"Active\"" + }, + "label": "Active" + }, + { + "input": { + "language": "kuery", + "query": "azure.activitylogs.result_type : \"Resolved\"" + }, + "label": "Resolved" + } + ] + }, + "schema": "group", + "type": "filters" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "bucket": { + "accessor": 0, + "format": { + "id": "string", + "params": {} + }, + "type": "vis_dimension" + }, + "metrics": [ + { + "accessor": 1, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Service Health Count [Filebeat Azure]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e37cd3d0-ec23-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:02.545Z", + "version": "WzQzOTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/e4c7f4b0-f045-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/e4c7f4b0-f045-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..90dc45b79cbf --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/e4c7f4b0-f045-11e9-90ec-112a988266d5.json @@ -0,0 +1,136 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset : \"azure.activitylogs\" " + } + } + }, + "title": "Activity Stats [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Resources", + "field": "azure.resource.name" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Users", + "field": "azure.activitylogs.identity.claims_initiated_by_user.name" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Resource Groups", + "field": "azure.resource.group" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Subscriptions", + "field": "azure.subscription_id" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + }, + { + "accessor": 1, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + }, + { + "accessor": 2, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Activity Stats [Filebeat Azure]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e4c7f4b0-f045-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:02.545Z", + "version": "WzQzODksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/f684a750-ec23-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/f684a750-ec23-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..cddeab12ab3e --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/f684a750-ec23-11e9-90ec-112a988266d5.json @@ -0,0 +1,128 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category : \"Alert\" " + } + } + }, + "title": "Alerts Count [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Alerts" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "filters": [ + { + "input": { + "language": "kuery", + "query": "azure.activitylogs.result_type : \"Activated\"" + }, + "label": "Activated" + }, + { + "input": { + "language": "kuery", + "query": "azure.activitylogs.result_type : \"Resolved\"" + }, + "label": "Resolved" + }, + { + "input": { + "language": "kuery", + "query": "azure.activitylogs.result_type : \"Succeeded\"" + }, + "label": "Succeeded" + } + ] + }, + "schema": "group", + "type": "filters" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "bucket": { + "accessor": 0, + "format": { + "id": "string", + "params": {} + }, + "type": "vis_dimension" + }, + "metrics": [ + { + "accessor": 1, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Alerts Count [Filebeat Azure]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f684a750-ec23-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:02.545Z", + "version": "WzQzOTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/fe24ac90-f05a-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/fe24ac90-f05a-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..4dcb3198df8b --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/fe24ac90-f05a-11e9-90ec-112a988266d5.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Navigation Overview [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "### Azure Monitoring\n\n[**Overview**](#/dashboard/41e84340-ec20-11e9-90ec-112a988266d5) | [Users](#/dashboard/87095750-f05a-11e9-90ec-112a988266d5) | [Alerts](#/dashboard/0f559cc0-f0d5-11e9-90ec-112a988266d5) ", + "openLinksInNewTab": false + }, + "title": "Navigation Overview [Filebeat Azure]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fe24ac90-f05a-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:02.545Z", + "version": "WzQzODYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/ffe22180-ec1c-11e9-90ec-112a988266d5.json b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/ffe22180-ec1c-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..80a20bb66d73 --- /dev/null +++ b/x-pack/filebeat/module/azure/_meta/kibana/7/visualization/ffe22180-ec1c-11e9-90ec-112a988266d5.json @@ -0,0 +1,93 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "User Tag Cloud [Filebeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "azure.activitylogs.identity.claims_initiated_by_user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "bucket": { + "accessor": 0, + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "type": "vis_dimension" + }, + "maxFontSize": 32, + "metric": { + "accessor": 1, + "format": { + "id": "string", + "params": {} + }, + "type": "vis_dimension" + }, + "minFontSize": 12, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": true + }, + "title": "User Tag Cloud [Filebeat Azure]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ffe22180-ec1c-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:02.545Z", + "version": "WzQzOTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41.json b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41.json new file mode 100644 index 000000000000..c6ff6ce5faf1 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41.json @@ -0,0 +1,361 @@ +{ + "attributes": { + "description": "Overview of Microsoft DNS activity.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "lucene", + "query": "*" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "1", + "w": 8, + "x": 40, + "y": 4 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "3", + "w": 40, + "x": 0, + "y": 4 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 18k": "rgb(247,251,255)", + "108k - 126k": "rgb(74,152,201)", + "126k - 144k": "rgb(46,126,188)", + "144k - 162k": "rgb(23,100,171)", + "162k - 180k": "rgb(8,74,145)", + "18k - 36k": "rgb(227,238,249)", + "36k - 54k": "rgb(208,225,242)", + "54k - 72k": "rgb(182,212,233)", + "72k - 90k": "rgb(148,196,223)", + "90k - 108k": "rgb(107,174,214)" + }, + "legendOpen": false + } + }, + "gridData": { + "h": 16, + "i": "5", + "w": 24, + "x": 0, + "y": 32 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "6", + "w": 48, + "x": 0, + "y": 48 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "7", + "w": 24, + "x": 24, + "y": 32 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "9", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 16, + "i": "11", + "w": 24, + "x": 24, + "y": 56 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "12", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 16, + "i": "13", + "w": 24, + "x": 0, + "y": 56 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "14", + "w": 24, + "x": 0, + "y": 20 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "15", + "w": 24, + "x": 24, + "y": 20 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapCenter": [ + 12.211180191503997, + 0 + ], + "mapZoom": 1 + }, + "gridData": { + "h": 12, + "i": "16", + "w": 24, + "x": 24, + "y": 72 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapCenter": [ + -0.17578097424708533, + 0 + ], + "mapZoom": 1 + }, + "gridData": { + "h": 12, + "i": "17", + "w": 24, + "x": 0, + "y": 72 + }, + "panelIndex": "17", + "panelRefName": "panel_17", + "type": "visualization", + "version": "7.3.0" + } + ], + "refreshInterval": { + "display": "Off", + "pause": false, + "value": 0 + }, + "timeFrom": "now-24h", + "timeRestore": true, + "timeTo": "now", + "title": "[Filebeat CEF] Microsoft DNS Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "56428e01-0c47-4770-8ba4-9345a029ea41", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "7e2b0659-0760-4182-8b29-3ee69f26bc6f", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "249e2737-b41f-4115-b303-88bc9d279655", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "566d8b4e-ec5c-4b8b-bd68-3cc9cb236110", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "759e8dc3-0fdb-4cb6-ba47-87a2e2ff8df3", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "fcf798a8-db8f-4492-827b-8fa7581108a9", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "f0e60404-ddf4-4b46-8e45-e28c4fb6d60d", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "1b9cc5b7-7747-49de-96b1-a4bc7f675716", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "677891a1-90c4-4273-b126-f0e54689bd76", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "26a65f68-d7a6-4b47-befc-c5a6819bb91b", + "name": "13:panel_13", + "type": "visualization" + }, + { + "id": "16aef3e9-e33b-4bab-b32f-d8c5b1263ac0", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "f3c573ad-2c16-4de5-9ec3-0a47141d4fa0", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "1b521f56-8089-433f-88f7-56aba867e07d", + "name": "16:panel_16", + "type": "visualization" + }, + { + "id": "581a296e-e34a-48f1-93e4-fc4bdadfc68d", + "name": "17:panel_17", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:38.313Z", + "version": "WzQ3MzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9.json b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9.json new file mode 100644 index 000000000000..f9510be91e26 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9.json @@ -0,0 +1,433 @@ +{ + "attributes": { + "description": "Operating system activity from endpoints.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "lucene", + "query": "*" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "Count": "#64B0C8", + "Destination User Names": "#E24D42", + "Event Types": "#EF843C" + }, + "legendOpen": true + } + }, + "gridData": { + "h": 12, + "i": "3", + "w": 24, + "x": 0, + "y": 28 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "4", + "w": 40, + "x": 0, + "y": 4 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 55k": "rgb(255,255,204)", + "110k - 165k": "rgb(254,225,135)", + "165k - 220k": "rgb(254,201,101)", + "220k - 275k": "rgb(254,171,73)", + "275k - 330k": "rgb(253,141,60)", + "330k - 385k": "rgb(252,91,46)", + "385k - 440k": "rgb(237,47,34)", + "440k - 495k": "rgb(212,16,32)", + "495k - 550k": "rgb(176,0,38)", + "55k - 110k": "rgb(255,241,170)" + }, + "legendOpen": false + } + }, + "gridData": { + "h": 12, + "i": "5", + "w": 24, + "x": 24, + "y": 28 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "7", + "w": 48, + "x": 0, + "y": 20 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "/Attempt": "#447EBC", + "/Failure": "#E24D42", + "/Success": "#7EB26D" + } + } + }, + "gridData": { + "h": 12, + "i": "8", + "w": 24, + "x": 24, + "y": 52 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 24, + "i": "9", + "w": 24, + "x": 0, + "y": 40 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "10", + "w": 24, + "x": 24, + "y": 40 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "11", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "12", + "w": 8, + "x": 40, + "y": 4 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "Destination Users": "#E24D42", + "Event Count": "#64B0C8" + } + } + }, + "gridData": { + "h": 8, + "i": "13", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 20, + "i": "14", + "w": 16, + "x": 32, + "y": 64 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 24, + "i": "15", + "w": 16, + "x": 32, + "y": 84 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "16", + "w": 32, + "x": 0, + "y": 80 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "17", + "w": 32, + "x": 0, + "y": 100 + }, + "panelIndex": "17", + "panelRefName": "panel_17", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "18", + "w": 32, + "x": 0, + "y": 64 + }, + "panelIndex": "18", + "panelRefName": "panel_18", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "19", + "w": 32, + "x": 0, + "y": 92 + }, + "panelIndex": "19", + "panelRefName": "panel_19", + "type": "visualization", + "version": "7.3.0" + } + ], + "refreshInterval": { + "display": "Off", + "pause": false, + "value": 0 + }, + "timeFrom": "now-24h", + "timeRestore": true, + "timeTo": "now", + "title": "[Filebeat CEF] Endpoint OS Activity Dashboard", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "9e352900-89c3-4c1b-863e-249e24d0dac9", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "59ad829b-12b8-4256-95a5-e7078eda628b", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "158d809a-89db-4ffa-88a1-eb5c4bf58d50", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "77ee0e91-010b-4897-b483-7e9a907d2afe", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "0f4028b2-3dc2-4cb6-80d8-285c847a02a1", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "e06d85f2-2da4-41e2-b2ab-f685b64bb3f9", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "2726382e-638a-4dcc-94fc-0ffdc0f92048", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "92aecea0-a632-4a55-bb56-50e4cdaca036", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "677891a1-90c4-4273-b126-f0e54689bd76", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "76c088c3-486e-4420-8840-5ede667edffe", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "5f187dc8-aa7e-4f91-a2d8-1186ce254d00", + "name": "13:panel_13", + "type": "visualization" + }, + { + "id": "316fdc75-7215-4c6b-8e1b-70a097b34e28", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "6437e9bb-9ed1-4e2d-bb10-e63ccd35c409", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "4a7c10c7-4abd-47b4-b4c3-dee33377fbdf", + "name": "16:panel_16", + "type": "visualization" + }, + { + "id": "acc915fe-b971-4795-9040-3fbfdf62abe1", + "name": "17:panel_17", + "type": "visualization" + }, + { + "id": "4e25b5ce-53c3-46fc-b5e5-71d3c52f1956", + "name": "18:panel_18", + "type": "visualization" + }, + { + "id": "8cd00d20-957d-4663-be4d-ea80b1609586", + "name": "19:panel_19", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ2OTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b.json b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b.json new file mode 100644 index 000000000000..e475d3777b4f --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b.json @@ -0,0 +1,413 @@ +{ + "attributes": { + "description": "Summary of endpoint event data.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "lucene", + "query": "*" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "1", + "w": 8, + "x": 40, + "y": 4 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "/Attempt": "#0A50A1", + "/Failure": "#BF1B00", + "/Success": "#629E51" + } + } + }, + "gridData": { + "h": 12, + "i": "2", + "w": 24, + "x": 24, + "y": 32 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "/Attempt": "#0A50A1", + "/Failure": "#BF1B00", + "/Success": "#629E51" + } + } + }, + "gridData": { + "h": 12, + "i": "3", + "w": 24, + "x": 0, + "y": 32 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "5", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6", + "w": 24, + "x": 24, + "y": 44 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "7", + "w": 40, + "x": 0, + "y": 4 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "/Attempt": "#0A50A1", + "/Failure": "#BF1B00", + "/Success": "#629E51" + } + } + }, + "gridData": { + "h": 12, + "i": "8", + "w": 24, + "x": 0, + "y": 44 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "cef.extensions.categoryDeviceGroup", + "cef.extensions.categoryTechnique", + "cef.extensions.categoryOutcome", + "cef.extensions.categorySignificance", + "cef.extensions.categoryObject", + "cef.extensions.categoryBehavior", + "cef.extensions.categoryDeviceType" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 20, + "i": "9", + "w": 48, + "x": 0, + "y": 76 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "10", + "w": 24, + "x": 24, + "y": 56 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "Anti-Virus": "#EAB839", + "Database": "#629E51", + "Host-based IDS/IPS": "#E0752D", + "Operating System": "#BF1B00", + "Security Mangement": "#64B0C8" + } + } + }, + "gridData": { + "h": 12, + "i": "11", + "w": 24, + "x": 0, + "y": 20 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 20, + "i": "12", + "w": 24, + "x": 0, + "y": 56 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "/Attempt": "#0A50A1", + "/Failure": "#BF1B00", + "/Informational": "#7EB26D", + "/Informational/Warning": "#EF843C", + "/Success": "#629E51", + "Anti-Virus": "#EAB839", + "Database": "#629E51", + "Host-based IDS/IPS": "#E0752D", + "Log Consolidator": "#E0F9D7", + "Operating System": "#BF1B00", + "Recon": "#BF1B00", + "Security Mangement": "#64B0C8" + } + } + }, + "gridData": { + "h": 12, + "i": "14", + "w": 24, + "x": 24, + "y": 20 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "15", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapCenter": [ + 12.897489183755892, + 0 + ], + "mapZoom": 1 + }, + "gridData": { + "h": 12, + "i": "17", + "w": 24, + "x": 24, + "y": 64 + }, + "panelIndex": "17", + "panelRefName": "panel_17", + "type": "visualization", + "version": "7.3.0" + } + ], + "refreshInterval": { + "display": "Off", + "pause": false, + "value": 0 + }, + "timeFrom": "now-24h", + "timeRestore": true, + "timeTo": "now", + "title": "[Filebeat CEF] Endpoint Overview Dashboard", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "9457ee67-895f-4b78-a543-268f9687a745", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "fe7b63d1-dbc7-4376-af7f-ace97a9f2e60", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "89998099-9a39-44cf-beba-5b97f0524cf9", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "718b074e-3dd1-4d03-ba11-7f869cdcd703", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "c5120e27-1f8c-41e3-83ee-78ec4d470c2f", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "7454c034-c5f3-48fe-8fce-ef4385c80350", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "118af639-1f37-4541-a960-5a3ff0613e0e", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", + "name": "9:panel_9", + "type": "search" + }, + { + "id": "74d2c072-6dfd-4249-8e63-dc7b0cf3c960", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "f57734dd-0f32-42b4-94dd-5d597f6735e1", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "295986d4-d2ea-4541-8e82-7dc95c0cd830", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "5bf6e4dc-4273-4e1e-a803-04347eebeb53", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "677891a1-90c4-4273-b126-f0e54689bd76", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "aaa80503-6d96-4a33-806f-b8a10aefe696", + "name": "17:panel_17", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:37.252Z", + "version": "WzQ3MTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619.json b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619.json new file mode 100644 index 000000000000..39f6f3611331 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619.json @@ -0,0 +1,338 @@ +{ + "attributes": { + "description": "Suspicious network activity overview", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "lucene", + "query": "*" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "Destination Addresses": "#E0752D", + "Destination Ports": "#E24D42" + }, + "legendOpen": false + } + }, + "gridData": { + "h": 12, + "i": "1", + "w": 32, + "x": 0, + "y": 28 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 12, + "i": "2", + "w": 16, + "x": 0, + "y": 40 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 12, + "i": "3", + "w": 16, + "x": 16, + "y": 40 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "5", + "w": 48, + "x": 0, + "y": 20 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "/Attempt": "#0A50A1", + "/Failure": "#BF1B00", + "/Success": "#629E51" + } + } + }, + "gridData": { + "h": 12, + "i": "9", + "w": 16, + "x": 32, + "y": 28 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "11", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "12", + "w": 24, + "x": 0, + "y": 52 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "13", + "w": 24, + "x": 24, + "y": 52 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "14", + "w": 16, + "x": 32, + "y": 40 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "15", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "16", + "w": 40, + "x": 0, + "y": 4 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 50": "rgb(255,255,204)", + "100 - 200": "rgb(253,141,60)", + "200 - 300": "rgb(227,27,28)", + "300 - 400": "rgb(128,0,38)", + "50 - 100": "rgb(254,217,118)" + } + } + }, + "gridData": { + "h": 8, + "i": "17", + "w": 8, + "x": 40, + "y": 4 + }, + "panelIndex": "17", + "panelRefName": "panel_17", + "type": "visualization", + "version": "7.3.0" + } + ], + "refreshInterval": { + "display": "Off", + "pause": false, + "value": 0 + }, + "timeFrom": "now-24h", + "timeRestore": true, + "timeTo": "now", + "title": "[Filebeat CEF] Network Suspicious Activity Dashboard", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "db1e1aca-279e-4ecc-b84e-fe58644f7619", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "fa8b26c1-6973-4381-adb3-bcde0d03a520", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "82f3fae3-1189-4f04-8ea5-47fde1d2e7b1", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "f03d734b-b85c-4e99-9c0e-9c89716a81f3", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "9bef4db9-a8b2-4be8-b2b0-6ea02fab424d", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "fff249b2-18b6-4b48-bcf7-dd4595d111e7", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "d02dd523-ce91-40e9-9209-83797f80ed45", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "589fec8c-336e-4122-8fef-a450bddf84f6", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "86bd5f13-ca6b-43fa-b209-54e7460344bb", + "name": "13:panel_13", + "type": "visualization" + }, + { + "id": "1204cf27-05e0-4905-bfa1-688aaaaaa840", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "677891a1-90c4-4273-b126-f0e54689bd76", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "01c3618c-9962-4fe9-b9c5-f73dfecc6eba", + "name": "16:panel_16", + "type": "visualization" + }, + { + "id": "33747d52-ec4c-4d91-86d8-fbdf9b9c82db", + "name": "17:panel_17", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:40.331Z", + "version": "WzQ3NjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71.json b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71.json new file mode 100644 index 000000000000..bab9360d427d --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71.json @@ -0,0 +1,467 @@ +{ + "attributes": { + "description": "Network data overview.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "lucene", + "query": "*" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "1", + "w": 48, + "x": 0, + "y": 44 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "2", + "w": 48, + "x": 0, + "y": 68 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "5", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "6", + "w": 48, + "x": 0, + "y": 60 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + }, + "legendOpen": false + } + }, + "gridData": { + "h": 8, + "i": "7", + "w": 40, + "x": 0, + "y": 4 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "/Attempt": "#0A50A1", + "/Failure": "#BF1B00", + "/Success": "#629E51" + } + } + }, + "gridData": { + "h": 12, + "i": "9", + "w": 16, + "x": 0, + "y": 20 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "/Attempt": "#0A50A1", + "/Failure": "#BF1B00", + "/Success": "#629E51" + } + } + }, + "gridData": { + "h": 12, + "i": "11", + "w": 16, + "x": 16, + "y": 20 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 12, + "i": "13", + "w": 32, + "x": 0, + "y": 32 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0% - 17%": "rgb(255,255,204)", + "17% - 34%": "rgb(255,230,146)", + "34% - 50%": "rgb(254,191,90)", + "50% - 67%": "rgb(253,141,60)", + "67% - 84%": "rgb(244,61,37)", + "84% - 100%": "rgb(202,8,35)" + }, + "legendOpen": false + } + }, + "gridData": { + "h": 12, + "i": "15", + "w": 16, + "x": 32, + "y": 32 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "Anti-Virus": "#EF843C", + "Content Security": "#7EB26D", + "Firewall": "#E24D42", + "Integrated Security": "#962D82", + "Network-based IDS/IPS": "#1F78C1", + "Operating System": "#1F78C1", + "VPN": "#EAB839" + } + } + }, + "gridData": { + "h": 12, + "i": "16", + "w": 16, + "x": 32, + "y": 20 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "17", + "w": 48, + "x": 0, + "y": 52 + }, + "panelIndex": "17", + "panelRefName": "panel_17", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 16, + "i": "18", + "w": 24, + "x": 0, + "y": 76 + }, + "panelIndex": "18", + "panelRefName": "panel_18", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "19", + "w": 24, + "x": 24, + "y": 76 + }, + "panelIndex": "19", + "panelRefName": "panel_19", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "20", + "w": 8, + "x": 40, + "y": 4 + }, + "panelIndex": "20", + "panelRefName": "panel_20", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "21", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "21", + "panelRefName": "panel_21", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapCenter": [ + -0.3515602939922709, + 0 + ], + "mapZoom": 1 + }, + "gridData": { + "h": 24, + "i": "24", + "w": 24, + "x": 0, + "y": 92 + }, + "panelIndex": "24", + "panelRefName": "panel_24", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapCenter": [ + -0.3515602939922709, + 0 + ], + "mapZoom": 1 + }, + "gridData": { + "h": 24, + "i": "25", + "w": 24, + "x": 24, + "y": 92 + }, + "panelIndex": "25", + "panelRefName": "panel_25", + "type": "visualization", + "version": "7.3.0" + } + ], + "refreshInterval": { + "display": "Off", + "pause": false, + "value": 0 + }, + "timeFrom": "now-24h", + "timeRestore": true, + "timeTo": "now", + "title": "[Filebeat CEF] Network Overview Dashboard", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "dd0bc9af-2e89-4150-9b42-62517ea56b71", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "f5258de9-71f7-410f-b713-201007f77470", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "0abfc226-535b-45a2-b534-e9bc87e5584f", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "a97e3628-022b-46cf-8f29-a73cf9bb4e26", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "499f50ba-2f84-4f7c-9021-73a4efc47921", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "d061c7a9-7f92-4bf4-b35c-499b9f4b987a", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "b1002b5c-08fc-4bbe-b9a0-6243a8637e60", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "df056709-2deb-4363-ae7a-b0148ea456c6", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "e89a64e8-928c-41fc-8745-3c8157b21cdb", + "name": "13:panel_13", + "type": "visualization" + }, + { + "id": "a729c249-8d34-4eb1-bbb0-5d25cf224114", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "3c19f138-2ab3-4ecb-bb1b-86fb90158042", + "name": "16:panel_16", + "type": "visualization" + }, + { + "id": "e513c269-350c-40c3-ac20-16c5782103b8", + "name": "17:panel_17", + "type": "visualization" + }, + { + "id": "8f6075c5-f525-4173-92a4-3a56e96e362d", + "name": "18:panel_18", + "type": "visualization" + }, + { + "id": "013ff153-7b80-490b-8fec-6e56cba785ed", + "name": "19:panel_19", + "type": "visualization" + }, + { + "id": "33747d52-ec4c-4d91-86d8-fbdf9b9c82db", + "name": "20:panel_20", + "type": "visualization" + }, + { + "id": "c394e650-b16c-407c-b305-bd409d69d433", + "name": "21:panel_21", + "type": "visualization" + }, + { + "id": "8b31af8b-522e-41fe-b9d6-9a3451b54108", + "name": "24:panel_24", + "type": "visualization" + }, + { + "id": "4fccee0c-7193-4aa8-919f-0b0b0a16d013", + "name": "25:panel_25", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-os-activity.ndjson b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-os-activity.ndjson deleted file mode 100644 index 71a695b06731..000000000000 --- a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-os-activity.ndjson +++ /dev/null @@ -1,18 +0,0 @@ -{"attributes":{"columns":["cef.device.vendor","cef.device.product","message","cef.device.event_class_id","cef.extensions.deviceEventCategory","source.user.name","destination.user.name","destination.domain","cef.extensions.categoryBehavior","cef.extensions.categoryOutcome","cef.extensions.sourceNtDomain","cef.extensions.destinationNtDomain"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"cef.extensions.categoryDeviceGroup:\\\"/Operating System\\\"\"}}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Endpoint - OS Events [Filebeat CEF]","version":1},"coreMigrationVersion":"8.0.0","id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Source Users by Event Type and Destination Users [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Users\",\"field\":\"source.user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Event Types\",\"field\":\"cef.extensions.categoryBehavior\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination User Names\",\"field\":\"destination.user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Source Users\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Event Types\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"},{\"data\":{\"id\":\"4\",\"label\":\"Destination User Names\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"},{\"id\":\"ValueAxis-2\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"RightAxis-1\",\"position\":\"right\",\"scale\":{\"mode\":\"normal\",\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}]},\"title\":\"Source Users by Event Type and Destination Users [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"59ad829b-12b8-4256-95a5-e7078eda628b","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ2OTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Endpoint OS Metrics Overview [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Events\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Devices\",\"field\":\"observer.hostname\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"Event Types\",\"field\":\"cef.extensions.categoryBehavior\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"Event Outcomes\",\"field\":\"cef.extensions.categoryOutcome\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"30\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"20\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Endpoint OS Metrics Overview [Filebeat CEF]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"158d809a-89db-4ffa-88a1-eb5c4bf58d50","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ2OTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Behaviors by Outcome [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 9,000\": \"rgb(255,255,204)\", \"18,000 - 27,000\": \"rgb(254,225,135)\", \"27,000 - 36,000\": \"rgb(254,201,101)\", \"36,000 - 45,000\": \"rgb(254,171,73)\", \"45,000 - 54,000\": \"rgb(253,141,60)\", \"54,000 - 63,000\": \"rgb(252,91,46)\", \"63,000 - 72,000\": \"rgb(237,47,34)\", \"72,000 - 81,000\": \"rgb(212,16,32)\", \"81,000 - 90,000\": \"rgb(176,0,38)\", \"9,000 - 18,000\": \"rgb(255,241,170)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Event Type\",\"field\":\"cef.extensions.categoryBehavior\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Event Outcome\",\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"colorsNumber\":10,\"colorsRange\":[],\"enableHover\":true,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"#555\",\"rotate\":0,\"show\":false},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Top 10 Behaviors by Outcome [Filebeat CEF]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"8.0.0","id":"77ee0e91-010b-4897-b483-7e9a907d2afe","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Outcomes [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Operating System\\\"\"},\"id\":\"74716d29-91c6-4095-bc7d-7f6700f12b1f\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"932c5de4-f841-4f27-99e4-60d95d3aa16c\",\"label\":\"Event Outcomes\",\"line_width\":\"3\",\"metrics\":[{\"id\":\"4c263b6d-8117-43c6-b83f-5c4145f43cfc\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":1,\"split_filters\":[{\"color\":\"rgba(244,78,59,1)\",\"filter\":{\"query\":\"cef.extensions.categoryOutcome:\\\"/Failure\\\"\",\"language\":\"lucene\"},\"id\":\"94371b84-a7aa-4824-b4d1-217ecbe725a5\",\"label\":\"Failure\"},{\"color\":\"rgba(104,188,0,1)\",\"filter\":{\"query\":\"cef.extensions.categoryOutcome:\\\"/Success\\\"\",\"language\":\"lucene\"},\"id\":\"31564794-9278-4f2e-bb20-557f5cfbea79\",\"label\":\"Success\"},{\"color\":\"rgba(251,158,0,1)\",\"filter\":{\"query\":\"cef.extensions.categoryOutcome:\\\"/Attempt\\\"\",\"language\":\"lucene\"},\"id\":\"10c0f919-0853-41b5-94b4-2e39932e7aa0\",\"label\":\"Attempt\"}],\"split_mode\":\"filters\",\"stacked\":\"none\",\"terms_field\":\"cef.extensions.categoryOutcome\",\"terms_size\":\"3\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"left\",\"chart_type\":\"bar\",\"color\":\"rgba(104,182,204,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c9eca9d0-c2e0-45e6-a3ce-f158c40fdd74\",\"label\":\"Event Count\",\"line_width\":1,\"metrics\":[{\"id\":\"6d8513ca-cc72-4b27-91b6-6b689558cdcb\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":1,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events by Outcomes [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0f4028b2-3dc2-4cb6-80d8-285c847a02a1","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 20 Behaviors by Outcome [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Event Behavior\",\"field\":\"cef.extensions.categoryBehavior\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Event Outcome\",\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":3},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top 20 Behaviors by Outcome [Filebeat CEF]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"e06d85f2-2da4-41e2-b2ab-f685b64bb3f9","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 15 Event Types by Events [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Event Types\",\"field\":\"cef.extensions.categoryBehavior\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":15},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source Users\",\"field\":\"source.user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination Users\",\"field\":\"destination.user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Source Hosts\",\"field\":\"source.domain\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Destination Hosts\",\"field\":\"destination.domain\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"perPage\":15,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 15 Event Types by Events [Filebeat CEF]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"2726382e-638a-4dcc-94fc-0ffdc0f92048","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 5 Vendors by Product [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"OS Vendor\",\"field\":\"cef.device.vendor\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"OS Product\",\"field\":\"cef.device.product\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top 5 Vendors by Product [Filebeat CEF]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"92aecea0-a632-4a55-bb56-50e4cdaca036","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":" Dashboard Navigation [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)\"},\"title\":\" Dashboard Navigation [Filebeat CEF]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"677891a1-90c4-4273-b126-f0e54689bd76","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Endpoint - OS Average EPS [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"ce9549a0-3af0-4070-b169-4b6d145d4c39\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Operating System\\\"\"},\"gauge_color_rules\":[{\"id\":\"03a2fd72-fc9c-4582-9133-20af36217180\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"94161c6c-4f48-4beb-9d78-f79f29c02a34\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"b4373ffd-9660-4206-afd6-d4867ac7dbdf\",\"label\":\"Event Throughput\",\"line_width\":1,\"metrics\":[{\"id\":\"b1a48389-d799-4eba-8b98-7ee8ef0bb440\",\"type\":\"count\"},{\"field\":\"b1a48389-d799-4eba-8b98-7ee8ef0bb440\",\"id\":\"89f8286e-4aec-4cb4-83ad-b139692edf3d\",\"type\":\"cumulative_sum\"},{\"field\":\"89f8286e-4aec-4cb4-83ad-b139692edf3d\",\"id\":\"1df39e5f-3e98-4ed7-ab08-47f3ca2ee915\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"1df39e5f-3e98-4ed7-ab08-47f3ca2ee915\",\"gamma\":0.3,\"id\":\"f46a6e6e-444f-4c7e-b5eb-e1a59568f2eb\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"offset_time\":\"1m\",\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} / s\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Endpoint - OS Average EPS [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"76c088c3-486e-4420-8840-5ede667edffe","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Events by Source and Destination Users [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Timestamp\",\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source Users\",\"field\":\"source.user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination Users\",\"field\":\"destination.user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Timestamp\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Event Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Source Users\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":3,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"},{\"data\":{\"id\":\"4\",\"label\":\"Destination Users\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":3,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Event Count\"},\"type\":\"value\"},{\"id\":\"ValueAxis-2\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"RightAxis-1\",\"position\":\"right\",\"scale\":{\"mode\":\"normal\",\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}]},\"title\":\"Events by Source and Destination Users [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"5f187dc8-aa7e-4f91-a2d8-1186ce254d00","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Sources by Destinations [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Host\",\"field\":\"source.domain\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Destination Host\",\"field\":\"destination.domain\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top 10 Sources by Destinations [Filebeat CEF]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"316fdc75-7215-4c6b-8e1b-70a097b34e28","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Source Users by Destination Users [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Users\",\"field\":\"source.user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Destination Users\",\"field\":\"destination.user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top 10 Source Users by Destination Users [Filebeat CEF]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"6437e9bb-9ed1-4e2d-bb10-e63ccd35c409","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Destinations [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Hosts\",\"field\":\"destination.domain\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":60,\"minFontSize\":10,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Destinations [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"4a7c10c7-4abd-47b4-b4c3-dee33377fbdf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Destination Users [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Users\",\"field\":\"destination.user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":60,\"minFontSize\":10,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Destination Users [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"acc915fe-b971-4795-9040-3fbfdf62abe1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Sources [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Hosts\",\"field\":\"source.domain\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":60,\"minFontSize\":10,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Sources [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"4e25b5ce-53c3-46fc-b5e5-71d3c52f1956","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Source Users [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Users\",\"field\":\"source.user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":60,\"minFontSize\":10,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Source Users [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"8cd00d20-957d-4663-be4d-ea80b1609586","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"e6cf2383-71f4-4db1-a791-1a7d4f110194","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ3MTMsMV0="} -{"attributes":{"description":"Operating system activity from endpoints.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"lucene\", \"query\": \"*\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":28},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"Count\":\"#64B0C8\",\"Destination User Names\":\"#E24D42\",\"Event Types\":\"#EF843C\"},\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"4\",\"w\":40,\"x\":0,\"y\":4},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":28},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 55k\":\"rgb(255,255,204)\",\"110k - 165k\":\"rgb(254,225,135)\",\"165k - 220k\":\"rgb(254,201,101)\",\"220k - 275k\":\"rgb(254,171,73)\",\"275k - 330k\":\"rgb(253,141,60)\",\"330k - 385k\":\"rgb(252,91,46)\",\"385k - 440k\":\"rgb(237,47,34)\",\"440k - 495k\":\"rgb(212,16,32)\",\"495k - 550k\":\"rgb(176,0,38)\",\"55k - 110k\":\"rgb(255,241,170)\"},\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"7\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":52},\"panelIndex\":\"8\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"/Attempt\":\"#447EBC\",\"/Failure\":\"#E24D42\",\"/Success\":\"#7EB26D\"}},\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":24,\"i\":\"9\",\"w\":24,\"x\":0,\"y\":40},\"panelIndex\":\"9\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"10\",\"w\":24,\"x\":24,\"y\":40},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"11\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"12\",\"w\":8,\"x\":40,\"y\":4},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"13\",\"w\":48,\"x\":0,\"y\":12},\"panelIndex\":\"13\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"Destination Users\":\"#E24D42\",\"Event Count\":\"#64B0C8\"}},\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"14\",\"w\":16,\"x\":32,\"y\":64},\"panelIndex\":\"14\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":24,\"i\":\"15\",\"w\":16,\"x\":32,\"y\":84},\"panelIndex\":\"15\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"16\",\"w\":32,\"x\":0,\"y\":80},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"17\",\"w\":32,\"x\":0,\"y\":100},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"18\",\"w\":32,\"x\":0,\"y\":64},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"19\",\"w\":32,\"x\":0,\"y\":92},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"}]","refreshInterval":{"display":"Off","pause":false,"value":0},"timeFrom":"now-24h","timeRestore":true,"timeTo":"now","title":"[Filebeat CEF] Endpoint OS Activity Dashboard","version":1},"coreMigrationVersion":"8.0.0","id":"9e352900-89c3-4c1b-863e-249e24d0dac9","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"59ad829b-12b8-4256-95a5-e7078eda628b","name":"3:panel_3","type":"visualization"},{"id":"158d809a-89db-4ffa-88a1-eb5c4bf58d50","name":"4:panel_4","type":"visualization"},{"id":"77ee0e91-010b-4897-b483-7e9a907d2afe","name":"5:panel_5","type":"visualization"},{"id":"0f4028b2-3dc2-4cb6-80d8-285c847a02a1","name":"7:panel_7","type":"visualization"},{"id":"e06d85f2-2da4-41e2-b2ab-f685b64bb3f9","name":"8:panel_8","type":"visualization"},{"id":"2726382e-638a-4dcc-94fc-0ffdc0f92048","name":"9:panel_9","type":"visualization"},{"id":"92aecea0-a632-4a55-bb56-50e4cdaca036","name":"10:panel_10","type":"visualization"},{"id":"677891a1-90c4-4273-b126-f0e54689bd76","name":"11:panel_11","type":"visualization"},{"id":"76c088c3-486e-4420-8840-5ede667edffe","name":"12:panel_12","type":"visualization"},{"id":"5f187dc8-aa7e-4f91-a2d8-1186ce254d00","name":"13:panel_13","type":"visualization"},{"id":"316fdc75-7215-4c6b-8e1b-70a097b34e28","name":"14:panel_14","type":"visualization"},{"id":"6437e9bb-9ed1-4e2d-bb10-e63ccd35c409","name":"15:panel_15","type":"visualization"},{"id":"4a7c10c7-4abd-47b4-b4c3-dee33377fbdf","name":"16:panel_16","type":"visualization"},{"id":"acc915fe-b971-4795-9040-3fbfdf62abe1","name":"17:panel_17","type":"visualization"},{"id":"4e25b5ce-53c3-46fc-b5e5-71d3c52f1956","name":"18:panel_18","type":"visualization"},{"id":"8cd00d20-957d-4663-be4d-ea80b1609586","name":"19:panel_19","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:36.211Z","version":"WzQ2OTcsMV0="} diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-overview.ndjson b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-overview.ndjson deleted file mode 100644 index 0995739a1e6e..000000000000 --- a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-endpoint-overview.ndjson +++ /dev/null @@ -1,15 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Endpoint Average EPS [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"85a1c642-9781-430d-b84b-b28cb2a42fb4\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Operating System\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Host\\\" OR cef.extensions.categoryDeviceGroup:\\\"/Application\\\"\"},\"gauge_color_rules\":[{\"id\":\"03a2fd72-fc9c-4582-9133-20af36217180\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"b7a85957-123e-4e25-9e8e-ff7992c9b2b9\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"b4373ffd-9660-4206-afd6-d4867ac7dbdf\",\"label\":\"Event Throughput\",\"line_width\":1,\"metrics\":[{\"id\":\"b1a48389-d799-4eba-8b98-7ee8ef0bb440\",\"type\":\"count\"},{\"field\":\"b1a48389-d799-4eba-8b98-7ee8ef0bb440\",\"id\":\"7c5c44cc-17bd-4206-a100-b8996cd3d11a\",\"type\":\"cumulative_sum\"},{\"field\":\"7c5c44cc-17bd-4206-a100-b8996cd3d11a\",\"id\":\"215c5225-5368-40e6-8fcd-2b0026babba0\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"215c5225-5368-40e6-8fcd-2b0026babba0\",\"gamma\":0.3,\"id\":\"f4dfe09a-e397-4287-ab99-3206516cded3\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} / s\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Endpoint Average EPS [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9457ee67-895f-4b78-a543-268f9687a745","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MTYsMV0="} -{"attributes":{"columns":["cef.extensions.categoryDeviceGroup","cef.extensions.categoryTechnique","cef.extensions.categoryOutcome","cef.extensions.categorySignificance","cef.extensions.categoryObject","cef.extensions.categoryBehavior","cef.extensions.categoryDeviceType"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"cef.extensions.categoryDeviceGroup:\\\"/Operating System\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Host\\\" OR cef.extensions.categoryDeviceGroup:\\\"/Application\\\"\"}}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Endpoint Event Explorer [Filebeat CEF]","version":1},"coreMigrationVersion":"8.0.0","id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Destination Ports by Outcomes [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"destination.port: Descending\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":true,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"value\"}]},\"title\":\"Destination Ports by Outcomes [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"fe7b63d1-dbc7-4376-af7f-ace97a9f2e60","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Outcomes Breakdown [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"colors\": {\"/Attempt\": \"#3F2B5B\", \"/Failure\": \"#BF1B00\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Time\",\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Time\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"value\"}]},\"title\":\"Outcomes Breakdown [Filebeat CEF]\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"89998099-9a39-44cf-beba-5b97f0524cf9","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Device [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Operating System\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Host\\\" OR cef.extensions.categoryDeviceGroup:\\\"/Application\\\"\"},\"id\":\"fd1ffeb6-678e-4163-9421-6a164fd59048\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,37,37,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"6a10f77d-4e26-4b27-9c19-f1b0029b075b\",\"label\":\"Events\",\"line_width\":\"3\",\"metrics\":[{\"id\":\"845b9164-65f4-4599-b9cc-8d91b6ba8d83\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"845b9164-65f4-4599-b9cc-8d91b6ba8d83\",\"gamma\":0.3,\"id\":\"59675e84-1a8e-41df-9f63-875109bd795a\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":1,\"split_filters\":[{\"color\":\"rgba(244,78,59,1)\",\"filter\":{\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Operating System\\\" \",\"language\":\"lucene\"},\"id\":\"d9a580c3-eb83-4d20-a391-0934d7df8837\",\"label\":\"Operating System\"},{\"color\":\"rgba(254,146,0,1)\",\"filter\":{\"query\":\" cef.extensions.categoryDeviceGroup:\\\"/IDS/Host\\\"\",\"language\":\"lucene\"},\"id\":\"9ce8be14-6191-4c9a-a679-e3992fdab8d2\",\"label\":\"Host IDS\"},{\"color\":\"rgba(252,220,0,1)\",\"filter\":{\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Application\\\"\",\"language\":\"lucene\"},\"id\":\"262ecd54-a042-4bfb-b489-d7db8431c36e\",\"label\":\"Application\"}],\"split_mode\":\"filters\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"left\",\"chart_type\":\"bar\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"92e98952-8e25-472f-abb5-05a7d9b830ea\",\"label\":\"Moving Average by Device HostNames\",\"line_width\":1,\"metrics\":[{\"id\":\"3df841a9-5997-4a1a-ad8f-69620d23e65b\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"3df841a9-5997-4a1a-ad8f-69620d23e65b\",\"gamma\":0.3,\"id\":\"9765367a-0fc2-45ba-88a8-e87991210edd\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":1,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"observer.hostname\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events by Device [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"718b074e-3dd1-4d03-ba11-7f869cdcd703","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Destination Port [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Destination Port [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"c5120e27-1f8c-41e3-83ee-78ec4d470c2f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Endpoint Metrics Overview [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Devices\",\"field\":\"observer.hostname\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Port\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"30\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"12\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Endpoint Metrics Overview [Filebeat CEF]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"7454c034-c5f3-48fe-8fce-ef4385c80350","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Outcomes by Device Type [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"colors\": {\"/Failure\": \"#BF1B00\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"cef.extensions.categoryDeviceType\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"cef.extensions.categoryDeviceType: Descending\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"value\"}]},\"title\":\"Outcomes by Device Type [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"118af639-1f37-4541-a960-5a3ff0613e0e","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 5 Source Countries [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.geo.country_iso_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 5 Source Countries [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"74d2c072-6dfd-4249-8e63-dc7b0cf3c960","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Device Types by Vendor [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"exclude\":\"Network-based IDS/IPS\",\"field\":\"cef.extensions.categoryDeviceType\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"exclude\":\"\",\"field\":\"cef.device.vendor\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Device Types by Vendor [Filebeat CEF]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"f57734dd-0f32-42b4-94dd-5d597f6735e1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Source Countries by Event [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Events\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.geo.country_iso_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":35},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source Addresses\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination Addresses\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Destination Ports\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 10 Source Countries by Event [Filebeat CEF]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"295986d4-d2ea-4541-8e82-7dc95c0cd830","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Outcomes by User Names [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"colors\": {\"/Informational\": \"#7EB26D\", \"/Informational/Warning\": \"#EF843C\", \"/Success\": \"#64B0C8\", \"Anti-Virus\": \"#B7DBAB\", \"Host-based IDS/IPS\": \"#629E51\", \"Log Consolidator\": \"#E0F9D7\", \"Operating System\": \"#3F6833\", \"Recon\": \"#BF1B00\", \"Security Mangement\": \"#CFFAFF\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"exclude\":\"Network-based IDS/IPS\",\"field\":\"cef.extensions.categoryDeviceType\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"field\":\"destination.user.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Outcomes by User Names [Filebeat CEF]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"5bf6e4dc-4273-4e1e-a803-04347eebeb53","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":" Dashboard Navigation [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)\"},\"title\":\" Dashboard Navigation [Filebeat CEF]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"677891a1-90c4-4273-b126-f0e54689bd76","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top Destination Locations by Event [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"destination.geo.location\",\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":0,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Shaded Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Top Destination Locations by Event [Filebeat CEF]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"aaa80503-6d96-4a33-806f-b8a10aefe696","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MjksMV0="} -{"attributes":{"description":"Summary of endpoint event data.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"lucene\", \"query\": \"*\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1\",\"w\":8,\"x\":40,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":32},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"/Attempt\":\"#0A50A1\",\"/Failure\":\"#BF1B00\",\"/Success\":\"#629E51\"}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":32},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"/Attempt\":\"#0A50A1\",\"/Failure\":\"#BF1B00\",\"/Success\":\"#629E51\"}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":12},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":44},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"7\",\"w\":40,\"x\":0,\"y\":4},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"8\",\"w\":24,\"x\":0,\"y\":44},\"panelIndex\":\"8\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"/Attempt\":\"#0A50A1\",\"/Failure\":\"#BF1B00\",\"/Success\":\"#629E51\"}},\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":20,\"i\":\"9\",\"w\":48,\"x\":0,\"y\":76},\"panelIndex\":\"9\",\"embeddableConfig\":{\"columns\":[\"cef.extensions.categoryDeviceGroup\",\"cef.extensions.categoryTechnique\",\"cef.extensions.categoryOutcome\",\"cef.extensions.categorySignificance\",\"cef.extensions.categoryObject\",\"cef.extensions.categoryBehavior\",\"cef.extensions.categoryDeviceType\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"10\",\"w\":24,\"x\":24,\"y\":56},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"11\",\"w\":24,\"x\":0,\"y\":20},\"panelIndex\":\"11\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"Anti-Virus\":\"#EAB839\",\"Database\":\"#629E51\",\"Host-based IDS/IPS\":\"#E0752D\",\"Operating System\":\"#BF1B00\",\"Security Mangement\":\"#64B0C8\"}},\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"12\",\"w\":24,\"x\":0,\"y\":56},\"panelIndex\":\"12\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"14\",\"w\":24,\"x\":24,\"y\":20},\"panelIndex\":\"14\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"/Attempt\":\"#0A50A1\",\"/Failure\":\"#BF1B00\",\"/Informational\":\"#7EB26D\",\"/Informational/Warning\":\"#EF843C\",\"/Success\":\"#629E51\",\"Anti-Virus\":\"#EAB839\",\"Database\":\"#629E51\",\"Host-based IDS/IPS\":\"#E0752D\",\"Log Consolidator\":\"#E0F9D7\",\"Operating System\":\"#BF1B00\",\"Recon\":\"#BF1B00\",\"Security Mangement\":\"#64B0C8\"}},\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"15\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"17\",\"w\":24,\"x\":24,\"y\":64},\"panelIndex\":\"17\",\"embeddableConfig\":{\"mapCenter\":[12.897489183755892,0],\"mapZoom\":1,\"enhancements\":{}},\"panelRefName\":\"panel_17\"}]","refreshInterval":{"display":"Off","pause":false,"value":0},"timeFrom":"now-24h","timeRestore":true,"timeTo":"now","title":"[Filebeat CEF] Endpoint Overview Dashboard","version":1},"coreMigrationVersion":"8.0.0","id":"c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"9457ee67-895f-4b78-a543-268f9687a745","name":"1:panel_1","type":"visualization"},{"id":"fe7b63d1-dbc7-4376-af7f-ace97a9f2e60","name":"2:panel_2","type":"visualization"},{"id":"89998099-9a39-44cf-beba-5b97f0524cf9","name":"3:panel_3","type":"visualization"},{"id":"718b074e-3dd1-4d03-ba11-7f869cdcd703","name":"5:panel_5","type":"visualization"},{"id":"c5120e27-1f8c-41e3-83ee-78ec4d470c2f","name":"6:panel_6","type":"visualization"},{"id":"7454c034-c5f3-48fe-8fce-ef4385c80350","name":"7:panel_7","type":"visualization"},{"id":"118af639-1f37-4541-a960-5a3ff0613e0e","name":"8:panel_8","type":"visualization"},{"id":"5cede2d3-20fe-4140-add4-4c4f841b71a2","name":"9:panel_9","type":"search"},{"id":"74d2c072-6dfd-4249-8e63-dc7b0cf3c960","name":"10:panel_10","type":"visualization"},{"id":"f57734dd-0f32-42b4-94dd-5d597f6735e1","name":"11:panel_11","type":"visualization"},{"id":"295986d4-d2ea-4541-8e82-7dc95c0cd830","name":"12:panel_12","type":"visualization"},{"id":"5bf6e4dc-4273-4e1e-a803-04347eebeb53","name":"14:panel_14","type":"visualization"},{"id":"677891a1-90c4-4273-b126-f0e54689bd76","name":"15:panel_15","type":"visualization"},{"id":"aaa80503-6d96-4a33-806f-b8a10aefe696","name":"17:panel_17","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:37.252Z","version":"WzQ3MTUsMV0="} diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-microsoft-dns.ndjson b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-microsoft-dns.ndjson deleted file mode 100644 index 40f42c8be190..000000000000 --- a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-microsoft-dns.ndjson +++ /dev/null @@ -1,15 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DNS - Event Throughput [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"3eadd451-5033-423f-88e3-814cc5e50b50\"}],\"bar_color_rules\":[{\"id\":\"fa374805-d1ca-4261-b723-9b482a7dd43a\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.device.product:\\\"DNS Trace Log\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"4d957654-cc7e-4ef3-8b29-61c0aeadd51a\",\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"73968651-c41e-473e-a153-a025f49d1a1b\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"90d7621e-3265-4fe8-8882-8df9605ea659\",\"label\":\"Event Throughput\",\"line_width\":1,\"metrics\":[{\"id\":\"ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba\",\"type\":\"count\"},{\"field\":\"ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba\",\"id\":\"cf3e6b1c-4136-4868-913e-0e82d88a8c9c\",\"type\":\"cumulative_sum\"},{\"field\":\"cf3e6b1c-4136-4868-913e-0e82d88a8c9c\",\"id\":\"0e407985-9ae4-4c1f-bb0e-16cd9bef7611\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"0e407985-9ae4-4c1f-bb0e-16cd9bef7611\",\"gamma\":0.3,\"id\":\"48026f85-83c8-40e6-aff4-71f3bd6c77c9\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} / s\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"DNS - Event Throughput [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7e2b0659-0760-4182-8b29-3ee69f26bc6f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzEsMV0="} -{"attributes":{"columns":["cef.device.vendor","cef.device.product","cef.extensions.categoryBehavior","cef.extensions.categoryOutcome","destination.ip","destination.port","destination.domain","cef.device.event_class_id","cef.extensions.deviceCustomString1Label","cef.extensions.deviceCustomString1","cef.extensions.deviceCustomString2Label","cef.extensions.deviceCustomString2","cef.extension.cef.extension.deviceCustomString3Label","cef.extension.deviceCustomString3","cef.extension.cef.extension.deviceCustomString4Label","cef.extension.deviceCustomString4","cef.extensions.deviceEventCategory","event.severity","source.ip","source.port","network.transport","source.bytes","url.original"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"cef.device.product:\\\"DNS Trace Log\\\"\"}}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Microsoft DNS Events [Filebeat CEF]","version":1},"coreMigrationVersion":"8.0.0","id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3NDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"DNS Metrics Overview [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Threads\",\"field\":\"cef.extensions.deviceCustomString1\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"OpCodes\",\"field\":\"cef.extensions.deviceCustomString2\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Activity Types\",\"field\":\"cef.device.event_class_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"32\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"type\":\"gauge\"},\"title\":\"DNS Metrics Overview [Filebeat CEF]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"249e2737-b41f-4115-b303-88bc9d279655","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top Destinations by Traffic Size [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 18k\": \"rgb(247,251,255)\", \"108k - 126k\": \"rgb(74,152,201)\", \"126k - 144k\": \"rgb(46,126,188)\", \"144k - 162k\": \"rgb(23,100,171)\", \"162k - 180k\": \"rgb(8,74,145)\", \"18k - 36k\": \"rgb(227,238,249)\", \"36k - 54k\": \"rgb(208,225,242)\", \"54k - 72k\": \"rgb(182,212,233)\", \"72k - 90k\": \"rgb(148,196,223)\", \"90k - 108k\": \"rgb(107,174,214)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"lucene\",\"query\":\"deviceDirection:\\\"0\\\"\"},\"label\":\"Inbound\"},{\"input\":{\"language\":\"lucene\",\"query\":\"deviceDirection:\\\"1\\\"\"},\"label\":\"Outbound\"}]},\"schema\":\"segment\",\"type\":\"filters\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"destination.domain\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Blues\",\"colorsNumber\":10,\"colorsRange\":[{\"from\":0,\"to\":null}],\"enableHover\":true,\"invertColors\":false,\"legendPosition\":\"top\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"#555\",\"rotate\":0,\"show\":false},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Top Destinations by Traffic Size [Filebeat CEF]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"8.0.0","id":"566d8b4e-ec5c-4b8b-bd68-3cc9cb236110","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Event Types [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"cef.device.event_class_id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":50,\"minFontSize\":12,\"orientation\":\"single\",\"scale\":\"square root\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Event Types [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"759e8dc3-0fdb-4cb6-ba47-87a2e2ff8df3","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Event Types by Size [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"colors\": {\"Count\": \"#64B0C8\", \"Total (Bytes)\": \"#E24D42\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Event Type\",\"field\":\"cef.device.event_class_id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Total (Bytes)\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"rotate\":75,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Event Type\"},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"},\"valueAxis\":null},\"legendPosition\":\"right\",\"orderBucketsBySum\":false,\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Total (Bytes)\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":3,\"mode\":\"normal\",\"show\":true,\"showCircles\":false,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"}],\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"},{\"id\":\"ValueAxis-2\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"RightAxis-1\",\"position\":\"right\",\"scale\":{\"mode\":\"normal\",\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Total (Bytes)\"},\"type\":\"value\"}]},\"title\":\"Event Types by Size [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"fcf798a8-db8f-4492-827b-8fa7581108a9","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events Types by Severity [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.device.product:\\\"DNS Trace Log\\\"\"},\"id\":\"db54ebce-9dd2-4a1e-b476-b3ddb9a9024e\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"81da76ca-1112-4d91-82f4-c66cd3156a84\",\"label\":\"Cumulative Bytes\",\"line_width\":\"3\",\"metrics\":[{\"field\":\"source.bytes\",\"id\":\"521d560c-321a-4410-9eb3-2b2bf3f4efee\",\"type\":\"count\"}],\"point_size\":\"0\",\"seperate_axis\":1,\"split_filters\":[{\"color\":\"rgba(244,78,59,1)\",\"filter\":{\"query\":\"(event.severity:\\\"2\\\" OR event.severity:\\\"3\\\" OR event.severity:\\\"5\\\" OR event.severity:\\\"16\\\" OR cef.extension.deviceCustomString4:\\\"SERVFAIL\\\" OR cef.extension.deviceCustomString4:\\\"NXDOMAIN\\\" OR cef.extension.deviceCustomString4:\\\"REFUSED\\\" OR cef.extension.deviceCustomString4:\\\"BADVERS\\\" OR cef.extension.deviceCustomString4:\\\"BADSIG\\\")\",\"language\":\"lucene\"},\"id\":\"3f31a7e4-acf3-4f2d-8b7d-e30522325b2a\",\"label\":\"HIGH\"},{\"color\":\"rgba(254,146,0,1)\",\"filter\":{\"query\":\"(event.severity:\\\"1\\\" OR event.severity:\\\"4\\\" OR event.severity:\\\"6\\\" OR event.severity:\\\"7\\\" OR event.severity:\\\"8\\\" OR event.severity:\\\"9\\\" OR event.severity:\\\"10\\\" OR event.severity:\\\"17\\\" OR event.severity:\\\"18\\\" OR event.severity:\\\"19\\\" OR event.severity:\\\"20\\\" OR event.severity:\\\"21\\\" OR event.severity:\\\"22\\\" OR cef.extension.deviceCustomString4:\\\"Error\\\" OR cef.extension.deviceCustomString4:\\\"ERROR\\\" OR cef.extension.deviceCustomString4:\\\"Warning\\\" OR cef.extension.deviceCustomString4:\\\"WARNING\\\" OR cef.extension.deviceCustomString4:\\\"FORMERR\\\" OR cef.extension.deviceCustomString4:\\\"NOTIMP\\\" OR cef.extension.deviceCustomString4:\\\"YXDOMAIN\\\" OR cef.extension.deviceCustomString4:\\\"YXRRSET\\\" OR cef.extension.deviceCustomString4:\\\"NXRRSET\\\" OR cef.extension.deviceCustomString4:\\\"NOTAUTH\\\" OR cef.extension.deviceCustomString4:\\\"NOTZONE\\\" OR cef.extension.deviceCustomString4:\\\"BADKEY\\\" OR cef.extension.deviceCustomString4:\\\"BADTIME\\\" OR cef.extension.deviceCustomString4:\\\"BADMODE\\\" OR cef.extension.deviceCustomString4:\\\"BADNAME\\\" OR cef.extension.deviceCustomString4:\\\"BADALG\\\" OR cef.extension.deviceCustomString4:\\\"BADTRUNC\\\")\",\"language\":\"lucene\"},\"id\":\"7949d31b-8aae-433a-b7cf-6939a8728cc9\",\"label\":\"MEDIUM\"},{\"color\":\"rgba(252,220,0,1)\",\"filter\":{\"query\":\"(NOT (event.severity:\\\"2\\\" OR event.severity:\\\"3\\\" OR event.severity:\\\"5\\\" OR event.severity:\\\"16\\\" OR cef.extension.deviceCustomString4:\\\"SERVFAIL\\\" OR cef.extension.deviceCustomString4:\\\"NXDOMAIN\\\" OR cef.extension.deviceCustomString4:\\\"REFUSED\\\" OR cef.extension.deviceCustomString4:\\\"BADVERS\\\" OR cef.extension.deviceCustomString4:\\\"BADSIG\\\" OR event.severity:\\\"1\\\" OR event.severity:\\\"4\\\" OR event.severity:\\\"6\\\" OR event.severity:\\\"7\\\" OR event.severity:\\\"8\\\" OR event.severity:\\\"9\\\" OR event.severity:\\\"10\\\" OR event.severity:\\\"17\\\" OR event.severity:\\\"18\\\" OR event.severity:\\\"19\\\" OR event.severity:\\\"20\\\" OR event.severity:\\\"21\\\" OR event.severity:\\\"22\\\" OR cef.extension.deviceCustomString4:\\\"Error\\\" OR cef.extension.deviceCustomString4:\\\"ERROR\\\" OR cef.extension.deviceCustomString4:\\\"Warning\\\" OR cef.extension.deviceCustomString4:\\\"WARNING\\\" OR cef.extension.deviceCustomString4:\\\"FORMERR\\\" OR cef.extension.deviceCustomString4:\\\"NOTIMP\\\" OR cef.extension.deviceCustomString4:\\\"YXDOMAIN\\\" OR cef.extension.deviceCustomString4:\\\"YXRRSET\\\" OR cef.extension.deviceCustomString4:\\\"NXRRSET\\\" OR cef.extension.deviceCustomString4:\\\"NOTAUTH\\\" OR cef.extension.deviceCustomString4:\\\"NOTZONE\\\" OR cef.extension.deviceCustomString4:\\\"BADKEY\\\" OR cef.extension.deviceCustomString4:\\\"BADTIME\\\" OR cef.extension.deviceCustomString4:\\\"BADMODE\\\" OR cef.extension.deviceCustomString4:\\\"BADNAME\\\" OR cef.extension.deviceCustomString4:\\\"BADALG\\\" OR cef.extension.deviceCustomString4:\\\"BADTRUNC\\\"))\",\"language\":\"lucene\"},\"id\":\"d2627211-5f9e-4c65-8a47-1cd6f085939d\",\"label\":\"LOW\"}],\"split_mode\":\"filters\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a5fda184-fdd6-4221-ab59-492eab162f0a\",\"label\":\"Count by Event Type\",\"line_width\":1,\"metrics\":[{\"id\":\"e147ba1c-b13a-496f-9841-b99ddee81c5a\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cef.device.event_class_id\",\"terms_size\":\"20\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events Types by Severity [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f0e60404-ddf4-4b46-8e45-e28c4fb6d60d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Destinations by Size [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destinations\",\"field\":\"destination.domain\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Sources\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Count\"},\"schema\":\"metric\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 10 Destinations by Size [Filebeat CEF]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"1b9cc5b7-7747-49de-96b1-a4bc7f675716","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":" Dashboard Navigation [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)\"},\"title\":\" Dashboard Navigation [Filebeat CEF]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"677891a1-90c4-4273-b126-f0e54689bd76","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Sources by Size [Filebeat CEF]","uiStateJSON":"{\"P-11\": {\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}, \"P-13\": {\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}, \"P-2\": {\"mapCenter\": [-0.17578097424708533, 0], \"mapZoom\": 0}, \"P-3\": {\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}, \"P-4\": {\"mapCenter\": [-0.17578097424708533, 0], \"mapZoom\": 0}, \"P-5\": {\"vis\": {\"defaultColors\": {\"0 - 18,000\": \"rgb(247,251,255)\", \"108,000 - 126,000\": \"rgb(74,152,201)\", \"126,000 - 144,000\": \"rgb(46,126,188)\", \"144,000 - 162,000\": \"rgb(23,100,171)\", \"162,000 - 180,000\": \"rgb(8,74,145)\", \"18,000 - 36,000\": \"rgb(227,238,249)\", \"36,000 - 54,000\": \"rgb(208,225,242)\", \"54,000 - 72,000\": \"rgb(182,212,233)\", \"72,000 - 90,000\": \"rgb(148,196,223)\", \"90,000 - 108,000\": \"rgb(107,174,214)\"}, \"legendOpen\": false}}, \"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Sources\",\"field\":\"source.domain\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destinations\",\"field\":\"destination.domain\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Count\"},\"schema\":\"metric\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 10 Sources by Size [Filebeat CEF]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"26a65f68-d7a6-4b47-befc-c5a6819bb91b","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Direction [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.device.product:\\\"DNS Trace Log\\\"\"},\"id\":\"be556a57-cd1c-496c-8714-0bd210947c85\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":\"0.2\",\"filter\":{\"language\":\"lucene\",\"query\":\"device\"},\"formatter\":\"number\",\"id\":\"9aae7344-9de9-4378-b21d-296cb964f93b\",\"label\":\"Inbound Requests\",\"line_width\":1,\"metrics\":[{\"id\":\"1cd0b964-45cf-408e-a7e4-e26955f8a3b0\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"rgba(0,156,224,1)\",\"filter\":{\"language\":\"lucene\",\"query\":\"deviceDirection:\\\"0\\\"\"},\"id\":\"f860f6e0-fbd4-4949-8046-6300322dfe84\",\"label\":\"Inbound Requests\"}],\"split_mode\":\"filters\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"ed1abe18-e01b-4202-9db4-06fda10692e0\",\"label\":\"Outbound Requests\",\"line_width\":1,\"metrics\":[{\"id\":\"cfbcfc79-394b-4ec0-a2c2-7a47177d6469\",\"type\":\"count\"},{\"id\":\"6bc37118-ddac-41ec-85b3-9db7e1b3636b\",\"script\":\"params.outbound > 0 ? params.outbound * -1 : 0\",\"type\":\"calculation\",\"variables\":[{\"field\":\"cfbcfc79-394b-4ec0-a2c2-7a47177d6469\",\"id\":\"f73f4f22-03d5-446a-b031-04eee531e3cc\",\"name\":\"outbound\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"rgba(211,49,21,1)\",\"filter\":{\"query\":\"deviceDirection:\\\"1\\\"\",\"language\":\"lucene\"},\"id\":\"a9c50e1b-8f11-4bc2-9077-bb8870ed0b62\",\"label\":\"Outbound Requests\"}],\"split_mode\":\"filters\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events by Direction [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"16aef3e9-e33b-4bab-b32f-d8c5b1263ac0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3NDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Size [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.device.product:\\\"DNS Trace Log\\\"\"},\"id\":\"6e634117-6b30-411c-b74c-75510befe42f\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\"deviceDirection:\\\"0\\\"\"},\"formatter\":\"bytes\",\"id\":\"28b1fb5b-0f16-4519-b901-4dd2dcc39915\",\"label\":\"Inbound Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"source.bytes\",\"id\":\"f613f33f-6459-4e46-a3a0-c36c48c46b2e\",\"type\":\"sum\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"filter\":{\"language\":\"lucene\",\"query\":\"deviceDirection:\\\"1\\\"\"},\"formatter\":\"bytes\",\"id\":\"5a5c2529-4990-4006-b039-c94069ff6b7e\",\"label\":\"Outbound Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"source.bytes\",\"id\":\"b69501e7-56d5-4c38-81d1-34d778c81e11\",\"type\":\"sum\"},{\"id\":\"0aaab374-5845-44ab-94f5-ac4fab25c287\",\"script\":\"params.outbound_bytes >= 0 ? params.outbound_bytes * -1 : 0\",\"type\":\"calculation\",\"variables\":[{\"field\":\"b69501e7-56d5-4c38-81d1-34d778c81e11\",\"id\":\"23b8c41c-0e98-4ace-8bca-3593e46cd955\",\"name\":\"outbound_bytes\"}]}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events by Size [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f3c573ad-2c16-4de5-9ec3-0a47141d4fa0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3NDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top Destinations by Events [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"destination.geo.location\",\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":0,\"heatMinOpacity\":0.1,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Shaded Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Top Destinations by Events [Filebeat CEF]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"1b521f56-8089-433f-88f7-56aba867e07d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3NDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top Sources by Events [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":0,\"heatMinOpacity\":0.1,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Shaded Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Top Sources by Events [Filebeat CEF]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"581a296e-e34a-48f1-93e4-fc4bdadfc68d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"f85a3444-8a43-4e46-b872-4e44bc25d0f3","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3NDMsMV0="} -{"attributes":{"description":"Overview of Microsoft DNS activity.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"lucene\", \"query\": \"*\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1\",\"w\":8,\"x\":40,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"3\",\"w\":40,\"x\":0,\"y\":4},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":32},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 18k\":\"rgb(247,251,255)\",\"108k - 126k\":\"rgb(74,152,201)\",\"126k - 144k\":\"rgb(46,126,188)\",\"144k - 162k\":\"rgb(23,100,171)\",\"162k - 180k\":\"rgb(8,74,145)\",\"18k - 36k\":\"rgb(227,238,249)\",\"36k - 54k\":\"rgb(208,225,242)\",\"54k - 72k\":\"rgb(182,212,233)\",\"72k - 90k\":\"rgb(148,196,223)\",\"90k - 108k\":\"rgb(107,174,214)\"},\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":48},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":32},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"9\",\"w\":48,\"x\":0,\"y\":12},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"11\",\"w\":24,\"x\":24,\"y\":56},\"panelIndex\":\"11\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"12\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"13\",\"w\":24,\"x\":0,\"y\":56},\"panelIndex\":\"13\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"14\",\"w\":24,\"x\":0,\"y\":20},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"15\",\"w\":24,\"x\":24,\"y\":20},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"16\",\"w\":24,\"x\":24,\"y\":72},\"panelIndex\":\"16\",\"embeddableConfig\":{\"mapCenter\":[12.211180191503997,0],\"mapZoom\":1,\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"17\",\"w\":24,\"x\":0,\"y\":72},\"panelIndex\":\"17\",\"embeddableConfig\":{\"mapCenter\":[-0.17578097424708533,0],\"mapZoom\":1,\"enhancements\":{}},\"panelRefName\":\"panel_17\"}]","refreshInterval":{"display":"Off","pause":false,"value":0},"timeFrom":"now-24h","timeRestore":true,"timeTo":"now","title":"[Filebeat CEF] Microsoft DNS Overview","version":1},"coreMigrationVersion":"8.0.0","id":"56428e01-0c47-4770-8ba4-9345a029ea41","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"7e2b0659-0760-4182-8b29-3ee69f26bc6f","name":"1:panel_1","type":"visualization"},{"id":"249e2737-b41f-4115-b303-88bc9d279655","name":"3:panel_3","type":"visualization"},{"id":"566d8b4e-ec5c-4b8b-bd68-3cc9cb236110","name":"5:panel_5","type":"visualization"},{"id":"759e8dc3-0fdb-4cb6-ba47-87a2e2ff8df3","name":"6:panel_6","type":"visualization"},{"id":"fcf798a8-db8f-4492-827b-8fa7581108a9","name":"7:panel_7","type":"visualization"},{"id":"f0e60404-ddf4-4b46-8e45-e28c4fb6d60d","name":"9:panel_9","type":"visualization"},{"id":"1b9cc5b7-7747-49de-96b1-a4bc7f675716","name":"11:panel_11","type":"visualization"},{"id":"677891a1-90c4-4273-b126-f0e54689bd76","name":"12:panel_12","type":"visualization"},{"id":"26a65f68-d7a6-4b47-befc-c5a6819bb91b","name":"13:panel_13","type":"visualization"},{"id":"16aef3e9-e33b-4bab-b32f-d8c5b1263ac0","name":"14:panel_14","type":"visualization"},{"id":"f3c573ad-2c16-4de5-9ec3-0a47141d4fa0","name":"15:panel_15","type":"visualization"},{"id":"1b521f56-8089-433f-88f7-56aba867e07d","name":"16:panel_16","type":"visualization"},{"id":"581a296e-e34a-48f1-93e4-fc4bdadfc68d","name":"17:panel_17","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:38.313Z","version":"WzQ3MzAsMV0="} diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-overview.ndjson b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-overview.ndjson deleted file mode 100644 index a1484e72eeb3..000000000000 --- a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-overview.ndjson +++ /dev/null @@ -1,19 +0,0 @@ -{"attributes":{"columns":["priority","message","source.ip","source.port","destination.ip","destination.port","network.application","message","cef.extensions.categoryBehavior","cef.extensions.categoryOutcome","deviceAddress","cef.device.product","cef.device.vendor","cef.extensions.categoryDeviceGroup","cef.extensions.categoryDeviceType"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"query\", \"negate\": false, \"type\": \"custom\", \"value\": \"{\\\"terms\\\":{\\\"cef.extensions.categoryDeviceGroup\\\":[\\\"/VPN\\\",\\\"/IDS/Network\\\",\\\"/Firewall\\\"]}}\"}, \"query\": {\"terms\": {\"cef.extensions.categoryDeviceGroup\": [\"/VPN\", \"/IDS/Network\", \"/Firewall\"]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Network Events [Filebeat CEF]","version":1},"coreMigrationVersion":"8.0.0","id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Application Protocols [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.application\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"hideLabel\":false,\"maxFontSize\":72,\"minFontSize\":26,\"orientation\":\"single\",\"scale\":\"square root\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Application Protocols [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"f5258de9-71f7-410f-b713-201007f77470","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Bandwidth Utilization [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color\":null,\"bar_color_rules\":[{\"id\":\"23db5bf6-f787-474e-86ab-76362432e984\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\" \"},\"id\":\"ec53a1d3-213c-4b0f-a074-5005a84cdb83\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"d27f09dc-b07e-493f-a223-a85033ad6548\",\"label\":\"Inbound\",\"line_width\":1,\"metrics\":[{\"field\":\"source.bytes\",\"id\":\"9ce9ec3a-2f11-4935-91b2-531494d2a619\",\"type\":\"sum\"}],\"override_index_pattern\":1,\"point_size\":1,\"seperate_axis\":0,\"series_index_pattern\":\"filebeat-*\",\"series_time_field\":\"@timestamp\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"observer.hostname\",\"terms_order_by\":\"_count\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"b1ef2c75-5916-469d-8790-5b213367a5a0\",\"label\":\"Outbound\",\"line_width\":1,\"metrics\":[{\"field\":\"destination.bytes\",\"id\":\"11b1852f-9b62-4e96-8128-522e6c5bf16d\",\"type\":\"sum\"},{\"id\":\"2a6b00bf-1658-4d02-b4e2-61ad6e4c3a9b\",\"script\":\"params.outbound > 0 ? params.outbound * -1 : 0\",\"type\":\"calculation\",\"variables\":[{\"field\":\"11b1852f-9b62-4e96-8128-522e6c5bf16d\",\"id\":\"c57067f2-2927-41d8-97f4-9f47b3b3bcae\",\"name\":\"outbound\"}]}],\"override_index_pattern\":1,\"point_size\":1,\"seperate_axis\":0,\"series_index_pattern\":\"filebeat-*\",\"series_time_field\":\"@timestamp\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Bandwidth Utilization [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0abfc226-535b-45a2-b534-e9bc87e5584f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Source [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"2fddda5e-d6fc-4581-bbb7-574e1017ae8f\"}],\"bar_color_rules\":[{\"id\":\"23db5bf6-f787-474e-86ab-76362432e984\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceType:\\\"Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\"\"},\"gauge_color_rules\":[{\"id\":\"3ed9a6b9-fd2e-4e0d-bd83-7ad467b3c8a4\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"ec53a1d3-213c-4b0f-a074-5005a84cdb83\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\"\"},\"formatter\":\"number\",\"id\":\"04c44192-1112-4515-a8d9-e9e13215aecf\",\"label\":\"Events\",\"line_width\":\"3\",\"metrics\":[{\"id\":\"c5dbb050-fc10-4a0d-abe0-bc093db6cf0e\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"c5dbb050-fc10-4a0d-abe0-bc093db6cf0e\",\"gamma\":0.3,\"id\":\"e5a48d9d-7834-4da7-8d78-7d4528136b9b\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"sigma\":\"\",\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":\"0\",\"seperate_axis\":1,\"split_filters\":[{\"color\":\"rgba(244,78,59,1)\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\"\"},\"id\":\"0c929603-fc92-4ebc-a963-fe2795417d89\",\"label\":\"Firewall Events\"},{\"color\":\"rgba(254,146,0,1)\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\"\"},\"id\":\"7798827b-87ab-436b-9e62-9fe36143eb9b\",\"label\":\"Intrusion Detection Events\"},{\"color\":\"rgba(252,220,0,1)\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/VPN\\\"\"},\"id\":\"490f7ad7-8218-45f9-85a9-a4dd9ed7da13\",\"label\":\"VPN\"}],\"split_mode\":\"filters\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"observer.hostname\",\"terms_order_by\":null,\"split_color_mode\":\"gradient\"},{\"axis_position\":\"left\",\"chart_type\":\"bar\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"29d6131a-5143-4a64-b597-9538692f0269\",\"label\":\"Moving Average by Device Hosts\",\"line_width\":1,\"metrics\":[{\"id\":\"dc74afdf-64ad-47d6-bbed-114e09d12255\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"dc74afdf-64ad-47d6-bbed-114e09d12255\",\"gamma\":0.3,\"id\":\"87e21aaa-12eb-4213-bb37-41cb19219240\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":1,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"observer.hostname\",\"terms_size\":\"10\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events by Source [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a97e3628-022b-46cf-8f29-a73cf9bb4e26","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Outcome [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"2fddda5e-d6fc-4581-bbb7-574e1017ae8f\"}],\"bar_color_rules\":[{\"bar_color\":null,\"id\":\"23db5bf6-f787-474e-86ab-76362432e984\",\"value\":0}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceType:\\\"Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\"\"},\"gauge_color_rules\":[{\"id\":\"3ed9a6b9-fd2e-4e0d-bd83-7ad467b3c8a4\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"ec53a1d3-213c-4b0f-a074-5005a84cdb83\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"lucene\",\"query\":\"(cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\") AND _exists_:cef.extensions.categoryOutcome\"},\"formatter\":\"number\",\"id\":\"04c44192-1112-4515-a8d9-e9e13215aecf\",\"label\":\"Events\",\"line_width\":\"3\",\"metrics\":[{\"id\":\"c5dbb050-fc10-4a0d-abe0-bc093db6cf0e\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"c5dbb050-fc10-4a0d-abe0-bc093db6cf0e\",\"gamma\":0.3,\"id\":\"c43af7e6-3f06-48a4-a7c3-7ba8bd6214f9\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":\"0\",\"seperate_axis\":0,\"split_filters\":[{\"color\":\"rgba(254,146,0,1)\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\"\"},\"id\":\"4c7aac7d-2749-41b6-8136-40dc8636a7e7\",\"label\":\"Firewall\"}],\"split_mode\":\"filter\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"observer.hostname\",\"terms_order_by\":null,\"split_color_mode\":\"gradient\"},{\"axis_position\":\"left\",\"chart_type\":\"bar\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"1\",\"formatter\":\"number\",\"id\":\"29d6131a-5143-4a64-b597-9538692f0269\",\"label\":\"Moving Average by Event Outcome\",\"line_width\":1,\"metrics\":[{\"id\":\"dc74afdf-64ad-47d6-bbed-114e09d12255\",\"type\":\"count\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"rgba(104,188,0,0.35)\",\"filter\":{\"query\":\"cef.extensions.categoryOutcome:\\\"/Success\\\"\",\"language\":\"lucene\"},\"id\":\"cb1ae397-13a0-4b6f-a848-bcdc96870f05\",\"label\":\"Success\"},{\"color\":\"rgba(244,78,59,1)\",\"filter\":{\"query\":\"cef.extensions.categoryOutcome:\\\"/Failure\\\"\",\"language\":\"lucene\"},\"id\":\"ef021c15-1b95-4334-bc3c-e2950e9b0f6f\",\"label\":\"Failure\"},{\"color\":\"rgba(0,156,224,1)\",\"filter\":{\"query\":\"cef.extensions.categoryOutcome:\\\"/Attempt\\\"\",\"language\":\"lucene\"},\"id\":\"2ff1e859-b178-4824-a0f2-69a115932b98\",\"label\":\"Attempt\"}],\"split_mode\":\"filters\",\"stacked\":\"stacked\",\"terms_field\":\"cef.extensions.categoryOutcome\",\"terms_size\":\"3\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events by Outcome [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"499f50ba-2f84-4f7c-9021-73a4efc47921","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Device Metrics Overview [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Devices\",\"field\":\"observer.hostname\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Sources\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Destinations\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"Ports\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"30\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"12\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Device Metrics Overview [Filebeat CEF]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"d061c7a9-7f92-4bf4-b35c-499b9f4b987a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Outcome by Device Type [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"colors\": {\"/Failure\": \"#BF1B00\", \"/Success\": \"#629E51\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Firewall Types\",\"field\":\"cef.extensions.categoryDeviceType\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Event Outcome\",\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":3},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"rotate\":75,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Firewall Types\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"orderBucketsBySum\":true,\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"percentage\",\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"value\"}]},\"title\":\"Outcome by Device Type [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"b1002b5c-08fc-4bbe-b9a0-6243a8637e60","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Destination Ports by Outcome [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"colors\": {\"/Failure\": \"#BF1B00\", \"/Success\": \"#629E51\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Protocols\",\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"rotate\":75,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Protocols\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"percentage\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}]},\"title\":\"Destination Ports by Outcome [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"df056709-2deb-4363-ae7a-b0148ea456c6","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Devices by Bandwidth [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Device\",\"field\":\"observer.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Source(s)\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Destination(s)\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Destination Ports\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bandwidth (Incoming)\",\"field\":\"source.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Bandwidth (Outgoing)\",\"field\":\"destination.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 10 Devices by Bandwidth [Filebeat CEF]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"e89a64e8-928c-41fc-8745-3c8157b21cdb","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Devices by Outcome [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0% - 17%\": \"rgb(255,255,204)\", \"17% - 34%\": \"rgb(255,230,146)\", \"34% - 50%\": \"rgb(254,191,90)\", \"50% - 67%\": \"rgb(253,141,60)\", \"67% - 84%\": \"rgb(244,61,37)\", \"84% - 100%\": \"rgb(202,8,35)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Device Host Names\",\"field\":\"observer.hostname\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Event Outcome\",\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"colorsNumber\":6,\"colorsRange\":[],\"enableHover\":true,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":true,\"setColorRange\":false,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"#555\",\"rotate\":0,\"show\":false},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Top 10 Devices by Outcome [Filebeat CEF]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"8.0.0","id":"a729c249-8d34-4eb1-bbb0-5d25cf224114","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Device Type Breakdown [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Firewall Types\",\"field\":\"cef.extensions.categoryDeviceType\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Device Type Breakdown [Filebeat CEF]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"3c19f138-2ab3-4ecb-bb1b-86fb90158042","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Device Types [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"2fddda5e-d6fc-4581-bbb7-574e1017ae8f\"}],\"bar_color_rules\":[{\"id\":\"23db5bf6-f787-474e-86ab-76362432e984\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceType:\\\"Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\"\"},\"gauge_color_rules\":[{\"id\":\"3ed9a6b9-fd2e-4e0d-bd83-7ad467b3c8a4\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"ec53a1d3-213c-4b0f-a074-5005a84cdb83\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0\",\"filter\":\"\",\"formatter\":\"number\",\"id\":\"04c44192-1112-4515-a8d9-e9e13215aecf\",\"label\":\"Events\",\"line_width\":\"3\",\"metrics\":[{\"id\":\"c5dbb050-fc10-4a0d-abe0-bc093db6cf0e\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"c5dbb050-fc10-4a0d-abe0-bc093db6cf0e\",\"gamma\":0.3,\"id\":\"e5a48d9d-7834-4da7-8d78-7d4528136b9b\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"sigma\":\"\",\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":\"0\",\"seperate_axis\":1,\"split_filters\":[{\"color\":\"rgba(244,78,59,1)\",\"filter\":{\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\"\",\"language\":\"lucene\"},\"id\":\"78bfdf07-ec02-4dd8-8ff4-b7e250c561c2\",\"label\":\"Firewall\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"observer.hostname\",\"terms_order_by\":null,\"split_color_mode\":\"gradient\"},{\"axis_position\":\"left\",\"chart_type\":\"bar\",\"color\":\"rgba(251,158,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"29d6131a-5143-4a64-b597-9538692f0269\",\"label\":\"Top Device Types by Mvg Averages\",\"line_width\":1,\"metrics\":[{\"id\":\"dc74afdf-64ad-47d6-bbed-114e09d12255\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"dc74afdf-64ad-47d6-bbed-114e09d12255\",\"gamma\":0.3,\"id\":\"87e21aaa-12eb-4213-bb37-41cb19219240\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":1,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cef.extensions.categoryDeviceType\",\"terms_size\":\"10\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events by Device Types [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e513c269-350c-40c3-ac20-16c5782103b8","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Source Countries by Events [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Events\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Country\",\"field\":\"source.geo.country_iso_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source Addresses\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination Addresses\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Destination Ports\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 10 Source Countries by Events [Filebeat CEF]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"8f6075c5-f525-4173-92a4-3a56e96e362d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 20 Source Countries [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.geo.country_iso_code\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"hideLabel\":false,\"maxFontSize\":72,\"minFontSize\":26,\"orientation\":\"single\",\"scale\":\"square root\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 20 Source Countries [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"013ff153-7b80-490b-8fec-6e56cba785ed","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Network - Event Throughput [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"3eadd451-5033-423f-88e3-814cc5e50b50\"}],\"bar_color_rules\":[{\"id\":\"8d4596c5-49ad-429b-af54-5451b1c2e8d4\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceType:\\\"Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"4d957654-cc7e-4ef3-8b29-61c0aeadd51a\",\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"73968651-c41e-473e-a153-a025f49d1a1b\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"90d7621e-3265-4fe8-8882-8df9605ea659\",\"label\":\"Event Throughput\",\"line_width\":1,\"metrics\":[{\"id\":\"ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba\",\"type\":\"count\"},{\"field\":\"ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba\",\"id\":\"ca3a65d0-9f3d-42a9-9f4e-16f9e24cba19\",\"type\":\"cumulative_sum\"},{\"field\":\"ca3a65d0-9f3d-42a9-9f4e-16f9e24cba19\",\"id\":\"6db67bc1-7fff-47e7-a931-f797b1f76732\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"6db67bc1-7fff-47e7-a931-f797b1f76732\",\"gamma\":0.3,\"id\":\"92bc1447-2b30-498c-ae8a-c67904fc82b2\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} / s\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Network - Event Throughput [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"33747d52-ec4c-4d91-86d8-fbdf9b9c82db","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":" Dashboard Navigation [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)\"},\"title\":\" Dashboard Navigation [Filebeat CEF]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"c394e650-b16c-407c-b305-bd409d69d433","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top Destination Locations by Events [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"customLabel\":\"Destination Location\",\"field\":\"destination.geo.location\",\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":0,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Shaded Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Top Destination Locations by Events [Filebeat CEF]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"8b31af8b-522e-41fe-b9d6-9a3451b54108","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top Source Locations by Events [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"customLabel\":\"Source Location\",\"field\":\"source.geo.location\",\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":15,\"heatMaxZoom\":0,\"heatMinOpacity\":0.1,\"heatNormalizeData\":true,\"heatRadius\":25,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Shaded Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Top Source Locations by Events [Filebeat CEF]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"4fccee0c-7193-4aa8-919f-0b0b0a16d013","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NjIsMV0="} -{"attributes":{"description":"Network data overview.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"lucene\", \"query\": \"*\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1\",\"w\":48,\"x\":0,\"y\":44},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"2\",\"w\":48,\"x\":0,\"y\":68},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":12},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":60},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"7\",\"w\":40,\"x\":0,\"y\":4},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"},\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"9\",\"w\":16,\"x\":0,\"y\":20},\"panelIndex\":\"9\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"/Attempt\":\"#0A50A1\",\"/Failure\":\"#BF1B00\",\"/Success\":\"#629E51\"}},\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"11\",\"w\":16,\"x\":16,\"y\":20},\"panelIndex\":\"11\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"/Attempt\":\"#0A50A1\",\"/Failure\":\"#BF1B00\",\"/Success\":\"#629E51\"}},\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"13\",\"w\":32,\"x\":0,\"y\":32},\"panelIndex\":\"13\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"15\",\"w\":16,\"x\":32,\"y\":32},\"panelIndex\":\"15\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0% - 17%\":\"rgb(255,255,204)\",\"17% - 34%\":\"rgb(255,230,146)\",\"34% - 50%\":\"rgb(254,191,90)\",\"50% - 67%\":\"rgb(253,141,60)\",\"67% - 84%\":\"rgb(244,61,37)\",\"84% - 100%\":\"rgb(202,8,35)\"},\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"16\",\"w\":16,\"x\":32,\"y\":20},\"panelIndex\":\"16\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"Anti-Virus\":\"#EF843C\",\"Content Security\":\"#7EB26D\",\"Firewall\":\"#E24D42\",\"Integrated Security\":\"#962D82\",\"Network-based IDS/IPS\":\"#1F78C1\",\"Operating System\":\"#1F78C1\",\"VPN\":\"#EAB839\"}},\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"17\",\"w\":48,\"x\":0,\"y\":52},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"18\",\"w\":24,\"x\":0,\"y\":76},\"panelIndex\":\"18\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"19\",\"w\":24,\"x\":24,\"y\":76},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"20\",\"w\":8,\"x\":40,\"y\":4},\"panelIndex\":\"20\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_20\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"21\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"21\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_21\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":24,\"i\":\"24\",\"w\":24,\"x\":0,\"y\":92},\"panelIndex\":\"24\",\"embeddableConfig\":{\"mapCenter\":[-0.3515602939922709,0],\"mapZoom\":1,\"enhancements\":{}},\"panelRefName\":\"panel_24\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":24,\"i\":\"25\",\"w\":24,\"x\":24,\"y\":92},\"panelIndex\":\"25\",\"embeddableConfig\":{\"mapCenter\":[-0.3515602939922709,0],\"mapZoom\":1,\"enhancements\":{}},\"panelRefName\":\"panel_25\"}]","refreshInterval":{"display":"Off","pause":false,"value":0},"timeFrom":"now-24h","timeRestore":true,"timeTo":"now","title":"[Filebeat CEF] Network Overview Dashboard","version":1},"coreMigrationVersion":"8.0.0","id":"dd0bc9af-2e89-4150-9b42-62517ea56b71","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"f5258de9-71f7-410f-b713-201007f77470","name":"1:panel_1","type":"visualization"},{"id":"0abfc226-535b-45a2-b534-e9bc87e5584f","name":"2:panel_2","type":"visualization"},{"id":"a97e3628-022b-46cf-8f29-a73cf9bb4e26","name":"5:panel_5","type":"visualization"},{"id":"499f50ba-2f84-4f7c-9021-73a4efc47921","name":"6:panel_6","type":"visualization"},{"id":"d061c7a9-7f92-4bf4-b35c-499b9f4b987a","name":"7:panel_7","type":"visualization"},{"id":"b1002b5c-08fc-4bbe-b9a0-6243a8637e60","name":"9:panel_9","type":"visualization"},{"id":"df056709-2deb-4363-ae7a-b0148ea456c6","name":"11:panel_11","type":"visualization"},{"id":"e89a64e8-928c-41fc-8745-3c8157b21cdb","name":"13:panel_13","type":"visualization"},{"id":"a729c249-8d34-4eb1-bbb0-5d25cf224114","name":"15:panel_15","type":"visualization"},{"id":"3c19f138-2ab3-4ecb-bb1b-86fb90158042","name":"16:panel_16","type":"visualization"},{"id":"e513c269-350c-40c3-ac20-16c5782103b8","name":"17:panel_17","type":"visualization"},{"id":"8f6075c5-f525-4173-92a4-3a56e96e362d","name":"18:panel_18","type":"visualization"},{"id":"013ff153-7b80-490b-8fec-6e56cba785ed","name":"19:panel_19","type":"visualization"},{"id":"33747d52-ec4c-4d91-86d8-fbdf9b9c82db","name":"20:panel_20","type":"visualization"},{"id":"c394e650-b16c-407c-b305-bd409d69d433","name":"21:panel_21","type":"visualization"},{"id":"8b31af8b-522e-41fe-b9d6-9a3451b54108","name":"24:panel_24","type":"visualization"},{"id":"4fccee0c-7193-4aa8-919f-0b0b0a16d013","name":"25:panel_25","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:39.286Z","version":"WzQ3NDUsMV0="} diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-suspicious-activity.ndjson b/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-suspicious-activity.ndjson deleted file mode 100644 index cfa37989b5e3..000000000000 --- a/x-pack/filebeat/module/cef/_meta/kibana/7/dashboard/filebeat-cef-network-suspicious-activity.ndjson +++ /dev/null @@ -1,14 +0,0 @@ -{"attributes":{"columns":["priority","message","source.ip","source.port","destination.ip","destination.port","network.application","message","cef.extensions.categoryBehavior","cef.extensions.categoryOutcome","deviceAddress","cef.device.product","cef.device.vendor","cef.extensions.categoryDeviceGroup","cef.extensions.categoryDeviceType"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"query\", \"negate\": false, \"type\": \"custom\", \"value\": \"{\\\"terms\\\":{\\\"cef.extensions.categoryDeviceGroup\\\":[\\\"/VPN\\\",\\\"/IDS/Network\\\",\\\"/Firewall\\\"]}}\"}, \"query\": {\"terms\": {\"cef.extensions.categoryDeviceGroup\": [\"/VPN\", \"/IDS/Network\", \"/Firewall\"]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Network Events [Filebeat CEF]","version":1},"coreMigrationVersion":"8.0.0","id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Unique Destinations and Ports by Source [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Destination Addresses\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Addresses\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Destination Ports\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Source Addresses\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Destination Addresses\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Destination Ports\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Destination Addresses\"},\"type\":\"value\"},{\"id\":\"ValueAxis-2\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"RightAxis-1\",\"position\":\"right\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Destination Ports\"},\"type\":\"value\"}]},\"title\":\"Unique Destinations and Ports by Source [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"fa8b26c1-6973-4381-adb3-bcde0d03a520","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 5 Sources by Destination Addresses [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Addresses\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Source Address\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 5 Sources by Destination Addresses [Filebeat CEF]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"82f3fae3-1189-4f04-8ea5-47fde1d2e7b1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 5 Sources by Destination Ports [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Ports\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Source Address\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 5 Sources by Destination Ports [Filebeat CEF]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"f03d734b-b85c-4e99-9c0e-9c89716a81f3","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Severity [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"bar_color_rules\":[{\"id\":\"0ca18a89-9c81-4bee-835a-85e6103aec37\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\"\"},\"id\":\"c39a76e5-f613-41a9-8335-c442747791e0\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"0.0[0]a\",\"id\":\"da3b92b4-2c24-473b-9102-fb5a343a96d9\",\"label\":\"Event by Severities\",\"line_width\":1,\"metrics\":[{\"id\":\"0d189776-3f7c-4a92-95b1-73c379a341fc\",\"type\":\"count\"},{\"field\":\"0d189776-3f7c-4a92-95b1-73c379a341fc\",\"id\":\"1b1c931c-a09b-4980-af81-6f9c3db56401\",\"sigma\":\"\",\"type\":\"sum_bucket\"}],\"point_size\":1,\"seperate_axis\":0,\"split_filters\":[{\"color\":\"rgba(104,204,202,1)\",\"filter\":{\"query\":\"severity:\\\"Low\\\" OR severity:\\\"0\\\"\",\"language\":\"lucene\"},\"id\":\"ebe970ac-5cc9-4c4a-af60-82affafc667c\",\"label\":\"LOW\"},{\"color\":\"rgba(252,220,0,1)\",\"filter\":{\"query\":\"severity:\\\"Medium\\\"\",\"language\":\"lucene\"},\"id\":\"0c4ff16a-b53d-4ce4-af76-d6b74d8788db\",\"label\":\"MEDIUM\"},{\"color\":\"rgba(254,146,0,1)\",\"filter\":{\"query\":\"severity:\\\"High\\\"\",\"language\":\"lucene\"},\"id\":\"e142c55b-6ee5-416a-8bd3-d10398044864\",\"label\":\"HIGH\"},{\"color\":\"rgba(244,78,59,1)\",\"filter\":{\"query\":\"severity:\\\"Very-High\\\"\",\"language\":\"lucene\"},\"id\":\"4b05b562-c419-4214-b814-d4c242251521\",\"label\":\"VERY HIGH\"}],\"split_mode\":\"filters\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Events by Severity [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9bef4db9-a8b2-4be8-b2b0-6ea02fab424d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Outcome by Device Type [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"colors\": {\"/Failure\": \"#BF1B00\", \"/Success\": \"#629E51\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Firewall Types\",\"field\":\"cef.extensions.categoryDeviceType\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Event Outcome\",\"field\":\"cef.extensions.categoryOutcome\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":3},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"rotate\":75,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Firewall Types\"},\"type\":\"category\"}],\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"interpolate\":\"linear\",\"legendPosition\":\"right\",\"orderBucketsBySum\":true,\"radiusRatio\":9,\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"showCircles\":true,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"percentage\",\"type\":\"square root\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"value\"}]},\"title\":\"Outcome by Device Type [Filebeat CEF]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"fff249b2-18b6-4b48-bcf7-dd4595d111e7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Events by Source Addresses [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"a0bf5a1d-8ebf-49d4-a347-738a6ce20562\"}],\"bar_color_rules\":[{\"id\":\"23db5bf6-f787-474e-86ab-76362432e984\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\" \"},\"gauge_color_rules\":[{\"id\":\"42f84a0a-ee13-4ca8-b61d-3de482ae4ab0\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"ec53a1d3-213c-4b0f-a074-5005a84cdb83\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceGroup:\\\"/Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\" \"},\"formatter\":\"number\",\"id\":\"04c44192-1112-4515-a8d9-e9e13215aecf\",\"label\":\"Events\",\"line_width\":\"3\",\"metrics\":[{\"id\":\"c5dbb050-fc10-4a0d-abe0-bc093db6cf0e\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"c5dbb050-fc10-4a0d-abe0-bc093db6cf0e\",\"gamma\":0.3,\"id\":\"117fde19-e227-4fcb-8019-e82e6677c340\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"sigma\":\"\",\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":\"0\",\"seperate_axis\":1,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"observer.hostmessage\",\"terms_order_by\":null,\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"left\",\"chart_type\":\"bar\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"3ffe652e-43c2-4a1d-ad8a-f7ab10f09f2b\",\"label\":\"Top Source Addresses\",\"line_width\":\"0\",\"metrics\":[{\"id\":\"dc74afdf-64ad-47d6-bbed-114e09d12255\",\"type\":\"count\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"dc74afdf-64ad-47d6-bbed-114e09d12255\",\"gamma\":0.3,\"id\":\"b753ad38-c3ed-4463-8f6d-176f4d477897\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":1,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"source.ip\",\"terms_size\":\"10\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Events by Source Addresses [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d02dd523-ce91-40e9-9209-83797f80ed45","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Source Addresses [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Addresses\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Source Addresses [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"589fec8c-336e-4122-8fef-a450bddf84f6","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Destination Addresses [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Addresses\",\"field\":\"destination.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Destination Addresses [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"86bd5f13-ca6b-43fa-b209-54e7460344bb","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Top 10 Destination Ports [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Addresses\",\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top 10 Destination Ports [Filebeat CEF]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"1204cf27-05e0-4905-bfa1-688aaaaaa840","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":" Dashboard Navigation [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)\"},\"title\":\" Dashboard Navigation [Filebeat CEF]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"677891a1-90c4-4273-b126-f0e54689bd76","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": []}"},"savedSearchRefName":"search_0","title":"Device Metrics Overview [Filebeat CEF]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"Event Count\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Devices\",\"field\":\"observer.hostname\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Sources\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Destinations\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"Ports\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"30\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"12\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Device Metrics Overview [Filebeat CEF]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"01c3618c-9962-4fe9-b9c5-f73dfecc6eba","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"68202a5c-c8f2-432f-8c08-04fbfacb95c8","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Network - Event Throughput [Filebeat CEF]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"background_color_rules\":[{\"id\":\"3eadd451-5033-423f-88e3-814cc5e50b50\"}],\"bar_color_rules\":[{\"id\":\"8d4596c5-49ad-429b-af54-5451b1c2e8d4\"}],\"filter\":{\"language\":\"lucene\",\"query\":\"cef.extensions.categoryDeviceType:\\\"Firewall\\\" OR cef.extensions.categoryDeviceGroup:\\\"/IDS/Network\\\" OR cef.extensions.categoryDeviceGroup:\\\"/VPN\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"4d957654-cc7e-4ef3-8b29-61c0aeadd51a\",\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"73968651-c41e-473e-a153-a025f49d1a1b\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"90d7621e-3265-4fe8-8882-8df9605ea659\",\"label\":\"Event Throughput\",\"line_width\":1,\"metrics\":[{\"id\":\"ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba\",\"type\":\"count\"},{\"field\":\"ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba\",\"id\":\"ca3a65d0-9f3d-42a9-9f4e-16f9e24cba19\",\"type\":\"cumulative_sum\"},{\"field\":\"ca3a65d0-9f3d-42a9-9f4e-16f9e24cba19\",\"id\":\"6db67bc1-7fff-47e7-a931-f797b1f76732\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"6db67bc1-7fff-47e7-a931-f797b1f76732\",\"gamma\":0.3,\"id\":\"92bc1447-2b30-498c-ae8a-c67904fc82b2\",\"model_type\":\"simple\",\"multiplicative\":false,\"period\":1,\"type\":\"moving_average\",\"window\":\"10\"}],\"point_size\":1,\"seperate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} / s\",\"split_color_mode\":\"gradient\"}],\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Network - Event Throughput [Filebeat CEF]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"33747d52-ec4c-4d91-86d8-fbdf9b9c82db","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NzYsMV0="} -{"attributes":{"description":"Suspicious network activity overview","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"lucene\", \"query\": \"*\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"1\",\"w\":32,\"x\":0,\"y\":28},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"Destination Addresses\":\"#E0752D\",\"Destination Ports\":\"#E24D42\"},\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"2\",\"w\":16,\"x\":0,\"y\":40},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":16,\"x\":16,\"y\":40},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"9\",\"w\":16,\"x\":32,\"y\":28},\"panelIndex\":\"9\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"/Attempt\":\"#0A50A1\",\"/Failure\":\"#BF1B00\",\"/Success\":\"#629E51\"}},\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"11\",\"w\":48,\"x\":0,\"y\":12},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"12\",\"w\":24,\"x\":0,\"y\":52},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"13\",\"w\":24,\"x\":24,\"y\":52},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"14\",\"w\":16,\"x\":32,\"y\":40},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"15\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"16\",\"w\":40,\"x\":0,\"y\":4},\"panelIndex\":\"16\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"17\",\"w\":8,\"x\":40,\"y\":4},\"panelIndex\":\"17\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 50\":\"rgb(255,255,204)\",\"100 - 200\":\"rgb(253,141,60)\",\"200 - 300\":\"rgb(227,27,28)\",\"300 - 400\":\"rgb(128,0,38)\",\"50 - 100\":\"rgb(254,217,118)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_17\"}]","refreshInterval":{"display":"Off","pause":false,"value":0},"timeFrom":"now-24h","timeRestore":true,"timeTo":"now","title":"[Filebeat CEF] Network Suspicious Activity Dashboard","version":1},"coreMigrationVersion":"8.0.0","id":"db1e1aca-279e-4ecc-b84e-fe58644f7619","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"fa8b26c1-6973-4381-adb3-bcde0d03a520","name":"1:panel_1","type":"visualization"},{"id":"82f3fae3-1189-4f04-8ea5-47fde1d2e7b1","name":"2:panel_2","type":"visualization"},{"id":"f03d734b-b85c-4e99-9c0e-9c89716a81f3","name":"3:panel_3","type":"visualization"},{"id":"9bef4db9-a8b2-4be8-b2b0-6ea02fab424d","name":"5:panel_5","type":"visualization"},{"id":"fff249b2-18b6-4b48-bcf7-dd4595d111e7","name":"9:panel_9","type":"visualization"},{"id":"d02dd523-ce91-40e9-9209-83797f80ed45","name":"11:panel_11","type":"visualization"},{"id":"589fec8c-336e-4122-8fef-a450bddf84f6","name":"12:panel_12","type":"visualization"},{"id":"86bd5f13-ca6b-43fa-b209-54e7460344bb","name":"13:panel_13","type":"visualization"},{"id":"1204cf27-05e0-4905-bfa1-688aaaaaa840","name":"14:panel_14","type":"visualization"},{"id":"677891a1-90c4-4273-b126-f0e54689bd76","name":"15:panel_15","type":"visualization"},{"id":"01c3618c-9962-4fe9-b9c5-f73dfecc6eba","name":"16:panel_16","type":"visualization"},{"id":"33747d52-ec4c-4d91-86d8-fbdf9b9c82db","name":"17:panel_17","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:40.331Z","version":"WzQ3NjQsMV0="} diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/search/5cede2d3-20fe-4140-add4-4c4f841b71a2.json b/x-pack/filebeat/module/cef/_meta/kibana/7/search/5cede2d3-20fe-4140-add4-4c4f841b71a2.json new file mode 100644 index 000000000000..5805f402e54d --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/search/5cede2d3-20fe-4140-add4-4c4f841b71a2.json @@ -0,0 +1,52 @@ +{ + "attributes": { + "columns": [ + "cef.extensions.categoryDeviceGroup", + "cef.extensions.categoryTechnique", + "cef.extensions.categoryOutcome", + "cef.extensions.categorySignificance", + "cef.extensions.categoryObject", + "cef.extensions.categoryBehavior", + "cef.extensions.categoryDeviceType" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "cef.extensions.categoryDeviceGroup:\"/Operating System\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Host\" OR cef.extensions.categoryDeviceGroup:\"/Application\"" + } + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Endpoint Event Explorer [Filebeat CEF]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:37.252Z", + "version": "WzQ3MjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/search/68202a5c-c8f2-432f-8c08-04fbfacb95c8.json b/x-pack/filebeat/module/cef/_meta/kibana/7/search/68202a5c-c8f2-432f-8c08-04fbfacb95c8.json new file mode 100644 index 000000000000..b30f1d78503f --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/search/68202a5c-c8f2-432f-8c08-04fbfacb95c8.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "columns": [ + "priority", + "message", + "source.ip", + "source.port", + "destination.ip", + "destination.port", + "network.application", + "message", + "cef.extensions.categoryBehavior", + "cef.extensions.categoryOutcome", + "deviceAddress", + "cef.device.product", + "cef.device.vendor", + "cef.extensions.categoryDeviceGroup", + "cef.extensions.categoryDeviceType" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "query", + "negate": false, + "type": "custom", + "value": "{\"terms\":{\"cef.extensions.categoryDeviceGroup\":[\"/VPN\",\"/IDS/Network\",\"/Firewall\"]}}" + }, + "query": { + "terms": { + "cef.extensions.categoryDeviceGroup": [ + "/VPN", + "/IDS/Network", + "/Firewall" + ] + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Network Events [Filebeat CEF]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:40.331Z", + "version": "WzQ3NzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/search/e6cf2383-71f4-4db1-a791-1a7d4f110194.json b/x-pack/filebeat/module/cef/_meta/kibana/7/search/e6cf2383-71f4-4db1-a791-1a7d4f110194.json new file mode 100644 index 000000000000..2a0c7f204806 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/search/e6cf2383-71f4-4db1-a791-1a7d4f110194.json @@ -0,0 +1,57 @@ +{ + "attributes": { + "columns": [ + "cef.device.vendor", + "cef.device.product", + "message", + "cef.device.event_class_id", + "cef.extensions.deviceEventCategory", + "source.user.name", + "destination.user.name", + "destination.domain", + "cef.extensions.categoryBehavior", + "cef.extensions.categoryOutcome", + "cef.extensions.sourceNtDomain", + "cef.extensions.destinationNtDomain" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "cef.extensions.categoryDeviceGroup:\"/Operating System\"" + } + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Endpoint - OS Events [Filebeat CEF]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ3MTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/search/f85a3444-8a43-4e46-b872-4e44bc25d0f3.json b/x-pack/filebeat/module/cef/_meta/kibana/7/search/f85a3444-8a43-4e46-b872-4e44bc25d0f3.json new file mode 100644 index 000000000000..ca067f19fc98 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/search/f85a3444-8a43-4e46-b872-4e44bc25d0f3.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "columns": [ + "cef.device.vendor", + "cef.device.product", + "cef.extensions.categoryBehavior", + "cef.extensions.categoryOutcome", + "destination.ip", + "destination.port", + "destination.domain", + "cef.device.event_class_id", + "cef.extensions.deviceCustomString1Label", + "cef.extensions.deviceCustomString1", + "cef.extensions.deviceCustomString2Label", + "cef.extensions.deviceCustomString2", + "cef.extension.cef.extension.deviceCustomString3Label", + "cef.extension.deviceCustomString3", + "cef.extension.cef.extension.deviceCustomString4Label", + "cef.extension.deviceCustomString4", + "cef.extensions.deviceEventCategory", + "event.severity", + "source.ip", + "source.port", + "network.transport", + "source.bytes", + "url.original" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "cef.device.product:\"DNS Trace Log\"" + } + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Microsoft DNS Events [Filebeat CEF]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:38.313Z", + "version": "WzQ3NDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/013ff153-7b80-490b-8fec-6e56cba785ed.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/013ff153-7b80-490b-8fec-6e56cba785ed.json new file mode 100644 index 000000000000..6f6d9f7479d1 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/013ff153-7b80-490b-8fec-6e56cba785ed.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 20 Source Countries [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "source.geo.country_iso_code", + "order": "desc", + "orderBy": "1", + "size": 20 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "hideLabel": false, + "maxFontSize": 72, + "minFontSize": 26, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "square root" + }, + "title": "Top 20 Source Countries [Filebeat CEF]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "013ff153-7b80-490b-8fec-6e56cba785ed", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/01c3618c-9962-4fe9-b9c5-f73dfecc6eba.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/01c3618c-9962-4fe9-b9c5-f73dfecc6eba.json new file mode 100644 index 000000000000..20c96c9cbf9f --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/01c3618c-9962-4fe9-b9c5-f73dfecc6eba.json @@ -0,0 +1,135 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Device Metrics Overview [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "8", + "params": { + "customLabel": "Event Count" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Devices", + "field": "observer.hostname" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Sources", + "field": "source.ip" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "Destinations", + "field": "destination.ip" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "7", + "params": { + "customLabel": "Ports", + "field": "destination.port" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "fontSize": "30", + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "12", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "handleNoResults": true, + "type": "gauge" + }, + "title": "Device Metrics Overview [Filebeat CEF]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "01c3618c-9962-4fe9-b9c5-f73dfecc6eba", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:40.331Z", + "version": "WzQ3NzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/0abfc226-535b-45a2-b534-e9bc87e5584f.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/0abfc226-535b-45a2-b534-e9bc87e5584f.json new file mode 100644 index 000000000000..7c34d85e10f2 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/0abfc226-535b-45a2-b534-e9bc87e5584f.json @@ -0,0 +1,114 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Bandwidth Utilization [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color": null, + "bar_color_rules": [ + { + "id": "23db5bf6-f787-474e-86ab-76362432e984" + } + ], + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceGroup:\"/Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\" " + }, + "id": "ec53a1d3-213c-4b0f-a074-5005a84cdb83", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "d27f09dc-b07e-493f-a223-a85033ad6548", + "label": "Inbound", + "line_width": 1, + "metrics": [ + { + "field": "source.bytes", + "id": "9ce9ec3a-2f11-4935-91b2-531494d2a619", + "type": "sum" + } + ], + "override_index_pattern": 1, + "point_size": 1, + "seperate_axis": 0, + "series_index_pattern": "filebeat-*", + "series_time_field": "@timestamp", + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "observer.hostname", + "terms_order_by": "_count" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "b1ef2c75-5916-469d-8790-5b213367a5a0", + "label": "Outbound", + "line_width": 1, + "metrics": [ + { + "field": "destination.bytes", + "id": "11b1852f-9b62-4e96-8128-522e6c5bf16d", + "type": "sum" + }, + { + "id": "2a6b00bf-1658-4d02-b4e2-61ad6e4c3a9b", + "script": "params.outbound > 0 ? params.outbound * -1 : 0", + "type": "calculation", + "variables": [ + { + "field": "11b1852f-9b62-4e96-8128-522e6c5bf16d", + "id": "c57067f2-2927-41d8-97f4-9f47b3b3bcae", + "name": "outbound" + } + ] + } + ], + "override_index_pattern": 1, + "point_size": 1, + "seperate_axis": 0, + "series_index_pattern": "filebeat-*", + "series_time_field": "@timestamp", + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0 + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Bandwidth Utilization [Filebeat CEF]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0abfc226-535b-45a2-b534-e9bc87e5584f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/0f4028b2-3dc2-4cb6-80d8-285c847a02a1.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/0f4028b2-3dc2-4cb6-80d8-285c847a02a1.json new file mode 100644 index 000000000000..39cd8e736e55 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/0f4028b2-3dc2-4cb6-80d8-285c847a02a1.json @@ -0,0 +1,117 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Events by Outcomes [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceGroup:\"/Operating System\"" + }, + "id": "74716d29-91c6-4095-bc7d-7f6700f12b1f", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": "0", + "formatter": "number", + "hide_in_legend": 0, + "id": "932c5de4-f841-4f27-99e4-60d95d3aa16c", + "label": "Event Outcomes", + "line_width": "3", + "metrics": [ + { + "id": "4c263b6d-8117-43c6-b83f-5c4145f43cfc", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 1, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "rgba(244,78,59,1)", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryOutcome:\"/Failure\"" + }, + "id": "94371b84-a7aa-4824-b4d1-217ecbe725a5", + "label": "Failure" + }, + { + "color": "rgba(104,188,0,1)", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryOutcome:\"/Success\"" + }, + "id": "31564794-9278-4f2e-bb20-557f5cfbea79", + "label": "Success" + }, + { + "color": "rgba(251,158,0,1)", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryOutcome:\"/Attempt\"" + }, + "id": "10c0f919-0853-41b5-94b4-2e39932e7aa0", + "label": "Attempt" + } + ], + "split_mode": "filters", + "stacked": "none", + "terms_field": "cef.extensions.categoryOutcome", + "terms_size": "3" + }, + { + "axis_position": "left", + "chart_type": "bar", + "color": "rgba(104,182,204,1)", + "fill": 0.5, + "formatter": "number", + "id": "c9eca9d0-c2e0-45e6-a3ce-f158c40fdd74", + "label": "Event Count", + "line_width": 1, + "metrics": [ + { + "id": "6d8513ca-cc72-4b27-91b6-6b689558cdcb", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 1, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Events by Outcomes [Filebeat CEF]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0f4028b2-3dc2-4cb6-80d8-285c847a02a1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ3MDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/118af639-1f37-4541-a960-5a3ff0613e0e.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/118af639-1f37-4541-a960-5a3ff0613e0e.json new file mode 100644 index 000000000000..9b6b3725a23c --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/118af639-1f37-4541-a960-5a3ff0613e0e.json @@ -0,0 +1,150 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Outcomes by Device Type [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "colors": { + "/Failure": "#BF1B00" + }, + "legendOpen": true + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "cef.extensions.categoryDeviceType", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "cef.extensions.categoryOutcome", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 200 + }, + "position": "left", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "cef.extensions.categoryDeviceType: Descending" + }, + "type": "category" + } + ], + "defaultYExtents": false, + "drawLinesBetweenPoints": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "legendPosition": "right", + "radiusRatio": 9, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "showCircles": true, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": true, + "rotate": 75, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "bottom", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "value" + } + ] + }, + "title": "Outcomes by Device Type [Filebeat CEF]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "118af639-1f37-4541-a960-5a3ff0613e0e", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:37.252Z", + "version": "WzQ3MjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/1204cf27-05e0-4905-bfa1-688aaaaaa840.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/1204cf27-05e0-4905-bfa1-688aaaaaa840.json new file mode 100644 index 000000000000..8fb03acdd0f9 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/1204cf27-05e0-4905-bfa1-688aaaaaa840.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Destination Ports [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Destination Addresses", + "field": "destination.port", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "maxFontSize": 72, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear" + }, + "title": "Top 10 Destination Ports [Filebeat CEF]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1204cf27-05e0-4905-bfa1-688aaaaaa840", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:40.331Z", + "version": "WzQ3NzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/158d809a-89db-4ffa-88a1-eb5c4bf58d50.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/158d809a-89db-4ffa-88a1-eb5c4bf58d50.json new file mode 100644 index 000000000000..c6bbdc786105 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/158d809a-89db-4ffa-88a1-eb5c4bf58d50.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Endpoint OS Metrics Overview [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Total Events" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "Devices", + "field": "observer.hostname" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "7", + "params": { + "customLabel": "Event Types", + "field": "cef.extensions.categoryBehavior" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "8", + "params": { + "customLabel": "Event Outcomes", + "field": "cef.extensions.categoryOutcome" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "fontSize": "30", + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "20", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "handleNoResults": true, + "type": "gauge" + }, + "title": "Endpoint OS Metrics Overview [Filebeat CEF]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "158d809a-89db-4ffa-88a1-eb5c4bf58d50", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ2OTksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/16aef3e9-e33b-4bab-b32f-d8c5b1263ac0.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/16aef3e9-e33b-4bab-b32f-d8c5b1263ac0.json new file mode 100644 index 000000000000..176907466384 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/16aef3e9-e33b-4bab-b32f-d8c5b1263ac0.json @@ -0,0 +1,123 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Events by Direction [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "filter": { + "language": "lucene", + "query": "cef.device.product:\"DNS Trace Log\"" + }, + "id": "be556a57-cd1c-496c-8714-0bd210947c85", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "#68BC00", + "fill": "0.2", + "filter": { + "language": "lucene", + "query": "device" + }, + "formatter": "number", + "id": "9aae7344-9de9-4378-b21d-296cb964f93b", + "label": "Inbound Requests", + "line_width": 1, + "metrics": [ + { + "id": "1cd0b964-45cf-408e-a7e4-e26955f8a3b0", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "rgba(0,156,224,1)", + "filter": { + "language": "lucene", + "query": "deviceDirection:\"0\"" + }, + "id": "f860f6e0-fbd4-4949-8046-6300322dfe84", + "label": "Inbound Requests" + } + ], + "split_mode": "filters", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "bar", + "color": "#68BC00", + "fill": "0.2", + "formatter": "number", + "id": "ed1abe18-e01b-4202-9db4-06fda10692e0", + "label": "Outbound Requests", + "line_width": 1, + "metrics": [ + { + "id": "cfbcfc79-394b-4ec0-a2c2-7a47177d6469", + "type": "count" + }, + { + "id": "6bc37118-ddac-41ec-85b3-9db7e1b3636b", + "script": "params.outbound > 0 ? params.outbound * -1 : 0", + "type": "calculation", + "variables": [ + { + "field": "cfbcfc79-394b-4ec0-a2c2-7a47177d6469", + "id": "f73f4f22-03d5-446a-b031-04eee531e3cc", + "name": "outbound" + } + ] + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "rgba(211,49,21,1)", + "filter": { + "language": "lucene", + "query": "deviceDirection:\"1\"" + }, + "id": "a9c50e1b-8f11-4bc2-9077-bb8870ed0b62", + "label": "Outbound Requests" + } + ], + "split_mode": "filters", + "stacked": "none" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Events by Direction [Filebeat CEF]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "16aef3e9-e33b-4bab-b32f-d8c5b1263ac0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:38.313Z", + "version": "WzQ3NDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/1b521f56-8089-433f-88f7-56aba867e07d.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/1b521f56-8089-433f-88f7-56aba867e07d.json new file mode 100644 index 000000000000..8757afeb3577 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/1b521f56-8089-433f-88f7-56aba867e07d.json @@ -0,0 +1,82 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top Destinations by Events [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "destination.geo.location", + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "listeners": {}, + "params": { + "addTooltip": true, + "heatBlur": 15, + "heatMaxZoom": 0, + "heatMinOpacity": 0.1, + "heatRadius": 25, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 0, + 0 + ], + "mapType": "Shaded Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "attribution": "Maps provided by USGS", + "format": "image/png", + "layers": "0", + "styles": "", + "transparent": true, + "version": "1.3.0" + }, + "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" + } + }, + "title": "Top Destinations by Events [Filebeat CEF]", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1b521f56-8089-433f-88f7-56aba867e07d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:38.313Z", + "version": "WzQ3NDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/1b9cc5b7-7747-49de-96b1-a4bc7f675716.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/1b9cc5b7-7747-49de-96b1-a4bc7f675716.json new file mode 100644 index 000000000000..d999b57b7244 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/1b9cc5b7-7747-49de-96b1-a4bc7f675716.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Destinations by Size [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Destinations", + "field": "destination.domain", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Bytes", + "field": "source.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Sources", + "field": "source.ip" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Count" + }, + "schema": "metric", + "type": "count" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top 10 Destinations by Size [Filebeat CEF]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1b9cc5b7-7747-49de-96b1-a4bc7f675716", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:38.313Z", + "version": "WzQ3MzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/249e2737-b41f-4115-b303-88bc9d279655.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/249e2737-b41f-4115-b303-88bc9d279655.json new file mode 100644 index 000000000000..e39785c88d82 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/249e2737-b41f-4115-b303-88bc9d279655.json @@ -0,0 +1,123 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "DNS Metrics Overview [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Event Count" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Threads", + "field": "cef.extensions.deviceCustomString1" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "OpCodes", + "field": "cef.extensions.deviceCustomString2" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Activity Types", + "field": "cef.device.event_class_id" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "32", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "type": "gauge" + }, + "title": "DNS Metrics Overview [Filebeat CEF]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "249e2737-b41f-4115-b303-88bc9d279655", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:38.313Z", + "version": "WzQ3MzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/26a65f68-d7a6-4b47-befc-c5a6819bb91b.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/26a65f68-d7a6-4b47-befc-c5a6819bb91b.json new file mode 100644 index 000000000000..8e7686c2ad7b --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/26a65f68-d7a6-4b47-befc-c5a6819bb91b.json @@ -0,0 +1,157 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Sources by Size [Filebeat CEF]", + "uiStateJSON": { + "P-11": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "P-13": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "P-2": { + "mapCenter": [ + -0.17578097424708533, + 0 + ], + "mapZoom": 0 + }, + "P-3": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "P-4": { + "mapCenter": [ + -0.17578097424708533, + 0 + ], + "mapZoom": 0 + }, + "P-5": { + "vis": { + "defaultColors": { + "0 - 18,000": "rgb(247,251,255)", + "108,000 - 126,000": "rgb(74,152,201)", + "126,000 - 144,000": "rgb(46,126,188)", + "144,000 - 162,000": "rgb(23,100,171)", + "162,000 - 180,000": "rgb(8,74,145)", + "18,000 - 36,000": "rgb(227,238,249)", + "36,000 - 54,000": "rgb(208,225,242)", + "54,000 - 72,000": "rgb(182,212,233)", + "72,000 - 90,000": "rgb(148,196,223)", + "90,000 - 108,000": "rgb(107,174,214)" + }, + "legendOpen": false + } + }, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Sources", + "field": "source.domain", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Bytes", + "field": "source.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Destinations", + "field": "destination.domain" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Count" + }, + "schema": "metric", + "type": "count" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top 10 Sources by Size [Filebeat CEF]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "26a65f68-d7a6-4b47-befc-c5a6819bb91b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:38.313Z", + "version": "WzQ3MzksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/2726382e-638a-4dcc-94fc-0ffdc0f92048.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/2726382e-638a-4dcc-94fc-0ffdc0f92048.json new file mode 100644 index 000000000000..37559792cf22 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/2726382e-638a-4dcc-94fc-0ffdc0f92048.json @@ -0,0 +1,117 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 15 Event Types by Events [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Event Types", + "field": "cef.extensions.categoryBehavior", + "order": "desc", + "orderBy": "1", + "size": 15 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Source Users", + "field": "source.user.name" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Destination Users", + "field": "destination.user.name" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Source Hosts", + "field": "source.domain" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "Destination Hosts", + "field": "destination.domain" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + } + ], + "listeners": {}, + "params": { + "perPage": 15, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top 15 Event Types by Events [Filebeat CEF]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2726382e-638a-4dcc-94fc-0ffdc0f92048", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ3MDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/295986d4-d2ea-4541-8e82-7dc95c0cd830.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/295986d4-d2ea-4541-8e82-7dc95c0cd830.json new file mode 100644 index 000000000000..733c1a9e331c --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/295986d4-d2ea-4541-8e82-7dc95c0cd830.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Source Countries by Event [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Total Events" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "source.geo.country_iso_code", + "order": "desc", + "orderBy": "1", + "size": 35 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Source Addresses", + "field": "source.ip" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Destination Addresses", + "field": "destination.ip" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Destination Ports", + "field": "destination.port" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top 10 Source Countries by Event [Filebeat CEF]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "295986d4-d2ea-4541-8e82-7dc95c0cd830", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:37.252Z", + "version": "WzQ3MjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/316fdc75-7215-4c6b-8e1b-70a097b34e28.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/316fdc75-7215-4c6b-8e1b-70a097b34e28.json new file mode 100644 index 000000000000..2b67f1b40f59 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/316fdc75-7215-4c6b-8e1b-70a097b34e28.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Sources by Destinations [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Source Host", + "field": "source.domain", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Destination Host", + "field": "destination.domain", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Top 10 Sources by Destinations [Filebeat CEF]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "316fdc75-7215-4c6b-8e1b-70a097b34e28", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ3MDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/33747d52-ec4c-4d91-86d8-fbdf9b9c82db.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/33747d52-ec4c-4d91-86d8-fbdf9b9c82db.json new file mode 100644 index 000000000000..4f3fc501c244 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/33747d52-ec4c-4d91-86d8-fbdf9b9c82db.json @@ -0,0 +1,110 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Network - Event Throughput [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "3eadd451-5033-423f-88e3-814cc5e50b50" + } + ], + "bar_color_rules": [ + { + "id": "8d4596c5-49ad-429b-af54-5451b1c2e8d4" + } + ], + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceType:\"Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "4d957654-cc7e-4ef3-8b29-61c0aeadd51a", + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "73968651-c41e-473e-a153-a025f49d1a1b", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": 0.5, + "formatter": "number", + "id": "90d7621e-3265-4fe8-8882-8df9605ea659", + "label": "Event Throughput", + "line_width": 1, + "metrics": [ + { + "id": "ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba", + "type": "count" + }, + { + "field": "ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba", + "id": "ca3a65d0-9f3d-42a9-9f4e-16f9e24cba19", + "type": "cumulative_sum" + }, + { + "field": "ca3a65d0-9f3d-42a9-9f4e-16f9e24cba19", + "id": "6db67bc1-7fff-47e7-a931-f797b1f76732", + "type": "derivative", + "unit": "1s" + }, + { + "alpha": 0.3, + "beta": 0.1, + "field": "6db67bc1-7fff-47e7-a931-f797b1f76732", + "gamma": 0.3, + "id": "92bc1447-2b30-498c-ae8a-c67904fc82b2", + "model_type": "simple", + "multiplicative": false, + "period": 1, + "type": "moving_average", + "window": "10" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}} / s" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Network - Event Throughput [Filebeat CEF]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "33747d52-ec4c-4d91-86d8-fbdf9b9c82db", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:40.331Z", + "version": "WzQ3NzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/3c19f138-2ab3-4ecb-bb1b-86fb90158042.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/3c19f138-2ab3-4ecb-bb1b-86fb90158042.json new file mode 100644 index 000000000000..ded9485068e6 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/3c19f138-2ab3-4ecb-bb1b-86fb90158042.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Device Type Breakdown [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Firewall Types", + "field": "cef.extensions.categoryDeviceType", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Device Type Breakdown [Filebeat CEF]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3c19f138-2ab3-4ecb-bb1b-86fb90158042", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/499f50ba-2f84-4f7c-9021-73a4efc47921.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/499f50ba-2f84-4f7c-9021-73a4efc47921.json new file mode 100644 index 000000000000..df32323d345c --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/499f50ba-2f84-4f7c-9021-73a4efc47921.json @@ -0,0 +1,168 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Events by Outcome [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color": null, + "background_color_rules": [ + { + "id": "2fddda5e-d6fc-4581-bbb7-574e1017ae8f" + } + ], + "bar_color_rules": [ + { + "bar_color": null, + "id": "23db5bf6-f787-474e-86ab-76362432e984", + "value": 0 + } + ], + "drilldown_url": "", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceType:\"Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\"" + }, + "gauge_color_rules": [ + { + "id": "3ed9a6b9-fd2e-4e0d-bd83-7ad467b3c8a4" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "ec53a1d3-213c-4b0f-a074-5005a84cdb83", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": "0", + "filter": { + "language": "lucene", + "query": "(cef.extensions.categoryDeviceGroup:\"/Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\") AND _exists_:cef.extensions.categoryOutcome" + }, + "formatter": "number", + "id": "04c44192-1112-4515-a8d9-e9e13215aecf", + "label": "Events", + "line_width": "3", + "metrics": [ + { + "id": "c5dbb050-fc10-4a0d-abe0-bc093db6cf0e", + "type": "count" + }, + { + "alpha": 0.3, + "beta": 0.1, + "field": "c5dbb050-fc10-4a0d-abe0-bc093db6cf0e", + "gamma": 0.3, + "id": "c43af7e6-3f06-48a4-a7c3-7ba8bd6214f9", + "model_type": "simple", + "multiplicative": false, + "period": 1, + "type": "moving_average", + "window": "10" + } + ], + "point_size": "0", + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "rgba(254,146,0,1)", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceGroup:\"/Firewall\"" + }, + "id": "4c7aac7d-2749-41b6-8136-40dc8636a7e7", + "label": "Firewall" + } + ], + "split_mode": "filter", + "stacked": "none", + "steps": 0, + "terms_field": "observer.hostname", + "terms_order_by": null + }, + { + "axis_position": "left", + "chart_type": "bar", + "color": "rgba(104,188,0,1)", + "fill": "1", + "formatter": "number", + "id": "29d6131a-5143-4a64-b597-9538692f0269", + "label": "Moving Average by Event Outcome", + "line_width": 1, + "metrics": [ + { + "id": "dc74afdf-64ad-47d6-bbed-114e09d12255", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "rgba(104,188,0,0.35)", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryOutcome:\"/Success\"" + }, + "id": "cb1ae397-13a0-4b6f-a848-bcdc96870f05", + "label": "Success" + }, + { + "color": "rgba(244,78,59,1)", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryOutcome:\"/Failure\"" + }, + "id": "ef021c15-1b95-4334-bc3c-e2950e9b0f6f", + "label": "Failure" + }, + { + "color": "rgba(0,156,224,1)", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryOutcome:\"/Attempt\"" + }, + "id": "2ff1e859-b178-4824-a0f2-69a115932b98", + "label": "Attempt" + } + ], + "split_mode": "filters", + "stacked": "stacked", + "terms_field": "cef.extensions.categoryOutcome", + "terms_size": "3" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Events by Outcome [Filebeat CEF]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "499f50ba-2f84-4f7c-9021-73a4efc47921", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NDksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/4a7c10c7-4abd-47b4-b4c3-dee33377fbdf.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/4a7c10c7-4abd-47b4-b4c3-dee33377fbdf.json new file mode 100644 index 000000000000..10e1e9107ab6 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/4a7c10c7-4abd-47b4-b4c3-dee33377fbdf.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Destinations [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Destination Hosts", + "field": "destination.domain", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "maxFontSize": 60, + "minFontSize": 10, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear" + }, + "title": "Top 10 Destinations [Filebeat CEF]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4a7c10c7-4abd-47b4-b4c3-dee33377fbdf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ3MTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/4e25b5ce-53c3-46fc-b5e5-71d3c52f1956.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/4e25b5ce-53c3-46fc-b5e5-71d3c52f1956.json new file mode 100644 index 000000000000..ed57611f5b27 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/4e25b5ce-53c3-46fc-b5e5-71d3c52f1956.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Sources [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Source Hosts", + "field": "source.domain", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "maxFontSize": 60, + "minFontSize": 10, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear" + }, + "title": "Top 10 Sources [Filebeat CEF]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4e25b5ce-53c3-46fc-b5e5-71d3c52f1956", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ3MTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/4fccee0c-7193-4aa8-919f-0b0b0a16d013.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/4fccee0c-7193-4aa8-919f-0b0b0a16d013.json new file mode 100644 index 000000000000..b6ab0dbcf57b --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/4fccee0c-7193-4aa8-919f-0b0b0a16d013.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top Source Locations by Events [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Event Count" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "customLabel": "Source Location", + "field": "source.geo.location", + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "listeners": {}, + "params": { + "addTooltip": true, + "heatBlur": 15, + "heatMaxZoom": 0, + "heatMinOpacity": 0.1, + "heatNormalizeData": true, + "heatRadius": 25, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 0, + 0 + ], + "mapType": "Shaded Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "attribution": "Maps provided by USGS", + "format": "image/png", + "layers": "0", + "styles": "", + "transparent": true, + "version": "1.3.0" + }, + "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" + } + }, + "title": "Top Source Locations by Events [Filebeat CEF]", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4fccee0c-7193-4aa8-919f-0b0b0a16d013", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/566d8b4e-ec5c-4b8b-bd68-3cc9cb236110.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/566d8b4e-ec5c-4b8b-bd68-3cc9cb236110.json new file mode 100644 index 000000000000..c9a097e205d6 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/566d8b4e-ec5c-4b8b-bd68-3cc9cb236110.json @@ -0,0 +1,131 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top Destinations by Traffic Size [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 18k": "rgb(247,251,255)", + "108k - 126k": "rgb(74,152,201)", + "126k - 144k": "rgb(46,126,188)", + "144k - 162k": "rgb(23,100,171)", + "162k - 180k": "rgb(8,74,145)", + "18k - 36k": "rgb(227,238,249)", + "36k - 54k": "rgb(208,225,242)", + "54k - 72k": "rgb(182,212,233)", + "72k - 90k": "rgb(148,196,223)", + "90k - 108k": "rgb(107,174,214)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "source.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "filters": [ + { + "input": { + "language": "lucene", + "query": "deviceDirection:\"0\"" + }, + "label": "Inbound" + }, + { + "input": { + "language": "lucene", + "query": "deviceDirection:\"1\"" + }, + "label": "Outbound" + } + ] + }, + "schema": "segment", + "type": "filters" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "destination.domain", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "colorSchema": "Blues", + "colorsNumber": 10, + "colorsRange": [ + { + "from": 0, + "to": null + } + ], + "enableHover": true, + "invertColors": false, + "legendPosition": "top", + "percentageMode": false, + "setColorRange": false, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "color": "#555", + "rotate": 0, + "show": false + }, + "scale": { + "defaultYExtents": false, + "type": "linear" + }, + "show": false, + "type": "value" + } + ] + }, + "title": "Top Destinations by Traffic Size [Filebeat CEF]", + "type": "heatmap" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "566d8b4e-ec5c-4b8b-bd68-3cc9cb236110", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:38.313Z", + "version": "WzQ3MzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/581a296e-e34a-48f1-93e4-fc4bdadfc68d.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/581a296e-e34a-48f1-93e4-fc4bdadfc68d.json new file mode 100644 index 000000000000..49cdc1bb0c34 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/581a296e-e34a-48f1-93e4-fc4bdadfc68d.json @@ -0,0 +1,82 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top Sources by Events [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "source.geo.location", + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "listeners": {}, + "params": { + "addTooltip": true, + "heatBlur": 15, + "heatMaxZoom": 0, + "heatMinOpacity": 0.1, + "heatRadius": 25, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 0, + 0 + ], + "mapType": "Shaded Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "attribution": "Maps provided by USGS", + "format": "image/png", + "layers": "0", + "styles": "", + "transparent": true, + "version": "1.3.0" + }, + "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" + } + }, + "title": "Top Sources by Events [Filebeat CEF]", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "581a296e-e34a-48f1-93e4-fc4bdadfc68d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:38.313Z", + "version": "WzQ3NDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/589fec8c-336e-4122-8fef-a450bddf84f6.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/589fec8c-336e-4122-8fef-a450bddf84f6.json new file mode 100644 index 000000000000..547bc6aa369e --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/589fec8c-336e-4122-8fef-a450bddf84f6.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Source Addresses [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Source Addresses", + "field": "source.ip", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "maxFontSize": 72, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear" + }, + "title": "Top 10 Source Addresses [Filebeat CEF]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "589fec8c-336e-4122-8fef-a450bddf84f6", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:40.331Z", + "version": "WzQ3NzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/59ad829b-12b8-4256-95a5-e7078eda628b.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/59ad829b-12b8-4256-95a5-e7078eda628b.json new file mode 100644 index 000000000000..139b5b126352 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/59ad829b-12b8-4256-95a5-e7078eda628b.json @@ -0,0 +1,201 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Source Users by Event Type and Destination Users [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Source Users", + "field": "source.user.name", + "order": "desc", + "orderBy": "1", + "size": 20 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Event Types", + "field": "cef.extensions.categoryBehavior" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Destination User Names", + "field": "destination.user.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Source Users" + }, + "type": "category" + } + ], + "defaultYExtents": false, + "drawLinesBetweenPoints": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "legendPosition": "right", + "radiusRatio": 9, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + }, + { + "data": { + "id": "3", + "label": "Event Types" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "lineWidth": 2, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-2" + }, + { + "data": { + "id": "4", + "label": "Destination User Names" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "lineWidth": 2, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-2" + } + ], + "setYExtents": false, + "showCircles": true, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "square root" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + }, + { + "id": "ValueAxis-2", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "RightAxis-1", + "position": "right", + "scale": { + "mode": "normal", + "type": "square root" + }, + "show": true, + "style": {}, + "title": { + "text": "" + }, + "type": "value" + } + ] + }, + "title": "Source Users by Event Type and Destination Users [Filebeat CEF]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "59ad829b-12b8-4256-95a5-e7078eda628b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ2OTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/5bf6e4dc-4273-4e1e-a803-04347eebeb53.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/5bf6e4dc-4273-4e1e-a803-04347eebeb53.json new file mode 100644 index 000000000000..1d090a779655 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/5bf6e4dc-4273-4e1e-a803-04347eebeb53.json @@ -0,0 +1,106 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Outcomes by User Names [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "colors": { + "/Informational": "#7EB26D", + "/Informational/Warning": "#EF843C", + "/Success": "#64B0C8", + "Anti-Virus": "#B7DBAB", + "Host-based IDS/IPS": "#629E51", + "Log Consolidator": "#E0F9D7", + "Operating System": "#3F6833", + "Recon": "#BF1B00", + "Security Mangement": "#CFFAFF" + }, + "legendOpen": true + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "exclude": "Network-based IDS/IPS", + "field": "cef.extensions.categoryDeviceType", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "cef.extensions.categoryOutcome", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "6", + "params": { + "field": "destination.user.name", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Outcomes by User Names [Filebeat CEF]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5bf6e4dc-4273-4e1e-a803-04347eebeb53", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:37.252Z", + "version": "WzQ3MjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/5f187dc8-aa7e-4f91-a2d8-1186ce254d00.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/5f187dc8-aa7e-4f91-a2d8-1186ce254d00.json new file mode 100644 index 000000000000..e9fc7c018d97 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/5f187dc8-aa7e-4f91-a2d8-1186ce254d00.json @@ -0,0 +1,203 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Events by Source and Destination Users [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Event Count" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Timestamp", + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Source Users", + "field": "source.user.name" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Destination Users", + "field": "destination.user.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Timestamp" + }, + "type": "category" + } + ], + "defaultYExtents": false, + "drawLinesBetweenPoints": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "legendPosition": "right", + "radiusRatio": 9, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Event Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + }, + { + "data": { + "id": "3", + "label": "Source Users" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "lineWidth": 3, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-2" + }, + { + "data": { + "id": "4", + "label": "Destination Users" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "lineWidth": 3, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-2" + } + ], + "setYExtents": false, + "showCircles": true, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Event Count" + }, + "type": "value" + }, + { + "id": "ValueAxis-2", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "RightAxis-1", + "position": "right", + "scale": { + "mode": "normal", + "type": "square root" + }, + "show": true, + "style": {}, + "title": { + "text": "" + }, + "type": "value" + } + ] + }, + "title": "Events by Source and Destination Users [Filebeat CEF]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5f187dc8-aa7e-4f91-a2d8-1186ce254d00", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ3MDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/6437e9bb-9ed1-4e2d-bb10-e63ccd35c409.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/6437e9bb-9ed1-4e2d-bb10-e63ccd35c409.json new file mode 100644 index 000000000000..e6706dcff855 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/6437e9bb-9ed1-4e2d-bb10-e63ccd35c409.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Source Users by Destination Users [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Source Users", + "field": "source.user.name", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Destination Users", + "field": "destination.user.name", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Top 10 Source Users by Destination Users [Filebeat CEF]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6437e9bb-9ed1-4e2d-bb10-e63ccd35c409", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ3MDksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/677891a1-90c4-4273-b126-f0e54689bd76.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/677891a1-90c4-4273-b126-f0e54689bd76.json new file mode 100644 index 000000000000..eab128e0ba60 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/677891a1-90c4-4273-b126-f0e54689bd76.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": " Dashboard Navigation [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "markdown": "[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)" + }, + "title": " Dashboard Navigation [Filebeat CEF]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "677891a1-90c4-4273-b126-f0e54689bd76", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:40.331Z", + "version": "WzQ3NzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/718b074e-3dd1-4d03-ba11-7f869cdcd703.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/718b074e-3dd1-4d03-ba11-7f869cdcd703.json new file mode 100644 index 000000000000..9dc5913f92bc --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/718b074e-3dd1-4d03-ba11-7f869cdcd703.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Events by Device [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceGroup:\"/Operating System\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Host\" OR cef.extensions.categoryDeviceGroup:\"/Application\"" + }, + "id": "fd1ffeb6-678e-4163-9421-6a164fd59048", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(254,37,37,1)", + "fill": "0", + "formatter": "number", + "id": "6a10f77d-4e26-4b27-9c19-f1b0029b075b", + "label": "Events", + "line_width": "3", + "metrics": [ + { + "id": "845b9164-65f4-4599-b9cc-8d91b6ba8d83", + "type": "count" + }, + { + "alpha": 0.3, + "beta": 0.1, + "field": "845b9164-65f4-4599-b9cc-8d91b6ba8d83", + "gamma": 0.3, + "id": "59675e84-1a8e-41df-9f63-875109bd795a", + "model_type": "simple", + "multiplicative": false, + "period": 1, + "type": "moving_average", + "window": "10" + } + ], + "point_size": 1, + "seperate_axis": 1, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "rgba(244,78,59,1)", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceGroup:\"/Operating System\" " + }, + "id": "d9a580c3-eb83-4d20-a391-0934d7df8837", + "label": "Operating System" + }, + { + "color": "rgba(254,146,0,1)", + "filter": { + "language": "lucene", + "query": " cef.extensions.categoryDeviceGroup:\"/IDS/Host\"" + }, + "id": "9ce8be14-6191-4c9a-a679-e3992fdab8d2", + "label": "Host IDS" + }, + { + "color": "rgba(252,220,0,1)", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceGroup:\"/Application\"" + }, + "id": "262ecd54-a042-4bfb-b489-d7db8431c36e", + "label": "Application" + } + ], + "split_mode": "filters", + "stacked": "none" + }, + { + "axis_position": "left", + "chart_type": "bar", + "color": "rgba(0,156,224,1)", + "fill": 0.5, + "formatter": "number", + "id": "92e98952-8e25-472f-abb5-05a7d9b830ea", + "label": "Moving Average by Device HostNames", + "line_width": 1, + "metrics": [ + { + "id": "3df841a9-5997-4a1a-ad8f-69620d23e65b", + "type": "count" + }, + { + "alpha": 0.3, + "beta": 0.1, + "field": "3df841a9-5997-4a1a-ad8f-69620d23e65b", + "gamma": 0.3, + "id": "9765367a-0fc2-45ba-88a8-e87991210edd", + "model_type": "simple", + "multiplicative": false, + "period": 1, + "type": "moving_average", + "window": "10" + } + ], + "point_size": 1, + "seperate_axis": 1, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "observer.hostname" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Events by Device [Filebeat CEF]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "718b074e-3dd1-4d03-ba11-7f869cdcd703", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:37.252Z", + "version": "WzQ3MTksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/7454c034-c5f3-48fe-8fce-ef4385c80350.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/7454c034-c5f3-48fe-8fce-ef4385c80350.json new file mode 100644 index 000000000000..4a3fc25fffff --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/7454c034-c5f3-48fe-8fce-ef4385c80350.json @@ -0,0 +1,135 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Endpoint Metrics Overview [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Event Count" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Devices", + "field": "observer.hostname" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Source", + "field": "source.ip" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Destination", + "field": "destination.ip" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Port", + "field": "destination.port" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "fontSize": "30", + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "12", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "handleNoResults": true, + "type": "gauge" + }, + "title": "Endpoint Metrics Overview [Filebeat CEF]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7454c034-c5f3-48fe-8fce-ef4385c80350", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:37.252Z", + "version": "WzQ3MjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/74d2c072-6dfd-4249-8e63-dc7b0cf3c960.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/74d2c072-6dfd-4249-8e63-dc7b0cf3c960.json new file mode 100644 index 000000000000..5e9452059c98 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/74d2c072-6dfd-4249-8e63-dc7b0cf3c960.json @@ -0,0 +1,65 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 5 Source Countries [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "source.geo.country_iso_code", + "order": "desc", + "orderBy": "1", + "size": 20 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "maxFontSize": 72, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear" + }, + "title": "Top 5 Source Countries [Filebeat CEF]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "74d2c072-6dfd-4249-8e63-dc7b0cf3c960", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:37.252Z", + "version": "WzQ3MjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/759e8dc3-0fdb-4cb6-ba47-87a2e2ff8df3.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/759e8dc3-0fdb-4cb6-ba47-87a2e2ff8df3.json new file mode 100644 index 000000000000..b0e60fe900b9 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/759e8dc3-0fdb-4cb6-ba47-87a2e2ff8df3.json @@ -0,0 +1,65 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Event Types [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "cef.device.event_class_id", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "maxFontSize": 50, + "minFontSize": 12, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "square root" + }, + "title": "Top 10 Event Types [Filebeat CEF]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "759e8dc3-0fdb-4cb6-ba47-87a2e2ff8df3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:38.313Z", + "version": "WzQ3MzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/76c088c3-486e-4420-8840-5ede667edffe.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/76c088c3-486e-4420-8840-5ede667edffe.json new file mode 100644 index 000000000000..4399d72ecb25 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/76c088c3-486e-4420-8840-5ede667edffe.json @@ -0,0 +1,103 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Endpoint - OS Average EPS [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "id": "ce9549a0-3af0-4070-b169-4b6d145d4c39" + } + ], + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceGroup:\"/Operating System\"" + }, + "gauge_color_rules": [ + { + "id": "03a2fd72-fc9c-4582-9133-20af36217180" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "94161c6c-4f48-4beb-9d78-f79f29c02a34", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": 0.5, + "formatter": "number", + "id": "b4373ffd-9660-4206-afd6-d4867ac7dbdf", + "label": "Event Throughput", + "line_width": 1, + "metrics": [ + { + "id": "b1a48389-d799-4eba-8b98-7ee8ef0bb440", + "type": "count" + }, + { + "field": "b1a48389-d799-4eba-8b98-7ee8ef0bb440", + "id": "89f8286e-4aec-4cb4-83ad-b139692edf3d", + "type": "cumulative_sum" + }, + { + "field": "89f8286e-4aec-4cb4-83ad-b139692edf3d", + "id": "1df39e5f-3e98-4ed7-ab08-47f3ca2ee915", + "type": "derivative", + "unit": "1s" + }, + { + "alpha": 0.3, + "beta": 0.1, + "field": "1df39e5f-3e98-4ed7-ab08-47f3ca2ee915", + "gamma": 0.3, + "id": "f46a6e6e-444f-4c7e-b5eb-e1a59568f2eb", + "model_type": "simple", + "multiplicative": false, + "period": 1, + "type": "moving_average", + "window": "10" + } + ], + "offset_time": "1m", + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}} / s" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Endpoint - OS Average EPS [Filebeat CEF]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "76c088c3-486e-4420-8840-5ede667edffe", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ3MDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/77ee0e91-010b-4897-b483-7e9a907d2afe.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/77ee0e91-010b-4897-b483-7e9a907d2afe.json new file mode 100644 index 000000000000..e77fb78413fc --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/77ee0e91-010b-4897-b483-7e9a907d2afe.json @@ -0,0 +1,113 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Behaviors by Outcome [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 9,000": "rgb(255,255,204)", + "18,000 - 27,000": "rgb(254,225,135)", + "27,000 - 36,000": "rgb(254,201,101)", + "36,000 - 45,000": "rgb(254,171,73)", + "45,000 - 54,000": "rgb(253,141,60)", + "54,000 - 63,000": "rgb(252,91,46)", + "63,000 - 72,000": "rgb(237,47,34)", + "72,000 - 81,000": "rgb(212,16,32)", + "81,000 - 90,000": "rgb(176,0,38)", + "9,000 - 18,000": "rgb(255,241,170)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Event Type", + "field": "cef.extensions.categoryBehavior", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Event Outcome", + "field": "cef.extensions.categoryOutcome", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "colorSchema": "Yellow to Red", + "colorsNumber": 10, + "colorsRange": [], + "enableHover": true, + "invertColors": false, + "legendPosition": "right", + "percentageMode": false, + "setColorRange": false, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "color": "#555", + "rotate": 0, + "show": false + }, + "scale": { + "defaultYExtents": false, + "type": "linear" + }, + "show": false, + "type": "value" + } + ] + }, + "title": "Top 10 Behaviors by Outcome [Filebeat CEF]", + "type": "heatmap" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "77ee0e91-010b-4897-b483-7e9a907d2afe", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ3MDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/7e2b0659-0760-4182-8b29-3ee69f26bc6f.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/7e2b0659-0760-4182-8b29-3ee69f26bc6f.json new file mode 100644 index 000000000000..5a745e1bb641 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/7e2b0659-0760-4182-8b29-3ee69f26bc6f.json @@ -0,0 +1,110 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "DNS - Event Throughput [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color_rules": [ + { + "id": "3eadd451-5033-423f-88e3-814cc5e50b50" + } + ], + "bar_color_rules": [ + { + "id": "fa374805-d1ca-4261-b723-9b482a7dd43a" + } + ], + "filter": { + "language": "lucene", + "query": "cef.device.product:\"DNS Trace Log\"" + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "4d957654-cc7e-4ef3-8b29-61c0aeadd51a", + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "73968651-c41e-473e-a153-a025f49d1a1b", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": 0.5, + "formatter": "number", + "id": "90d7621e-3265-4fe8-8882-8df9605ea659", + "label": "Event Throughput", + "line_width": 1, + "metrics": [ + { + "id": "ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba", + "type": "count" + }, + { + "field": "ba1830b9-9ce3-4bf1-8f4d-f7478b7f1bba", + "id": "cf3e6b1c-4136-4868-913e-0e82d88a8c9c", + "type": "cumulative_sum" + }, + { + "field": "cf3e6b1c-4136-4868-913e-0e82d88a8c9c", + "id": "0e407985-9ae4-4c1f-bb0e-16cd9bef7611", + "type": "derivative", + "unit": "1s" + }, + { + "alpha": 0.3, + "beta": 0.1, + "field": "0e407985-9ae4-4c1f-bb0e-16cd9bef7611", + "gamma": 0.3, + "id": "48026f85-83c8-40e6-aff4-71f3bd6c77c9", + "model_type": "simple", + "multiplicative": false, + "period": 1, + "type": "moving_average", + "window": "10" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}} / s" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "DNS - Event Throughput [Filebeat CEF]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7e2b0659-0760-4182-8b29-3ee69f26bc6f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:38.313Z", + "version": "WzQ3MzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/82f3fae3-1189-4f04-8ea5-47fde1d2e7b1.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/82f3fae3-1189-4f04-8ea5-47fde1d2e7b1.json new file mode 100644 index 000000000000..bd01d922f0d1 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/82f3fae3-1189-4f04-8ea5-47fde1d2e7b1.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 5 Sources by Destination Addresses [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Destination Addresses", + "field": "destination.ip" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Event Count" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Source Address", + "field": "source.ip", + "order": "desc", + "orderBy": "2", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top 5 Sources by Destination Addresses [Filebeat CEF]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "82f3fae3-1189-4f04-8ea5-47fde1d2e7b1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:40.331Z", + "version": "WzQ3NjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/86bd5f13-ca6b-43fa-b209-54e7460344bb.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/86bd5f13-ca6b-43fa-b209-54e7460344bb.json new file mode 100644 index 000000000000..5afd95a5dca8 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/86bd5f13-ca6b-43fa-b209-54e7460344bb.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Destination Addresses [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Destination Addresses", + "field": "destination.ip", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "maxFontSize": 72, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear" + }, + "title": "Top 10 Destination Addresses [Filebeat CEF]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "86bd5f13-ca6b-43fa-b209-54e7460344bb", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:40.331Z", + "version": "WzQ3NzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/89998099-9a39-44cf-beba-5b97f0524cf9.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/89998099-9a39-44cf-beba-5b97f0524cf9.json new file mode 100644 index 000000000000..1c2ab4dbe7cd --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/89998099-9a39-44cf-beba-5b97f0524cf9.json @@ -0,0 +1,151 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Outcomes Breakdown [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "colors": { + "/Attempt": "#3F2B5B", + "/Failure": "#BF1B00" + }, + "legendOpen": true + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Time", + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "cef.extensions.categoryOutcome", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Time" + }, + "type": "category" + } + ], + "defaultYExtents": false, + "drawLinesBetweenPoints": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "legendPosition": "right", + "radiusRatio": 9, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "showCircles": true, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "value" + } + ] + }, + "title": "Outcomes Breakdown [Filebeat CEF]", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "89998099-9a39-44cf-beba-5b97f0524cf9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:37.252Z", + "version": "WzQ3MTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/8b31af8b-522e-41fe-b9d6-9a3451b54108.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/8b31af8b-522e-41fe-b9d6-9a3451b54108.json new file mode 100644 index 000000000000..8f79fe66d4d7 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/8b31af8b-522e-41fe-b9d6-9a3451b54108.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top Destination Locations by Events [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Event Count" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "customLabel": "Destination Location", + "field": "destination.geo.location", + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "listeners": {}, + "params": { + "addTooltip": true, + "heatBlur": 15, + "heatMaxZoom": 0, + "heatMinOpacity": 0.1, + "heatNormalizeData": true, + "heatRadius": 25, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 0, + 0 + ], + "mapType": "Shaded Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "attribution": "Maps provided by USGS", + "format": "image/png", + "layers": "0", + "styles": "", + "transparent": true, + "version": "1.3.0" + }, + "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" + } + }, + "title": "Top Destination Locations by Events [Filebeat CEF]", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8b31af8b-522e-41fe-b9d6-9a3451b54108", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/8cd00d20-957d-4663-be4d-ea80b1609586.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/8cd00d20-957d-4663-be4d-ea80b1609586.json new file mode 100644 index 000000000000..2593c1a43ec2 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/8cd00d20-957d-4663-be4d-ea80b1609586.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Source Users [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Source Users", + "field": "source.user.name", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "maxFontSize": 60, + "minFontSize": 10, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear" + }, + "title": "Top 10 Source Users [Filebeat CEF]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8cd00d20-957d-4663-be4d-ea80b1609586", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ3MTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/8f6075c5-f525-4173-92a4-3a56e96e362d.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/8f6075c5-f525-4173-92a4-3a56e96e362d.json new file mode 100644 index 000000000000..6799848e07b5 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/8f6075c5-f525-4173-92a4-3a56e96e362d.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Source Countries by Events [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Total Events" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Source Country", + "field": "source.geo.country_iso_code", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Source Addresses", + "field": "source.ip" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Destination Addresses", + "field": "destination.ip" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Destination Ports", + "field": "destination.port" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top 10 Source Countries by Events [Filebeat CEF]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8f6075c5-f525-4173-92a4-3a56e96e362d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/92aecea0-a632-4a55-bb56-50e4cdaca036.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/92aecea0-a632-4a55-bb56-50e4cdaca036.json new file mode 100644 index 000000000000..540ddb057cc6 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/92aecea0-a632-4a55-bb56-50e4cdaca036.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 5 Vendors by Product [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "OS Vendor", + "field": "cef.device.vendor", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "OS Product", + "field": "cef.device.product", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Top 5 Vendors by Product [Filebeat CEF]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "92aecea0-a632-4a55-bb56-50e4cdaca036", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ3MDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/9457ee67-895f-4b78-a543-268f9687a745.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/9457ee67-895f-4b78-a543-268f9687a745.json new file mode 100644 index 000000000000..9001d9fdd82e --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/9457ee67-895f-4b78-a543-268f9687a745.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Endpoint Average EPS [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "id": "85a1c642-9781-430d-b84b-b28cb2a42fb4" + } + ], + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceGroup:\"/Operating System\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Host\" OR cef.extensions.categoryDeviceGroup:\"/Application\"" + }, + "gauge_color_rules": [ + { + "id": "03a2fd72-fc9c-4582-9133-20af36217180" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "b7a85957-123e-4e25-9e8e-ff7992c9b2b9", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": 0.5, + "formatter": "number", + "id": "b4373ffd-9660-4206-afd6-d4867ac7dbdf", + "label": "Event Throughput", + "line_width": 1, + "metrics": [ + { + "id": "b1a48389-d799-4eba-8b98-7ee8ef0bb440", + "type": "count" + }, + { + "field": "b1a48389-d799-4eba-8b98-7ee8ef0bb440", + "id": "7c5c44cc-17bd-4206-a100-b8996cd3d11a", + "type": "cumulative_sum" + }, + { + "field": "7c5c44cc-17bd-4206-a100-b8996cd3d11a", + "id": "215c5225-5368-40e6-8fcd-2b0026babba0", + "type": "derivative", + "unit": "1s" + }, + { + "alpha": 0.3, + "beta": 0.1, + "field": "215c5225-5368-40e6-8fcd-2b0026babba0", + "gamma": 0.3, + "id": "f4dfe09a-e397-4287-ab99-3206516cded3", + "model_type": "simple", + "multiplicative": false, + "period": 1, + "type": "moving_average", + "window": "10" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}} / s" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Endpoint Average EPS [Filebeat CEF]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9457ee67-895f-4b78-a543-268f9687a745", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:37.252Z", + "version": "WzQ3MTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/9bef4db9-a8b2-4be8-b2b0-6ea02fab424d.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/9bef4db9-a8b2-4be8-b2b0-6ea02fab424d.json new file mode 100644 index 000000000000..5df2266aef26 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/9bef4db9-a8b2-4be8-b2b0-6ea02fab424d.json @@ -0,0 +1,114 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Events by Severity [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "bar_color_rules": [ + { + "id": "0ca18a89-9c81-4bee-835a-85e6103aec37" + } + ], + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceGroup:\"/Firewall\"" + }, + "hide_last_value_indicator": true, + "id": "c39a76e5-f613-41a9-8335-c442747791e0", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "0.0[0]a", + "id": "da3b92b4-2c24-473b-9102-fb5a343a96d9", + "label": "Event by Severities", + "line_width": 1, + "metrics": [ + { + "id": "0d189776-3f7c-4a92-95b1-73c379a341fc", + "type": "count" + }, + { + "field": "0d189776-3f7c-4a92-95b1-73c379a341fc", + "id": "1b1c931c-a09b-4980-af81-6f9c3db56401", + "sigma": "", + "type": "sum_bucket" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "rgba(104,204,202,1)", + "filter": { + "language": "lucene", + "query": "severity:\"Low\" OR severity:\"0\"" + }, + "id": "ebe970ac-5cc9-4c4a-af60-82affafc667c", + "label": "LOW" + }, + { + "color": "rgba(252,220,0,1)", + "filter": { + "language": "lucene", + "query": "severity:\"Medium\"" + }, + "id": "0c4ff16a-b53d-4ce4-af76-d6b74d8788db", + "label": "MEDIUM" + }, + { + "color": "rgba(254,146,0,1)", + "filter": { + "language": "lucene", + "query": "severity:\"High\"" + }, + "id": "e142c55b-6ee5-416a-8bd3-d10398044864", + "label": "HIGH" + }, + { + "color": "rgba(244,78,59,1)", + "filter": { + "language": "lucene", + "query": "severity:\"Very-High\"" + }, + "id": "4b05b562-c419-4214-b814-d4c242251521", + "label": "VERY HIGH" + } + ], + "split_mode": "filters", + "stacked": "none" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Events by Severity [Filebeat CEF]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9bef4db9-a8b2-4be8-b2b0-6ea02fab424d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:40.331Z", + "version": "WzQ3NjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/a729c249-8d34-4eb1-bbb0-5d25cf224114.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/a729c249-8d34-4eb1-bbb0-5d25cf224114.json new file mode 100644 index 000000000000..fa9518dfb258 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/a729c249-8d34-4eb1-bbb0-5d25cf224114.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Devices by Outcome [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0% - 17%": "rgb(255,255,204)", + "17% - 34%": "rgb(255,230,146)", + "34% - 50%": "rgb(254,191,90)", + "50% - 67%": "rgb(253,141,60)", + "67% - 84%": "rgb(244,61,37)", + "84% - 100%": "rgb(202,8,35)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Device Host Names", + "field": "observer.hostname", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Event Outcome", + "field": "cef.extensions.categoryOutcome", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "colorSchema": "Yellow to Red", + "colorsNumber": 6, + "colorsRange": [], + "enableHover": true, + "invertColors": false, + "legendPosition": "right", + "percentageMode": true, + "setColorRange": false, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "color": "#555", + "rotate": 0, + "show": false + }, + "scale": { + "defaultYExtents": false, + "type": "linear" + }, + "show": false, + "type": "value" + } + ] + }, + "title": "Top 10 Devices by Outcome [Filebeat CEF]", + "type": "heatmap" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a729c249-8d34-4eb1-bbb0-5d25cf224114", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/a97e3628-022b-46cf-8f29-a73cf9bb4e26.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/a97e3628-022b-46cf-8f29-a73cf9bb4e26.json new file mode 100644 index 000000000000..38a1d0a94405 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/a97e3628-022b-46cf-8f29-a73cf9bb4e26.json @@ -0,0 +1,167 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Events by Source [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color": null, + "background_color_rules": [ + { + "id": "2fddda5e-d6fc-4581-bbb7-574e1017ae8f" + } + ], + "bar_color_rules": [ + { + "id": "23db5bf6-f787-474e-86ab-76362432e984" + } + ], + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceType:\"Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\"" + }, + "gauge_color_rules": [ + { + "id": "3ed9a6b9-fd2e-4e0d-bd83-7ad467b3c8a4" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "ec53a1d3-213c-4b0f-a074-5005a84cdb83", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": "0", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceGroup:\"/Firewall\"" + }, + "formatter": "number", + "id": "04c44192-1112-4515-a8d9-e9e13215aecf", + "label": "Events", + "line_width": "3", + "metrics": [ + { + "id": "c5dbb050-fc10-4a0d-abe0-bc093db6cf0e", + "type": "count" + }, + { + "alpha": 0.3, + "beta": 0.1, + "field": "c5dbb050-fc10-4a0d-abe0-bc093db6cf0e", + "gamma": 0.3, + "id": "e5a48d9d-7834-4da7-8d78-7d4528136b9b", + "model_type": "simple", + "multiplicative": false, + "period": 1, + "sigma": "", + "type": "moving_average", + "window": "10" + } + ], + "point_size": "0", + "seperate_axis": 1, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "rgba(244,78,59,1)", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceGroup:\"/Firewall\"" + }, + "id": "0c929603-fc92-4ebc-a963-fe2795417d89", + "label": "Firewall Events" + }, + { + "color": "rgba(254,146,0,1)", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceGroup:\"/IDS/Network\"" + }, + "id": "7798827b-87ab-436b-9e62-9fe36143eb9b", + "label": "Intrusion Detection Events" + }, + { + "color": "rgba(252,220,0,1)", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceGroup:\"/VPN\"" + }, + "id": "490f7ad7-8218-45f9-85a9-a4dd9ed7da13", + "label": "VPN" + } + ], + "split_mode": "filters", + "stacked": "none", + "steps": 0, + "terms_field": "observer.hostname", + "terms_order_by": null + }, + { + "axis_position": "left", + "chart_type": "bar", + "color": "rgba(0,156,224,1)", + "fill": "0.5", + "formatter": "number", + "id": "29d6131a-5143-4a64-b597-9538692f0269", + "label": "Moving Average by Device Hosts", + "line_width": 1, + "metrics": [ + { + "id": "dc74afdf-64ad-47d6-bbed-114e09d12255", + "type": "count" + }, + { + "alpha": 0.3, + "beta": 0.1, + "field": "dc74afdf-64ad-47d6-bbed-114e09d12255", + "gamma": 0.3, + "id": "87e21aaa-12eb-4213-bb37-41cb19219240", + "model_type": "simple", + "multiplicative": false, + "period": 1, + "type": "moving_average", + "window": "10" + } + ], + "point_size": 1, + "seperate_axis": 1, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "observer.hostname", + "terms_size": "10" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Events by Source [Filebeat CEF]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a97e3628-022b-46cf-8f29-a73cf9bb4e26", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/aaa80503-6d96-4a33-806f-b8a10aefe696.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/aaa80503-6d96-4a33-806f-b8a10aefe696.json new file mode 100644 index 000000000000..41f1fd5e58bb --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/aaa80503-6d96-4a33-806f-b8a10aefe696.json @@ -0,0 +1,83 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top Destination Locations by Event [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "destination.geo.location", + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "listeners": {}, + "params": { + "addTooltip": true, + "heatBlur": 15, + "heatMaxZoom": 0, + "heatMinOpacity": 0.1, + "heatNormalizeData": true, + "heatRadius": 25, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 0, + 0 + ], + "mapType": "Shaded Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "attribution": "Maps provided by USGS", + "format": "image/png", + "layers": "0", + "styles": "", + "transparent": true, + "version": "1.3.0" + }, + "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" + } + }, + "title": "Top Destination Locations by Event [Filebeat CEF]", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "aaa80503-6d96-4a33-806f-b8a10aefe696", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:37.252Z", + "version": "WzQ3MjksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/acc915fe-b971-4795-9040-3fbfdf62abe1.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/acc915fe-b971-4795-9040-3fbfdf62abe1.json new file mode 100644 index 000000000000..4a8ef7f50ffb --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/acc915fe-b971-4795-9040-3fbfdf62abe1.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Destination Users [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Destination Users", + "field": "destination.user.name", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "maxFontSize": 60, + "minFontSize": 10, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear" + }, + "title": "Top 10 Destination Users [Filebeat CEF]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "acc915fe-b971-4795-9040-3fbfdf62abe1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ3MTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/b1002b5c-08fc-4bbe-b9a0-6243a8637e60.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/b1002b5c-08fc-4bbe-b9a0-6243a8637e60.json new file mode 100644 index 000000000000..03e2b9124075 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/b1002b5c-08fc-4bbe-b9a0-6243a8637e60.json @@ -0,0 +1,152 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Outcome by Device Type [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "colors": { + "/Failure": "#BF1B00", + "/Success": "#629E51" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Firewall Types", + "field": "cef.extensions.categoryDeviceType", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Event Outcome", + "field": "cef.extensions.categoryOutcome", + "order": "desc", + "orderBy": "1", + "size": 3 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "rotate": 75, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Firewall Types" + }, + "type": "category" + } + ], + "defaultYExtents": false, + "drawLinesBetweenPoints": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "legendPosition": "right", + "orderBucketsBySum": true, + "radiusRatio": 9, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "showCircles": true, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "percentage", + "type": "square root" + }, + "show": true, + "style": {}, + "title": {}, + "type": "value" + } + ] + }, + "title": "Outcome by Device Type [Filebeat CEF]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b1002b5c-08fc-4bbe-b9a0-6243a8637e60", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/c394e650-b16c-407c-b305-bd409d69d433.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/c394e650-b16c-407c-b305-bd409d69d433.json new file mode 100644 index 000000000000..cee997e7a21d --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/c394e650-b16c-407c-b305-bd409d69d433.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": " Dashboard Navigation [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "markdown": "[Network Overview](#/dashboard/dd0bc9af-2e89-4150-9b42-62517ea56b71) | [Network Suspicious Activity](#/dashboard/db1e1aca-279e-4ecc-b84e-fe58644f7619) | [Endpoint Overview](#dashboard/c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b) | [Endpoint OS Activity](#/dashboard/9e352900-89c3-4c1b-863e-249e24d0dac9) | [Microsoft DNS Overview](#/dashboard/56428e01-0c47-4770-8ba4-9345a029ea41)" + }, + "title": " Dashboard Navigation [Filebeat CEF]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c394e650-b16c-407c-b305-bd409d69d433", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/c5120e27-1f8c-41e3-83ee-78ec4d470c2f.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/c5120e27-1f8c-41e3-83ee-78ec4d470c2f.json new file mode 100644 index 000000000000..228afb68970f --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/c5120e27-1f8c-41e3-83ee-78ec4d470c2f.json @@ -0,0 +1,65 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Destination Port [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "destination.port", + "order": "desc", + "orderBy": "1", + "size": 20 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "maxFontSize": 72, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear" + }, + "title": "Top 10 Destination Port [Filebeat CEF]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c5120e27-1f8c-41e3-83ee-78ec4d470c2f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:37.252Z", + "version": "WzQ3MjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/d02dd523-ce91-40e9-9209-83797f80ed45.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/d02dd523-ce91-40e9-9209-83797f80ed45.json new file mode 100644 index 000000000000..68002a1d6ae0 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/d02dd523-ce91-40e9-9209-83797f80ed45.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Events by Source Addresses [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color": null, + "background_color_rules": [ + { + "id": "a0bf5a1d-8ebf-49d4-a347-738a6ce20562" + } + ], + "bar_color_rules": [ + { + "id": "23db5bf6-f787-474e-86ab-76362432e984" + } + ], + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceGroup:\"/Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\" " + }, + "gauge_color_rules": [ + { + "id": "42f84a0a-ee13-4ca8-b61d-3de482ae4ab0" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "ec53a1d3-213c-4b0f-a074-5005a84cdb83", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": "0", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceGroup:\"/Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\" " + }, + "formatter": "number", + "id": "04c44192-1112-4515-a8d9-e9e13215aecf", + "label": "Events", + "line_width": "3", + "metrics": [ + { + "id": "c5dbb050-fc10-4a0d-abe0-bc093db6cf0e", + "type": "count" + }, + { + "alpha": 0.3, + "beta": 0.1, + "field": "c5dbb050-fc10-4a0d-abe0-bc093db6cf0e", + "gamma": 0.3, + "id": "117fde19-e227-4fcb-8019-e82e6677c340", + "model_type": "simple", + "multiplicative": false, + "period": 1, + "sigma": "", + "type": "moving_average", + "window": "10" + } + ], + "point_size": "0", + "seperate_axis": 1, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "observer.hostmessage", + "terms_order_by": null, + "value_template": "{{value}}" + }, + { + "axis_position": "left", + "chart_type": "bar", + "color": "rgba(104,188,0,1)", + "fill": "0.5", + "formatter": "number", + "id": "3ffe652e-43c2-4a1d-ad8a-f7ab10f09f2b", + "label": "Top Source Addresses", + "line_width": "0", + "metrics": [ + { + "id": "dc74afdf-64ad-47d6-bbed-114e09d12255", + "type": "count" + }, + { + "alpha": 0.3, + "beta": 0.1, + "field": "dc74afdf-64ad-47d6-bbed-114e09d12255", + "gamma": 0.3, + "id": "b753ad38-c3ed-4463-8f6d-176f4d477897", + "model_type": "simple", + "multiplicative": false, + "period": 1, + "type": "moving_average", + "window": "10" + } + ], + "point_size": 1, + "seperate_axis": 1, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "source.ip", + "terms_size": "10" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Events by Source Addresses [Filebeat CEF]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d02dd523-ce91-40e9-9209-83797f80ed45", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:40.331Z", + "version": "WzQ3NzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/d061c7a9-7f92-4bf4-b35c-499b9f4b987a.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/d061c7a9-7f92-4bf4-b35c-499b9f4b987a.json new file mode 100644 index 000000000000..75b1abadbb30 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/d061c7a9-7f92-4bf4-b35c-499b9f4b987a.json @@ -0,0 +1,135 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Device Metrics Overview [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "8", + "params": { + "customLabel": "Event Count" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Devices", + "field": "observer.hostname" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Sources", + "field": "source.ip" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "Destinations", + "field": "destination.ip" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "7", + "params": { + "customLabel": "Ports", + "field": "destination.port" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "fontSize": "30", + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "12", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "handleNoResults": true, + "type": "gauge" + }, + "title": "Device Metrics Overview [Filebeat CEF]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d061c7a9-7f92-4bf4-b35c-499b9f4b987a", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/df056709-2deb-4363-ae7a-b0148ea456c6.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/df056709-2deb-4363-ae7a-b0148ea456c6.json new file mode 100644 index 000000000000..045e20af7913 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/df056709-2deb-4363-ae7a-b0148ea456c6.json @@ -0,0 +1,152 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Destination Ports by Outcome [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "colors": { + "/Failure": "#BF1B00", + "/Success": "#629E51" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Protocols", + "field": "destination.port", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "cef.extensions.categoryOutcome", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "rotate": 75, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Protocols" + }, + "type": "category" + } + ], + "defaultYExtents": false, + "drawLinesBetweenPoints": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "legendPosition": "right", + "radiusRatio": 9, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "showCircles": true, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "percentage", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Destination Ports by Outcome [Filebeat CEF]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "df056709-2deb-4363-ae7a-b0148ea456c6", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/e06d85f2-2da4-41e2-b2ab-f685b64bb3f9.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/e06d85f2-2da4-41e2-b2ab-f685b64bb3f9.json new file mode 100644 index 000000000000..130bedc890ff --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/e06d85f2-2da4-41e2-b2ab-f685b64bb3f9.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 20 Behaviors by Outcome [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Event Behavior", + "field": "cef.extensions.categoryBehavior", + "order": "desc", + "orderBy": "1", + "size": 20 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Event Outcome", + "field": "cef.extensions.categoryOutcome", + "order": "desc", + "orderBy": "1", + "size": 3 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Top 20 Behaviors by Outcome [Filebeat CEF]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e06d85f2-2da4-41e2-b2ab-f685b64bb3f9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "e6cf2383-71f4-4db1-a791-1a7d4f110194", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:36.211Z", + "version": "WzQ3MDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/e513c269-350c-40c3-ac20-16c5782103b8.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/e513c269-350c-40c3-ac20-16c5782103b8.json new file mode 100644 index 000000000000..78d53cbfe408 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/e513c269-350c-40c3-ac20-16c5782103b8.json @@ -0,0 +1,146 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Events by Device Types [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "background_color": null, + "background_color_rules": [ + { + "id": "2fddda5e-d6fc-4581-bbb7-574e1017ae8f" + } + ], + "bar_color_rules": [ + { + "id": "23db5bf6-f787-474e-86ab-76362432e984" + } + ], + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceType:\"Firewall\" OR cef.extensions.categoryDeviceGroup:\"/IDS/Network\" OR cef.extensions.categoryDeviceGroup:\"/VPN\"" + }, + "gauge_color_rules": [ + { + "id": "3ed9a6b9-fd2e-4e0d-bd83-7ad467b3c8a4" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "ec53a1d3-213c-4b0f-a074-5005a84cdb83", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": "0", + "filter": "", + "formatter": "number", + "id": "04c44192-1112-4515-a8d9-e9e13215aecf", + "label": "Events", + "line_width": "3", + "metrics": [ + { + "id": "c5dbb050-fc10-4a0d-abe0-bc093db6cf0e", + "type": "count" + }, + { + "alpha": 0.3, + "beta": 0.1, + "field": "c5dbb050-fc10-4a0d-abe0-bc093db6cf0e", + "gamma": 0.3, + "id": "e5a48d9d-7834-4da7-8d78-7d4528136b9b", + "model_type": "simple", + "multiplicative": false, + "period": 1, + "sigma": "", + "type": "moving_average", + "window": "10" + } + ], + "point_size": "0", + "seperate_axis": 1, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "rgba(244,78,59,1)", + "filter": { + "language": "lucene", + "query": "cef.extensions.categoryDeviceGroup:\"/Firewall\"" + }, + "id": "78bfdf07-ec02-4dd8-8ff4-b7e250c561c2", + "label": "Firewall" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "observer.hostname", + "terms_order_by": null + }, + { + "axis_position": "left", + "chart_type": "bar", + "color": "rgba(251,158,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "29d6131a-5143-4a64-b597-9538692f0269", + "label": "Top Device Types by Mvg Averages", + "line_width": 1, + "metrics": [ + { + "id": "dc74afdf-64ad-47d6-bbed-114e09d12255", + "type": "count" + }, + { + "alpha": 0.3, + "beta": 0.1, + "field": "dc74afdf-64ad-47d6-bbed-114e09d12255", + "gamma": 0.3, + "id": "87e21aaa-12eb-4213-bb37-41cb19219240", + "model_type": "simple", + "multiplicative": false, + "period": 1, + "type": "moving_average", + "window": "10" + } + ], + "point_size": 1, + "seperate_axis": 1, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "cef.extensions.categoryDeviceType", + "terms_size": "10" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Events by Device Types [Filebeat CEF]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e513c269-350c-40c3-ac20-16c5782103b8", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/e89a64e8-928c-41fc-8745-3c8157b21cdb.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/e89a64e8-928c-41fc-8745-3c8157b21cdb.json new file mode 100644 index 000000000000..fea253536598 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/e89a64e8-928c-41fc-8745-3c8157b21cdb.json @@ -0,0 +1,120 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Devices by Bandwidth [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Device", + "field": "observer.hostname", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Source(s)", + "field": "source.ip" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Destination(s)", + "field": "destination.ip" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "Destination Ports", + "field": "destination.port" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bandwidth (Incoming)", + "field": "source.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Bandwidth (Outgoing)", + "field": "destination.bytes" + }, + "schema": "metric", + "type": "sum" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top 10 Devices by Bandwidth [Filebeat CEF]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e89a64e8-928c-41fc-8745-3c8157b21cdb", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f03d734b-b85c-4e99-9c0e-9c89716a81f3.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f03d734b-b85c-4e99-9c0e-9c89716a81f3.json new file mode 100644 index 000000000000..eeadc6e5a549 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f03d734b-b85c-4e99-9c0e-9c89716a81f3.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 5 Sources by Destination Ports [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Destination Ports", + "field": "destination.port" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Event Count" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Source Address", + "field": "source.ip", + "order": "desc", + "orderBy": "2", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top 5 Sources by Destination Ports [Filebeat CEF]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f03d734b-b85c-4e99-9c0e-9c89716a81f3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:40.331Z", + "version": "WzQ3NjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f0e60404-ddf4-4b46-8e45-e28c4fb6d60d.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f0e60404-ddf4-4b46-8e45-e28c4fb6d60d.json new file mode 100644 index 000000000000..ca95657ba272 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f0e60404-ddf4-4b46-8e45-e28c4fb6d60d.json @@ -0,0 +1,117 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Events Types by Severity [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "filter": { + "language": "lucene", + "query": "cef.device.product:\"DNS Trace Log\"" + }, + "id": "db54ebce-9dd2-4a1e-b476-b3ddb9a9024e", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "81da76ca-1112-4d91-82f4-c66cd3156a84", + "label": "Cumulative Bytes", + "line_width": "3", + "metrics": [ + { + "field": "source.bytes", + "id": "521d560c-321a-4410-9eb3-2b2bf3f4efee", + "type": "count" + } + ], + "point_size": "0", + "seperate_axis": 1, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "rgba(244,78,59,1)", + "filter": { + "language": "lucene", + "query": "(event.severity:\"2\" OR event.severity:\"3\" OR event.severity:\"5\" OR event.severity:\"16\" OR cef.extension.deviceCustomString4:\"SERVFAIL\" OR cef.extension.deviceCustomString4:\"NXDOMAIN\" OR cef.extension.deviceCustomString4:\"REFUSED\" OR cef.extension.deviceCustomString4:\"BADVERS\" OR cef.extension.deviceCustomString4:\"BADSIG\")" + }, + "id": "3f31a7e4-acf3-4f2d-8b7d-e30522325b2a", + "label": "HIGH" + }, + { + "color": "rgba(254,146,0,1)", + "filter": { + "language": "lucene", + "query": "(event.severity:\"1\" OR event.severity:\"4\" OR event.severity:\"6\" OR event.severity:\"7\" OR event.severity:\"8\" OR event.severity:\"9\" OR event.severity:\"10\" OR event.severity:\"17\" OR event.severity:\"18\" OR event.severity:\"19\" OR event.severity:\"20\" OR event.severity:\"21\" OR event.severity:\"22\" OR cef.extension.deviceCustomString4:\"Error\" OR cef.extension.deviceCustomString4:\"ERROR\" OR cef.extension.deviceCustomString4:\"Warning\" OR cef.extension.deviceCustomString4:\"WARNING\" OR cef.extension.deviceCustomString4:\"FORMERR\" OR cef.extension.deviceCustomString4:\"NOTIMP\" OR cef.extension.deviceCustomString4:\"YXDOMAIN\" OR cef.extension.deviceCustomString4:\"YXRRSET\" OR cef.extension.deviceCustomString4:\"NXRRSET\" OR cef.extension.deviceCustomString4:\"NOTAUTH\" OR cef.extension.deviceCustomString4:\"NOTZONE\" OR cef.extension.deviceCustomString4:\"BADKEY\" OR cef.extension.deviceCustomString4:\"BADTIME\" OR cef.extension.deviceCustomString4:\"BADMODE\" OR cef.extension.deviceCustomString4:\"BADNAME\" OR cef.extension.deviceCustomString4:\"BADALG\" OR cef.extension.deviceCustomString4:\"BADTRUNC\")" + }, + "id": "7949d31b-8aae-433a-b7cf-6939a8728cc9", + "label": "MEDIUM" + }, + { + "color": "rgba(252,220,0,1)", + "filter": { + "language": "lucene", + "query": "(NOT (event.severity:\"2\" OR event.severity:\"3\" OR event.severity:\"5\" OR event.severity:\"16\" OR cef.extension.deviceCustomString4:\"SERVFAIL\" OR cef.extension.deviceCustomString4:\"NXDOMAIN\" OR cef.extension.deviceCustomString4:\"REFUSED\" OR cef.extension.deviceCustomString4:\"BADVERS\" OR cef.extension.deviceCustomString4:\"BADSIG\" OR event.severity:\"1\" OR event.severity:\"4\" OR event.severity:\"6\" OR event.severity:\"7\" OR event.severity:\"8\" OR event.severity:\"9\" OR event.severity:\"10\" OR event.severity:\"17\" OR event.severity:\"18\" OR event.severity:\"19\" OR event.severity:\"20\" OR event.severity:\"21\" OR event.severity:\"22\" OR cef.extension.deviceCustomString4:\"Error\" OR cef.extension.deviceCustomString4:\"ERROR\" OR cef.extension.deviceCustomString4:\"Warning\" OR cef.extension.deviceCustomString4:\"WARNING\" OR cef.extension.deviceCustomString4:\"FORMERR\" OR cef.extension.deviceCustomString4:\"NOTIMP\" OR cef.extension.deviceCustomString4:\"YXDOMAIN\" OR cef.extension.deviceCustomString4:\"YXRRSET\" OR cef.extension.deviceCustomString4:\"NXRRSET\" OR cef.extension.deviceCustomString4:\"NOTAUTH\" OR cef.extension.deviceCustomString4:\"NOTZONE\" OR cef.extension.deviceCustomString4:\"BADKEY\" OR cef.extension.deviceCustomString4:\"BADTIME\" OR cef.extension.deviceCustomString4:\"BADMODE\" OR cef.extension.deviceCustomString4:\"BADNAME\" OR cef.extension.deviceCustomString4:\"BADALG\" OR cef.extension.deviceCustomString4:\"BADTRUNC\"))" + }, + "id": "d2627211-5f9e-4c65-8a47-1cd6f085939d", + "label": "LOW" + } + ], + "split_mode": "filters", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "bar", + "color": "rgba(0,156,224,1)", + "fill": 0.5, + "formatter": "number", + "id": "a5fda184-fdd6-4221-ab59-492eab162f0a", + "label": "Count by Event Type", + "line_width": 1, + "metrics": [ + { + "id": "e147ba1c-b13a-496f-9841-b99ddee81c5a", + "type": "count" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "cef.device.event_class_id", + "terms_size": "20" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Events Types by Severity [Filebeat CEF]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f0e60404-ddf4-4b46-8e45-e28c4fb6d60d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:38.313Z", + "version": "WzQ3MzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f3c573ad-2c16-4de5-9ec3-0a47141d4fa0.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f3c573ad-2c16-4de5-9ec3-0a47141d4fa0.json new file mode 100644 index 000000000000..b499c3ba8c15 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f3c573ad-2c16-4de5-9ec3-0a47141d4fa0.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Events by Size [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "axis_formatter": "number", + "axis_position": "left", + "filter": { + "language": "lucene", + "query": "cef.device.product:\"DNS Trace Log\"" + }, + "id": "6e634117-6b30-411c-b74c-75510befe42f", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": 0.5, + "filter": { + "language": "lucene", + "query": "deviceDirection:\"0\"" + }, + "formatter": "bytes", + "id": "28b1fb5b-0f16-4519-b901-4dd2dcc39915", + "label": "Inbound Bytes", + "line_width": "2", + "metrics": [ + { + "field": "source.bytes", + "id": "f613f33f-6459-4e46-a3a0-c36c48c46b2e", + "type": "sum" + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "filter", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": 0.5, + "filter": { + "language": "lucene", + "query": "deviceDirection:\"1\"" + }, + "formatter": "bytes", + "id": "5a5c2529-4990-4006-b039-c94069ff6b7e", + "label": "Outbound Bytes", + "line_width": "2", + "metrics": [ + { + "field": "source.bytes", + "id": "b69501e7-56d5-4c38-81d1-34d778c81e11", + "type": "sum" + }, + { + "id": "0aaab374-5845-44ab-94f5-ac4fab25c287", + "script": "params.outbound_bytes >= 0 ? params.outbound_bytes * -1 : 0", + "type": "calculation", + "variables": [ + { + "field": "b69501e7-56d5-4c38-81d1-34d778c81e11", + "id": "23b8c41c-0e98-4ace-8bca-3593e46cd955", + "name": "outbound_bytes" + } + ] + } + ], + "point_size": 1, + "seperate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "filter", + "stacked": "none" + } + ], + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Events by Size [Filebeat CEF]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f3c573ad-2c16-4de5-9ec3-0a47141d4fa0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:38.313Z", + "version": "WzQ3NDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f5258de9-71f7-410f-b713-201007f77470.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f5258de9-71f7-410f-b713-201007f77470.json new file mode 100644 index 000000000000..515500317e7e --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f5258de9-71f7-410f-b713-201007f77470.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Top 10 Application Protocols [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "network.application", + "order": "desc", + "orderBy": "1", + "size": 20 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "hideLabel": false, + "maxFontSize": 72, + "minFontSize": 26, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "square root" + }, + "title": "Top 10 Application Protocols [Filebeat CEF]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f5258de9-71f7-410f-b713-201007f77470", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:39.286Z", + "version": "WzQ3NDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f57734dd-0f32-42b4-94dd-5d597f6735e1.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f57734dd-0f32-42b4-94dd-5d597f6735e1.json new file mode 100644 index 000000000000..ffbf057aef96 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/f57734dd-0f32-42b4-94dd-5d597f6735e1.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Device Types by Vendor [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "exclude": "Network-based IDS/IPS", + "field": "cef.extensions.categoryDeviceType", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "exclude": "", + "field": "cef.device.vendor", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Device Types by Vendor [Filebeat CEF]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f57734dd-0f32-42b4-94dd-5d597f6735e1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:37.252Z", + "version": "WzQ3MjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/fa8b26c1-6973-4381-adb3-bcde0d03a520.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/fa8b26c1-6973-4381-adb3-bcde0d03a520.json new file mode 100644 index 000000000000..d58bec5dd803 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/fa8b26c1-6973-4381-adb3-bcde0d03a520.json @@ -0,0 +1,180 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Unique Destinations and Ports by Source [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Destination Addresses", + "field": "destination.ip" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Source Addresses", + "field": "source.ip", + "order": "desc", + "orderBy": "1", + "size": 20 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Destination Ports", + "field": "destination.port" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Source Addresses" + }, + "type": "category" + } + ], + "defaultYExtents": false, + "drawLinesBetweenPoints": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "legendPosition": "right", + "radiusRatio": 9, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Destination Addresses" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + }, + { + "data": { + "id": "3", + "label": "Destination Ports" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "lineWidth": 2, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-2" + } + ], + "setYExtents": false, + "showCircles": true, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Destination Addresses" + }, + "type": "value" + }, + { + "id": "ValueAxis-2", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "RightAxis-1", + "position": "right", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Destination Ports" + }, + "type": "value" + } + ] + }, + "title": "Unique Destinations and Ports by Source [Filebeat CEF]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fa8b26c1-6973-4381-adb3-bcde0d03a520", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:40.331Z", + "version": "WzQ3NjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/fcf798a8-db8f-4492-827b-8fa7581108a9.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/fcf798a8-db8f-4492-827b-8fa7581108a9.json new file mode 100644 index 000000000000..35668b8e234b --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/fcf798a8-db8f-4492-827b-8fa7581108a9.json @@ -0,0 +1,180 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Event Types by Size [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "colors": { + "Count": "#64B0C8", + "Total (Bytes)": "#E24D42" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Event Type", + "field": "cef.device.event_class_id", + "order": "desc", + "orderBy": "1", + "size": 20 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Total (Bytes)", + "field": "source.bytes" + }, + "schema": "metric", + "type": "sum" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "rotate": 75, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Event Type" + }, + "type": "category" + } + ], + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + }, + "valueAxis": null + }, + "legendPosition": "right", + "orderBucketsBySum": false, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + }, + { + "data": { + "id": "3", + "label": "Total (Bytes)" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "lineWidth": 3, + "mode": "normal", + "show": true, + "showCircles": false, + "type": "line", + "valueAxis": "ValueAxis-2" + } + ], + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "square root" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + }, + { + "id": "ValueAxis-2", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "RightAxis-1", + "position": "right", + "scale": { + "mode": "normal", + "type": "square root" + }, + "show": true, + "style": {}, + "title": { + "text": "Total (Bytes)" + }, + "type": "value" + } + ] + }, + "title": "Event Types by Size [Filebeat CEF]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fcf798a8-db8f-4492-827b-8fa7581108a9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "f85a3444-8a43-4e46-b872-4e44bc25d0f3", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:38.313Z", + "version": "WzQ3MzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/fe7b63d1-dbc7-4376-af7f-ace97a9f2e60.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/fe7b63d1-dbc7-4376-af7f-ace97a9f2e60.json new file mode 100644 index 000000000000..7d4372715c43 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/fe7b63d1-dbc7-4376-af7f-ace97a9f2e60.json @@ -0,0 +1,143 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Destination Ports by Outcomes [Filebeat CEF]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "destination.port", + "order": "desc", + "orderBy": "1", + "size": 20 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "cef.extensions.categoryOutcome", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "destination.port: Descending" + }, + "type": "category" + } + ], + "defaultYExtents": false, + "drawLinesBetweenPoints": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "legendPosition": "right", + "radiusRatio": 9, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "showCircles": true, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "defaultYExtents": true, + "mode": "normal", + "setYExtents": false, + "type": "square root" + }, + "show": true, + "style": {}, + "title": {}, + "type": "value" + } + ] + }, + "title": "Destination Ports by Outcomes [Filebeat CEF]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fe7b63d1-dbc7-4376-af7f-ace97a9f2e60", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "5cede2d3-20fe-4140-add4-4c4f841b71a2", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:37.252Z", + "version": "WzQ3MTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/fff249b2-18b6-4b48-bcf7-dd4595d111e7.json b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/fff249b2-18b6-4b48-bcf7-dd4595d111e7.json new file mode 100644 index 000000000000..d9b0e0545524 --- /dev/null +++ b/x-pack/filebeat/module/cef/_meta/kibana/7/visualization/fff249b2-18b6-4b48-bcf7-dd4595d111e7.json @@ -0,0 +1,152 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [] + } + }, + "savedSearchRefName": "search_0", + "title": "Outcome by Device Type [Filebeat CEF]", + "uiStateJSON": { + "vis": { + "colors": { + "/Failure": "#BF1B00", + "/Success": "#629E51" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Firewall Types", + "field": "cef.extensions.categoryDeviceType", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Event Outcome", + "field": "cef.extensions.categoryOutcome", + "order": "desc", + "orderBy": "1", + "size": 3 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "rotate": 75, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Firewall Types" + }, + "type": "category" + } + ], + "defaultYExtents": false, + "drawLinesBetweenPoints": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "interpolate": "linear", + "legendPosition": "right", + "orderBucketsBySum": true, + "radiusRatio": 9, + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "showCircles": true, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "percentage", + "type": "square root" + }, + "show": true, + "style": {}, + "title": {}, + "type": "value" + } + ] + }, + "title": "Outcome by Device Type [Filebeat CEF]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fff249b2-18b6-4b48-bcf7-dd4595d111e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "68202a5c-c8f2-432f-8c08-04fbfacb95c8", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:40.331Z", + "version": "WzQ3NjksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cisco/_meta/kibana/7/dashboard/Filebeat-Cisco-ASA.ndjson b/x-pack/filebeat/module/cisco/_meta/kibana/7/dashboard/Filebeat-Cisco-ASA.ndjson deleted file mode 100644 index 213a5b1feb2c..000000000000 --- a/x-pack/filebeat/module/cisco/_meta/kibana/7/dashboard/Filebeat-Cisco-ASA.ndjson +++ /dev/null @@ -1,11 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"cisco.asa.message_id:* and event.action:\\\"flow-expiration\\\"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"ASA Firewall flows [Filebeat Cisco]","version":1},"coreMigrationVersion":"8.0.0","id":"753406e0-4986-11e9-b8ce-ed898b5ef295","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Destination Port and Transport [Filebeat Cisco]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.transport\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"destination.port\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destination Port and Transport [Filebeat Cisco]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"118da960-4987-11e9-b8ce-ed898b5ef295","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"753406e0-4986-11e9-b8ce-ed898b5ef295","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Source Port and Transport [Filebeat Cisco]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.transport\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"source.port\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Source Port and Transport [Filebeat Cisco]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"5d0322d0-4987-11e9-b8ce-ed898b5ef295","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"753406e0-4986-11e9-b8ce-ed898b5ef295","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNDcsMV0="} -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"cisco.asa.message_id:* and event.action:\\\"firewall-rule\\\"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"ASA Firewall Events [Filebeat Cisco]","version":1},"coreMigrationVersion":"8.0.0","id":"96c6ff60-4986-11e9-b8ce-ed898b5ef295","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"ASA Events Over Time [Filebeat Cisco]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15y\",\"to\":\"now+1y\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"ASA Events Over Time [Filebeat Cisco]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"a3b5ab10-4989-11e9-b8ce-ed898b5ef295","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"96c6ff60-4986-11e9-b8ce-ed898b5ef295","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"ASA Flows by Network Bytes [Filebeat Cisco]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15y\",\"to\":\"now+1y\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Total bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"3\",\"label\":\"Total bytes\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Total bytes\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"ASA Flows by Network Bytes [Filebeat Cisco]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"80d0c1b0-498a-11e9-b8ce-ed898b5ef295","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"753406e0-4986-11e9-b8ce-ed898b5ef295","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"ASA Firewall Blocked by Source [Filebeat Cisco]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"ASA Firewall Blocked by Source [Filebeat Cisco]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"d05cdf60-498b-11e9-b8ce-ed898b5ef295","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"96c6ff60-4986-11e9-b8ce-ed898b5ef295","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"event.outcome:\\\"deny\\\"\"}}"},"savedSearchRefName":"search_0","title":"ASA Top ACL by Blocked [Filebeat Cisco]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"ACL ID\",\"field\":\"cisco.asa.rule_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"ASA Top ACL by Blocked [Filebeat Cisco]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"08ef4d90-499b-11e9-b8ce-ed898b5ef295","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"96c6ff60-4986-11e9-b8ce-ed898b5ef295","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNTEsMV0="} -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"cisco.asa.message_id :*\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"All ASA Logs [Filebeat Cisco]","version":1},"coreMigrationVersion":"8.0.0","id":"14fce5e0-498f-11e9-b8ce-ed898b5ef295","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top ASA Messages [Filebeat Cisco]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 1, \"direction\": \"desc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"ID\",\"field\":\"cisco.asa.message_id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Severity\",\"field\":\"log.level\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Sample message\",\"field\":\"event.original\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top ASA Messages [Filebeat Cisco]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"fd89b1e0-49a2-11e9-b8ce-ed898b5ef295","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"14fce5e0-498f-11e9-b8ce-ed898b5ef295","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNTIsMV0="} -{"attributes":{"description":"Sample dashboard for Cisco ASA Firewall devices","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":12,\"x\":12,\"y\":15},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Destination Port and Transport\",\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":12,\"x\":0,\"y\":15},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Source Port and Transport\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"ASA Firewall Events Over Time\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"ASA Flows by Network Bytes\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":12,\"x\":24,\"y\":15},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Blocked by Source\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":15,\"i\":\"8\",\"w\":12,\"x\":36,\"y\":15},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top ACL by Blocked\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":12,\"i\":\"9\",\"w\":48,\"x\":0,\"y\":30},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Filebeat Cisco] ASA Firewall","version":1},"coreMigrationVersion":"8.0.0","id":"a555b160-4987-11e9-b8ce-ed898b5ef295","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"118da960-4987-11e9-b8ce-ed898b5ef295","name":"panel_0","type":"visualization"},{"id":"5d0322d0-4987-11e9-b8ce-ed898b5ef295","name":"panel_1","type":"visualization"},{"id":"a3b5ab10-4989-11e9-b8ce-ed898b5ef295","name":"panel_2","type":"visualization"},{"id":"80d0c1b0-498a-11e9-b8ce-ed898b5ef295","name":"panel_3","type":"visualization"},{"id":"d05cdf60-498b-11e9-b8ce-ed898b5ef295","name":"panel_4","type":"visualization"},{"id":"08ef4d90-499b-11e9-b8ce-ed898b5ef295","name":"panel_5","type":"visualization"},{"id":"fd89b1e0-49a2-11e9-b8ce-ed898b5ef295","name":"panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:41.092Z","version":"WzQyNDUsMV0="} diff --git a/x-pack/filebeat/module/cisco/_meta/kibana/7/dashboard/a555b160-4987-11e9-b8ce-ed898b5ef295.json b/x-pack/filebeat/module/cisco/_meta/kibana/7/dashboard/a555b160-4987-11e9-b8ce-ed898b5ef295.json new file mode 100644 index 000000000000..e463c10d17c4 --- /dev/null +++ b/x-pack/filebeat/module/cisco/_meta/kibana/7/dashboard/a555b160-4987-11e9-b8ce-ed898b5ef295.json @@ -0,0 +1,192 @@ +{ + "attributes": { + "description": "Sample dashboard for Cisco ASA Firewall devices", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 15, + "i": "1", + "w": 12, + "x": 12, + "y": 15 + }, + "panelIndex": "1", + "panelRefName": "panel_0", + "title": "Destination Port and Transport", + "version": "7.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 15, + "i": "2", + "w": 12, + "x": 0, + "y": 15 + }, + "panelIndex": "2", + "panelRefName": "panel_1", + "title": "Source Port and Transport", + "version": "7.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 15, + "i": "3", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_2", + "title": "ASA Firewall Events Over Time", + "version": "7.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 15, + "i": "4", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_3", + "title": "ASA Flows by Network Bytes", + "version": "7.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "5", + "w": 12, + "x": 24, + "y": 15 + }, + "panelIndex": "5", + "panelRefName": "panel_4", + "title": "Blocked by Source", + "version": "7.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "8", + "w": 12, + "x": 36, + "y": 15 + }, + "panelIndex": "8", + "panelRefName": "panel_5", + "title": "Top ACL by Blocked", + "version": "7.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "9", + "w": 48, + "x": 0, + "y": 30 + }, + "panelIndex": "9", + "panelRefName": "panel_6", + "version": "7.0.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Filebeat Cisco] ASA Firewall", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "a555b160-4987-11e9-b8ce-ed898b5ef295", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "118da960-4987-11e9-b8ce-ed898b5ef295", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "5d0322d0-4987-11e9-b8ce-ed898b5ef295", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "a3b5ab10-4989-11e9-b8ce-ed898b5ef295", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "80d0c1b0-498a-11e9-b8ce-ed898b5ef295", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "d05cdf60-498b-11e9-b8ce-ed898b5ef295", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "08ef4d90-499b-11e9-b8ce-ed898b5ef295", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "fd89b1e0-49a2-11e9-b8ce-ed898b5ef295", + "name": "panel_6", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:41.092Z", + "version": "WzQyNDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cisco/_meta/kibana/7/search/14fce5e0-498f-11e9-b8ce-ed898b5ef295.json b/x-pack/filebeat/module/cisco/_meta/kibana/7/search/14fce5e0-498f-11e9-b8ce-ed898b5ef295.json new file mode 100644 index 000000000000..d9b6e7440f60 --- /dev/null +++ b/x-pack/filebeat/module/cisco/_meta/kibana/7/search/14fce5e0-498f-11e9-b8ce-ed898b5ef295.json @@ -0,0 +1,44 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "cisco.asa.message_id :*" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "All ASA Logs [Filebeat Cisco]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "14fce5e0-498f-11e9-b8ce-ed898b5ef295", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:41.092Z", + "version": "WzQyNTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cisco/_meta/kibana/7/search/753406e0-4986-11e9-b8ce-ed898b5ef295.json b/x-pack/filebeat/module/cisco/_meta/kibana/7/search/753406e0-4986-11e9-b8ce-ed898b5ef295.json new file mode 100644 index 000000000000..af0667d97858 --- /dev/null +++ b/x-pack/filebeat/module/cisco/_meta/kibana/7/search/753406e0-4986-11e9-b8ce-ed898b5ef295.json @@ -0,0 +1,44 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "cisco.asa.message_id:* and event.action:\"flow-expiration\"" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "ASA Firewall flows [Filebeat Cisco]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "753406e0-4986-11e9-b8ce-ed898b5ef295", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:41.092Z", + "version": "WzQyNTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cisco/_meta/kibana/7/search/96c6ff60-4986-11e9-b8ce-ed898b5ef295.json b/x-pack/filebeat/module/cisco/_meta/kibana/7/search/96c6ff60-4986-11e9-b8ce-ed898b5ef295.json new file mode 100644 index 000000000000..7179a21950ae --- /dev/null +++ b/x-pack/filebeat/module/cisco/_meta/kibana/7/search/96c6ff60-4986-11e9-b8ce-ed898b5ef295.json @@ -0,0 +1,44 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "cisco.asa.message_id:* and event.action:\"firewall-rule\"" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "ASA Firewall Events [Filebeat Cisco]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "96c6ff60-4986-11e9-b8ce-ed898b5ef295", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:41.092Z", + "version": "WzQyNTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/08ef4d90-499b-11e9-b8ce-ed898b5ef295.json b/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/08ef4d90-499b-11e9-b8ce-ed898b5ef295.json new file mode 100644 index 000000000000..566fb979f588 --- /dev/null +++ b/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/08ef4d90-499b-11e9-b8ce-ed898b5ef295.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "event.outcome:\"deny\"" + } + } + }, + "savedSearchRefName": "search_0", + "title": "ASA Top ACL by Blocked [Filebeat Cisco]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "ACL ID", + "field": "cisco.asa.rule_name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "ASA Top ACL by Blocked [Filebeat Cisco]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "08ef4d90-499b-11e9-b8ce-ed898b5ef295", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "96c6ff60-4986-11e9-b8ce-ed898b5ef295", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:41.092Z", + "version": "WzQyNTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/118da960-4987-11e9-b8ce-ed898b5ef295.json b/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/118da960-4987-11e9-b8ce-ed898b5ef295.json new file mode 100644 index 000000000000..873ffee74dec --- /dev/null +++ b/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/118da960-4987-11e9-b8ce-ed898b5ef295.json @@ -0,0 +1,96 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Destination Port and Transport [Filebeat Cisco]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "network.transport", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "destination.port", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Destination Port and Transport [Filebeat Cisco]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "118da960-4987-11e9-b8ce-ed898b5ef295", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "753406e0-4986-11e9-b8ce-ed898b5ef295", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:41.092Z", + "version": "WzQyNDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/5d0322d0-4987-11e9-b8ce-ed898b5ef295.json b/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/5d0322d0-4987-11e9-b8ce-ed898b5ef295.json new file mode 100644 index 000000000000..999bf3260b35 --- /dev/null +++ b/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/5d0322d0-4987-11e9-b8ce-ed898b5ef295.json @@ -0,0 +1,96 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Source Port and Transport [Filebeat Cisco]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "network.transport", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "source.port", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Source Port and Transport [Filebeat Cisco]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5d0322d0-4987-11e9-b8ce-ed898b5ef295", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "753406e0-4986-11e9-b8ce-ed898b5ef295", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:41.092Z", + "version": "WzQyNDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/80d0c1b0-498a-11e9-b8ce-ed898b5ef295.json b/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/80d0c1b0-498a-11e9-b8ce-ed898b5ef295.json new file mode 100644 index 000000000000..d525ed453069 --- /dev/null +++ b/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/80d0c1b0-498a-11e9-b8ce-ed898b5ef295.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "ASA Flows by Network Bytes [Filebeat Cisco]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "timeRange": { + "from": "now-15y", + "to": "now+1y" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Total bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "3", + "label": "Total bytes" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Total bytes" + }, + "type": "value" + } + ] + }, + "title": "ASA Flows by Network Bytes [Filebeat Cisco]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "80d0c1b0-498a-11e9-b8ce-ed898b5ef295", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "753406e0-4986-11e9-b8ce-ed898b5ef295", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:41.092Z", + "version": "WzQyNDksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/a3b5ab10-4989-11e9-b8ce-ed898b5ef295.json b/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/a3b5ab10-4989-11e9-b8ce-ed898b5ef295.json new file mode 100644 index 000000000000..b93d58c47506 --- /dev/null +++ b/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/a3b5ab10-4989-11e9-b8ce-ed898b5ef295.json @@ -0,0 +1,152 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "ASA Events Over Time [Filebeat Cisco]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.outcome", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "timeRange": { + "from": "now-15y", + "to": "now+1y" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "ASA Events Over Time [Filebeat Cisco]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a3b5ab10-4989-11e9-b8ce-ed898b5ef295", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "96c6ff60-4986-11e9-b8ce-ed898b5ef295", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:41.092Z", + "version": "WzQyNDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/d05cdf60-498b-11e9-b8ce-ed898b5ef295.json b/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/d05cdf60-498b-11e9-b8ce-ed898b5ef295.json new file mode 100644 index 000000000000..5a9c2e4d9443 --- /dev/null +++ b/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/d05cdf60-498b-11e9-b8ce-ed898b5ef295.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "ASA Firewall Blocked by Source [Filebeat Cisco]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "source.ip", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "ASA Firewall Blocked by Source [Filebeat Cisco]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d05cdf60-498b-11e9-b8ce-ed898b5ef295", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "96c6ff60-4986-11e9-b8ce-ed898b5ef295", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:41.092Z", + "version": "WzQyNTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/fd89b1e0-49a2-11e9-b8ce-ed898b5ef295.json b/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/fd89b1e0-49a2-11e9-b8ce-ed898b5ef295.json new file mode 100644 index 000000000000..70e802007e44 --- /dev/null +++ b/x-pack/filebeat/module/cisco/_meta/kibana/7/visualization/fd89b1e0-49a2-11e9-b8ce-ed898b5ef295.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top ASA Messages [Filebeat Cisco]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": 1, + "direction": "desc" + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "ID", + "field": "cisco.asa.message_id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "4", + "params": { + "aggregate": "concat", + "customLabel": "Severity", + "field": "log.level", + "size": 1, + "sortField": "@timestamp", + "sortOrder": "desc" + }, + "schema": "metric", + "type": "top_hits" + }, + { + "enabled": true, + "id": "1", + "params": { + "aggregate": "concat", + "customLabel": "Sample message", + "field": "event.original", + "size": 1, + "sortField": "@timestamp", + "sortOrder": "desc" + }, + "schema": "metric", + "type": "top_hits" + } + ], + "params": { + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": true, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top ASA Messages [Filebeat Cisco]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fd89b1e0-49a2-11e9-b8ce-ed898b5ef295", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "14fce5e0-498f-11e9-b8ce-ed898b5ef295", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:41.092Z", + "version": "WzQyNTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cisco/module.yml b/x-pack/filebeat/module/cisco/module.yml index 1ff7b2214007..b3a9249a617d 100644 --- a/x-pack/filebeat/module/cisco/module.yml +++ b/x-pack/filebeat/module/cisco/module.yml @@ -1,3 +1,3 @@ dashboards: - id: a555b160-4987-11e9-b8ce-ed898b5ef295 - file: Filebeat-Cisco-ASA.ndjson + file: Filebeat-Cisco-ASA.json diff --git a/x-pack/filebeat/module/coredns/_meta/kibana/7/dashboard/53aa1f70-443e-11e9-8548-ab7fbe04f038.json b/x-pack/filebeat/module/coredns/_meta/kibana/7/dashboard/53aa1f70-443e-11e9-8548-ab7fbe04f038.json new file mode 100644 index 000000000000..7b61d8218b11 --- /dev/null +++ b/x-pack/filebeat/module/coredns/_meta/kibana/7/dashboard/53aa1f70-443e-11e9-8548-ab7fbe04f038.json @@ -0,0 +1,118 @@ +{ + "attributes": { + "description": "Overview of CoreDNS", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "1", + "w": 41, + "x": 4, + "y": 7 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "2", + "w": 20, + "x": 4, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "3", + "w": 21, + "x": 24, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "4", + "w": 41, + "x": 4, + "y": 21 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Filebeat CoreDNS] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "53aa1f70-443e-11e9-8548-ab7fbe04f038", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "3ad75810-4429-11e9-8548-ab7fbe04f038", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "9dc640e0-4432-11e9-8548-ab7fbe04f038", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "75743f70-443c-11e9-8548-ab7fbe04f038", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "cfde7fb0-443d-11e9-8548-ab7fbe04f038", + "name": "4:panel_4", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:40.046Z", + "version": "WzQyNDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/coredns/_meta/kibana/7/dashboard/Coredns-Overview-Dashboard.ndjson b/x-pack/filebeat/module/coredns/_meta/kibana/7/dashboard/Coredns-Overview-Dashboard.ndjson deleted file mode 100644 index 2eeef1f50a6b..000000000000 --- a/x-pack/filebeat/module/coredns/_meta/kibana/7/dashboard/Coredns-Overview-Dashboard.ndjson +++ /dev/null @@ -1,5 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top Domains [Filebeat CoreDNS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"coredns.query.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}},\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top Domains [Filebeat CoreDNS]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"3ad75810-4429-11e9-8548-ab7fbe04f038","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:40.046Z","version":"WzQyNDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Total DNS Queries [Filebeat CoreDNS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total DNS Queries [Filebeat CoreDNS]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"9dc640e0-4432-11e9-8548-ab7fbe04f038","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:40.046Z","version":"WzQyNDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Unique Domains [Filebeat CoreDNS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique Domains\",\"field\":\"coredns.query.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"bucket\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"metrics\":[{\"accessor\":0,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"params\":{}}],\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Unique Domains [Filebeat CoreDNS]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"75743f70-443c-11e9-8548-ab7fbe04f038","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:40.046Z","version":"WzQyNDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Time Series Visualizer [Filebeat CoreDNS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"65ad37b0-443f-11e9-94ba-69b05a5f82b8\"}],\"bar_color_rules\":[{\"id\":\"e1f6cda0-443e-11e9-94ba-69b05a5f82b8\"}],\"gauge_color_rules\":[{\"id\":\"6996a6e0-443f-11e9-94ba-69b05a5f82b8\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"fileset.name:kubernetes\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"CoreDNS Kubernetes\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"terms_field\":\"fileset.name\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"query\":\"fileset.name:log\",\"language\":\"lucene\"},\"formatter\":\"number\",\"id\":\"3c8999f0-443f-11e9-94ba-69b05a5f82b8\",\"label\":\"CoreDNS Native\",\"line_width\":1,\"metrics\":[{\"id\":\"3c8999f1-443f-11e9-94ba-69b05a5f82b8\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"filter\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Time Series Visualizer [Filebeat CoreDNS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cfde7fb0-443d-11e9-8548-ab7fbe04f038","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:40.046Z","version":"WzQyNDQsMV0="} -{"attributes":{"description":"Overview of CoreDNS","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"1\",\"w\":41,\"x\":4,\"y\":7},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"2\",\"w\":20,\"x\":4,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"3\",\"w\":21,\"x\":24,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"4\",\"w\":41,\"x\":4,\"y\":21},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Filebeat CoreDNS] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"53aa1f70-443e-11e9-8548-ab7fbe04f038","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"3ad75810-4429-11e9-8548-ab7fbe04f038","name":"1:panel_1","type":"visualization"},{"id":"9dc640e0-4432-11e9-8548-ab7fbe04f038","name":"2:panel_2","type":"visualization"},{"id":"75743f70-443c-11e9-8548-ab7fbe04f038","name":"3:panel_3","type":"visualization"},{"id":"cfde7fb0-443d-11e9-8548-ab7fbe04f038","name":"4:panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:40.046Z","version":"WzQyNDAsMV0="} diff --git a/x-pack/filebeat/module/coredns/_meta/kibana/7/visualization/3ad75810-4429-11e9-8548-ab7fbe04f038.json b/x-pack/filebeat/module/coredns/_meta/kibana/7/visualization/3ad75810-4429-11e9-8548-ab7fbe04f038.json new file mode 100644 index 000000000000..4f9baadae9f1 --- /dev/null +++ b/x-pack/filebeat/module/coredns/_meta/kibana/7/visualization/3ad75810-4429-11e9-8548-ab7fbe04f038.json @@ -0,0 +1,81 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Top Domains [Filebeat CoreDNS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "coredns.query.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "maxFontSize": 72, + "metric": { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + }, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": true + }, + "title": "Top Domains [Filebeat CoreDNS]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3ad75810-4429-11e9-8548-ab7fbe04f038", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:40.046Z", + "version": "WzQyNDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/coredns/_meta/kibana/7/visualization/75743f70-443c-11e9-8548-ab7fbe04f038.json b/x-pack/filebeat/module/coredns/_meta/kibana/7/visualization/75743f70-443c-11e9-8548-ab7fbe04f038.json new file mode 100644 index 000000000000..8c4b42e6b142 --- /dev/null +++ b/x-pack/filebeat/module/coredns/_meta/kibana/7/visualization/75743f70-443c-11e9-8548-ab7fbe04f038.json @@ -0,0 +1,100 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Unique Domains [Filebeat CoreDNS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Unique Domains", + "field": "coredns.query.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "bucket": { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "metrics": [ + { + "accessor": 0, + "aggType": "cardinality", + "format": { + "id": "number" + }, + "params": {} + } + ], + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Unique Domains [Filebeat CoreDNS]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "75743f70-443c-11e9-8548-ab7fbe04f038", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:40.046Z", + "version": "WzQyNDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/coredns/_meta/kibana/7/visualization/9dc640e0-4432-11e9-8548-ab7fbe04f038.json b/x-pack/filebeat/module/coredns/_meta/kibana/7/visualization/9dc640e0-4432-11e9-8548-ab7fbe04f038.json new file mode 100644 index 000000000000..6938c78f3759 --- /dev/null +++ b/x-pack/filebeat/module/coredns/_meta/kibana/7/visualization/9dc640e0-4432-11e9-8548-ab7fbe04f038.json @@ -0,0 +1,74 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Total DNS Queries [Filebeat CoreDNS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Total DNS Queries [Filebeat CoreDNS]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9dc640e0-4432-11e9-8548-ab7fbe04f038", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:40.046Z", + "version": "WzQyNDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/coredns/_meta/kibana/7/visualization/cfde7fb0-443d-11e9-8548-ab7fbe04f038.json b/x-pack/filebeat/module/coredns/_meta/kibana/7/visualization/cfde7fb0-443d-11e9-8548-ab7fbe04f038.json new file mode 100644 index 000000000000..00dde4c5f12b --- /dev/null +++ b/x-pack/filebeat/module/coredns/_meta/kibana/7/visualization/cfde7fb0-443d-11e9-8548-ab7fbe04f038.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Time Series Visualizer [Filebeat CoreDNS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "65ad37b0-443f-11e9-94ba-69b05a5f82b8" + } + ], + "bar_color_rules": [ + { + "id": "e1f6cda0-443e-11e9-94ba-69b05a5f82b8" + } + ], + "gauge_color_rules": [ + { + "id": "6996a6e0-443f-11e9-94ba-69b05a5f82b8" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "lucene", + "query": "fileset.name:kubernetes" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "CoreDNS Kubernetes", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "filter", + "stacked": "none", + "terms_field": "fileset.name" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "lucene", + "query": "fileset.name:log" + }, + "formatter": "number", + "id": "3c8999f0-443f-11e9-94ba-69b05a5f82b8", + "label": "CoreDNS Native", + "line_width": 1, + "metrics": [ + { + "id": "3c8999f1-443f-11e9-94ba-69b05a5f82b8", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "filter", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Time Series Visualizer [Filebeat CoreDNS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "cfde7fb0-443d-11e9-8548-ab7fbe04f038", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:33:40.046Z", + "version": "WzQyNDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/coredns/module.yml b/x-pack/filebeat/module/coredns/module.yml index 1442906f86c5..e52f7f3de7fd 100644 --- a/x-pack/filebeat/module/coredns/module.yml +++ b/x-pack/filebeat/module/coredns/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 53aa1f70-443e-11e9-8548-ab7fbe04f038 - file: Coredns-Overview-Dashboard.ndjson \ No newline at end of file + file: Coredns-Overview-Dashboard.json \ No newline at end of file diff --git a/x-pack/filebeat/module/crowdstrike/module.yml b/x-pack/filebeat/module/crowdstrike/module.yml index 8f14a021e301..62cdb7d5863c 100644 --- a/x-pack/filebeat/module/crowdstrike/module.yml +++ b/x-pack/filebeat/module/crowdstrike/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Filebeat-crowdstrike-falcon-Dashboard - file: Filebeat-crowdstrike-falcon.ndjson + file: Filebeat-crowdstrike-falcon.json diff --git a/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/dashboard/Filebeat-cyberarkpas-audit.ndjson b/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/dashboard/Filebeat-cyberarkpas-audit.ndjson deleted file mode 100644 index 081a8d2a786e..000000000000 --- a/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/dashboard/Filebeat-cyberarkpas-audit.ndjson +++ /dev/null @@ -1,3 +0,0 @@ -{"attributes":{"columns":["event.action","event.outcome","source.address","source.user.name","destination.address","destination.user.name","event.reason"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"cyberarkpas.audit\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"cyberarkpas.audit\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"308\", \"319\", \"295\", \"22\", \"38\", \"300\", \"302\"], \"type\": \"phrases\", \"value\": \"308, 319, 295, 22, 38, 300, 302\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"308\"}}, {\"match_phrase\": {\"event.code\": \"319\"}}, {\"match_phrase\": {\"event.code\": \"295\"}}, {\"match_phrase\": {\"event.code\": \"22\"}}, {\"match_phrase\": {\"event.code\": \"38\"}}, {\"match_phrase\": {\"event.code\": \"300\"}}, {\"match_phrase\": {\"event.code\": \"302\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"sort":[["@timestamp","desc"]],"title":"Credential Access logs [Filebeat CyberArk PAS] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"a9b82df0-97a5-11eb-bbf8-d77aef8ad7a6","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:04.520Z","version":"WzQ0MTEsMV0="} -{"attributes":{"columns":[],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:\\\"cyberarkpas.audit\\\" \"}}"},"sort":[["@timestamp","desc"]],"title":"All logs [Filebeat CyberArk PAS] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"fec0d170-96f7-11eb-bbf8-d77aef8ad7a6","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:04.520Z","version":"WzQ0MTIsMV0="} -{"attributes":{"description":"Dashboard for CyberArk Privileged Access Security events.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"cyberarkpas.audit\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"cyberarkpas.audit\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.14.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1007fa0d-a6a1-4682-a346-a90acc179da5\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"1007fa0d-a6a1-4682-a346-a90acc179da5\",\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false,\"savedVis\":{\"data\":{\"aggs\":[],\"searchSource\":{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}},\"description\":\"\",\"params\":{\"controls\":[{\"fieldName\":\"observer.hostname\",\"id\":\"1617726994032\",\"indexPattern\":\"filebeat-*\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\" By Vault host\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"event.code\",\"id\":\"1617811797137\",\"indexPattern\":\"filebeat-*\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"By event code\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"\",\"type\":\"input_control_vis\",\"uiState\":{}},\"type\":\"visualization\"},\"title\":\"Filters\"},{\"version\":\"7.14.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"f2dc3750-9b7c-4b0e-a45d-3d3b08f74f3e\",\"w\":38,\"x\":10,\"y\":0},\"panelIndex\":\"f2dc3750-9b7c-4b0e-a45d-3d3b08f74f3e\",\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false,\"savedVis\":{\"data\":{\"aggs\":[],\"searchSource\":{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}},\"description\":\"\",\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset:\\\"cyberarkpas.audit\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"override_index_pattern\":0,\"palette\":{\"name\":\"rainbow\",\"params\":{\"colors\":[\"#68BC00\",\"#009CE0\",\"#B0BC00\",\"#16A5A5\",\"#D33115\",\"#E27300\",\"#FCC400\",\"#7B64FF\",\"#FA28FF\",\"#333333\",\"#808080\",\"#194D33\",\"#0062B1\",\"#808900\",\"#0C797D\",\"#9F0500\",\"#C45100\",\"#FB9E00\",\"#653294\",\"#AB149E\",\"#0F1419\",\"#666666\"],\"gradient\":false},\"type\":\"palette\"},\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":null,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"cyberarkpas.audit.desc\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"\",\"type\":\"metrics\",\"uiState\":{}},\"type\":\"visualization\"},\"title\":\"event types by time\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":4,\"i\":\"af9e9f0b-a40c-411e-b441-2a779983ed24\",\"w\":10,\"x\":0,\"y\":9},\"panelIndex\":\"af9e9f0b-a40c-411e-b441-2a779983ed24\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-layer-33bc0096-e418-4f81-9c7c-7fdd16cc5203\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"33bc0096-e418-4f81-9c7c-7fdd16cc5203\":{\"columnOrder\":[\"eedd5aa8-a7c4-466a-b10b-3a8cba3bac12\"],\"columns\":{\"eedd5aa8-a7c4-466a-b10b-3a8cba3bac12\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\" \",\"operationType\":\"count\",\"scale\":\"ratio\",\"sourceField\":\"Records\"}},\"incompleteColumns\":{}}}}},\"filters\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"accessor\":\"eedd5aa8-a7c4-466a-b10b-3a8cba3bac12\",\"layerId\":\"33bc0096-e418-4f81-9c7c-7fdd16cc5203\"}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsMetric\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Count of events\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"7031905a-92ab-4e0e-aa58-72f1c07ff409\",\"w\":10,\"x\":0,\"y\":13},\"panelIndex\":\"7031905a-92ab-4e0e-aa58-72f1c07ff409\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-layer-de047c06-a965-47aa-8a15-8b0266d5abc3\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"de047c06-a965-47aa-8a15-8b0266d5abc3\":{\"columnOrder\":[\"b916e5f5-a64a-49f1-b37a-ee1825fc61a4\",\"3effd03e-0ed9-4e2d-ba8e-d77ae505092e\"],\"columns\":{\"3effd03e-0ed9-4e2d-ba8e-d77ae505092e\":{\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Count of records\",\"operationType\":\"count\",\"scale\":\"ratio\",\"sourceField\":\"Records\"},\"b916e5f5-a64a-49f1-b37a-ee1825fc61a4\":{\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Top values of event.outcome\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"columnId\":\"3effd03e-0ed9-4e2d-ba8e-d77ae505092e\",\"type\":\"column\"},\"orderDirection\":\"desc\",\"otherBucket\":true,\"size\":5},\"scale\":\"ordinal\",\"sourceField\":\"event.outcome\"}},\"incompleteColumns\":{}}}}},\"filters\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"layers\":[{\"categoryDisplay\":\"default\",\"groups\":[\"b916e5f5-a64a-49f1-b37a-ee1825fc61a4\"],\"layerId\":\"de047c06-a965-47aa-8a15-8b0266d5abc3\",\"legendDisplay\":\"default\",\"metric\":\"3effd03e-0ed9-4e2d-ba8e-d77ae505092e\",\"nestedLegend\":false,\"numberDisplay\":\"percent\"}],\"shape\":\"donut\"}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsPie\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Breakdown by outcome\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"a24b9c0c-da95-4016-9fe5-2c0d34005832\",\"w\":11,\"x\":10,\"y\":13},\"panelIndex\":\"a24b9c0c-da95-4016-9fe5-2c0d34005832\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-layer-19858811-84d1-4f50-901c-dc1451972324\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"filter-index-pattern-0\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"filter-index-pattern-1\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"19858811-84d1-4f50-901c-dc1451972324\":{\"columnOrder\":[\"81dcff19-b14a-4e4b-999e-dbbcbdfdf816\",\"e3526253-18e0-4122-b112-ee5b4b9e23d7\"],\"columns\":{\"81dcff19-b14a-4e4b-999e-dbbcbdfdf816\":{\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Top values of destination.user.name\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"type\":\"alphabetical\"},\"orderDirection\":\"asc\",\"otherBucket\":true,\"size\":10},\"scale\":\"ordinal\",\"sourceField\":\"destination.user.name\"},\"e3526253-18e0-4122-b112-ee5b4b9e23d7\":{\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Count of records\",\"operationType\":\"count\",\"scale\":\"ratio\",\"sourceField\":\"Records\"}},\"incompleteColumns\":{}}}}},\"filters\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"filter-index-pattern-0\",\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"cyberarkpas.audit\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"event.dataset\":\"cyberarkpas.audit\"}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"filter-index-pattern-1\",\"key\":\"event.code\",\"negate\":false,\"params\":[\"308\",\"22\",\"319\",\"295\"],\"type\":\"phrases\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.code\":\"308\"}},{\"match_phrase\":{\"event.code\":\"22\"}},{\"match_phrase\":{\"event.code\":\"319\"}},{\"match_phrase\":{\"event.code\":\"295\"}}]}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"layers\":[{\"categoryDisplay\":\"default\",\"groups\":[\"81dcff19-b14a-4e4b-999e-dbbcbdfdf816\",\"81dcff19-b14a-4e4b-999e-dbbcbdfdf816\",\"81dcff19-b14a-4e4b-999e-dbbcbdfdf816\",\"81dcff19-b14a-4e4b-999e-dbbcbdfdf816\",\"81dcff19-b14a-4e4b-999e-dbbcbdfdf816\",\"81dcff19-b14a-4e4b-999e-dbbcbdfdf816\"],\"layerId\":\"19858811-84d1-4f50-901c-dc1451972324\",\"legendDisplay\":\"default\",\"metric\":\"e3526253-18e0-4122-b112-ee5b4b9e23d7\",\"nestedLegend\":false,\"numberDisplay\":\"percent\"}],\"shape\":\"donut\"}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsPie\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Top 10 user credentials accessed\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"1dc68cc6-e1b3-43ea-9b0e-f423d194b99a\",\"w\":27,\"x\":21,\"y\":13},\"panelIndex\":\"1dc68cc6-e1b3-43ea-9b0e-f423d194b99a\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-layer-50325938-6a9e-4a26-946e-4468e68c6591\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"filter-index-pattern-0\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"filter-index-pattern-1\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"50325938-6a9e-4a26-946e-4468e68c6591\":{\"columnOrder\":[\"8a965540-daa1-4848-80bb-96ddf53a328f\",\"c05a39ad-2983-4f4a-900d-a939ecbda504\",\"a808a872-71b5-4a76-a939-354f68991881\"],\"columns\":{\"8a965540-daa1-4848-80bb-96ddf53a328f\":{\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Top values of event.outcome\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"columnId\":\"a808a872-71b5-4a76-a939-354f68991881\",\"type\":\"column\"},\"orderDirection\":\"desc\",\"otherBucket\":true,\"size\":2},\"scale\":\"ordinal\",\"sourceField\":\"event.outcome\"},\"a808a872-71b5-4a76-a939-354f68991881\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Credentials accessed\",\"operationType\":\"count\",\"scale\":\"ratio\",\"sourceField\":\"Records\"},\"c05a39ad-2983-4f4a-900d-a939ecbda504\":{\"dataType\":\"date\",\"isBucketed\":true,\"label\":\"@timestamp\",\"operationType\":\"date_histogram\",\"params\":{\"interval\":\"auto\"},\"scale\":\"interval\",\"sourceField\":\"@timestamp\"}},\"incompleteColumns\":{}}}}},\"filters\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"filter-index-pattern-0\",\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"cyberarkpas.audit\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"event.dataset\":\"cyberarkpas.audit\"}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"filter-index-pattern-1\",\"key\":\"event.code\",\"negate\":false,\"params\":[\"308\",\"22\",\"319\",\"295\",\"38\"],\"type\":\"phrases\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.code\":\"308\"}},{\"match_phrase\":{\"event.code\":\"22\"}},{\"match_phrase\":{\"event.code\":\"319\"}},{\"match_phrase\":{\"event.code\":\"295\"}},{\"match_phrase\":{\"event.code\":\"38\"}}]}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"axisTitlesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"fittingFunction\":\"None\",\"gridlinesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"layers\":[{\"accessors\":[\"a808a872-71b5-4a76-a939-354f68991881\"],\"layerId\":\"50325938-6a9e-4a26-946e-4468e68c6591\",\"position\":\"top\",\"seriesType\":\"area_stacked\",\"showGridlines\":false,\"splitAccessor\":\"8a965540-daa1-4848-80bb-96ddf53a328f\",\"xAccessor\":\"c05a39ad-2983-4f4a-900d-a939ecbda504\"}],\"legend\":{\"isVisible\":true,\"position\":\"right\"},\"preferredSeriesType\":\"area_stacked\",\"tickLabelsVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"valueLabels\":\"hide\"}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsXY\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Credential access by time\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":23,\"i\":\"c56b3e4d-bfb6-4b06-a62b-282753b85f7a\",\"w\":15,\"x\":0,\"y\":26},\"panelIndex\":\"c56b3e4d-bfb6-4b06-a62b-282753b85f7a\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-layer-105faf70-8330-46b3-a82a-573a383068fa\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"filter-index-pattern-0\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"105faf70-8330-46b3-a82a-573a383068fa\":{\"columnOrder\":[\"c51d6847-2fcc-4d13-a44f-49786cb979ed\",\"d73b823b-ae68-4e73-bbe2-90a35bc825e7\",\"c0147524-accc-4dee-a4fc-44199e3459f1\"],\"columns\":{\"c0147524-accc-4dee-a4fc-44199e3459f1\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Authentications\",\"operationType\":\"count\",\"scale\":\"ratio\",\"sourceField\":\"Records\"},\"c51d6847-2fcc-4d13-a44f-49786cb979ed\":{\"customLabel\":true,\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Users\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"columnId\":\"c0147524-accc-4dee-a4fc-44199e3459f1\",\"type\":\"column\"},\"orderDirection\":\"desc\",\"otherBucket\":true,\"size\":8},\"scale\":\"ordinal\",\"sourceField\":\"user.name\"},\"d73b823b-ae68-4e73-bbe2-90a35bc825e7\":{\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Top values of event.outcome\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"type\":\"alphabetical\"},\"orderDirection\":\"desc\",\"otherBucket\":true,\"size\":2},\"scale\":\"ordinal\",\"sourceField\":\"event.outcome\"}},\"incompleteColumns\":{}}}}},\"filters\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"filter-index-pattern-0\",\"key\":\"event.category\",\"negate\":false,\"params\":[\"authentication\"],\"type\":\"phrases\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.category\":\"authentication\"}}]}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"axisTitlesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"fittingFunction\":\"None\",\"gridlinesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"layers\":[{\"accessors\":[\"c0147524-accc-4dee-a4fc-44199e3459f1\"],\"layerId\":\"105faf70-8330-46b3-a82a-573a383068fa\",\"palette\":{\"name\":\"status\",\"type\":\"palette\"},\"position\":\"top\",\"seriesType\":\"bar_horizontal_stacked\",\"showGridlines\":false,\"splitAccessor\":\"d73b823b-ae68-4e73-bbe2-90a35bc825e7\",\"xAccessor\":\"c51d6847-2fcc-4d13-a44f-49786cb979ed\"}],\"legend\":{\"isVisible\":true,\"position\":\"right\",\"showSingleSeries\":false},\"preferredSeriesType\":\"bar_horizontal_stacked\",\"tickLabelsVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"valueLabels\":\"hide\"}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsXY\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Vault Authentication attempts\"},{\"version\":\"7.14.0\",\"type\":\"map\",\"gridData\":{\"h\":23,\"i\":\"cd1e20e7-706f-4d02-949c-d9f5908bad67\",\"w\":33,\"x\":15,\"y\":26},\"panelIndex\":\"cd1e20e7-706f-4d02-949c-d9f5908bad67\",\"embeddableConfig\":{\"attributes\":{\"description\":\"\",\"layerListJSON\":\"[{\\\"sourceDescriptor\\\":{\\\"type\\\":\\\"EMS_TMS\\\",\\\"id\\\":null,\\\"isAutoSelect\\\":true},\\\"id\\\":\\\"a3734143-d6e1-4551-b0b1-8282a37e151b\\\",\\\"label\\\":null,\\\"minZoom\\\":0,\\\"maxZoom\\\":24,\\\"alpha\\\":1,\\\"visible\\\":true,\\\"style\\\":{\\\"type\\\":\\\"TILE\\\"},\\\"type\\\":\\\"VECTOR_TILE\\\"},{\\\"label\\\":\\\"filebeat-* | Source Point\\\",\\\"sourceDescriptor\\\":{\\\"indexPatternId\\\":\\\"filebeat-*\\\",\\\"geoField\\\":\\\"source.geo.location\\\",\\\"scalingType\\\":\\\"TOP_HITS\\\",\\\"topHitsSplitField\\\":\\\"source.ip\\\",\\\"tooltipProperties\\\":[\\\"host.name\\\",\\\"source.ip\\\",\\\"source.domain\\\",\\\"source.geo.country_iso_code\\\",\\\"source.as.organization.name\\\"],\\\"id\\\":\\\"5f2b25a1-01ea-45ca-a4a2-f1a670c3b149\\\",\\\"type\\\":\\\"ES_SEARCH\\\",\\\"applyGlobalQuery\\\":true,\\\"applyGlobalTime\\\":true,\\\"filterByMapBounds\\\":true,\\\"sortField\\\":\\\"\\\",\\\"sortOrder\\\":\\\"desc\\\",\\\"topHitsSize\\\":22},\\\"style\\\":{\\\"type\\\":\\\"VECTOR\\\",\\\"properties\\\":{\\\"icon\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"value\\\":\\\"home\\\"}},\\\"fillColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#6092C0\\\"}},\\\"lineColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#FFFFFF\\\"}},\\\"lineWidth\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"size\\\":2}},\\\"iconSize\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"size\\\":8}},\\\"iconOrientation\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"orientation\\\":0}},\\\"labelText\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"value\\\":\\\"\\\"}},\\\"labelColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#000000\\\"}},\\\"labelSize\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"size\\\":14}},\\\"labelBorderColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#FFFFFF\\\"}},\\\"symbolizeAs\\\":{\\\"options\\\":{\\\"value\\\":\\\"icon\\\"}},\\\"labelBorderSize\\\":{\\\"options\\\":{\\\"size\\\":\\\"SMALL\\\"}}},\\\"isTimeAware\\\":true},\\\"id\\\":\\\"2ad8e318-4ef4-4e89-94f2-f37e395c488c\\\",\\\"minZoom\\\":0,\\\"maxZoom\\\":24,\\\"alpha\\\":0.75,\\\"visible\\\":true,\\\"type\\\":\\\"VECTOR\\\",\\\"joins\\\":[]},{\\\"label\\\":\\\"filebeat-* | Destination point\\\",\\\"sourceDescriptor\\\":{\\\"indexPatternId\\\":\\\"filebeat-*\\\",\\\"geoField\\\":\\\"destination.geo.location\\\",\\\"scalingType\\\":\\\"TOP_HITS\\\",\\\"topHitsSplitField\\\":\\\"destination.ip\\\",\\\"tooltipProperties\\\":[\\\"host.name\\\",\\\"destination.ip\\\",\\\"destination.domain\\\",\\\"destination.geo.country_iso_code\\\",\\\"destination.as.organization.name\\\"],\\\"id\\\":\\\"bc95f479-964f-4498-be1e-376d34a01b0a\\\",\\\"type\\\":\\\"ES_SEARCH\\\",\\\"applyGlobalQuery\\\":true,\\\"applyGlobalTime\\\":true,\\\"filterByMapBounds\\\":true,\\\"sortField\\\":\\\"\\\",\\\"sortOrder\\\":\\\"desc\\\",\\\"topHitsSize\\\":35},\\\"style\\\":{\\\"type\\\":\\\"VECTOR\\\",\\\"properties\\\":{\\\"icon\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"value\\\":\\\"marker\\\"}},\\\"fillColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#D36086\\\"}},\\\"lineColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#FFFFFF\\\"}},\\\"lineWidth\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"size\\\":2}},\\\"iconSize\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"size\\\":8}},\\\"iconOrientation\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"orientation\\\":0}},\\\"labelText\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"value\\\":\\\"\\\"}},\\\"labelColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#000000\\\"}},\\\"labelSize\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"size\\\":14}},\\\"labelBorderColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#FFFFFF\\\"}},\\\"symbolizeAs\\\":{\\\"options\\\":{\\\"value\\\":\\\"icon\\\"}},\\\"labelBorderSize\\\":{\\\"options\\\":{\\\"size\\\":\\\"SMALL\\\"}}},\\\"isTimeAware\\\":true},\\\"id\\\":\\\"dbb878c8-4039-49f1-b2ff-ab7fb942ba55\\\",\\\"minZoom\\\":0,\\\"maxZoom\\\":24,\\\"alpha\\\":0.75,\\\"visible\\\":true,\\\"type\\\":\\\"VECTOR\\\",\\\"joins\\\":[]},{\\\"label\\\":\\\"filebeat-* | Line\\\",\\\"sourceDescriptor\\\":{\\\"indexPatternId\\\":\\\"filebeat-*\\\",\\\"sourceGeoField\\\":\\\"source.geo.location\\\",\\\"destGeoField\\\":\\\"destination.geo.location\\\",\\\"metrics\\\":[{\\\"type\\\":\\\"count\\\"},{\\\"type\\\":\\\"sum\\\",\\\"field\\\":\\\"destination.bytes\\\"}],\\\"id\\\":\\\"faf6884d-b7cb-41dd-ab86-95970d7c59d2\\\",\\\"type\\\":\\\"ES_PEW_PEW\\\",\\\"applyGlobalQuery\\\":true,\\\"applyGlobalTime\\\":true},\\\"style\\\":{\\\"type\\\":\\\"VECTOR\\\",\\\"properties\\\":{\\\"icon\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"value\\\":\\\"marker\\\"}},\\\"fillColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#54B399\\\"}},\\\"lineColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#6092C0\\\"}},\\\"lineWidth\\\":{\\\"type\\\":\\\"DYNAMIC\\\",\\\"options\\\":{\\\"minSize\\\":1,\\\"maxSize\\\":8,\\\"field\\\":{\\\"name\\\":\\\"doc_count\\\",\\\"origin\\\":\\\"source\\\"},\\\"fieldMetaOptions\\\":{\\\"isEnabled\\\":true,\\\"sigma\\\":3}}},\\\"iconSize\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"size\\\":6}},\\\"iconOrientation\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"orientation\\\":0}},\\\"labelText\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"value\\\":\\\"\\\"}},\\\"labelColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#000000\\\"}},\\\"labelSize\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"size\\\":14}},\\\"labelBorderColor\\\":{\\\"type\\\":\\\"STATIC\\\",\\\"options\\\":{\\\"color\\\":\\\"#FFFFFF\\\"}},\\\"symbolizeAs\\\":{\\\"options\\\":{\\\"value\\\":\\\"circle\\\"}},\\\"labelBorderSize\\\":{\\\"options\\\":{\\\"size\\\":\\\"SMALL\\\"}}},\\\"isTimeAware\\\":true},\\\"id\\\":\\\"9c450fbf-b009-4b53-9810-2f47ca8dcfa8\\\",\\\"minZoom\\\":0,\\\"maxZoom\\\":24,\\\"alpha\\\":0.75,\\\"visible\\\":true,\\\"type\\\":\\\"VECTOR\\\",\\\"joins\\\":[]}]\",\"mapStateJSON\":\"{\\\"zoom\\\":1.24,\\\"center\\\":{\\\"lon\\\":-49.38072,\\\"lat\\\":7.87497},\\\"timeFilters\\\":{\\\"from\\\":\\\"now-15w\\\",\\\"to\\\":\\\"now\\\"},\\\"refreshConfig\\\":{\\\"isPaused\\\":true,\\\"interval\\\":0},\\\"query\\\":{\\\"query\\\":\\\"\\\",\\\"language\\\":\\\"kuery\\\"},\\\"filters\\\":[],\\\"settings\\\":{\\\"autoFitToDataBounds\\\":false,\\\"backgroundColor\\\":\\\"#ffffff\\\",\\\"disableInteractive\\\":false,\\\"disableTooltipControl\\\":false,\\\"hideToolbarOverlay\\\":false,\\\"hideLayerControl\\\":false,\\\"hideViewControl\\\":false,\\\"initialLocation\\\":\\\"LAST_SAVED_LOCATION\\\",\\\"fixedLocation\\\":{\\\"lat\\\":0,\\\"lon\\\":0,\\\"zoom\\\":2},\\\"browserLocation\\\":{\\\"zoom\\\":2},\\\"maxZoom\\\":24,\\\"minZoom\\\":0,\\\"showScaleControl\\\":false,\\\"showSpatialFilters\\\":true,\\\"spatialFiltersAlpa\\\":0.3,\\\"spatialFiltersFillColor\\\":\\\"#DA8B45\\\",\\\"spatialFiltersLineColor\\\":\\\"#DA8B45\\\"}}\",\"title\":\"\",\"uiStateJSON\":\"{\\\"isLayerTOCOpen\\\":true,\\\"openTOCDetails\\\":[]}\"},\"enhancements\":{},\"hiddenLayers\":[],\"hidePanelTitles\":false,\"isLayerTOCOpen\":false,\"mapBuffer\":{\"maxLat\":148.88690000000003,\"maxLon\":438.09868,\"minLat\":-116.68142,\"minLon\":-417.60444},\"mapCenter\":{\"lat\":43.83453,\"lon\":10.24712,\"zoom\":1},\"openTOCDetails\":[],\"type\":\"map\"},\"title\":\"Network sources and destinations\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"c6305b30-a7e2-4cc3-b49b-db99031f150e\",\"w\":15,\"x\":0,\"y\":49},\"panelIndex\":\"c6305b30-a7e2-4cc3-b49b-db99031f150e\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-layer-028c5c1e-79f9-4999-8438-4889ac2b714c\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"filter-index-pattern-0\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"filter-index-pattern-1\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"028c5c1e-79f9-4999-8438-4889ac2b714c\":{\"columnOrder\":[\"e55346c7-87bc-49f4-9215-8a36931d05f4\",\"f2cd86e2-fb91-48b2-b8dd-e98395d28e00\"],\"columns\":{\"e55346c7-87bc-49f4-9215-8a36931d05f4\":{\"customLabel\":true,\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Users\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"columnId\":\"f2cd86e2-fb91-48b2-b8dd-e98395d28e00\",\"type\":\"column\"},\"orderDirection\":\"desc\",\"otherBucket\":false,\"size\":5},\"scale\":\"ordinal\",\"sourceField\":\"user.name\"},\"f2cd86e2-fb91-48b2-b8dd-e98395d28e00\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Failed authentications\",\"operationType\":\"count\",\"params\":{},\"scale\":\"ratio\",\"sourceField\":\"Records\"}},\"incompleteColumns\":{}}}}},\"filters\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"filter-index-pattern-0\",\"key\":\"event.category\",\"negate\":false,\"params\":{\"query\":\"authentication\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"event.category\":\"authentication\"}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"filter-index-pattern-1\",\"key\":\"event.outcome\",\"negate\":false,\"params\":{\"query\":\"failure\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"event.outcome\":\"failure\"}}}],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"axisTitlesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"fittingFunction\":\"None\",\"gridlinesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"layers\":[{\"accessors\":[\"f2cd86e2-fb91-48b2-b8dd-e98395d28e00\"],\"layerId\":\"028c5c1e-79f9-4999-8438-4889ac2b714c\",\"position\":\"top\",\"seriesType\":\"bar_horizontal\",\"showGridlines\":false,\"xAccessor\":\"e55346c7-87bc-49f4-9215-8a36931d05f4\",\"yConfig\":[{\"color\":\"#d36086\",\"forAccessor\":\"f2cd86e2-fb91-48b2-b8dd-e98395d28e00\"}]}],\"legend\":{\"isVisible\":true,\"position\":\"right\"},\"preferredSeriesType\":\"bar_horizontal\",\"tickLabelsVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"valueLabels\":\"hide\"}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsXY\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Top users by failed authentications to Vault\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"96a2c711-40a3-4dfc-87f5-4b193078e05a\",\"w\":33,\"x\":15,\"y\":49},\"panelIndex\":\"96a2c711-40a3-4dfc-87f5-4b193078e05a\",\"panelRefName\":\"panel_9\",\"title\":\"Credential Access\",\"version\":\"7.12.0\"},{\"embeddableConfig\":{\"columns\":[\"observer.hostname\",\"cyberarkpas.audit.action\",\"cyberarkpas.audit.issuer\",\"cyberarkpas.audit.safe\",\"file.path\"],\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":18,\"i\":\"6cd62115-65e7-416f-8da7-96b0d7a9d932\",\"w\":48,\"x\":0,\"y\":64},\"panelIndex\":\"6cd62115-65e7-416f-8da7-96b0d7a9d932\",\"panelRefName\":\"panel_10\",\"title\":\"All logs\",\"version\":\"7.12.0\"}]","timeRestore":false,"title":"[Filebeat CyberArk PAS] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"eb12ef60-96f6-11eb-bbf8-d77aef8ad7a6","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-33bc0096-e418-4f81-9c7c-7fdd16cc5203","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-de047c06-a965-47aa-8a15-8b0266d5abc3","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-19858811-84d1-4f50-901c-dc1451972324","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-0","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-1","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-50325938-6a9e-4a26-946e-4468e68c6591","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-0","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-1","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-105faf70-8330-46b3-a82a-573a383068fa","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-0","type":"index-pattern"},{"id":"filebeat-*","name":"layer_1_source_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"layer_2_source_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"layer_3_source_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-028c5c1e-79f9-4999-8438-4889ac2b714c","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-0","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-1","type":"index-pattern"},{"id":"a9b82df0-97a5-11eb-bbf8-d77aef8ad7a6","name":"panel_9","type":"search"},{"id":"fec0d170-96f7-11eb-bbf8-d77aef8ad7a6","name":"panel_10","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:04.520Z","version":"WzQ0MTAsMV0="} diff --git a/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/dashboard/eb12ef60-96f6-11eb-bbf8-d77aef8ad7a6.json b/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/dashboard/eb12ef60-96f6-11eb-bbf8-d77aef8ad7a6.json new file mode 100644 index 000000000000..406c258f164d --- /dev/null +++ b/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/dashboard/eb12ef60-96f6-11eb-bbf8-d77aef8ad7a6.json @@ -0,0 +1,1382 @@ +{ + "attributes": { + "description": "Dashboard for CyberArk Privileged Access Security events.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "cyberarkpas.audit" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "cyberarkpas.audit" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false, + "savedVis": { + "data": { + "aggs": [], + "searchSource": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "description": "", + "params": { + "controls": [ + { + "fieldName": "observer.hostname", + "id": "1617726994032", + "indexPattern": "filebeat-*", + "indexPatternRefName": "control_0_index_pattern", + "label": " By Vault host", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "event.code", + "id": "1617811797137", + "indexPattern": "filebeat-*", + "indexPatternRefName": "control_1_index_pattern", + "label": "By event code", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "", + "type": "input_control_vis", + "uiState": {} + }, + "type": "visualization" + }, + "gridData": { + "h": 9, + "i": "1007fa0d-a6a1-4682-a346-a90acc179da5", + "w": 10, + "x": 0, + "y": 0 + }, + "panelIndex": "1007fa0d-a6a1-4682-a346-a90acc179da5", + "title": "Filters", + "type": "visualization", + "version": "7.14.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false, + "savedVis": { + "data": { + "aggs": [], + "searchSource": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "description": "", + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "event.dataset:\"cyberarkpas.audit\" " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "hide_in_legend": 0, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "override_index_pattern": 0, + "palette": { + "name": "rainbow", + "params": { + "colors": [ + "#68BC00", + "#009CE0", + "#B0BC00", + "#16A5A5", + "#D33115", + "#E27300", + "#FCC400", + "#7B64FF", + "#FA28FF", + "#333333", + "#808080", + "#194D33", + "#0062B1", + "#808900", + "#0C797D", + "#9F0500", + "#C45100", + "#FB9E00", + "#653294", + "#AB149E", + "#0F1419", + "#666666" + ], + "gradient": false + }, + "type": "palette" + }, + "point_size": 1, + "separate_axis": 0, + "split_color_mode": null, + "split_mode": "terms", + "stacked": "stacked", + "terms_field": "cyberarkpas.audit.desc", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "time_range_mode": "entire_time_range", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "", + "type": "metrics", + "uiState": {} + }, + "type": "visualization" + }, + "gridData": { + "h": 13, + "i": "f2dc3750-9b7c-4b0e-a45d-3d3b08f74f3e", + "w": 38, + "x": 10, + "y": 0 + }, + "panelIndex": "f2dc3750-9b7c-4b0e-a45d-3d3b08f74f3e", + "title": "event types by time", + "type": "visualization", + "version": "7.14.0" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-33bc0096-e418-4f81-9c7c-7fdd16cc5203", + "type": "index-pattern" + } + ], + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "33bc0096-e418-4f81-9c7c-7fdd16cc5203": { + "columnOrder": [ + "eedd5aa8-a7c4-466a-b10b-3a8cba3bac12" + ], + "columns": { + "eedd5aa8-a7c4-466a-b10b-3a8cba3bac12": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": " ", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "accessor": "eedd5aa8-a7c4-466a-b10b-3a8cba3bac12", + "layerId": "33bc0096-e418-4f81-9c7c-7fdd16cc5203" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {}, + "hidePanelTitles": false, + "type": "lens" + }, + "gridData": { + "h": 4, + "i": "af9e9f0b-a40c-411e-b441-2a779983ed24", + "w": 10, + "x": 0, + "y": 9 + }, + "panelIndex": "af9e9f0b-a40c-411e-b441-2a779983ed24", + "title": "Count of events", + "type": "lens", + "version": "7.14.0" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-de047c06-a965-47aa-8a15-8b0266d5abc3", + "type": "index-pattern" + } + ], + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "de047c06-a965-47aa-8a15-8b0266d5abc3": { + "columnOrder": [ + "b916e5f5-a64a-49f1-b37a-ee1825fc61a4", + "3effd03e-0ed9-4e2d-ba8e-d77ae505092e" + ], + "columns": { + "3effd03e-0ed9-4e2d-ba8e-d77ae505092e": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "b916e5f5-a64a-49f1-b37a-ee1825fc61a4": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of event.outcome", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "3effd03e-0ed9-4e2d-ba8e-d77ae505092e", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "event.outcome" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "groups": [ + "b916e5f5-a64a-49f1-b37a-ee1825fc61a4" + ], + "layerId": "de047c06-a965-47aa-8a15-8b0266d5abc3", + "legendDisplay": "default", + "metric": "3effd03e-0ed9-4e2d-ba8e-d77ae505092e", + "nestedLegend": false, + "numberDisplay": "percent" + } + ], + "shape": "donut" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsPie" + }, + "enhancements": {}, + "hidePanelTitles": false, + "type": "lens" + }, + "gridData": { + "h": 13, + "i": "7031905a-92ab-4e0e-aa58-72f1c07ff409", + "w": 10, + "x": 0, + "y": 13 + }, + "panelIndex": "7031905a-92ab-4e0e-aa58-72f1c07ff409", + "title": "Breakdown by outcome", + "type": "lens", + "version": "7.14.0" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-19858811-84d1-4f50-901c-dc1451972324", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-0", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-1", + "type": "index-pattern" + } + ], + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "19858811-84d1-4f50-901c-dc1451972324": { + "columnOrder": [ + "81dcff19-b14a-4e4b-999e-dbbcbdfdf816", + "e3526253-18e0-4122-b112-ee5b4b9e23d7" + ], + "columns": { + "81dcff19-b14a-4e4b-999e-dbbcbdfdf816": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of destination.user.name", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "type": "alphabetical" + }, + "orderDirection": "asc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "destination.user.name" + }, + "e3526253-18e0-4122-b112-ee5b4b9e23d7": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "filter-index-pattern-0", + "key": "event.dataset", + "negate": false, + "params": { + "query": "cyberarkpas.audit" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "cyberarkpas.audit" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "filter-index-pattern-1", + "key": "event.code", + "negate": false, + "params": [ + "308", + "22", + "319", + "295" + ], + "type": "phrases" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "308" + } + }, + { + "match_phrase": { + "event.code": "22" + } + }, + { + "match_phrase": { + "event.code": "319" + } + }, + { + "match_phrase": { + "event.code": "295" + } + } + ] + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "groups": [ + "81dcff19-b14a-4e4b-999e-dbbcbdfdf816", + "81dcff19-b14a-4e4b-999e-dbbcbdfdf816", + "81dcff19-b14a-4e4b-999e-dbbcbdfdf816", + "81dcff19-b14a-4e4b-999e-dbbcbdfdf816", + "81dcff19-b14a-4e4b-999e-dbbcbdfdf816", + "81dcff19-b14a-4e4b-999e-dbbcbdfdf816" + ], + "layerId": "19858811-84d1-4f50-901c-dc1451972324", + "legendDisplay": "default", + "metric": "e3526253-18e0-4122-b112-ee5b4b9e23d7", + "nestedLegend": false, + "numberDisplay": "percent" + } + ], + "shape": "donut" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsPie" + }, + "enhancements": {}, + "hidePanelTitles": false, + "type": "lens" + }, + "gridData": { + "h": 13, + "i": "a24b9c0c-da95-4016-9fe5-2c0d34005832", + "w": 11, + "x": 10, + "y": 13 + }, + "panelIndex": "a24b9c0c-da95-4016-9fe5-2c0d34005832", + "title": "Top 10 user credentials accessed", + "type": "lens", + "version": "7.14.0" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-50325938-6a9e-4a26-946e-4468e68c6591", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-0", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-1", + "type": "index-pattern" + } + ], + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "50325938-6a9e-4a26-946e-4468e68c6591": { + "columnOrder": [ + "8a965540-daa1-4848-80bb-96ddf53a328f", + "c05a39ad-2983-4f4a-900d-a939ecbda504", + "a808a872-71b5-4a76-a939-354f68991881" + ], + "columns": { + "8a965540-daa1-4848-80bb-96ddf53a328f": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of event.outcome", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "a808a872-71b5-4a76-a939-354f68991881", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 2 + }, + "scale": "ordinal", + "sourceField": "event.outcome" + }, + "a808a872-71b5-4a76-a939-354f68991881": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Credentials accessed", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "c05a39ad-2983-4f4a-900d-a939ecbda504": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "filter-index-pattern-0", + "key": "event.dataset", + "negate": false, + "params": { + "query": "cyberarkpas.audit" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "cyberarkpas.audit" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "filter-index-pattern-1", + "key": "event.code", + "negate": false, + "params": [ + "308", + "22", + "319", + "295", + "38" + ], + "type": "phrases" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "308" + } + }, + { + "match_phrase": { + "event.code": "22" + } + }, + { + "match_phrase": { + "event.code": "319" + } + }, + { + "match_phrase": { + "event.code": "295" + } + }, + { + "match_phrase": { + "event.code": "38" + } + } + ] + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "a808a872-71b5-4a76-a939-354f68991881" + ], + "layerId": "50325938-6a9e-4a26-946e-4468e68c6591", + "position": "top", + "seriesType": "area_stacked", + "showGridlines": false, + "splitAccessor": "8a965540-daa1-4848-80bb-96ddf53a328f", + "xAccessor": "c05a39ad-2983-4f4a-900d-a939ecbda504" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "area_stacked", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {}, + "hidePanelTitles": false, + "type": "lens" + }, + "gridData": { + "h": 13, + "i": "1dc68cc6-e1b3-43ea-9b0e-f423d194b99a", + "w": 27, + "x": 21, + "y": 13 + }, + "panelIndex": "1dc68cc6-e1b3-43ea-9b0e-f423d194b99a", + "title": "Credential access by time", + "type": "lens", + "version": "7.14.0" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-105faf70-8330-46b3-a82a-573a383068fa", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-0", + "type": "index-pattern" + } + ], + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "105faf70-8330-46b3-a82a-573a383068fa": { + "columnOrder": [ + "c51d6847-2fcc-4d13-a44f-49786cb979ed", + "d73b823b-ae68-4e73-bbe2-90a35bc825e7", + "c0147524-accc-4dee-a4fc-44199e3459f1" + ], + "columns": { + "c0147524-accc-4dee-a4fc-44199e3459f1": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Authentications", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "c51d6847-2fcc-4d13-a44f-49786cb979ed": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Users", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "c0147524-accc-4dee-a4fc-44199e3459f1", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 8 + }, + "scale": "ordinal", + "sourceField": "user.name" + }, + "d73b823b-ae68-4e73-bbe2-90a35bc825e7": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of event.outcome", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "type": "alphabetical" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 2 + }, + "scale": "ordinal", + "sourceField": "event.outcome" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "filter-index-pattern-0", + "key": "event.category", + "negate": false, + "params": [ + "authentication" + ], + "type": "phrases" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.category": "authentication" + } + } + ] + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "c0147524-accc-4dee-a4fc-44199e3459f1" + ], + "layerId": "105faf70-8330-46b3-a82a-573a383068fa", + "palette": { + "name": "status", + "type": "palette" + }, + "position": "top", + "seriesType": "bar_horizontal_stacked", + "showGridlines": false, + "splitAccessor": "d73b823b-ae68-4e73-bbe2-90a35bc825e7", + "xAccessor": "c51d6847-2fcc-4d13-a44f-49786cb979ed" + } + ], + "legend": { + "isVisible": true, + "position": "right", + "showSingleSeries": false + }, + "preferredSeriesType": "bar_horizontal_stacked", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {}, + "hidePanelTitles": false, + "type": "lens" + }, + "gridData": { + "h": 23, + "i": "c56b3e4d-bfb6-4b06-a62b-282753b85f7a", + "w": 15, + "x": 0, + "y": 26 + }, + "panelIndex": "c56b3e4d-bfb6-4b06-a62b-282753b85f7a", + "title": "Vault Authentication attempts", + "type": "lens", + "version": "7.14.0" + }, + { + "embeddableConfig": { + "attributes": { + "description": "", + "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"id\":null,\"isAutoSelect\":true},\"id\":\"a3734143-d6e1-4551-b0b1-8282a37e151b\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{\"type\":\"TILE\"},\"type\":\"VECTOR_TILE\"},{\"label\":\"filebeat-* | Source Point\",\"sourceDescriptor\":{\"indexPatternId\":\"filebeat-*\",\"geoField\":\"source.geo.location\",\"scalingType\":\"TOP_HITS\",\"topHitsSplitField\":\"source.ip\",\"tooltipProperties\":[\"host.name\",\"source.ip\",\"source.domain\",\"source.geo.country_iso_code\",\"source.as.organization.name\"],\"id\":\"5f2b25a1-01ea-45ca-a4a2-f1a670c3b149\",\"type\":\"ES_SEARCH\",\"applyGlobalQuery\":true,\"applyGlobalTime\":true,\"filterByMapBounds\":true,\"sortField\":\"\",\"sortOrder\":\"desc\",\"topHitsSize\":22},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"home\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#6092C0\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":2}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":8}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"icon\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"2ad8e318-4ef4-4e89-94f2-f37e395c488c\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"joins\":[]},{\"label\":\"filebeat-* | Destination point\",\"sourceDescriptor\":{\"indexPatternId\":\"filebeat-*\",\"geoField\":\"destination.geo.location\",\"scalingType\":\"TOP_HITS\",\"topHitsSplitField\":\"destination.ip\",\"tooltipProperties\":[\"host.name\",\"destination.ip\",\"destination.domain\",\"destination.geo.country_iso_code\",\"destination.as.organization.name\"],\"id\":\"bc95f479-964f-4498-be1e-376d34a01b0a\",\"type\":\"ES_SEARCH\",\"applyGlobalQuery\":true,\"applyGlobalTime\":true,\"filterByMapBounds\":true,\"sortField\":\"\",\"sortOrder\":\"desc\",\"topHitsSize\":35},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#D36086\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":2}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":8}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"icon\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"dbb878c8-4039-49f1-b2ff-ab7fb942ba55\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"joins\":[]},{\"label\":\"filebeat-* | Line\",\"sourceDescriptor\":{\"indexPatternId\":\"filebeat-*\",\"sourceGeoField\":\"source.geo.location\",\"destGeoField\":\"destination.geo.location\",\"metrics\":[{\"type\":\"count\"},{\"type\":\"sum\",\"field\":\"destination.bytes\"}],\"id\":\"faf6884d-b7cb-41dd-ab86-95970d7c59d2\",\"type\":\"ES_PEW_PEW\",\"applyGlobalQuery\":true,\"applyGlobalTime\":true},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#54B399\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#6092C0\"}},\"lineWidth\":{\"type\":\"DYNAMIC\",\"options\":{\"minSize\":1,\"maxSize\":8,\"field\":{\"name\":\"doc_count\",\"origin\":\"source\"},\"fieldMetaOptions\":{\"isEnabled\":true,\"sigma\":3}}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"9c450fbf-b009-4b53-9810-2f47ca8dcfa8\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"joins\":[]}]", + "mapStateJSON": "{\"zoom\":1.24,\"center\":{\"lon\":-49.38072,\"lat\":7.87497},\"timeFilters\":{\"from\":\"now-15w\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":true,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false,\"backgroundColor\":\"#ffffff\",\"disableInteractive\":false,\"disableTooltipControl\":false,\"hideToolbarOverlay\":false,\"hideLayerControl\":false,\"hideViewControl\":false,\"initialLocation\":\"LAST_SAVED_LOCATION\",\"fixedLocation\":{\"lat\":0,\"lon\":0,\"zoom\":2},\"browserLocation\":{\"zoom\":2},\"maxZoom\":24,\"minZoom\":0,\"showScaleControl\":false,\"showSpatialFilters\":true,\"spatialFiltersAlpa\":0.3,\"spatialFiltersFillColor\":\"#DA8B45\",\"spatialFiltersLineColor\":\"#DA8B45\"}}", + "title": "", + "uiStateJSON": "{\"isLayerTOCOpen\":true,\"openTOCDetails\":[]}" + }, + "enhancements": {}, + "hiddenLayers": [], + "hidePanelTitles": false, + "isLayerTOCOpen": false, + "mapBuffer": { + "maxLat": 148.88690000000003, + "maxLon": 438.09868, + "minLat": -116.68142, + "minLon": -417.60444 + }, + "mapCenter": { + "lat": 43.83453, + "lon": 10.24712, + "zoom": 1 + }, + "openTOCDetails": [], + "type": "map" + }, + "gridData": { + "h": 23, + "i": "cd1e20e7-706f-4d02-949c-d9f5908bad67", + "w": 33, + "x": 15, + "y": 26 + }, + "panelIndex": "cd1e20e7-706f-4d02-949c-d9f5908bad67", + "title": "Network sources and destinations", + "type": "map", + "version": "7.14.0" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-028c5c1e-79f9-4999-8438-4889ac2b714c", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-0", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-1", + "type": "index-pattern" + } + ], + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "028c5c1e-79f9-4999-8438-4889ac2b714c": { + "columnOrder": [ + "e55346c7-87bc-49f4-9215-8a36931d05f4", + "f2cd86e2-fb91-48b2-b8dd-e98395d28e00" + ], + "columns": { + "e55346c7-87bc-49f4-9215-8a36931d05f4": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Users", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "f2cd86e2-fb91-48b2-b8dd-e98395d28e00", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "user.name" + }, + "f2cd86e2-fb91-48b2-b8dd-e98395d28e00": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Failed authentications", + "operationType": "count", + "params": {}, + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "filter-index-pattern-0", + "key": "event.category", + "negate": false, + "params": { + "query": "authentication" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.category": "authentication" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "filter-index-pattern-1", + "key": "event.outcome", + "negate": false, + "params": { + "query": "failure" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.outcome": "failure" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "f2cd86e2-fb91-48b2-b8dd-e98395d28e00" + ], + "layerId": "028c5c1e-79f9-4999-8438-4889ac2b714c", + "position": "top", + "seriesType": "bar_horizontal", + "showGridlines": false, + "xAccessor": "e55346c7-87bc-49f4-9215-8a36931d05f4", + "yConfig": [ + { + "color": "#d36086", + "forAccessor": "f2cd86e2-fb91-48b2-b8dd-e98395d28e00" + } + ] + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar_horizontal", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {}, + "hidePanelTitles": false, + "type": "lens" + }, + "gridData": { + "h": 15, + "i": "c6305b30-a7e2-4cc3-b49b-db99031f150e", + "w": 15, + "x": 0, + "y": 49 + }, + "panelIndex": "c6305b30-a7e2-4cc3-b49b-db99031f150e", + "title": "Top users by failed authentications to Vault", + "type": "lens", + "version": "7.14.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "96a2c711-40a3-4dfc-87f5-4b193078e05a", + "w": 33, + "x": 15, + "y": 49 + }, + "panelIndex": "96a2c711-40a3-4dfc-87f5-4b193078e05a", + "panelRefName": "panel_9", + "title": "Credential Access", + "version": "7.12.0" + }, + { + "embeddableConfig": { + "columns": [ + "observer.hostname", + "cyberarkpas.audit.action", + "cyberarkpas.audit.issuer", + "cyberarkpas.audit.safe", + "file.path" + ], + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 18, + "i": "6cd62115-65e7-416f-8da7-96b0d7a9d932", + "w": 48, + "x": 0, + "y": 64 + }, + "panelIndex": "6cd62115-65e7-416f-8da7-96b0d7a9d932", + "panelRefName": "panel_10", + "title": "All logs", + "version": "7.12.0" + } + ], + "timeRestore": false, + "title": "[Filebeat CyberArk PAS] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "eb12ef60-96f6-11eb-bbf8-d77aef8ad7a6", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-33bc0096-e418-4f81-9c7c-7fdd16cc5203", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-de047c06-a965-47aa-8a15-8b0266d5abc3", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-19858811-84d1-4f50-901c-dc1451972324", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-0", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-1", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-50325938-6a9e-4a26-946e-4468e68c6591", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-0", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-1", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-105faf70-8330-46b3-a82a-573a383068fa", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-0", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "layer_1_source_index_pattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "layer_2_source_index_pattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "layer_3_source_index_pattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-028c5c1e-79f9-4999-8438-4889ac2b714c", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-0", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-1", + "type": "index-pattern" + }, + { + "id": "a9b82df0-97a5-11eb-bbf8-d77aef8ad7a6", + "name": "panel_9", + "type": "search" + }, + { + "id": "fec0d170-96f7-11eb-bbf8-d77aef8ad7a6", + "name": "panel_10", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:04.520Z", + "version": "WzQ0MTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/search/a9b82df0-97a5-11eb-bbf8-d77aef8ad7a6.json b/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/search/a9b82df0-97a5-11eb-bbf8-d77aef8ad7a6.json new file mode 100644 index 000000000000..0a2a97f5c643 --- /dev/null +++ b/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/search/a9b82df0-97a5-11eb-bbf8-d77aef8ad7a6.json @@ -0,0 +1,145 @@ +{ + "attributes": { + "columns": [ + "event.action", + "event.outcome", + "source.address", + "source.user.name", + "destination.address", + "destination.user.name", + "event.reason" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "cyberarkpas.audit" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "cyberarkpas.audit" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "308", + "319", + "295", + "22", + "38", + "300", + "302" + ], + "type": "phrases", + "value": "308, 319, 295, 22, 38, 300, 302" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "308" + } + }, + { + "match_phrase": { + "event.code": "319" + } + }, + { + "match_phrase": { + "event.code": "295" + } + }, + { + "match_phrase": { + "event.code": "22" + } + }, + { + "match_phrase": { + "event.code": "38" + } + }, + { + "match_phrase": { + "event.code": "300" + } + }, + { + "match_phrase": { + "event.code": "302" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Credential Access logs [Filebeat CyberArk PAS] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "a9b82df0-97a5-11eb-bbf8-d77aef8ad7a6", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:04.520Z", + "version": "WzQ0MTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/search/fec0d170-96f7-11eb-bbf8-d77aef8ad7a6.json b/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/search/fec0d170-96f7-11eb-bbf8-d77aef8ad7a6.json new file mode 100644 index 000000000000..54b7423a77b3 --- /dev/null +++ b/x-pack/filebeat/module/cyberarkpas/_meta/kibana/7/search/fec0d170-96f7-11eb-bbf8-d77aef8ad7a6.json @@ -0,0 +1,40 @@ +{ + "attributes": { + "columns": [], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:\"cyberarkpas.audit\" " + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "All logs [Filebeat CyberArk PAS] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "fec0d170-96f7-11eb-bbf8-d77aef8ad7a6", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:04.520Z", + "version": "WzQ0MTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/cyberarkpas/module.yml b/x-pack/filebeat/module/cyberarkpas/module.yml index 1a955da8e6dc..411b4945cde5 100644 --- a/x-pack/filebeat/module/cyberarkpas/module.yml +++ b/x-pack/filebeat/module/cyberarkpas/module.yml @@ -1,3 +1,3 @@ dashboards: - id: eb12ef60-96f6-11eb-bbf8-d77aef8ad7a6 - file: Filebeat-cyberarkpas-audit.ndjson + file: Filebeat-cyberarkpas-audit.json diff --git a/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/dashboard/0c610510-5cbd-11e9-8477-077ec9664dbd.json b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/dashboard/0c610510-5cbd-11e9-8477-077ec9664dbd.json new file mode 100644 index 000000000000..790ea981141f --- /dev/null +++ b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/dashboard/0c610510-5cbd-11e9-8477-077ec9664dbd.json @@ -0,0 +1,160 @@ +{ + "attributes": { + "description": "Filebeat Envoyproxy Overview Dashboard", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "1", + "w": 22, + "x": 22, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "2", + "w": 22, + "x": 22, + "y": 7 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "3", + "w": 22, + "x": 0, + "y": 7 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "4", + "w": 22, + "x": 0, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "5", + "w": 22, + "x": 0, + "y": 17 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "6", + "w": 22, + "x": 22, + "y": 17 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Filebeat Envoyproxy] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "0c610510-5cbd-11e9-8477-077ec9664dbd", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "36f872a0-5c03-11e9-85b4-19d0072eb4f2", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "80844540-5c97-11e9-8477-077ec9664dbd", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "38f96190-5c99-11e9-8477-077ec9664dbd", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "7e4084e0-5c99-11e9-8477-077ec9664dbd", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "0a994af0-5c9d-11e9-8477-077ec9664dbd", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "ab48c3f0-5ca6-11e9-8477-077ec9664dbd", + "name": "6:panel_6", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:42.085Z", + "version": "WzQyNTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/dashboard/Filebeat-Envoyproxy-Overview.ndjson b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/dashboard/Filebeat-Envoyproxy-Overview.ndjson deleted file mode 100644 index 1f0b705996e0..000000000000 --- a/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/dashboard/Filebeat-Envoyproxy-Overview.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"envoyproxy.log\"}, \"type\": \"phrase\", \"value\": \"envoyproxy.log\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"envoyproxy.log\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top HTTP Response Codes [Filebeat Envoyproxy]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"http.response.status_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"number\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},\"maxFontSize\":72,\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}},\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top HTTP Response Codes [Filebeat Envoyproxy]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"36f872a0-5c03-11e9-85b4-19d0072eb4f2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:42.085Z","version":"WzQyNTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"envoyproxy.log\"}, \"type\": \"phrase\", \"value\": \"envoyproxy.log\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"envoyproxy.log\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top Domains [Filebeat Envoyproxy]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"url.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top Domains [Filebeat Envoyproxy]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"80844540-5c97-11e9-8477-077ec9664dbd","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:42.085Z","version":"WzQyNTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"envoyproxy.log\"}, \"type\": \"phrase\", \"value\": \"envoyproxy.log\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"envoyproxy.log\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Requests per Source [Filebeat Envoyproxy]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.address\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"x\":null,\"y\":[{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Requests per Source [Filebeat Envoyproxy]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"38f96190-5c99-11e9-8477-077ec9664dbd","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:42.085Z","version":"WzQyNTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"envoyproxy.log\"}, \"type\": \"phrase\", \"value\": \"envoyproxy.log\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"envoyproxy.log\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Unique Domains [Filebeat Envoyproxy]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"url.domain\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"bucket\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":false},\"metricColorMode\":\"None\",\"metrics\":[{\"accessor\":0,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"params\":{}}],\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Unique Domains [Filebeat Envoyproxy]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"7e4084e0-5c99-11e9-8477-077ec9664dbd","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:42.085Z","version":"WzQyNjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"envoyproxy.log\"}, \"type\": \"phrase\", \"value\": \"envoyproxy.log\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"envoyproxy.log\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Top User Agents [Filebeat Envoyproxy]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top User Agents [Filebeat Envoyproxy]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0a994af0-5c9d-11e9-8477-077ec9664dbd","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:42.085Z","version":"WzQyNjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"envoyproxy.log\"}, \"type\": \"phrase\", \"value\": \"envoyproxy.log\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"envoyproxy.log\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:envoyproxy.log\"}}"},"title":"Proxy Request Distribution [Filebeat Envoyproxy]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"envoyproxy.proxy_type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Proxy Request Distribution [Filebeat Envoyproxy] \",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"ab48c3f0-5ca6-11e9-8477-077ec9664dbd","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:42.085Z","version":"WzQyNjIsMV0="} -{"attributes":{"description":"Filebeat Envoyproxy Overview Dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"1\",\"w\":22,\"x\":22,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":22,\"x\":22,\"y\":7},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3\",\"w\":22,\"x\":0,\"y\":7},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"4\",\"w\":22,\"x\":0,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5\",\"w\":22,\"x\":0,\"y\":17},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"6\",\"w\":22,\"x\":22,\"y\":17},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Filebeat Envoyproxy] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"0c610510-5cbd-11e9-8477-077ec9664dbd","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"36f872a0-5c03-11e9-85b4-19d0072eb4f2","name":"1:panel_1","type":"visualization"},{"id":"80844540-5c97-11e9-8477-077ec9664dbd","name":"2:panel_2","type":"visualization"},{"id":"38f96190-5c99-11e9-8477-077ec9664dbd","name":"3:panel_3","type":"visualization"},{"id":"7e4084e0-5c99-11e9-8477-077ec9664dbd","name":"4:panel_4","type":"visualization"},{"id":"0a994af0-5c9d-11e9-8477-077ec9664dbd","name":"5:panel_5","type":"visualization"},{"id":"ab48c3f0-5ca6-11e9-8477-077ec9664dbd","name":"6:panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:42.085Z","version":"WzQyNTYsMV0="} diff --git a/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/0a994af0-5c9d-11e9-8477-077ec9664dbd.json b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/0a994af0-5c9d-11e9-8477-077ec9664dbd.json new file mode 100644 index 000000000000..369e12d90784 --- /dev/null +++ b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/0a994af0-5c9d-11e9-8477-077ec9664dbd.json @@ -0,0 +1,121 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "envoyproxy.log" + }, + "type": "phrase", + "value": "envoyproxy.log" + }, + "query": { + "match": { + "event.dataset": { + "query": "envoyproxy.log", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "" + } + } + }, + "title": "Top User Agents [Filebeat Envoyproxy]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user_agent.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "metric": { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Top User Agents [Filebeat Envoyproxy]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0a994af0-5c9d-11e9-8477-077ec9664dbd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:42.085Z", + "version": "WzQyNjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/36f872a0-5c03-11e9-85b4-19d0072eb4f2.json b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/36f872a0-5c03-11e9-85b4-19d0072eb4f2.json new file mode 100644 index 000000000000..b6e6e7a4d1fc --- /dev/null +++ b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/36f872a0-5c03-11e9-85b4-19d0072eb4f2.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "envoyproxy.log" + }, + "type": "phrase", + "value": "envoyproxy.log" + }, + "query": { + "match": { + "event.dataset": { + "query": "envoyproxy.log", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Top HTTP Response Codes [Filebeat Envoyproxy]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "http.response.status_code", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "bucket": { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "number", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + "maxFontSize": 72, + "metric": { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + }, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": false + }, + "title": "Top HTTP Response Codes [Filebeat Envoyproxy]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "36f872a0-5c03-11e9-85b4-19d0072eb4f2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:42.085Z", + "version": "WzQyNTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/38f96190-5c99-11e9-8477-077ec9664dbd.json b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/38f96190-5c99-11e9-8477-077ec9664dbd.json new file mode 100644 index 000000000000..e1a2e5dd1305 --- /dev/null +++ b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/38f96190-5c99-11e9-8477-077ec9664dbd.json @@ -0,0 +1,178 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "envoyproxy.log" + }, + "type": "phrase", + "value": "envoyproxy.log" + }, + "query": { + "match": { + "event.dataset": { + "query": "envoyproxy.log", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Requests per Source [Filebeat Envoyproxy]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "source.address", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "dimensions": { + "x": null, + "y": [ + { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Requests per Source [Filebeat Envoyproxy]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "38f96190-5c99-11e9-8477-077ec9664dbd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:42.085Z", + "version": "WzQyNTksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/7e4084e0-5c99-11e9-8477-077ec9664dbd.json b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/7e4084e0-5c99-11e9-8477-077ec9664dbd.json new file mode 100644 index 000000000000..3c6ef85787e1 --- /dev/null +++ b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/7e4084e0-5c99-11e9-8477-077ec9664dbd.json @@ -0,0 +1,130 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "envoyproxy.log" + }, + "type": "phrase", + "value": "envoyproxy.log" + }, + "query": { + "match": { + "event.dataset": { + "query": "envoyproxy.log", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Unique Domains [Filebeat Envoyproxy]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "url.domain" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "bucket": { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": false + }, + "metricColorMode": "None", + "metrics": [ + { + "accessor": 0, + "aggType": "cardinality", + "format": { + "id": "number" + }, + "params": {} + } + ], + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Unique Domains [Filebeat Envoyproxy]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7e4084e0-5c99-11e9-8477-077ec9664dbd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:42.085Z", + "version": "WzQyNjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/80844540-5c97-11e9-8477-077ec9664dbd.json b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/80844540-5c97-11e9-8477-077ec9664dbd.json new file mode 100644 index 000000000000..d43523aca72b --- /dev/null +++ b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/80844540-5c97-11e9-8477-077ec9664dbd.json @@ -0,0 +1,121 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "envoyproxy.log" + }, + "type": "phrase", + "value": "envoyproxy.log" + }, + "query": { + "match": { + "event.dataset": { + "query": "envoyproxy.log", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Top Domains [Filebeat Envoyproxy]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "url.domain", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "metric": { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Top Domains [Filebeat Envoyproxy]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "80844540-5c97-11e9-8477-077ec9664dbd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:42.085Z", + "version": "WzQyNTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/ab48c3f0-5ca6-11e9-8477-077ec9664dbd.json b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/ab48c3f0-5ca6-11e9-8477-077ec9664dbd.json new file mode 100644 index 000000000000..95d34e3a3826 --- /dev/null +++ b/x-pack/filebeat/module/envoyproxy/_meta/kibana/7/visualization/ab48c3f0-5ca6-11e9-8477-077ec9664dbd.json @@ -0,0 +1,121 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "envoyproxy.log" + }, + "type": "phrase", + "value": "envoyproxy.log" + }, + "query": { + "match": { + "event.dataset": { + "query": "envoyproxy.log", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:envoyproxy.log" + } + } + }, + "title": "Proxy Request Distribution [Filebeat Envoyproxy]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "envoyproxy.proxy_type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "metric": { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Proxy Request Distribution [Filebeat Envoyproxy] ", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ab48c3f0-5ca6-11e9-8477-077ec9664dbd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:42.085Z", + "version": "WzQyNjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/envoyproxy/module.yml b/x-pack/filebeat/module/envoyproxy/module.yml index 2d6633cc76e7..ec3662ad0018 100644 --- a/x-pack/filebeat/module/envoyproxy/module.yml +++ b/x-pack/filebeat/module/envoyproxy/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 0c610510-5cbd-11e9-8477-077ec9664dbd - file: Filebeat-Envoyproxy-Overview.ndjson \ No newline at end of file + file: Filebeat-Envoyproxy-Overview.json \ No newline at end of file diff --git a/x-pack/filebeat/module/gcp/_meta/kibana/7/dashboard/6576c480-73a2-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/gcp/_meta/kibana/7/dashboard/6576c480-73a2-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..f331a81e98a8 --- /dev/null +++ b/x-pack/filebeat/module/gcp/_meta/kibana/7/dashboard/6576c480-73a2-11ea-a345-f985c61fe654.json @@ -0,0 +1,189 @@ +{ + "attributes": { + "description": "Overview of audit events from Google Cloud.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "hiddenLayers": [], + "isLayerTOCOpen": false, + "mapCenter": { + "lat": 32.1625, + "lon": -48.67493, + "zoom": 1.97 + }, + "openTOCDetails": [] + }, + "gridData": { + "h": 15, + "i": "a808a985-5cf3-463a-9aad-5159cb64cef1", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "a808a985-5cf3-463a-9aad-5159cb64cef1", + "panelRefName": "panel_a808a985-5cf3-463a-9aad-5159cb64cef1", + "type": "map", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "9e7025b6-c3bf-424f-b541-d22d00e1fa64", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "9e7025b6-c3bf-424f-b541-d22d00e1fa64", + "panelRefName": "panel_9e7025b6-c3bf-424f-b541-d22d00e1fa64", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "5b6a8479-2c18-495e-88fa-9e3239277e3d", + "w": 12, + "x": 0, + "y": 15 + }, + "panelIndex": "5b6a8479-2c18-495e-88fa-9e3239277e3d", + "panelRefName": "panel_5b6a8479-2c18-495e-88fa-9e3239277e3d", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "46da4e61-e0bb-4595-a2c7-05210bfbea64", + "w": 12, + "x": 12, + "y": 15 + }, + "panelIndex": "46da4e61-e0bb-4595-a2c7-05210bfbea64", + "panelRefName": "panel_46da4e61-e0bb-4595-a2c7-05210bfbea64", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "4d698f07-2caf-45c0-bd48-51ea72ea79b0", + "w": 12, + "x": 24, + "y": 15 + }, + "panelIndex": "4d698f07-2caf-45c0-bd48-51ea72ea79b0", + "panelRefName": "panel_4d698f07-2caf-45c0-bd48-51ea72ea79b0", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "c5e31da0-d4c8-4554-ab32-61da2495ab6c", + "w": 12, + "x": 36, + "y": 15 + }, + "panelIndex": "c5e31da0-d4c8-4554-ab32-61da2495ab6c", + "panelRefName": "panel_c5e31da0-d4c8-4554-ab32-61da2495ab6c", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "95ebbda8-9b00-4b23-b116-72569ea031e3", + "w": 48, + "x": 0, + "y": 29 + }, + "panelIndex": "95ebbda8-9b00-4b23-b116-72569ea031e3", + "panelRefName": "panel_95ebbda8-9b00-4b23-b116-72569ea031e3", + "type": "search", + "version": "8.0.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Filebeat GCP] Audit", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "6576c480-73a2-11ea-a345-f985c61fe654", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "a97de660-73a5-11ea-a345-f985c61fe654", + "name": "a808a985-5cf3-463a-9aad-5159cb64cef1:panel_a808a985-5cf3-463a-9aad-5159cb64cef1", + "type": "map" + }, + { + "id": "4627efa0-73a2-11ea-a345-f985c61fe654", + "name": "9e7025b6-c3bf-424f-b541-d22d00e1fa64:panel_9e7025b6-c3bf-424f-b541-d22d00e1fa64", + "type": "visualization" + }, + { + "id": "eb5bf570-73a2-11ea-a345-f985c61fe654", + "name": "5b6a8479-2c18-495e-88fa-9e3239277e3d:panel_5b6a8479-2c18-495e-88fa-9e3239277e3d", + "type": "visualization" + }, + { + "id": "33ee1320-73a5-11ea-a345-f985c61fe654", + "name": "46da4e61-e0bb-4595-a2c7-05210bfbea64:panel_46da4e61-e0bb-4595-a2c7-05210bfbea64", + "type": "visualization" + }, + { + "id": "a8e40240-73a3-11ea-a345-f985c61fe654", + "name": "4d698f07-2caf-45c0-bd48-51ea72ea79b0:panel_4d698f07-2caf-45c0-bd48-51ea72ea79b0", + "type": "visualization" + }, + { + "id": "6d90d320-73a4-11ea-a345-f985c61fe654", + "name": "c5e31da0-d4c8-4554-ab32-61da2495ab6c:panel_c5e31da0-d4c8-4554-ab32-61da2495ab6c", + "type": "visualization" + }, + { + "id": "d88364c0-73a1-11ea-a345-f985c61fe654", + "name": "95ebbda8-9b00-4b23-b116-72569ea031e3:panel_95ebbda8-9b00-4b23-b116-72569ea031e3", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:41.323Z", + "version": "WzQ3NzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/gcp/_meta/kibana/7/dashboard/filebeat-gcp-audit.ndjson b/x-pack/filebeat/module/gcp/_meta/kibana/7/dashboard/filebeat-gcp-audit.ndjson deleted file mode 100644 index f6431ee83048..000000000000 --- a/x-pack/filebeat/module/gcp/_meta/kibana/7/dashboard/filebeat-gcp-audit.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"","layerListJSON":"[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"866b5ce1-6ca0-47db-a6f2-54c5e0dcd2f0\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"id\":\"79ec6461-7561-45e4-a6a2-9d6fbd4cf986\",\"geoField\":\"source.geo.location\",\"filterByMapBounds\":true,\"scalingType\":\"LIMIT\",\"topHitsSize\":1,\"type\":\"ES_SEARCH\",\"tooltipProperties\":[],\"sortField\":\"\",\"sortOrder\":\"desc\",\"applyGlobalQuery\":true,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#54B399\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#41937c\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"279da950-e9a7-4287-ab37-25906e448455\",\"label\":\"Source Locations\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"joins\":[],\"query\":{\"query\":\"event.dataset:gcp.audit\",\"language\":\"kuery\"}}]","mapStateJSON":"{\"zoom\":1.97,\"center\":{\"lon\":0,\"lat\":19.94277},\"timeFilters\":{\"from\":\"now-7d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false}}","title":"Audit Source Locations [Filebeat GCP]","uiStateJSON":"{\"isLayerTOCOpen\": true, \"openTOCDetails\": []}"},"coreMigrationVersion":"8.0.0","id":"a97de660-73a5-11ea-a345-f985c61fe654","migrationVersion":{"map":"7.14.0"},"references":[{"id":"filebeat-*","name":"layer_1_source_index_pattern","type":"index-pattern"}],"type":"map","updated_at":"2021-08-04T16:34:41.323Z","version":"WzQ3NzksMV0="} -{"attributes":{"columns":["user.email","service.name","gcp.audit.type","event.action","event.outcome","source.ip","source.geo.region_name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"gcp.audit\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"gcp.audit\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[],"title":"Audit [Filebeat GCP]","version":1},"coreMigrationVersion":"8.0.0","id":"d88364c0-73a1-11ea-a345-f985c61fe654","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:41.323Z","version":"WzQ3ODUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Audit Events Outcome over time [Filebeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-7d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":true,\"missingBucketLabel\":\"[unknown]\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Audit Event Outcome over time [Filebeat GCP]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"4627efa0-73a2-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d88364c0-73a1-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:41.323Z","version":"WzQ3ODAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Audit Event Action [Filebeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Audit Event Action [Filebeat GCP]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"eb5bf570-73a2-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d88364c0-73a1-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:41.323Z","version":"WzQ3ODEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Audit Top User Email [Filebeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.email\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Audit Top User Email [Filebeat GCP]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"33ee1320-73a5-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d88364c0-73a1-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:41.323Z","version":"WzQ3ODIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Audit User Agent [Filebeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user_agent.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Audit User Agent [Filebeat GCP]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"a8e40240-73a3-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d88364c0-73a1-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:41.323Z","version":"WzQ3ODMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Audit Resource Name [Filebeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"gcp.audit.resource_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Audit Resource Name [Filebeat GCP]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"6d90d320-73a4-11ea-a345-f985c61fe654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d88364c0-73a1-11ea-a345-f985c61fe654","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:41.323Z","version":"WzQ3ODQsMV0="} -{"attributes":{"description":"Overview of audit events from Google Cloud.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"map\",\"gridData\":{\"h\":15,\"i\":\"a808a985-5cf3-463a-9aad-5159cb64cef1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"a808a985-5cf3-463a-9aad-5159cb64cef1\",\"embeddableConfig\":{\"hiddenLayers\":[],\"isLayerTOCOpen\":false,\"mapCenter\":{\"lat\":32.1625,\"lon\":-48.67493,\"zoom\":1.97},\"openTOCDetails\":[],\"enhancements\":{}},\"panelRefName\":\"panel_a808a985-5cf3-463a-9aad-5159cb64cef1\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"9e7025b6-c3bf-424f-b541-d22d00e1fa64\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"9e7025b6-c3bf-424f-b541-d22d00e1fa64\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9e7025b6-c3bf-424f-b541-d22d00e1fa64\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"5b6a8479-2c18-495e-88fa-9e3239277e3d\",\"w\":12,\"x\":0,\"y\":15},\"panelIndex\":\"5b6a8479-2c18-495e-88fa-9e3239277e3d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5b6a8479-2c18-495e-88fa-9e3239277e3d\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"46da4e61-e0bb-4595-a2c7-05210bfbea64\",\"w\":12,\"x\":12,\"y\":15},\"panelIndex\":\"46da4e61-e0bb-4595-a2c7-05210bfbea64\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_46da4e61-e0bb-4595-a2c7-05210bfbea64\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"4d698f07-2caf-45c0-bd48-51ea72ea79b0\",\"w\":12,\"x\":24,\"y\":15},\"panelIndex\":\"4d698f07-2caf-45c0-bd48-51ea72ea79b0\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4d698f07-2caf-45c0-bd48-51ea72ea79b0\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"c5e31da0-d4c8-4554-ab32-61da2495ab6c\",\"w\":12,\"x\":36,\"y\":15},\"panelIndex\":\"c5e31da0-d4c8-4554-ab32-61da2495ab6c\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_c5e31da0-d4c8-4554-ab32-61da2495ab6c\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"search\",\"gridData\":{\"h\":9,\"i\":\"95ebbda8-9b00-4b23-b116-72569ea031e3\",\"w\":48,\"x\":0,\"y\":29},\"panelIndex\":\"95ebbda8-9b00-4b23-b116-72569ea031e3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_95ebbda8-9b00-4b23-b116-72569ea031e3\"}]","timeRestore":false,"title":"[Filebeat GCP] Audit","version":1},"coreMigrationVersion":"8.0.0","id":"6576c480-73a2-11ea-a345-f985c61fe654","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a97de660-73a5-11ea-a345-f985c61fe654","name":"a808a985-5cf3-463a-9aad-5159cb64cef1:panel_a808a985-5cf3-463a-9aad-5159cb64cef1","type":"map"},{"id":"4627efa0-73a2-11ea-a345-f985c61fe654","name":"9e7025b6-c3bf-424f-b541-d22d00e1fa64:panel_9e7025b6-c3bf-424f-b541-d22d00e1fa64","type":"visualization"},{"id":"eb5bf570-73a2-11ea-a345-f985c61fe654","name":"5b6a8479-2c18-495e-88fa-9e3239277e3d:panel_5b6a8479-2c18-495e-88fa-9e3239277e3d","type":"visualization"},{"id":"33ee1320-73a5-11ea-a345-f985c61fe654","name":"46da4e61-e0bb-4595-a2c7-05210bfbea64:panel_46da4e61-e0bb-4595-a2c7-05210bfbea64","type":"visualization"},{"id":"a8e40240-73a3-11ea-a345-f985c61fe654","name":"4d698f07-2caf-45c0-bd48-51ea72ea79b0:panel_4d698f07-2caf-45c0-bd48-51ea72ea79b0","type":"visualization"},{"id":"6d90d320-73a4-11ea-a345-f985c61fe654","name":"c5e31da0-d4c8-4554-ab32-61da2495ab6c:panel_c5e31da0-d4c8-4554-ab32-61da2495ab6c","type":"visualization"},{"id":"d88364c0-73a1-11ea-a345-f985c61fe654","name":"95ebbda8-9b00-4b23-b116-72569ea031e3:panel_95ebbda8-9b00-4b23-b116-72569ea031e3","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:41.323Z","version":"WzQ3NzgsMV0="} diff --git a/x-pack/filebeat/module/gcp/_meta/kibana/7/map/a97de660-73a5-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/gcp/_meta/kibana/7/map/a97de660-73a5-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..4632935ce645 --- /dev/null +++ b/x-pack/filebeat/module/gcp/_meta/kibana/7/map/a97de660-73a5-11ea-a345-f985c61fe654.json @@ -0,0 +1,27 @@ +{ + "attributes": { + "description": "", + "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"866b5ce1-6ca0-47db-a6f2-54c5e0dcd2f0\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"id\":\"79ec6461-7561-45e4-a6a2-9d6fbd4cf986\",\"geoField\":\"source.geo.location\",\"filterByMapBounds\":true,\"scalingType\":\"LIMIT\",\"topHitsSize\":1,\"type\":\"ES_SEARCH\",\"tooltipProperties\":[],\"sortField\":\"\",\"sortOrder\":\"desc\",\"applyGlobalQuery\":true,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#54B399\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#41937c\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"279da950-e9a7-4287-ab37-25906e448455\",\"label\":\"Source Locations\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"joins\":[],\"query\":{\"query\":\"event.dataset:gcp.audit\",\"language\":\"kuery\"}}]", + "mapStateJSON": "{\"zoom\":1.97,\"center\":{\"lon\":0,\"lat\":19.94277},\"timeFilters\":{\"from\":\"now-7d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false}}", + "title": "Audit Source Locations [Filebeat GCP]", + "uiStateJSON": { + "isLayerTOCOpen": true, + "openTOCDetails": [] + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a97de660-73a5-11ea-a345-f985c61fe654", + "migrationVersion": { + "map": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "layer_1_source_index_pattern", + "type": "index-pattern" + } + ], + "type": "map", + "updated_at": "2021-08-04T16:34:41.323Z", + "version": "WzQ3NzksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/gcp/_meta/kibana/7/search/d88364c0-73a1-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/gcp/_meta/kibana/7/search/d88364c0-73a1-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..3b0ae519e3e8 --- /dev/null +++ b/x-pack/filebeat/module/gcp/_meta/kibana/7/search/d88364c0-73a1-11ea-a345-f985c61fe654.json @@ -0,0 +1,72 @@ +{ + "attributes": { + "columns": [ + "user.email", + "service.name", + "gcp.audit.type", + "event.action", + "event.outcome", + "source.ip", + "source.geo.region_name" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "gcp.audit" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "gcp.audit" + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [], + "title": "Audit [Filebeat GCP]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "d88364c0-73a1-11ea-a345-f985c61fe654", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:41.323Z", + "version": "WzQ3ODUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/33ee1320-73a5-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/33ee1320-73a5-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..944764a546b6 --- /dev/null +++ b/x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/33ee1320-73a5-11ea-a345-f985c61fe654.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Audit Top User Email [Filebeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user.email", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "maxFontSize": 72, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": true + }, + "title": "Audit Top User Email [Filebeat GCP]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "33ee1320-73a5-11ea-a345-f985c61fe654", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "d88364c0-73a1-11ea-a345-f985c61fe654", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:41.323Z", + "version": "WzQ3ODIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/4627efa0-73a2-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/4627efa0-73a2-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..d3d6b1f0081d --- /dev/null +++ b/x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/4627efa0-73a2-11ea-a345-f985c61fe654.json @@ -0,0 +1,164 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Audit Events Outcome over time [Filebeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "now-7d", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "event.outcome", + "missingBucket": true, + "missingBucketLabel": "[unknown]", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": { + "show": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Audit Event Outcome over time [Filebeat GCP]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4627efa0-73a2-11ea-a345-f985c61fe654", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "d88364c0-73a1-11ea-a345-f985c61fe654", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:41.323Z", + "version": "WzQ3ODAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/6d90d320-73a4-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/6d90d320-73a4-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..7357ef0551ca --- /dev/null +++ b/x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/6d90d320-73a4-11ea-a345-f985c61fe654.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Audit Resource Name [Filebeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "gcp.audit.resource_name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Audit Resource Name [Filebeat GCP]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6d90d320-73a4-11ea-a345-f985c61fe654", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "d88364c0-73a1-11ea-a345-f985c61fe654", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:41.323Z", + "version": "WzQ3ODQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/a8e40240-73a3-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/a8e40240-73a3-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..c7aefc750b18 --- /dev/null +++ b/x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/a8e40240-73a3-11ea-a345-f985c61fe654.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Audit User Agent [Filebeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user_agent.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Audit User Agent [Filebeat GCP]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a8e40240-73a3-11ea-a345-f985c61fe654", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "d88364c0-73a1-11ea-a345-f985c61fe654", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:41.323Z", + "version": "WzQ3ODMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/eb5bf570-73a2-11ea-a345-f985c61fe654.json b/x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/eb5bf570-73a2-11ea-a345-f985c61fe654.json new file mode 100644 index 000000000000..e52b8d8af912 --- /dev/null +++ b/x-pack/filebeat/module/gcp/_meta/kibana/7/visualization/eb5bf570-73a2-11ea-a345-f985c61fe654.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Audit Event Action [Filebeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Audit Event Action [Filebeat GCP]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "eb5bf570-73a2-11ea-a345-f985c61fe654", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "d88364c0-73a1-11ea-a345-f985c61fe654", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:41.323Z", + "version": "WzQ3ODEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/ibmmq/_meta/kibana/7/dashboard/Filebeat-IBMMQ-Overview.ndjson b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/dashboard/Filebeat-IBMMQ-Overview.ndjson deleted file mode 100644 index f65c8da022ac..000000000000 --- a/x-pack/filebeat/module/ibmmq/_meta/kibana/7/dashboard/Filebeat-IBMMQ-Overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Errors over time by Queue Manager [Filebeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"query\":\"event.module:ibmmq\",\"language\":\"lucene\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"ibmmq.errorlog.qmgr\",\"terms_size\":\"50\",\"value_template\":\"{{value}} Errors\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Errors over time by Queue Manager [Filebeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4b2794c0-d901-11e8-aa1c-3fc8e6195a8e","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"ibmmq\"}, \"type\": \"phrase\", \"value\": \"ibmmq\"}, \"query\": {\"match\": {\"event.module\": {\"query\": \"ibmmq\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top 5 Errors [Filebeat IBM MQ]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Occurences\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Description\",\"field\":\"message\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Explanation\",\"field\":\"ibmmq.errorlog.explanation\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"aggregate\":\"concat\",\"customLabel\":\"Recommended Action\",\"field\":\"ibmmq.errorlog.action\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Error Codes\",\"field\":\"ibmmq.errorlog.code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":5,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top 5 Errors [Filebeat IBM MQ]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"b6308f30-7c7e-11e9-9645-e37efaf5baff","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Control [Filebeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"ibmmq.errorlog.qmgr\",\"id\":\"1558522305526\",\"indexPatternRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"label\":\"Queue Manager\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Control [Filebeat IBM MQ]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"bf8e5de0-7c7f-11e9-9645-e37efaf5baff","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNjYsMV0="} -{"attributes":{"columns":["@timestamp","message","ibmmq.errorlog.explanation","ibmmq.errorlog.action"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"ibmmq\"}, \"type\": \"phrase\", \"value\": \"ibmmq\"}, \"query\": {\"match\": {\"event.module\": {\"query\": \"ibmmq\", \"type\": \"phrase\"}}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Errorlogs [Filebeat IBM MQ]","version":1},"coreMigrationVersion":"8.0.0","id":"82db7ba0-adec-11e9-8358-1517661d7c84","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Errors per code, queue manager and host [Filebeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Errorcodes\",\"field\":\"ibmmq.errorlog.code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Queue Manager\",\"field\":\"ibmmq.errorlog.qmgr\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Host\",\"field\":\"host.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Errors per code, queue manager and host [Filebeat IBM MQ]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"df35c4b0-adf0-11e9-8358-1517661d7c84","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"82db7ba0-adec-11e9-8358-1517661d7c84","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Different error codes [Filebeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Different error codes\",\"field\":\"ibmmq.errorlog.code\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Different error codes [Filebeat IBM MQ]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"3ff778d0-adf0-11e9-8358-1517661d7c84","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"82db7ba0-adec-11e9-8358-1517661d7c84","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Number of Queue Manager [Filebeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Queue Manager\",\"field\":\"ibmmq.errorlog.qmgr\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Number of Queue Manager [Filebeat IBM MQ]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"57eae940-adf0-11e9-8358-1517661d7c84","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"82db7ba0-adec-11e9-8358-1517661d7c84","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Last error [Filebeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Last error\",\"field\":\"@timestamp\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Last error [Filebeat IBM MQ]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"845fca50-adef-11e9-8358-1517661d7c84","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"82db7ba0-adec-11e9-8358-1517661d7c84","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNzEsMV0="} -{"attributes":{"description":"Overview of IBM MQ","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":7},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":16},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top 5 Errors [Filebeat IBM MQ]\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"8\",\"w\":13,\"x\":0,\"y\":0},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":27,\"i\":\"9\",\"w\":48,\"x\":0,\"y\":30},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"10\",\"w\":24,\"x\":24,\"y\":7},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"11\",\"w\":7,\"x\":13,\"y\":0},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"12\",\"w\":7,\"x\":20,\"y\":0},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"13\",\"w\":21,\"x\":27,\"y\":0},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"}]","refreshInterval":{"pause":true,"value":0},"timeFrom":"now-2M","timeRestore":true,"timeTo":"now","title":"[Filebeat IBM MQ] Overview of error log overview","version":1},"coreMigrationVersion":"8.0.0","id":"ba1d8830-7c7b-11e9-9645-e37efaf5baff","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"4b2794c0-d901-11e8-aa1c-3fc8e6195a8e","name":"1:panel_1","type":"visualization"},{"id":"b6308f30-7c7e-11e9-9645-e37efaf5baff","name":"6:panel_6","type":"visualization"},{"id":"bf8e5de0-7c7f-11e9-9645-e37efaf5baff","name":"8:panel_8","type":"visualization"},{"id":"82db7ba0-adec-11e9-8358-1517661d7c84","name":"9:panel_9","type":"search"},{"id":"df35c4b0-adf0-11e9-8358-1517661d7c84","name":"10:panel_10","type":"visualization"},{"id":"3ff778d0-adf0-11e9-8358-1517661d7c84","name":"11:panel_11","type":"visualization"},{"id":"57eae940-adf0-11e9-8358-1517661d7c84","name":"12:panel_12","type":"visualization"},{"id":"845fca50-adef-11e9-8358-1517661d7c84","name":"13:panel_13","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:43.104Z","version":"WzQyNjMsMV0="} diff --git a/x-pack/filebeat/module/ibmmq/_meta/kibana/7/dashboard/ba1d8830-7c7b-11e9-9645-e37efaf5baff.json b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/dashboard/ba1d8830-7c7b-11e9-9645-e37efaf5baff.json new file mode 100644 index 000000000000..342acda27e1d --- /dev/null +++ b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/dashboard/ba1d8830-7c7b-11e9-9645-e37efaf5baff.json @@ -0,0 +1,209 @@ +{ + "attributes": { + "description": "Overview of IBM MQ", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "1", + "w": 24, + "x": 0, + "y": 7 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "6", + "w": 48, + "x": 0, + "y": 16 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Top 5 Errors [Filebeat IBM MQ]", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "8", + "w": 13, + "x": 0, + "y": 0 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 27, + "i": "9", + "w": 48, + "x": 0, + "y": 30 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "10", + "w": 24, + "x": 24, + "y": 7 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "11", + "w": 7, + "x": 13, + "y": 0 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "12", + "w": 7, + "x": 20, + "y": 0 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "13", + "w": 21, + "x": 27, + "y": 0 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "type": "visualization", + "version": "7.3.0" + } + ], + "refreshInterval": { + "pause": true, + "value": 0 + }, + "timeFrom": "now-2M", + "timeRestore": true, + "timeTo": "now", + "title": "[Filebeat IBM MQ] Overview of error log overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "ba1d8830-7c7b-11e9-9645-e37efaf5baff", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "4b2794c0-d901-11e8-aa1c-3fc8e6195a8e", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "b6308f30-7c7e-11e9-9645-e37efaf5baff", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "bf8e5de0-7c7f-11e9-9645-e37efaf5baff", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "82db7ba0-adec-11e9-8358-1517661d7c84", + "name": "9:panel_9", + "type": "search" + }, + { + "id": "df35c4b0-adf0-11e9-8358-1517661d7c84", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "3ff778d0-adf0-11e9-8358-1517661d7c84", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "57eae940-adf0-11e9-8358-1517661d7c84", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "845fca50-adef-11e9-8358-1517661d7c84", + "name": "13:panel_13", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:43.104Z", + "version": "WzQyNjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/ibmmq/_meta/kibana/7/search/82db7ba0-adec-11e9-8358-1517661d7c84.json b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/search/82db7ba0-adec-11e9-8358-1517661d7c84.json new file mode 100644 index 000000000000..40dafa5d236f --- /dev/null +++ b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/search/82db7ba0-adec-11e9-8358-1517661d7c84.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "columns": [ + "@timestamp", + "message", + "ibmmq.errorlog.explanation", + "ibmmq.errorlog.action" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "ibmmq" + }, + "type": "phrase", + "value": "ibmmq" + }, + "query": { + "match": { + "event.module": { + "query": "ibmmq", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Errorlogs [Filebeat IBM MQ]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "82db7ba0-adec-11e9-8358-1517661d7c84", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:43.104Z", + "version": "WzQyNjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/3ff778d0-adf0-11e9-8358-1517661d7c84.json b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/3ff778d0-adf0-11e9-8358-1517661d7c84.json new file mode 100644 index 000000000000..277098d3e57c --- /dev/null +++ b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/3ff778d0-adf0-11e9-8358-1517661d7c84.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "lucene", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Different error codes [Filebeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Different error codes", + "field": "ibmmq.errorlog.code" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Different error codes [Filebeat IBM MQ]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3ff778d0-adf0-11e9-8358-1517661d7c84", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "82db7ba0-adec-11e9-8358-1517661d7c84", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:43.104Z", + "version": "WzQyNjksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/4b2794c0-d901-11e8-aa1c-3fc8e6195a8e.json b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/4b2794c0-d901-11e8-aa1c-3fc8e6195a8e.json new file mode 100644 index 000000000000..1f54ffe79a36 --- /dev/null +++ b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/4b2794c0-d901-11e8-aa1c-3fc8e6195a8e.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Errors over time by Queue Manager [Filebeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "lucene", + "query": "event.module:ibmmq" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "stacked", + "terms_field": "ibmmq.errorlog.qmgr", + "terms_size": "50", + "value_template": "{{value}} Errors" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Errors over time by Queue Manager [Filebeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4b2794c0-d901-11e8-aa1c-3fc8e6195a8e", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:33:43.104Z", + "version": "WzQyNjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/57eae940-adf0-11e9-8358-1517661d7c84.json b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/57eae940-adf0-11e9-8358-1517661d7c84.json new file mode 100644 index 000000000000..c60ad23e95c4 --- /dev/null +++ b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/57eae940-adf0-11e9-8358-1517661d7c84.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "lucene", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Number of Queue Manager [Filebeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Queue Manager", + "field": "ibmmq.errorlog.qmgr" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "aggType": "cardinality", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Number of Queue Manager [Filebeat IBM MQ]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "57eae940-adf0-11e9-8358-1517661d7c84", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "82db7ba0-adec-11e9-8358-1517661d7c84", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:43.104Z", + "version": "WzQyNzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/845fca50-adef-11e9-8358-1517661d7c84.json b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/845fca50-adef-11e9-8358-1517661d7c84.json new file mode 100644 index 000000000000..c50ff10ef07a --- /dev/null +++ b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/845fca50-adef-11e9-8358-1517661d7c84.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "lucene", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Last error [Filebeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Last error", + "field": "@timestamp" + }, + "schema": "metric", + "type": "max" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Last error [Filebeat IBM MQ]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "845fca50-adef-11e9-8358-1517661d7c84", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "82db7ba0-adec-11e9-8358-1517661d7c84", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:43.104Z", + "version": "WzQyNzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/b6308f30-7c7e-11e9-9645-e37efaf5baff.json b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/b6308f30-7c7e-11e9-9645-e37efaf5baff.json new file mode 100644 index 000000000000..cd1f895b8373 --- /dev/null +++ b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/b6308f30-7c7e-11e9-9645-e37efaf5baff.json @@ -0,0 +1,159 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "ibmmq" + }, + "type": "phrase", + "value": "ibmmq" + }, + "query": { + "match": { + "event.module": { + "query": "ibmmq", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Top 5 Errors [Filebeat IBM MQ]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Occurences" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "3", + "params": { + "aggregate": "concat", + "customLabel": "Description", + "field": "message", + "size": 1, + "sortField": "@timestamp", + "sortOrder": "desc" + }, + "schema": "metric", + "type": "top_hits" + }, + { + "enabled": true, + "id": "5", + "params": { + "aggregate": "concat", + "customLabel": "Explanation", + "field": "ibmmq.errorlog.explanation", + "size": 1, + "sortField": "@timestamp", + "sortOrder": "desc" + }, + "schema": "metric", + "type": "top_hits" + }, + { + "enabled": true, + "id": "4", + "params": { + "aggregate": "concat", + "customLabel": "Recommended Action", + "field": "ibmmq.errorlog.action", + "size": 1, + "sortField": "@timestamp", + "sortOrder": "desc" + }, + "schema": "metric", + "type": "top_hits" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Error Codes", + "field": "ibmmq.errorlog.code", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 5, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top 5 Errors [Filebeat IBM MQ]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b6308f30-7c7e-11e9-9645-e37efaf5baff", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:43.104Z", + "version": "WzQyNjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/bf8e5de0-7c7f-11e9-9645-e37efaf5baff.json b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/bf8e5de0-7c7f-11e9-9645-e37efaf5baff.json new file mode 100644 index 000000000000..029ee5f097d3 --- /dev/null +++ b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/bf8e5de0-7c7f-11e9-9645-e37efaf5baff.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Control [Filebeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "ibmmq.errorlog.qmgr", + "id": "1558522305526", + "indexPatternRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "label": "Queue Manager", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": false, + "useTimeFilter": false + }, + "title": "Control [Filebeat IBM MQ]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bf8e5de0-7c7f-11e9-9645-e37efaf5baff", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:43.104Z", + "version": "WzQyNjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/df35c4b0-adf0-11e9-8358-1517661d7c84.json b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/df35c4b0-adf0-11e9-8358-1517661d7c84.json new file mode 100644 index 000000000000..cff64d5a6e27 --- /dev/null +++ b/x-pack/filebeat/module/ibmmq/_meta/kibana/7/visualization/df35c4b0-adf0-11e9-8358-1517661d7c84.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "lucene", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Errors per code, queue manager and host [Filebeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Errorcodes", + "field": "ibmmq.errorlog.code", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Queue Manager", + "field": "ibmmq.errorlog.qmgr", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Host", + "field": "host.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "metric": { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Errors per code, queue manager and host [Filebeat IBM MQ]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "df35c4b0-adf0-11e9-8358-1517661d7c84", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "82db7ba0-adec-11e9-8358-1517661d7c84", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:43.104Z", + "version": "WzQyNjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/ibmmq/module.yml b/x-pack/filebeat/module/ibmmq/module.yml index 89370161e2c9..7551ba72055e 100644 --- a/x-pack/filebeat/module/ibmmq/module.yml +++ b/x-pack/filebeat/module/ibmmq/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Filebeat-ibmmq-errorlog-Dashboard - file: Filebeat-ibmmq-errorlog.ndjson + file: Filebeat-ibmmq-errorlog.json diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Overview.ndjson b/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Overview.ndjson deleted file mode 100644 index 08d0ccbca3c2..000000000000 --- a/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"iptables.length :*\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Events Search [Filebeat Iptables] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyNzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Events Timeline [Filebeat Iptables] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Events Timeline [Filebeat Iptables] ECS\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"4c913eb0-1f51-11e9-93ed-f7e068f4aebb-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyNzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"iptables.length:*\"}}"},"savedSearchRefName":"search_0","title":"Top Source Countries [Filebeat Iptables] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Country\",\"field\":\"source.geo.country_iso_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Source Countries [Filebeat Iptables] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"2599f5e0-1e98-11e9-8ec4-cf5d91a864b3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyNzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"iptables.length:*\"}}"},"savedSearchRefName":"search_0","title":"Source Map [Filebeat Iptables] ECS","uiStateJSON":"{\"mapCenter\": [45.02695045318546, -44.82421875000001], \"mapZoom\": 3}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"isFilteredByCollar\":true,\"mapCenter\":[0,0],\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"origin\":\"elastic_maps_service\"}}},\"title\":\"Source Map [Filebeat Iptables] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"c4394ec0-1efd-11e9-8ec4-cf5d91a864b3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyNzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"iptables.length:*\"}}"},"savedSearchRefName":"search_0","title":"Destination Map [Filebeat Iptables] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"destination.geo.location\",\"isFilteredByCollar\":true,\"mapCenter\":[0,0],\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"origin\":\"elastic_maps_service\"}}},\"title\":\"Destination Map [Filebeat Iptables] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"d8cea010-1efd-11e9-8ec4-cf5d91a864b3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyNzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"iptables.length:*\"}}"},"savedSearchRefName":"search_0","title":"Network Type Breakdown [Filebeat Iptables] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.type\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Network Type Breakdown [Filebeat Iptables] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"b57b7370-1f1d-11e9-8ec4-cf5d91a864b3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyNzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"iptables.length:*\"}}"},"savedSearchRefName":"search_0","title":"Network Transport Breakdown [Filebeat Iptables] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.transport\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Network Transport Breakdown [Filebeat Iptables] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"35fe0910-1f26-11e9-8ec4-cf5d91a864b3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyNzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"iptables.length:*\"}}"},"savedSearchRefName":"search_0","title":"Top Destination Ports [Filebeat Iptables] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Port\",\"field\":\"destination.port\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Destination Ports [Filebeat Iptables] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"683402b0-1f29-11e9-8ec4-cf5d91a864b3-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyNzgsMV0="} -{"attributes":{"description":"Overview of the iptables events dashboard.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":37,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":11,\"x\":37,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"mapCenter\":[47.15984001304432,-47.02148437500001],\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"4\",\"embeddableConfig\":{\"mapCenter\":[49.15296965617042,-27.949218750000004],\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":19,\"x\":0,\"y\":30},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":18,\"x\":19,\"y\":30},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":11,\"x\":37,\"y\":30},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":19,\"i\":\"8\",\"w\":48,\"x\":0,\"y\":45},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Filebeat Iptables] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"ceefb9e0-1f51-11e9-93ed-f7e068f4aebb-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"4c913eb0-1f51-11e9-93ed-f7e068f4aebb-ecs","name":"1:panel_1","type":"visualization"},{"id":"2599f5e0-1e98-11e9-8ec4-cf5d91a864b3-ecs","name":"2:panel_2","type":"visualization"},{"id":"c4394ec0-1efd-11e9-8ec4-cf5d91a864b3-ecs","name":"3:panel_3","type":"visualization"},{"id":"d8cea010-1efd-11e9-8ec4-cf5d91a864b3-ecs","name":"4:panel_4","type":"visualization"},{"id":"b57b7370-1f1d-11e9-8ec4-cf5d91a864b3-ecs","name":"5:panel_5","type":"visualization"},{"id":"35fe0910-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"6:panel_6","type":"visualization"},{"id":"683402b0-1f29-11e9-8ec4-cf5d91a864b3-ecs","name":"7:panel_7","type":"visualization"},{"id":"b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs","name":"8:panel_8","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:44.176Z","version":"WzQyODAsMV0="} diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Ubiquiti-Firewall-Overview.ndjson b/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Ubiquiti-Firewall-Overview.ndjson deleted file mode 100644 index 90052b109c91..000000000000 --- a/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/Filebeat-Iptables-Ubiquiti-Firewall-Overview.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"iptables.ubiquiti.rule_set :*\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Ubiquiti Firewall Events [Filebeat Iptables] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Ubiquiti Firewall Event Timeline [Filebeat Iptables] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"allow\": \"#64B0C8\", \"deny\": \"#E24D42\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"2019-01-24T15:47:12.171Z\",\"mode\":\"absolute\",\"to\":\"2019-01-24T15:47:52.785Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"top\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Ubiquiti Firewall Event Timeline [Filebeat Iptables] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"758b3620-1fda-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODEsMV0="} -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"iptables.ubiquiti.rule_set :* and event.action : \\\"drop\\\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Ubiquiti Firewall Blocked Events [Filebeat Iptables] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"9f7d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Ubiquiti Firewall Top Blocked IPs [Filebeat Iptables] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source IP\",\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Ubiquiti Firewall Top Blocked IPs [Filebeat Iptables] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"1ba82fd0-1ff0-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9f7d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODIsMV0="} -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"highlightAll\":true,\"query\":{\"language\":\"kuery\",\"query\":\"iptables.ubiquiti.rule_set :* and event.action : \\\"accept\\\"\"},\"version\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"sort":[["@timestamp","desc"]],"title":"Ubiquiti Firewall Allowed Events [Filebeat Iptables] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"7862cab0-1fdb-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Ubiquiti Firewall Allowed Traffic Map [Filebeat Iptables] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"isFilteredByCollar\":true,\"mapCenter\":[0,0],\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"origin\":\"elastic_maps_service\"}}},\"title\":\"Ubiquiti Firewall Allowed Traffic Map [Filebeat Iptables] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"5bd53050-1fe9-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"7862cab0-1fdb-11e9-ae2a-939083c6a64e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Ubiquiti Firewall Blocked Traffic Map [Filebeat Iptables] ECS","uiStateJSON":"{\"mapCenter\": [19.228176737766262, -22.851562500000004], \"mapZoom\": 3}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"isFilteredByCollar\":true,\"mapCenter\":[0,0],\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"origin\":\"elastic_maps_service\"}}},\"title\":\"Ubiquiti Firewall Blocked Traffic Map [Filebeat Iptables] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"8853aa20-1fef-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9f7d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Ubiquiti Firewall Traffic Breakdown [Filebeat Iptables] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"deny\": \"#E24D42\", \"icmp\": \"#F29191\", \"ipv4\": \"#65C5DB\", \"ipv6\": \"#D683CE\", \"ipv6-icmp\": \"#EA6460\", \"tcp\": \"#447EBC\", \"udp\": \"#F2C96D\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"network.type\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"network.transport\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":false,\"show\":true,\"truncate\":100,\"values\":false},\"legendPosition\":\"top\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Ubiquiti Firewall Traffic Breakdown [Filebeat Iptables] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"fdea1ad0-1ff4-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"savedSearchRefName":"search_0","title":"Ubiquiti Firewall Traffic by Port [Filebeat Iptables] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"event.outcome\",\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Destination port\",\"field\":\"destination.port\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"row\":false,\"showToolbar\":true},\"title\":\"Ubiquiti Firewall Traffic by Port [Filebeat Iptables] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"190bcb50-1ff6-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyODcsMV0="} -{"attributes":{"description":"Overview of the Ubiquiti Firewall iptables events dashboard.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":33,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"allow\":\"#64B0C8\",\"deny\":\"#E24D42\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Event Timeline\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":15,\"x\":33,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Blocked by source IP\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"mapCenter\":[39.095962936305476,-22.148437500000004],\"mapZoom\":2,\"enhancements\":{}},\"title\":\"Allowed Traffic Map\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"4\",\"embeddableConfig\":{\"mapCenter\":[46.31658418182218,-34.10156250000001],\"mapZoom\":2,\"enhancements\":{}},\"title\":\"Blocked Traffic Map\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"allow\":\"#7EB26D\",\"deny\":\"#E24D42\",\"icmp\":\"#F29191\",\"ipv4\":\"#65C5DB\",\"ipv6\":\"#D683CE\",\"ipv6-icmp\":\"#EA6460\",\"tcp\":\"#447EBC\",\"udp\":\"#F2C96D\"}},\"enhancements\":{}},\"title\":\"Traffic Breakdown by Protocol\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"h\":27,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":48},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Event View\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Traffic Breakdown by Port\",\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Filebeat Iptables] Ubiquiti Firewall Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"d39f0980-1ff3-11e9-ae2a-939083c6a64e-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"758b3620-1fda-11e9-ae2a-939083c6a64e-ecs","name":"1:panel_1","type":"visualization"},{"id":"1ba82fd0-1ff0-11e9-ae2a-939083c6a64e-ecs","name":"2:panel_2","type":"visualization"},{"id":"5bd53050-1fe9-11e9-ae2a-939083c6a64e-ecs","name":"3:panel_3","type":"visualization"},{"id":"8853aa20-1fef-11e9-ae2a-939083c6a64e-ecs","name":"4:panel_4","type":"visualization"},{"id":"fdea1ad0-1ff4-11e9-ae2a-939083c6a64e-ecs","name":"5:panel_5","type":"visualization"},{"id":"c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs","name":"6:panel_6","type":"search"},{"id":"190bcb50-1ff6-11e9-ae2a-939083c6a64e-ecs","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:45.146Z","version":"WzQyOTAsMV0="} diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/ceefb9e0-1f51-11e9-93ed-f7e068f4aebb-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/ceefb9e0-1f51-11e9-93ed-f7e068f4aebb-ecs.json new file mode 100644 index 000000000000..3c81b666080e --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/ceefb9e0-1f51-11e9-93ed-f7e068f4aebb-ecs.json @@ -0,0 +1,216 @@ +{ + "attributes": { + "description": "Overview of the iptables events dashboard.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 15, + "i": "1", + "w": 37, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "2", + "w": 11, + "x": 37, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapCenter": [ + 47.15984001304432, + -47.02148437500001 + ], + "mapZoom": 2 + }, + "gridData": { + "h": 15, + "i": "3", + "w": 24, + "x": 0, + "y": 15 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapCenter": [ + 49.15296965617042, + -27.949218750000004 + ], + "mapZoom": 2 + }, + "gridData": { + "h": 15, + "i": "4", + "w": 24, + "x": 24, + "y": 15 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "5", + "w": 19, + "x": 0, + "y": 30 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "6", + "w": 18, + "x": 19, + "y": 30 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "7", + "w": 11, + "x": 37, + "y": 30 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 19, + "i": "8", + "w": 48, + "x": 0, + "y": 45 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "search", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Iptables] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "ceefb9e0-1f51-11e9-93ed-f7e068f4aebb-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "4c913eb0-1f51-11e9-93ed-f7e068f4aebb-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "2599f5e0-1e98-11e9-8ec4-cf5d91a864b3-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "c4394ec0-1efd-11e9-8ec4-cf5d91a864b3-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "d8cea010-1efd-11e9-8ec4-cf5d91a864b3-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "b57b7370-1f1d-11e9-8ec4-cf5d91a864b3-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "35fe0910-1f26-11e9-8ec4-cf5d91a864b3-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "683402b0-1f29-11e9-8ec4-cf5d91a864b3-ecs", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", + "name": "8:panel_8", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:44.176Z", + "version": "WzQyODAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/d39f0980-1ff3-11e9-ae2a-939083c6a64e-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/d39f0980-1ff3-11e9-ae2a-939083c6a64e-ecs.json new file mode 100644 index 000000000000..b99499498e7b --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/dashboard/d39f0980-1ff3-11e9-ae2a-939083c6a64e-ecs.json @@ -0,0 +1,218 @@ +{ + "attributes": { + "description": "Overview of the Ubiquiti Firewall iptables events dashboard.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "allow": "#64B0C8", + "deny": "#E24D42" + }, + "legendOpen": true + } + }, + "gridData": { + "h": 15, + "i": "1", + "w": 33, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Event Timeline", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "2", + "w": 15, + "x": 33, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Top Blocked by source IP", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapCenter": [ + 39.095962936305476, + -22.148437500000004 + ], + "mapZoom": 2 + }, + "gridData": { + "h": 15, + "i": "3", + "w": 24, + "x": 0, + "y": 15 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Allowed Traffic Map", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapCenter": [ + 46.31658418182218, + -34.10156250000001 + ], + "mapZoom": 2 + }, + "gridData": { + "h": 15, + "i": "4", + "w": 24, + "x": 24, + "y": 15 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "Blocked Traffic Map", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "allow": "#7EB26D", + "deny": "#E24D42", + "icmp": "#F29191", + "ipv4": "#65C5DB", + "ipv6": "#D683CE", + "ipv6-icmp": "#EA6460", + "tcp": "#447EBC", + "udp": "#F2C96D" + } + } + }, + "gridData": { + "h": 18, + "i": "5", + "w": 24, + "x": 0, + "y": 30 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Traffic Breakdown by Protocol", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 27, + "i": "6", + "w": 48, + "x": 0, + "y": 48 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Event View", + "type": "search", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "7", + "w": 24, + "x": 24, + "y": 30 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "title": "Traffic Breakdown by Port", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Iptables] Ubiquiti Firewall Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "d39f0980-1ff3-11e9-ae2a-939083c6a64e-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "758b3620-1fda-11e9-ae2a-939083c6a64e-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "1ba82fd0-1ff0-11e9-ae2a-939083c6a64e-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "5bd53050-1fe9-11e9-ae2a-939083c6a64e-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "8853aa20-1fef-11e9-ae2a-939083c6a64e-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "fdea1ad0-1ff4-11e9-ae2a-939083c6a64e-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs", + "name": "6:panel_6", + "type": "search" + }, + { + "id": "190bcb50-1ff6-11e9-ae2a-939083c6a64e-ecs", + "name": "7:panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:45.146Z", + "version": "WzQyOTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/search/7862cab0-1fdb-11e9-ae2a-939083c6a64e-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/search/7862cab0-1fdb-11e9-ae2a-939083c6a64e-ecs.json new file mode 100644 index 000000000000..762145c3c6c8 --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/search/7862cab0-1fdb-11e9-ae2a-939083c6a64e-ecs.json @@ -0,0 +1,44 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "iptables.ubiquiti.rule_set :* and event.action : \"accept\"" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Ubiquiti Firewall Allowed Events [Filebeat Iptables] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "7862cab0-1fdb-11e9-ae2a-939083c6a64e-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:45.146Z", + "version": "WzQyODksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/search/9f7d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/search/9f7d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs.json new file mode 100644 index 000000000000..9203fdd090ad --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/search/9f7d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs.json @@ -0,0 +1,44 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "iptables.ubiquiti.rule_set :* and event.action : \"drop\"" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Ubiquiti Firewall Blocked Events [Filebeat Iptables] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "9f7d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:45.146Z", + "version": "WzQyODgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/search/b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/search/b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs.json new file mode 100644 index 000000000000..8df4f10da0db --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/search/b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs.json @@ -0,0 +1,44 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "iptables.length :*" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Events Search [Filebeat Iptables] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:44.176Z", + "version": "WzQyNzksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/search/c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/search/c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs.json new file mode 100644 index 000000000000..d1190c48a426 --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/search/c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs.json @@ -0,0 +1,44 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "iptables.ubiquiti.rule_set :*" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Ubiquiti Firewall Events [Filebeat Iptables] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:45.146Z", + "version": "WzQyODYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/190bcb50-1ff6-11e9-ae2a-939083c6a64e-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/190bcb50-1ff6-11e9-ae2a-939083c6a64e-ecs.json new file mode 100644 index 000000000000..cd91ea1f2a5d --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/190bcb50-1ff6-11e9-ae2a-939083c6a64e-ecs.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Ubiquiti Firewall Traffic by Port [Filebeat Iptables] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "event.outcome", + "field": "event.outcome", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "split", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Destination port", + "field": "destination.port", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "row": false, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Ubiquiti Firewall Traffic by Port [Filebeat Iptables] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "190bcb50-1ff6-11e9-ae2a-939083c6a64e-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:45.146Z", + "version": "WzQyODcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/1ba82fd0-1ff0-11e9-ae2a-939083c6a64e-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/1ba82fd0-1ff0-11e9-ae2a-939083c6a64e-ecs.json new file mode 100644 index 000000000000..ce2d8ef7b267 --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/1ba82fd0-1ff0-11e9-ae2a-939083c6a64e-ecs.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Ubiquiti Firewall Top Blocked IPs [Filebeat Iptables] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Source IP", + "field": "source.ip", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Ubiquiti Firewall Top Blocked IPs [Filebeat Iptables] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1ba82fd0-1ff0-11e9-ae2a-939083c6a64e-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "9f7d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:45.146Z", + "version": "WzQyODIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/2599f5e0-1e98-11e9-8ec4-cf5d91a864b3-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/2599f5e0-1e98-11e9-8ec4-cf5d91a864b3-ecs.json new file mode 100644 index 000000000000..83017ffbb9ff --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/2599f5e0-1e98-11e9-8ec4-cf5d91a864b3-ecs.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "iptables.length:*" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top Source Countries [Filebeat Iptables] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Country", + "field": "source.geo.country_iso_code", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top Source Countries [Filebeat Iptables] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2599f5e0-1e98-11e9-8ec4-cf5d91a864b3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:44.176Z", + "version": "WzQyNzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/35fe0910-1f26-11e9-8ec4-cf5d91a864b3-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/35fe0910-1f26-11e9-8ec4-cf5d91a864b3-ecs.json new file mode 100644 index 000000000000..ef7ced9648c4 --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/35fe0910-1f26-11e9-8ec4-cf5d91a864b3-ecs.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "iptables.length:*" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Network Transport Breakdown [Filebeat Iptables] ECS", + "uiStateJSON": { + "vis": { + "legendOpen": false + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "network.transport", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Network Transport Breakdown [Filebeat Iptables] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "35fe0910-1f26-11e9-8ec4-cf5d91a864b3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:44.176Z", + "version": "WzQyNzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/4c913eb0-1f51-11e9-93ed-f7e068f4aebb-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/4c913eb0-1f51-11e9-93ed-f7e068f4aebb-ecs.json new file mode 100644 index 000000000000..c10e9b39d760 --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/4c913eb0-1f51-11e9-93ed-f7e068f4aebb-ecs.json @@ -0,0 +1,137 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Events Timeline [Filebeat Iptables] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "area", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Events Timeline [Filebeat Iptables] ECS", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4c913eb0-1f51-11e9-93ed-f7e068f4aebb-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:44.176Z", + "version": "WzQyNzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/5bd53050-1fe9-11e9-ae2a-939083c6a64e-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/5bd53050-1fe9-11e9-ae2a-939083c6a64e-ecs.json new file mode 100644 index 000000000000..aa86e357a8e5 --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/5bd53050-1fe9-11e9-ae2a-939083c6a64e-ecs.json @@ -0,0 +1,91 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Ubiquiti Firewall Allowed Traffic Map [Filebeat Iptables] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "source.geo.location", + "isFilteredByCollar": true, + "mapCenter": [ + 0, + 0 + ], + "mapZoom": 2, + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "params": { + "addTooltip": true, + "colorSchema": "Yellow to Red", + "heatClusterSize": 1.5, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 0, + 0 + ], + "mapType": "Scaled Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "format": "image/png", + "transparent": true + }, + "selectedTmsLayer": { + "attribution": "

© OpenStreetMap contributors | Elastic Maps Service

", + "id": "road_map", + "maxZoom": 18, + "minZoom": 0, + "origin": "elastic_maps_service" + } + } + }, + "title": "Ubiquiti Firewall Allowed Traffic Map [Filebeat Iptables] ECS", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5bd53050-1fe9-11e9-ae2a-939083c6a64e-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "7862cab0-1fdb-11e9-ae2a-939083c6a64e-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:45.146Z", + "version": "WzQyODMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/683402b0-1f29-11e9-8ec4-cf5d91a864b3-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/683402b0-1f29-11e9-8ec4-cf5d91a864b3-ecs.json new file mode 100644 index 000000000000..3f898d5b0530 --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/683402b0-1f29-11e9-8ec4-cf5d91a864b3-ecs.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "iptables.length:*" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top Destination Ports [Filebeat Iptables] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Port", + "field": "destination.port", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top Destination Ports [Filebeat Iptables] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "683402b0-1f29-11e9-8ec4-cf5d91a864b3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:44.176Z", + "version": "WzQyNzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/758b3620-1fda-11e9-ae2a-939083c6a64e-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/758b3620-1fda-11e9-ae2a-939083c6a64e-ecs.json new file mode 100644 index 000000000000..3ac16877760f --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/758b3620-1fda-11e9-ae2a-939083c6a64e-ecs.json @@ -0,0 +1,163 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Ubiquiti Firewall Event Timeline [Filebeat Iptables] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "allow": "#64B0C8", + "deny": "#E24D42" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "timeRange": { + "from": "2019-01-24T15:47:12.171Z", + "mode": "absolute", + "to": "2019-01-24T15:47:52.785Z" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "event.outcome", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "top", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Ubiquiti Firewall Event Timeline [Filebeat Iptables] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "758b3620-1fda-11e9-ae2a-939083c6a64e-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:45.146Z", + "version": "WzQyODEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/8853aa20-1fef-11e9-ae2a-939083c6a64e-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/8853aa20-1fef-11e9-ae2a-939083c6a64e-ecs.json new file mode 100644 index 000000000000..1ad881adc72c --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/8853aa20-1fef-11e9-ae2a-939083c6a64e-ecs.json @@ -0,0 +1,97 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Ubiquiti Firewall Blocked Traffic Map [Filebeat Iptables] ECS", + "uiStateJSON": { + "mapCenter": [ + 19.228176737766262, + -22.851562500000004 + ], + "mapZoom": 3 + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "source.geo.location", + "isFilteredByCollar": true, + "mapCenter": [ + 0, + 0 + ], + "mapZoom": 2, + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "params": { + "addTooltip": true, + "colorSchema": "Yellow to Red", + "heatClusterSize": 1.5, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 0, + 0 + ], + "mapType": "Scaled Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "format": "image/png", + "transparent": true + }, + "selectedTmsLayer": { + "attribution": "

© OpenStreetMap contributors | Elastic Maps Service

", + "id": "road_map", + "maxZoom": 18, + "minZoom": 0, + "origin": "elastic_maps_service" + } + } + }, + "title": "Ubiquiti Firewall Blocked Traffic Map [Filebeat Iptables] ECS", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8853aa20-1fef-11e9-ae2a-939083c6a64e-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "9f7d97c0-1fe9-11e9-ae2a-939083c6a64e-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:45.146Z", + "version": "WzQyODQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/b57b7370-1f1d-11e9-8ec4-cf5d91a864b3-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/b57b7370-1f1d-11e9-8ec4-cf5d91a864b3-ecs.json new file mode 100644 index 000000000000..0c1dbe4a7768 --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/b57b7370-1f1d-11e9-8ec4-cf5d91a864b3-ecs.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "iptables.length:*" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Network Type Breakdown [Filebeat Iptables] ECS", + "uiStateJSON": { + "vis": { + "legendOpen": false + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "network.type", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Network Type Breakdown [Filebeat Iptables] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b57b7370-1f1d-11e9-8ec4-cf5d91a864b3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:44.176Z", + "version": "WzQyNzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/c4394ec0-1efd-11e9-8ec4-cf5d91a864b3-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/c4394ec0-1efd-11e9-8ec4-cf5d91a864b3-ecs.json new file mode 100644 index 000000000000..bd18bcc64e8e --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/c4394ec0-1efd-11e9-8ec4-cf5d91a864b3-ecs.json @@ -0,0 +1,97 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "iptables.length:*" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Source Map [Filebeat Iptables] ECS", + "uiStateJSON": { + "mapCenter": [ + 45.02695045318546, + -44.82421875000001 + ], + "mapZoom": 3 + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "source.geo.location", + "isFilteredByCollar": true, + "mapCenter": [ + 0, + 0 + ], + "mapZoom": 2, + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "params": { + "addTooltip": true, + "colorSchema": "Yellow to Red", + "heatClusterSize": 1.5, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 0, + 0 + ], + "mapType": "Scaled Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "format": "image/png", + "transparent": true + }, + "selectedTmsLayer": { + "attribution": "

© OpenStreetMap contributors | Elastic Maps Service

", + "id": "road_map", + "maxZoom": 18, + "minZoom": 0, + "origin": "elastic_maps_service" + } + } + }, + "title": "Source Map [Filebeat Iptables] ECS", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c4394ec0-1efd-11e9-8ec4-cf5d91a864b3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:44.176Z", + "version": "WzQyNzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/d8cea010-1efd-11e9-8ec4-cf5d91a864b3-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/d8cea010-1efd-11e9-8ec4-cf5d91a864b3-ecs.json new file mode 100644 index 000000000000..25550dd9a8eb --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/d8cea010-1efd-11e9-8ec4-cf5d91a864b3-ecs.json @@ -0,0 +1,91 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "iptables.length:*" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Destination Map [Filebeat Iptables] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "destination.geo.location", + "isFilteredByCollar": true, + "mapCenter": [ + 0, + 0 + ], + "mapZoom": 2, + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "params": { + "addTooltip": true, + "colorSchema": "Yellow to Red", + "heatClusterSize": 1.5, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 0, + 0 + ], + "mapType": "Scaled Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "format": "image/png", + "transparent": true + }, + "selectedTmsLayer": { + "attribution": "

© OpenStreetMap contributors | Elastic Maps Service

", + "id": "road_map", + "maxZoom": 18, + "minZoom": 0, + "origin": "elastic_maps_service" + } + } + }, + "title": "Destination Map [Filebeat Iptables] ECS", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d8cea010-1efd-11e9-8ec4-cf5d91a864b3-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "b3f1b010-1f26-11e9-8ec4-cf5d91a864b3-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:44.176Z", + "version": "WzQyNzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/fdea1ad0-1ff4-11e9-ae2a-939083c6a64e-ecs.json b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/fdea1ad0-1ff4-11e9-ae2a-939083c6a64e-ecs.json new file mode 100644 index 000000000000..b7f33119ecfc --- /dev/null +++ b/x-pack/filebeat/module/iptables/_meta/kibana/7/visualization/fdea1ad0-1ff4-11e9-ae2a-939083c6a64e-ecs.json @@ -0,0 +1,124 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Ubiquiti Firewall Traffic Breakdown [Filebeat Iptables] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "deny": "#E24D42", + "icmp": "#F29191", + "ipv4": "#65C5DB", + "ipv6": "#D683CE", + "ipv6-icmp": "#EA6460", + "tcp": "#447EBC", + "udp": "#F2C96D" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.outcome", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "network.type", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "field": "network.transport", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": false, + "show": true, + "truncate": 100, + "values": false + }, + "legendPosition": "top", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Ubiquiti Firewall Traffic Breakdown [Filebeat Iptables] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fdea1ad0-1ff4-11e9-ae2a-939083c6a64e-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "c4e80aa0-1fd4-11e9-ae2a-939083c6a64e-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:45.146Z", + "version": "WzQyODUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/iptables/module.yml b/x-pack/filebeat/module/iptables/module.yml index 3de1299cba55..3129ecbdbc30 100644 --- a/x-pack/filebeat/module/iptables/module.yml +++ b/x-pack/filebeat/module/iptables/module.yml @@ -1,5 +1,5 @@ dashboards: - id: ceefb9e0-1f51-11e9-93ed-f7e068f4aebb - file: Filebeat-Iptables-Overview.ndjson + file: Filebeat-Iptables-Overview.json - id: d39f0980-1ff3-11e9-ae2a-939083c6a64e - file: Filebeat-Iptables-Ubiquiti-Firewall-Overview.ndjson + file: Filebeat-Iptables-Ubiquiti-Firewall-Overview.json diff --git a/x-pack/filebeat/module/microsoft/_meta/kibana/7/dashboard/65402c30-ca6a-11ea-9d4d-9737a63aaa55.json b/x-pack/filebeat/module/microsoft/_meta/kibana/7/dashboard/65402c30-ca6a-11ea-9d4d-9737a63aaa55.json new file mode 100644 index 000000000000..aa74174bf01d --- /dev/null +++ b/x-pack/filebeat/module/microsoft/_meta/kibana/7/dashboard/65402c30-ca6a-11ea-9d4d-9737a63aaa55.json @@ -0,0 +1,186 @@ +{ + "attributes": { + "description": "Microsoft Defender ATP Alert Overview", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "8343f7ea-b977-44bf-bf81-6d41742093a4", + "w": 4, + "x": 0, + "y": 0 + }, + "panelIndex": "8343f7ea-b977-44bf-bf81-6d41742093a4", + "panelRefName": "panel_8343f7ea-b977-44bf-bf81-6d41742093a4", + "title": "", + "type": "visualization", + "version": "7.8.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 24, + "i": "74d36139-4d22-44d4-bfc8-020c575febb1", + "w": 25, + "x": 4, + "y": 0 + }, + "panelIndex": "74d36139-4d22-44d4-bfc8-020c575febb1", + "panelRefName": "panel_74d36139-4d22-44d4-bfc8-020c575febb1", + "type": "lens", + "version": "7.8.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 24, + "i": "a3e140ed-a0ed-4da0-8142-72d68fd7c5e5", + "w": 19, + "x": 29, + "y": 0 + }, + "panelIndex": "a3e140ed-a0ed-4da0-8142-72d68fd7c5e5", + "panelRefName": "panel_a3e140ed-a0ed-4da0-8142-72d68fd7c5e5", + "title": "ATP Techniques [Filebeat Microsoft]", + "type": "lens", + "version": "7.8.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "f3843ab0-8b0f-4f64-805c-4ab0d0965d8a", + "w": 4, + "x": 0, + "y": 6 + }, + "panelIndex": "f3843ab0-8b0f-4f64-805c-4ab0d0965d8a", + "panelRefName": "panel_f3843ab0-8b0f-4f64-805c-4ab0d0965d8a", + "title": "", + "type": "visualization", + "version": "7.8.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "16e7059b-70a5-4ea4-b622-9015d7430419", + "w": 4, + "x": 0, + "y": 12 + }, + "panelIndex": "16e7059b-70a5-4ea4-b622-9015d7430419", + "panelRefName": "panel_16e7059b-70a5-4ea4-b622-9015d7430419", + "title": "", + "type": "visualization", + "version": "7.8.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "d8a5a667-ed0b-42ed-ae7d-edbfa722677f", + "w": 4, + "x": 0, + "y": 18 + }, + "panelIndex": "d8a5a667-ed0b-42ed-ae7d-edbfa722677f", + "panelRefName": "panel_d8a5a667-ed0b-42ed-ae7d-edbfa722677f", + "title": "", + "type": "visualization", + "version": "7.8.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "cb8de6bb-1096-427d-834e-210963aad3e5", + "w": 48, + "x": 0, + "y": 24 + }, + "panelIndex": "cb8de6bb-1096-427d-834e-210963aad3e5", + "panelRefName": "panel_cb8de6bb-1096-427d-834e-210963aad3e5", + "type": "visualization", + "version": "7.8.1" + } + ], + "timeRestore": false, + "title": "[Filebeat Microsoft] ATP Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "65402c30-ca6a-11ea-9d4d-9737a63aaa55", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "3c64f400-ca68-11ea-9d4d-9737a63aaa55", + "name": "8343f7ea-b977-44bf-bf81-6d41742093a4:panel_8343f7ea-b977-44bf-bf81-6d41742093a4", + "type": "visualization" + }, + { + "id": "e415af10-ca67-11ea-9d4d-9737a63aaa55", + "name": "74d36139-4d22-44d4-bfc8-020c575febb1:panel_74d36139-4d22-44d4-bfc8-020c575febb1", + "type": "lens" + }, + { + "id": "14d367f0-ca68-11ea-9d4d-9737a63aaa55", + "name": "a3e140ed-a0ed-4da0-8142-72d68fd7c5e5:panel_a3e140ed-a0ed-4da0-8142-72d68fd7c5e5", + "type": "lens" + }, + { + "id": "9e902dc0-ca68-11ea-9d4d-9737a63aaa55", + "name": "f3843ab0-8b0f-4f64-805c-4ab0d0965d8a:panel_f3843ab0-8b0f-4f64-805c-4ab0d0965d8a", + "type": "visualization" + }, + { + "id": "b9fcbf60-ca68-11ea-9d4d-9737a63aaa55", + "name": "16e7059b-70a5-4ea4-b622-9015d7430419:panel_16e7059b-70a5-4ea4-b622-9015d7430419", + "type": "visualization" + }, + { + "id": "62f081c0-ca68-11ea-9d4d-9737a63aaa55", + "name": "d8a5a667-ed0b-42ed-ae7d-edbfa722677f:panel_d8a5a667-ed0b-42ed-ae7d-edbfa722677f", + "type": "visualization" + }, + { + "id": "00e8fca0-ca68-11ea-9d4d-9737a63aaa55", + "name": "cb8de6bb-1096-427d-834e-210963aad3e5:panel_cb8de6bb-1096-427d-834e-210963aad3e5", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:12.667Z", + "version": "WzQ0NDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/microsoft/_meta/kibana/7/dashboard/Filebeat-microsoft-atp-overview.ndjson b/x-pack/filebeat/module/microsoft/_meta/kibana/7/dashboard/Filebeat-microsoft-atp-overview.ndjson deleted file mode 100644 index ae8dff82f64f..000000000000 --- a/x-pack/filebeat/module/microsoft/_meta/kibana/7/dashboard/Filebeat-microsoft-atp-overview.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"Microsoft Defender ATP Counter for new incidents","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"microsoft\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"microsoft\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"microsoft.defender_atp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"microsoft.defender_atp\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:\\\"microsoft.defender_atp\\\" \"}}"},"title":"ATP New Incidents Counter [Filebeat Microsoft]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"New Incidents\",\"field\":\"microsoft.defender_atp.incidentId\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":1},{\"from\":1,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":30,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"ATP New Incidents Counter [Filebeat Microsoft]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"3c64f400-ca68-11ea-9d4d-9737a63aaa55","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:12.667Z","version":"WzQ0NDcsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"ac550ae9-6e17-4944-9545-25bbe83d9dbb":{"columnOrder":["19ade524-0042-4ecd-ac59-9696c8c2e225","677e5501-ca31-435c-8eab-38b5297e54c2","27212c7c-83ee-4292-a4c6-396d9b77dce6"],"columns":{"19ade524-0042-4ecd-ac59-9696c8c2e225":{"dataType":"number","isBucketed":true,"label":"Top values of event.severity","operationType":"terms","params":{"orderBy":{"columnId":"27212c7c-83ee-4292-a4c6-396d9b77dce6","type":"column"},"orderDirection":"desc","size":6},"scale":"ordinal","sourceField":"event.severity"},"27212c7c-83ee-4292-a4c6-396d9b77dce6":{"dataType":"number","isBucketed":false,"label":"Number of incidents","operationType":"unique_count","params":{"format":{"id":"number","params":{"decimals":0}}},"scale":"ratio","sourceField":"microsoft.defender_atp.incidentId"},"677e5501-ca31-435c-8eab-38b5297e54c2":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"24h"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[{"$state":{"store":"appState"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-0","key":"event.module","negate":false,"params":{"query":"microsoft"},"type":"phrase"},"query":{"match_phrase":{"event.module":"microsoft"}}},{"$state":{"store":"appState"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-1","key":"event.dataset","negate":false,"params":{"query":"microsoft.defender_atp"},"type":"phrase"},"query":{"match_phrase":{"event.dataset":"microsoft.defender_atp"}}}],"query":{"language":"kuery","query":""},"visualization":{"layers":[{"accessors":["27212c7c-83ee-4292-a4c6-396d9b77dce6"],"layerId":"ac550ae9-6e17-4944-9545-25bbe83d9dbb","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"19ade524-0042-4ecd-ac59-9696c8c2e225","xAccessor":"677e5501-ca31-435c-8eab-38b5297e54c2"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"ATP New Incidents [Filebeat Microsoft]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"e415af10-ca67-11ea-9d4d-9737a63aaa55","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-ac550ae9-6e17-4944-9545-25bbe83d9dbb","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-0","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-1","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:34:12.667Z","version":"WzQ0NDgsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"f93e2634-0dd5-4aec-b6de-45284dd39630":{"columnOrder":["12ecaf1f-b957-4c15-8f43-8f043a7d1d51","0f67be87-cc6f-48e7-8afd-d9401037d006"],"columns":{"0f67be87-cc6f-48e7-8afd-d9401037d006":{"dataType":"number","isBucketed":false,"label":"Number of techniques","operationType":"count","scale":"ratio","sourceField":"Records"},"12ecaf1f-b957-4c15-8f43-8f043a7d1d51":{"dataType":"string","isBucketed":true,"label":"Related MITRE attach techniques","operationType":"terms","params":{"orderBy":{"type":"alphabetical"},"orderDirection":"asc","size":10},"scale":"ordinal","sourceField":"threat.technique.name"}}}}}},"filters":[{"$state":{"store":"appState"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-0","key":"event.module","negate":false,"params":{"query":"microsoft"},"type":"phrase"},"query":{"match_phrase":{"event.module":"microsoft"}}},{"$state":{"store":"appState"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-1","key":"event.dataset","negate":false,"params":{"query":"microsoft.defender_atp"},"type":"phrase"},"query":{"match_phrase":{"event.dataset":"microsoft.defender_atp"}}}],"query":{"language":"kuery","query":""},"visualization":{"layers":[{"categoryDisplay":"default","groups":["12ecaf1f-b957-4c15-8f43-8f043a7d1d51"],"layerId":"f93e2634-0dd5-4aec-b6de-45284dd39630","legendDisplay":"default","metric":"0f67be87-cc6f-48e7-8afd-d9401037d006","nestedLegend":false,"numberDisplay":"percent"}],"shape":"treemap"}},"title":"ATP Techniques [Filebeat Microsoft]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"14d367f0-ca68-11ea-9d4d-9737a63aaa55","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-f93e2634-0dd5-4aec-b6de-45284dd39630","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-0","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-1","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:34:12.667Z","version":"WzQ0NDksMV0="} -{"attributes":{"description":"Microsoft Defender ATP counter for related domains","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"microsoft\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"microsoft\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"microsoft.defender_atp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"microsoft.defender_atp\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:\\\"microsoft.defender_atp\\\" \"}}"},"title":"ATP Domains Counter [Filebeat Microsoft]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Related Domains\",\"field\":\"microsoft.defender_atp.evidence.domainName\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":30,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"ATP Domains Counter [Filebeat Microsoft]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"9e902dc0-ca68-11ea-9d4d-9737a63aaa55","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:12.667Z","version":"WzQ0NTAsMV0="} -{"attributes":{"description":"Microsoft Defender ATP counter for related IP Addresses","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"microsoft\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"microsoft\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"microsoft.defender_atp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"microsoft.defender_atp\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:\\\"microsoft.defender_atp\\\" \"}}"},"title":"ATP IP Addresses Counter [Filebeat Microsoft]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Related Networks\",\"field\":\"microsoft.defender_atp.evidence.ipAddress\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":30,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"ATP IP Addresses Counter [Filebeat Microsoft]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"b9fcbf60-ca68-11ea-9d4d-9737a63aaa55","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:12.667Z","version":"WzQ0NTEsMV0="} -{"attributes":{"description":"Microsoft Defender ATP counter for related Users","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"microsoft\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"microsoft\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"microsoft.defender_atp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"microsoft.defender_atp\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:\\\"microsoft.defender_atp\\\" \"}}"},"title":"ATP Related Users Counter [Filebeat Microsoft]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Related Users\",\"field\":\"host.user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":30,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"ATP Related Users Counter [Filebeat Microsoft]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"62f081c0-ca68-11ea-9d4d-9737a63aaa55","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:12.667Z","version":"WzQ0NTIsMV0="} -{"attributes":{"description":"Microsoft Defender ATP Incident Table","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"microsoft\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"microsoft\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"microsoft.defender_atp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"microsoft.defender_atp\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"ATP Incident Table [Filebeat Microsoft]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Incident ID\",\"field\":\"microsoft.defender_atp.incidentId\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Current Status\",\"field\":\"microsoft.defender_atp.status\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":1},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Assigned To\",\"field\":\"microsoft.defender_atp.assignedTo\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":1},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"9\",\"params\":{\"customLabel\":\"Severity\",\"field\":\"event.severity\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Hostname\",\"field\":\"host.hostname\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":1},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Title\",\"field\":\"event.test.message\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":1},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"aggregate\":\"concat\",\"field\":\"@timestamp\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"10\",\"params\":{\"customLabel\":\"Category\",\"field\":\"threat.technique.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":1},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"row\":true,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"ATP Incident Table [Filebeat Microsoft]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"00e8fca0-ca68-11ea-9d4d-9737a63aaa55","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:12.667Z","version":"WzQ0NTMsMV0="} -{"attributes":{"description":"Microsoft Defender ATP Alert Overview","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.8.1\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"8343f7ea-b977-44bf-bf81-6d41742093a4\",\"w\":4,\"x\":0,\"y\":0},\"panelIndex\":\"8343f7ea-b977-44bf-bf81-6d41742093a4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_8343f7ea-b977-44bf-bf81-6d41742093a4\"},{\"version\":\"7.8.1\",\"type\":\"lens\",\"gridData\":{\"h\":24,\"i\":\"74d36139-4d22-44d4-bfc8-020c575febb1\",\"w\":25,\"x\":4,\"y\":0},\"panelIndex\":\"74d36139-4d22-44d4-bfc8-020c575febb1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_74d36139-4d22-44d4-bfc8-020c575febb1\"},{\"version\":\"7.8.1\",\"type\":\"lens\",\"gridData\":{\"h\":24,\"i\":\"a3e140ed-a0ed-4da0-8142-72d68fd7c5e5\",\"w\":19,\"x\":29,\"y\":0},\"panelIndex\":\"a3e140ed-a0ed-4da0-8142-72d68fd7c5e5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"ATP Techniques [Filebeat Microsoft]\",\"panelRefName\":\"panel_a3e140ed-a0ed-4da0-8142-72d68fd7c5e5\"},{\"version\":\"7.8.1\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"f3843ab0-8b0f-4f64-805c-4ab0d0965d8a\",\"w\":4,\"x\":0,\"y\":6},\"panelIndex\":\"f3843ab0-8b0f-4f64-805c-4ab0d0965d8a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_f3843ab0-8b0f-4f64-805c-4ab0d0965d8a\"},{\"version\":\"7.8.1\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"16e7059b-70a5-4ea4-b622-9015d7430419\",\"w\":4,\"x\":0,\"y\":12},\"panelIndex\":\"16e7059b-70a5-4ea4-b622-9015d7430419\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_16e7059b-70a5-4ea4-b622-9015d7430419\"},{\"version\":\"7.8.1\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"d8a5a667-ed0b-42ed-ae7d-edbfa722677f\",\"w\":4,\"x\":0,\"y\":18},\"panelIndex\":\"d8a5a667-ed0b-42ed-ae7d-edbfa722677f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_d8a5a667-ed0b-42ed-ae7d-edbfa722677f\"},{\"version\":\"7.8.1\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"cb8de6bb-1096-427d-834e-210963aad3e5\",\"w\":48,\"x\":0,\"y\":24},\"panelIndex\":\"cb8de6bb-1096-427d-834e-210963aad3e5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_cb8de6bb-1096-427d-834e-210963aad3e5\"}]","timeRestore":false,"title":"[Filebeat Microsoft] ATP Overview","version":1},"coreMigrationVersion":"8.0.0","id":"65402c30-ca6a-11ea-9d4d-9737a63aaa55","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"3c64f400-ca68-11ea-9d4d-9737a63aaa55","name":"8343f7ea-b977-44bf-bf81-6d41742093a4:panel_8343f7ea-b977-44bf-bf81-6d41742093a4","type":"visualization"},{"id":"e415af10-ca67-11ea-9d4d-9737a63aaa55","name":"74d36139-4d22-44d4-bfc8-020c575febb1:panel_74d36139-4d22-44d4-bfc8-020c575febb1","type":"lens"},{"id":"14d367f0-ca68-11ea-9d4d-9737a63aaa55","name":"a3e140ed-a0ed-4da0-8142-72d68fd7c5e5:panel_a3e140ed-a0ed-4da0-8142-72d68fd7c5e5","type":"lens"},{"id":"9e902dc0-ca68-11ea-9d4d-9737a63aaa55","name":"f3843ab0-8b0f-4f64-805c-4ab0d0965d8a:panel_f3843ab0-8b0f-4f64-805c-4ab0d0965d8a","type":"visualization"},{"id":"b9fcbf60-ca68-11ea-9d4d-9737a63aaa55","name":"16e7059b-70a5-4ea4-b622-9015d7430419:panel_16e7059b-70a5-4ea4-b622-9015d7430419","type":"visualization"},{"id":"62f081c0-ca68-11ea-9d4d-9737a63aaa55","name":"d8a5a667-ed0b-42ed-ae7d-edbfa722677f:panel_d8a5a667-ed0b-42ed-ae7d-edbfa722677f","type":"visualization"},{"id":"00e8fca0-ca68-11ea-9d4d-9737a63aaa55","name":"cb8de6bb-1096-427d-834e-210963aad3e5:panel_cb8de6bb-1096-427d-834e-210963aad3e5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:12.667Z","version":"WzQ0NDYsMV0="} diff --git a/x-pack/filebeat/module/microsoft/_meta/kibana/7/lens/14d367f0-ca68-11ea-9d4d-9737a63aaa55.json b/x-pack/filebeat/module/microsoft/_meta/kibana/7/lens/14d367f0-ca68-11ea-9d4d-9737a63aaa55.json new file mode 100644 index 000000000000..abf53795ec4d --- /dev/null +++ b/x-pack/filebeat/module/microsoft/_meta/kibana/7/lens/14d367f0-ca68-11ea-9d4d-9737a63aaa55.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "f93e2634-0dd5-4aec-b6de-45284dd39630": { + "columnOrder": [ + "12ecaf1f-b957-4c15-8f43-8f043a7d1d51", + "0f67be87-cc6f-48e7-8afd-d9401037d006" + ], + "columns": { + "0f67be87-cc6f-48e7-8afd-d9401037d006": { + "dataType": "number", + "isBucketed": false, + "label": "Number of techniques", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "12ecaf1f-b957-4c15-8f43-8f043a7d1d51": { + "dataType": "string", + "isBucketed": true, + "label": "Related MITRE attach techniques", + "operationType": "terms", + "params": { + "orderBy": { + "type": "alphabetical" + }, + "orderDirection": "asc", + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threat.technique.name" + } + } + } + } + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "filter-index-pattern-0", + "key": "event.module", + "negate": false, + "params": { + "query": "microsoft" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.module": "microsoft" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "filter-index-pattern-1", + "key": "event.dataset", + "negate": false, + "params": { + "query": "microsoft.defender_atp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "microsoft.defender_atp" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "groups": [ + "12ecaf1f-b957-4c15-8f43-8f043a7d1d51" + ], + "layerId": "f93e2634-0dd5-4aec-b6de-45284dd39630", + "legendDisplay": "default", + "metric": "0f67be87-cc6f-48e7-8afd-d9401037d006", + "nestedLegend": false, + "numberDisplay": "percent" + } + ], + "shape": "treemap" + } + }, + "title": "ATP Techniques [Filebeat Microsoft]", + "visualizationType": "lnsPie" + }, + "coreMigrationVersion": "8.0.0", + "id": "14d367f0-ca68-11ea-9d4d-9737a63aaa55", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-f93e2634-0dd5-4aec-b6de-45284dd39630", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-0", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-1", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:12.667Z", + "version": "WzQ0NDksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/microsoft/_meta/kibana/7/lens/e415af10-ca67-11ea-9d4d-9737a63aaa55.json b/x-pack/filebeat/module/microsoft/_meta/kibana/7/lens/e415af10-ca67-11ea-9d4d-9737a63aaa55.json new file mode 100644 index 000000000000..fe86e07e6a93 --- /dev/null +++ b/x-pack/filebeat/module/microsoft/_meta/kibana/7/lens/e415af10-ca67-11ea-9d4d-9737a63aaa55.json @@ -0,0 +1,164 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "ac550ae9-6e17-4944-9545-25bbe83d9dbb": { + "columnOrder": [ + "19ade524-0042-4ecd-ac59-9696c8c2e225", + "677e5501-ca31-435c-8eab-38b5297e54c2", + "27212c7c-83ee-4292-a4c6-396d9b77dce6" + ], + "columns": { + "19ade524-0042-4ecd-ac59-9696c8c2e225": { + "dataType": "number", + "isBucketed": true, + "label": "Top values of event.severity", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "27212c7c-83ee-4292-a4c6-396d9b77dce6", + "type": "column" + }, + "orderDirection": "desc", + "size": 6 + }, + "scale": "ordinal", + "sourceField": "event.severity" + }, + "27212c7c-83ee-4292-a4c6-396d9b77dce6": { + "dataType": "number", + "isBucketed": false, + "label": "Number of incidents", + "operationType": "unique_count", + "params": { + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "microsoft.defender_atp.incidentId" + }, + "677e5501-ca31-435c-8eab-38b5297e54c2": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "24h" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + } + } + } + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "filter-index-pattern-0", + "key": "event.module", + "negate": false, + "params": { + "query": "microsoft" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.module": "microsoft" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "filter-index-pattern-1", + "key": "event.dataset", + "negate": false, + "params": { + "query": "microsoft.defender_atp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "microsoft.defender_atp" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "layers": [ + { + "accessors": [ + "27212c7c-83ee-4292-a4c6-396d9b77dce6" + ], + "layerId": "ac550ae9-6e17-4944-9545-25bbe83d9dbb", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "19ade524-0042-4ecd-ac59-9696c8c2e225", + "xAccessor": "677e5501-ca31-435c-8eab-38b5297e54c2" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line" + } + }, + "title": "ATP New Incidents [Filebeat Microsoft]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "e415af10-ca67-11ea-9d4d-9737a63aaa55", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-ac550ae9-6e17-4944-9545-25bbe83d9dbb", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-0", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-1", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:12.667Z", + "version": "WzQ0NDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/00e8fca0-ca68-11ea-9d4d-9737a63aaa55.json b/x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/00e8fca0-ca68-11ea-9d4d-9737a63aaa55.json new file mode 100644 index 000000000000..2f6ed243cd7b --- /dev/null +++ b/x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/00e8fca0-ca68-11ea-9d4d-9737a63aaa55.json @@ -0,0 +1,247 @@ +{ + "attributes": { + "description": "Microsoft Defender ATP Incident Table", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "microsoft" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.module": "microsoft" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "microsoft.defender_atp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "microsoft.defender_atp" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "ATP Incident Table [Filebeat Microsoft]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Incident ID", + "field": "microsoft.defender_atp.incidentId", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 100 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Current Status", + "field": "microsoft.defender_atp.status", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 1 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Assigned To", + "field": "microsoft.defender_atp.assignedTo", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 1 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "9", + "params": { + "customLabel": "Severity", + "field": "event.severity", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Hostname", + "field": "host.hostname", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 1 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "Title", + "field": "event.test.message", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 1 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "8", + "params": { + "aggregate": "concat", + "field": "@timestamp", + "size": 1, + "sortField": "@timestamp", + "sortOrder": "desc" + }, + "schema": "metric", + "type": "top_hits" + }, + { + "enabled": true, + "id": "10", + "params": { + "customLabel": "Category", + "field": "threat.technique.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 1 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "row": true, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "ATP Incident Table [Filebeat Microsoft]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "00e8fca0-ca68-11ea-9d4d-9737a63aaa55", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:12.667Z", + "version": "WzQ0NTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/3c64f400-ca68-11ea-9d4d-9737a63aaa55.json b/x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/3c64f400-ca68-11ea-9d4d-9737a63aaa55.json new file mode 100644 index 000000000000..e30ba8b1c05f --- /dev/null +++ b/x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/3c64f400-ca68-11ea-9d4d-9737a63aaa55.json @@ -0,0 +1,134 @@ +{ + "attributes": { + "description": "Microsoft Defender ATP Counter for new incidents", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "microsoft" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.module": "microsoft" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "microsoft.defender_atp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "microsoft.defender_atp" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:\"microsoft.defender_atp\" " + } + } + }, + "title": "ATP New Incidents Counter [Filebeat Microsoft]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "New Incidents", + "field": "microsoft.defender_atp.incidentId" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 1 + }, + { + "from": 1, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 30, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "ATP New Incidents Counter [Filebeat Microsoft]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3c64f400-ca68-11ea-9d4d-9737a63aaa55", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:12.667Z", + "version": "WzQ0NDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/62f081c0-ca68-11ea-9d4d-9737a63aaa55.json b/x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/62f081c0-ca68-11ea-9d4d-9737a63aaa55.json new file mode 100644 index 000000000000..16a783c380b9 --- /dev/null +++ b/x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/62f081c0-ca68-11ea-9d4d-9737a63aaa55.json @@ -0,0 +1,130 @@ +{ + "attributes": { + "description": "Microsoft Defender ATP counter for related Users", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "microsoft" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.module": "microsoft" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "microsoft.defender_atp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "microsoft.defender_atp" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:\"microsoft.defender_atp\" " + } + } + }, + "title": "ATP Related Users Counter [Filebeat Microsoft]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Related Users", + "field": "host.user.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 30, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "ATP Related Users Counter [Filebeat Microsoft]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "62f081c0-ca68-11ea-9d4d-9737a63aaa55", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:12.667Z", + "version": "WzQ0NTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/9e902dc0-ca68-11ea-9d4d-9737a63aaa55.json b/x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/9e902dc0-ca68-11ea-9d4d-9737a63aaa55.json new file mode 100644 index 000000000000..94d815be7db2 --- /dev/null +++ b/x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/9e902dc0-ca68-11ea-9d4d-9737a63aaa55.json @@ -0,0 +1,130 @@ +{ + "attributes": { + "description": "Microsoft Defender ATP counter for related domains", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "microsoft" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.module": "microsoft" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "microsoft.defender_atp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "microsoft.defender_atp" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:\"microsoft.defender_atp\" " + } + } + }, + "title": "ATP Domains Counter [Filebeat Microsoft]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Related Domains", + "field": "microsoft.defender_atp.evidence.domainName" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 30, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "ATP Domains Counter [Filebeat Microsoft]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9e902dc0-ca68-11ea-9d4d-9737a63aaa55", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:12.667Z", + "version": "WzQ0NTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/b9fcbf60-ca68-11ea-9d4d-9737a63aaa55.json b/x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/b9fcbf60-ca68-11ea-9d4d-9737a63aaa55.json new file mode 100644 index 000000000000..10768534a77f --- /dev/null +++ b/x-pack/filebeat/module/microsoft/_meta/kibana/7/visualization/b9fcbf60-ca68-11ea-9d4d-9737a63aaa55.json @@ -0,0 +1,130 @@ +{ + "attributes": { + "description": "Microsoft Defender ATP counter for related IP Addresses", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "microsoft" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.module": "microsoft" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "microsoft.defender_atp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "microsoft.defender_atp" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:\"microsoft.defender_atp\" " + } + } + }, + "title": "ATP IP Addresses Counter [Filebeat Microsoft]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Related Networks", + "field": "microsoft.defender_atp.evidence.ipAddress" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 30, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "ATP IP Addresses Counter [Filebeat Microsoft]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b9fcbf60-ca68-11ea-9d4d-9737a63aaa55", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:12.667Z", + "version": "WzQ0NTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/microsoft/module.yml b/x-pack/filebeat/module/microsoft/module.yml index c193392a2d80..991a3a8d25cc 100644 --- a/x-pack/filebeat/module/microsoft/module.yml +++ b/x-pack/filebeat/module/microsoft/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 65402c30-ca6a-11ea-9d4d-9737a63aaa55 - file: Filebeat-microsoft-atp-overview.ndjson \ No newline at end of file + file: Filebeat-microsoft-atp-overview.json \ No newline at end of file diff --git a/x-pack/filebeat/module/misp/_meta/kibana/7/dashboard/Filebeat-MISP-Overview.ndjson b/x-pack/filebeat/module/misp/_meta/kibana/7/dashboard/Filebeat-MISP-Overview.ndjson deleted file mode 100644 index e46e32c6682b..000000000000 --- a/x-pack/filebeat/module/misp/_meta/kibana/7/dashboard/Filebeat-MISP-Overview.ndjson +++ /dev/null @@ -1,4 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Threat Indicator Type [Filebeat MISP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"misp.threat_indicator.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Threat Indicator Type [Filebeat MISP]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"8fc4b140-ed36-11e9-9a88-690b10c8ee99","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:47.233Z","version":"WzQyOTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Threat Indicators per Month [Filebeat MISP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Indicators Per Month\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"M\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15M\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"misp.threat_indicator.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Indicators Per Month\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Indicators Per Month\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Threat Indicators per Month [Filebeat MISP]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"7d369390-f105-11e9-9a88-690b10c8ee99","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:47.233Z","version":"WzQyOTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"title":"Threat Indicator Geo Map [Filebeat MISP]","uiStateJSON":"{\"mapCenter\": [-0.17578097424708533, 0], \"mapZoom\": 2}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"isFilteredByCollar\":true,\"mapBounds\":{\"bottom_right\":{\"lat\":-42.68243539838622,\"lon\":60.99609375000001},\"top_left\":{\"lat\":42.35854391749705,\"lon\":-60.99609375000001}},\"mapCenter\":{\"lat\":-0.17578097424708533,\"lon\":0},\"mapZoom\":4,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors|OpenMapTiles|MapTiler|Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"origin\":\"elastic_maps_service\"}}},\"title\":\"Threat Indicator Geo Map [Filebeat MISP]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"73287f70-f1fb-11e9-9a88-690b10c8ee99","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:47.233Z","version":"WzQyOTksMV0="} -{"attributes":{"description":"Overview dashboard for Filebeat MISP module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":24,\"i\":\"3\",\"w\":48,\"x\":0,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"mapCenter\":[24.686952411999155,12.128906250000002],\"mapZoom\":3,\"enhancements\":{}},\"panelRefName\":\"panel_3\"}]","timeRestore":false,"title":"[Filebeat MISP] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"c6cac9e0-f105-11e9-9a88-690b10c8ee99","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"8fc4b140-ed36-11e9-9a88-690b10c8ee99","name":"1:panel_1","type":"visualization"},{"id":"7d369390-f105-11e9-9a88-690b10c8ee99","name":"2:panel_2","type":"visualization"},{"id":"73287f70-f1fb-11e9-9a88-690b10c8ee99","name":"3:panel_3","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:47.233Z","version":"WzQyOTYsMV0="} diff --git a/x-pack/filebeat/module/misp/_meta/kibana/7/dashboard/c6cac9e0-f105-11e9-9a88-690b10c8ee99.json b/x-pack/filebeat/module/misp/_meta/kibana/7/dashboard/c6cac9e0-f105-11e9-9a88-690b10c8ee99.json new file mode 100644 index 000000000000..18e24754dd35 --- /dev/null +++ b/x-pack/filebeat/module/misp/_meta/kibana/7/dashboard/c6cac9e0-f105-11e9-9a88-690b10c8ee99.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "Overview dashboard for Filebeat MISP module.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "1", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "2", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapCenter": [ + 24.686952411999155, + 12.128906250000002 + ], + "mapZoom": 3 + }, + "gridData": { + "h": 24, + "i": "3", + "w": 48, + "x": 0, + "y": 15 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Filebeat MISP] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "c6cac9e0-f105-11e9-9a88-690b10c8ee99", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "8fc4b140-ed36-11e9-9a88-690b10c8ee99", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "7d369390-f105-11e9-9a88-690b10c8ee99", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "73287f70-f1fb-11e9-9a88-690b10c8ee99", + "name": "3:panel_3", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:47.233Z", + "version": "WzQyOTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/misp/_meta/kibana/7/visualization/73287f70-f1fb-11e9-9a88-690b10c8ee99.json b/x-pack/filebeat/module/misp/_meta/kibana/7/visualization/73287f70-f1fb-11e9-9a88-690b10c8ee99.json new file mode 100644 index 000000000000..f3f028a437a1 --- /dev/null +++ b/x-pack/filebeat/module/misp/_meta/kibana/7/visualization/73287f70-f1fb-11e9-9a88-690b10c8ee99.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Threat Indicator Geo Map [Filebeat MISP]", + "uiStateJSON": { + "mapCenter": [ + -0.17578097424708533, + 0 + ], + "mapZoom": 2 + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "source.geo.location", + "isFilteredByCollar": true, + "mapBounds": { + "bottom_right": { + "lat": -42.68243539838622, + "lon": 60.99609375000001 + }, + "top_left": { + "lat": 42.35854391749705, + "lon": -60.99609375000001 + } + }, + "mapCenter": { + "lat": -0.17578097424708533, + "lon": 0 + }, + "mapZoom": 4, + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "params": { + "addTooltip": true, + "colorSchema": "Yellow to Red", + "heatClusterSize": 1.5, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 0, + 0 + ], + "mapType": "Scaled Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "format": "image/png", + "transparent": true + }, + "selectedTmsLayer": { + "attribution": "

© OpenStreetMap contributors|OpenMapTiles|MapTiler|Elastic Maps Service

", + "id": "road_map", + "maxZoom": 18, + "minZoom": 0, + "origin": "elastic_maps_service" + } + } + }, + "title": "Threat Indicator Geo Map [Filebeat MISP]", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "73287f70-f1fb-11e9-9a88-690b10c8ee99", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:47.233Z", + "version": "WzQyOTksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/misp/_meta/kibana/7/visualization/7d369390-f105-11e9-9a88-690b10c8ee99.json b/x-pack/filebeat/module/misp/_meta/kibana/7/visualization/7d369390-f105-11e9-9a88-690b10c8ee99.json new file mode 100644 index 000000000000..7c6d769a04fc --- /dev/null +++ b/x-pack/filebeat/module/misp/_meta/kibana/7/visualization/7d369390-f105-11e9-9a88-690b10c8ee99.json @@ -0,0 +1,154 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Threat Indicators per Month [Filebeat MISP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Indicators Per Month" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "M", + "min_doc_count": 1, + "timeRange": { + "from": "now-15M", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "misp.threat_indicator.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Indicators Per Month" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Indicators Per Month" + }, + "type": "value" + } + ] + }, + "title": "Threat Indicators per Month [Filebeat MISP]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7d369390-f105-11e9-9a88-690b10c8ee99", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:47.233Z", + "version": "WzQyOTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/misp/_meta/kibana/7/visualization/8fc4b140-ed36-11e9-9a88-690b10c8ee99.json b/x-pack/filebeat/module/misp/_meta/kibana/7/visualization/8fc4b140-ed36-11e9-9a88-690b10c8ee99.json new file mode 100644 index 000000000000..7b60f8ec84fd --- /dev/null +++ b/x-pack/filebeat/module/misp/_meta/kibana/7/visualization/8fc4b140-ed36-11e9-9a88-690b10c8ee99.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Threat Indicator Type [Filebeat MISP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "misp.threat_indicator.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Threat Indicator Type [Filebeat MISP]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8fc4b140-ed36-11e9-9a88-690b10c8ee99", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:47.233Z", + "version": "WzQyOTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/misp/module.yml b/x-pack/filebeat/module/misp/module.yml index 7f5d5f15d17b..d3b327c7eb53 100644 --- a/x-pack/filebeat/module/misp/module.yml +++ b/x-pack/filebeat/module/misp/module.yml @@ -1,3 +1,3 @@ dashboards: - id: c6cac9e0-f105-11e9-9a88-690b10c8ee99 - file: Filebeat-MISP-Overview.ndjson + file: Filebeat-MISP-Overview.json diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c.json new file mode 100644 index 000000000000..e3fd45a57b5f --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c.json @@ -0,0 +1,319 @@ +{ + "attributes": { + "description": "Netflow Top N flows", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "globalState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "input.type", + "negate": false, + "params": { + "query": "netflow" + }, + "type": "phrase", + "value": "netflow" + }, + "query": { + "match": { + "input.type": { + "query": "netflow", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "1", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 20, + "i": "2", + "w": 24, + "x": 0, + "y": 4 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 20, + "i": "3", + "w": 24, + "x": 24, + "y": 4 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 20, + "i": "4", + "w": 24, + "x": 0, + "y": 24 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 20, + "i": "5", + "w": 24, + "x": 24, + "y": 24 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 20, + "i": "6", + "w": 24, + "x": 0, + "y": 44 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 20, + "i": "7", + "w": 24, + "x": 24, + "y": 44 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": 2, + "direction": "desc" + } + } + } + }, + "gridData": { + "h": 20, + "i": "8", + "w": 24, + "x": 0, + "y": 64 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "gridData": { + "h": 20, + "i": "9", + "w": 24, + "x": 24, + "y": 64 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Netflow] Top-N", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "14387a13-53bc-43a4-b9cd-63977aa8d87c", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "15295ea6-ba84-47db-8ced-9312abbf495c", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "5303e99b-389c-47b7-ae7a-945c5a92ba49", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "e9ad835b-b2f2-42d3-a3e7-555a593deacf", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "31b5f6fd-eb9d-4e97-90fd-367062ef217f", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "2b3d4e86-2254-4033-8fe3-ce4753fafd03", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "036aef95-ec90-468d-ad7c-3cc4405e9e81", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "5292a65b-c532-422a-9008-1251a8073a3a", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "cccff92f-cb71-49a9-9caf-84867751d31e", + "name": "9:panel_9", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:48.527Z", + "version": "WzQ4MzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2.json new file mode 100644 index 000000000000..4d28498a18fc --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2.json @@ -0,0 +1,339 @@ +{ + "attributes": { + "description": "Overview of Netflow", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "globalState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "input.type", + "negate": false, + "params": { + "query": "netflow" + }, + "type": "phrase", + "value": "netflow" + }, + "query": { + "match": { + "input.type": { + "query": "netflow", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "12", + "w": 16, + "x": 0, + "y": 4 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "13", + "w": 16, + "x": 16, + "y": 4 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "14", + "w": 16, + "x": 32, + "y": 4 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "15", + "w": 16, + "x": 16, + "y": 12 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "17", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "17", + "panelRefName": "panel_17", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "21", + "w": 16, + "x": 32, + "y": 12 + }, + "panelIndex": "21", + "panelRefName": "panel_21", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "22", + "w": 16, + "x": 16, + "y": 20 + }, + "panelIndex": "22", + "panelRefName": "panel_22", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "23", + "w": 16, + "x": 0, + "y": 12 + }, + "panelIndex": "23", + "panelRefName": "panel_23", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "24", + "w": 16, + "x": 0, + "y": 20 + }, + "panelIndex": "24", + "panelRefName": "panel_24", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "25", + "w": 16, + "x": 32, + "y": 20 + }, + "panelIndex": "25", + "panelRefName": "panel_25", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "26", + "w": 16, + "x": 0, + "y": 28 + }, + "panelIndex": "26", + "panelRefName": "panel_26", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "27", + "w": 16, + "x": 16, + "y": 28 + }, + "panelIndex": "27", + "panelRefName": "panel_27", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "29", + "w": 16, + "x": 32, + "y": 28 + }, + "panelIndex": "29", + "panelRefName": "panel_29", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Netflow] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "34e26884-161a-4448-9556-43b5bf2f62a2", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "ae334aec-31fa-4df7-a064-40b18831d819", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "67fdca65-a9df-47f0-a8a4-1e8b056325de", + "name": "13:panel_13", + "type": "visualization" + }, + { + "id": "1558508d-591c-49be-bef4-85fdac18a960", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "1cf30eac-aae8-47fa-a156-37f6346d2d5a", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", + "name": "17:panel_17", + "type": "visualization" + }, + { + "id": "7fa6cb0a-518d-46e9-a228-15cd4253a957", + "name": "21:panel_21", + "type": "visualization" + }, + { + "id": "f772028b-d5a6-4d55-b441-493871981a60", + "name": "22:panel_22", + "type": "visualization" + }, + { + "id": "57e13a20-e94f-4465-a942-42148634a1d2", + "name": "23:panel_23", + "type": "visualization" + }, + { + "id": "b02c2713-17f0-41dd-88a3-ce33b446f19d", + "name": "24:panel_24", + "type": "visualization" + }, + { + "id": "5ccac452-e90a-4dde-ae9b-1be36ce3f761", + "name": "25:panel_25", + "type": "visualization" + }, + { + "id": "31708a70-4957-4a8a-8065-5c88a344ad02", + "name": "26:panel_26", + "type": "visualization" + }, + { + "id": "b677cd82-b33e-49b3-8b6e-0e110177b163", + "name": "27:panel_27", + "type": "visualization" + }, + { + "id": "3dec20c0-0d4f-43ef-8864-3779e1a1b33f", + "name": "29:panel_29", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:47.530Z", + "version": "WzQ4MjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/38012abe-c611-4124-8497-381fcd85acc8.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/38012abe-c611-4124-8497-381fcd85acc8.json new file mode 100644 index 000000000000..86aae348f676 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/38012abe-c611-4124-8497-381fcd85acc8.json @@ -0,0 +1,980 @@ +{ + "attributes": { + "description": "Netflow traffic analysis", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "globalState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "input.type", + "negate": false, + "params": { + "query": "netflow" + }, + "type": "phrase", + "value": "netflow" + }, + "query": { + "match": { + "input.type": { + "query": "netflow", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "1", + "w": 24, + "x": 24, + "y": 84 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "4", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "5", + "w": 24, + "x": 24, + "y": 108 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "6", + "w": 24, + "x": 0, + "y": 108 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "7", + "w": 24, + "x": 24, + "y": 36 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "9", + "w": 24, + "x": 0, + "y": 84 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "10", + "w": 24, + "x": 24, + "y": 60 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "11", + "w": 24, + "x": 0, + "y": 60 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "12", + "w": 24, + "x": 0, + "y": 36 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "13", + "w": 24, + "x": 0, + "y": 12 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "14", + "w": 24, + "x": 24, + "y": 12 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": true + } + }, + "gridData": { + "h": 8, + "i": "15", + "w": 16, + "x": 0, + "y": 4 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "16", + "w": 16, + "x": 0, + "y": 28 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "17", + "w": 16, + "x": 24, + "y": 4 + }, + "panelIndex": "17", + "panelRefName": "panel_17", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "18", + "w": 16, + "x": 24, + "y": 28 + }, + "panelIndex": "18", + "panelRefName": "panel_18", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "19", + "w": 16, + "x": 0, + "y": 52 + }, + "panelIndex": "19", + "panelRefName": "panel_19", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "20", + "w": 16, + "x": 24, + "y": 52 + }, + "panelIndex": "20", + "panelRefName": "panel_20", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "21", + "w": 16, + "x": 0, + "y": 76 + }, + "panelIndex": "21", + "panelRefName": "panel_21", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "22", + "w": 16, + "x": 24, + "y": 76 + }, + "panelIndex": "22", + "panelRefName": "panel_22", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "23", + "w": 16, + "x": 0, + "y": 100 + }, + "panelIndex": "23", + "panelRefName": "panel_23", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "24", + "w": 16, + "x": 24, + "y": 100 + }, + "panelIndex": "24", + "panelRefName": "panel_24", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "25", + "w": 24, + "x": 0, + "y": 20 + }, + "panelIndex": "25", + "panelRefName": "panel_25", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "26", + "w": 8, + "x": 40, + "y": 4 + }, + "panelIndex": "26", + "panelRefName": "panel_26", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "27", + "w": 8, + "x": 16, + "y": 4 + }, + "panelIndex": "27", + "panelRefName": "panel_27", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "28", + "w": 24, + "x": 24, + "y": 20 + }, + "panelIndex": "28", + "panelRefName": "panel_28", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "29", + "w": 8, + "x": 40, + "y": 28 + }, + "panelIndex": "29", + "panelRefName": "panel_29", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "30", + "w": 8, + "x": 16, + "y": 28 + }, + "panelIndex": "30", + "panelRefName": "panel_30", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "31", + "w": 24, + "x": 24, + "y": 92 + }, + "panelIndex": "31", + "panelRefName": "panel_31", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "34", + "w": 24, + "x": 24, + "y": 116 + }, + "panelIndex": "34", + "panelRefName": "panel_34", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "35", + "w": 24, + "x": 0, + "y": 116 + }, + "panelIndex": "35", + "panelRefName": "panel_35", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "38", + "w": 24, + "x": 24, + "y": 44 + }, + "panelIndex": "38", + "panelRefName": "panel_38", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "42", + "w": 24, + "x": 0, + "y": 44 + }, + "panelIndex": "42", + "panelRefName": "panel_42", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "44", + "w": 24, + "x": 0, + "y": 92 + }, + "panelIndex": "44", + "panelRefName": "panel_44", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "45", + "w": 24, + "x": 0, + "y": 68 + }, + "panelIndex": "45", + "panelRefName": "panel_45", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "47", + "w": 24, + "x": 24, + "y": 68 + }, + "panelIndex": "47", + "panelRefName": "panel_47", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "48", + "w": 8, + "x": 16, + "y": 52 + }, + "panelIndex": "48", + "panelRefName": "panel_48", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "49", + "w": 8, + "x": 40, + "y": 52 + }, + "panelIndex": "49", + "panelRefName": "panel_49", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "50", + "w": 8, + "x": 40, + "y": 76 + }, + "panelIndex": "50", + "panelRefName": "panel_50", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "51", + "w": 8, + "x": 40, + "y": 100 + }, + "panelIndex": "51", + "panelRefName": "panel_51", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "52", + "w": 8, + "x": 16, + "y": 100 + }, + "panelIndex": "52", + "panelRefName": "panel_52", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "53", + "w": 8, + "x": 16, + "y": 76 + }, + "panelIndex": "53", + "panelRefName": "panel_53", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Netflow] Traffic Analysis", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "38012abe-c611-4124-8497-381fcd85acc8", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "abfa0b19-60cd-4984-9c3d-02ebf0aa1dfb", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "1e74d5cb-556d-42ee-8042-88f6c1af47f0", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "5cfb2c9a-4815-4a25-9d7e-ab0ef55ffe63", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "3e27fb83-b3e3-4c15-b999-ed6da49b7a86", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "5d868836-c7b2-4812-bf47-4838aac281d9", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "a5efa3dd-f53a-4d14-9d3f-ee73345fd93d", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "717cd7c7-bfca-435d-8ee7-38259927aade", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "f668ecdb-eec7-44c6-9060-26aaf9fc8404", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "6bbd6712-494a-4fd9-b3d3-757304681f0f", + "name": "13:panel_13", + "type": "visualization" + }, + { + "id": "681f0ce4-d828-4a99-b643-0c0715530050", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "fd6c1144-5026-4795-b7af-a9aa3fc28c56", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "0b2818fd-aecc-4bef-b566-9466eb702ae4", + "name": "16:panel_16", + "type": "visualization" + }, + { + "id": "248e00b4-8fc2-406f-8907-729d5380aaa7", + "name": "17:panel_17", + "type": "visualization" + }, + { + "id": "cf399a85-e348-4ac1-a399-e8f5a44114c4", + "name": "18:panel_18", + "type": "visualization" + }, + { + "id": "1cf30eac-aae8-47fa-a156-37f6346d2d5a", + "name": "19:panel_19", + "type": "visualization" + }, + { + "id": "7fa6cb0a-518d-46e9-a228-15cd4253a957", + "name": "20:panel_20", + "type": "visualization" + }, + { + "id": "57e13a20-e94f-4465-a942-42148634a1d2", + "name": "21:panel_21", + "type": "visualization" + }, + { + "id": "f772028b-d5a6-4d55-b441-493871981a60", + "name": "22:panel_22", + "type": "visualization" + }, + { + "id": "a14c3248-952d-42aa-bd7d-9b39157a776f", + "name": "23:panel_23", + "type": "visualization" + }, + { + "id": "a685420e-c45f-4b62-932b-5b76ac8b8ca2", + "name": "24:panel_24", + "type": "visualization" + }, + { + "id": "0528bc66-6981-400a-a02d-c1d221b38890", + "name": "25:panel_25", + "type": "visualization" + }, + { + "id": "e99dc327-03de-4561-9e0c-f550710125c2", + "name": "26:panel_26", + "type": "visualization" + }, + { + "id": "32e712ed-fa15-4db7-8575-8476e8d65b03", + "name": "27:panel_27", + "type": "visualization" + }, + { + "id": "d59a031c-70d6-47d7-966d-7fcb805be9be", + "name": "28:panel_28", + "type": "visualization" + }, + { + "id": "af707b01-29f1-462b-b279-6d2e803f3645", + "name": "29:panel_29", + "type": "visualization" + }, + { + "id": "ddd27657-c3c8-4f82-8059-6d7763dd599b", + "name": "30:panel_30", + "type": "visualization" + }, + { + "id": "30cd1009-2925-4c9b-820d-d689f5d1efda", + "name": "31:panel_31", + "type": "visualization" + }, + { + "id": "7d447b22-89dc-4f32-b549-4b8620af4d76", + "name": "34:panel_34", + "type": "visualization" + }, + { + "id": "d41a9663-e5ad-47a7-955e-3803ae4e23c0", + "name": "35:panel_35", + "type": "visualization" + }, + { + "id": "3a4209e2-281c-467e-b5cb-315bf4a2661f", + "name": "38:panel_38", + "type": "visualization" + }, + { + "id": "201d7dd1-a880-4a64-b631-db5629340db9", + "name": "42:panel_42", + "type": "visualization" + }, + { + "id": "8f83cf97-4a48-421f-8db5-690297d1f4fb", + "name": "44:panel_44", + "type": "visualization" + }, + { + "id": "a1704d46-15fc-41c2-851d-796ceb49877f", + "name": "45:panel_45", + "type": "visualization" + }, + { + "id": "15e2a267-2495-4df2-a121-abe410d2f18c", + "name": "47:panel_47", + "type": "visualization" + }, + { + "id": "f27c1479-0625-4cdc-92de-672e47db0f87", + "name": "48:panel_48", + "type": "visualization" + }, + { + "id": "0177bf1a-cba8-4ba6-a1d7-73caed86ffc2", + "name": "49:panel_49", + "type": "visualization" + }, + { + "id": "d5568704-e30b-4108-bb49-06a9b8dce6a6", + "name": "50:panel_50", + "type": "visualization" + }, + { + "id": "16262df9-a979-4136-935e-d883c7d373d7", + "name": "51:panel_51", + "type": "visualization" + }, + { + "id": "63ef5338-fdf2-488e-b78a-f0e98daccc95", + "name": "52:panel_52", + "type": "visualization" + }, + { + "id": "2dca3025-692c-4876-8bcc-e0b248dc9819", + "name": "53:panel_53", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024.json new file mode 100644 index 000000000000..404037f7fca4 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024.json @@ -0,0 +1,174 @@ +{ + "attributes": { + "description": "Netflow geo location", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "globalState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "input.type", + "negate": false, + "params": { + "query": "netflow" + }, + "type": "phrase", + "value": "netflow" + }, + "query": { + "match": { + "input.type": { + "query": "netflow", + "type": "phrase" + } + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "mapCenter": [ + 20.632784250388028, + 16.69921875 + ], + "mapZoom": 2 + }, + "gridData": { + "h": 24, + "i": "16", + "w": 32, + "x": 16, + "y": 4 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "17", + "w": 16, + "x": 0, + "y": 4 + }, + "panelIndex": "17", + "panelRefName": "panel_17", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "18", + "w": 16, + "x": 0, + "y": 12 + }, + "panelIndex": "18", + "panelRefName": "panel_18", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "19", + "w": 16, + "x": 0, + "y": 20 + }, + "panelIndex": "19", + "panelRefName": "panel_19", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "20", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "20", + "panelRefName": "panel_20", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Netflow] Geo Location", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "77326664-23be-4bf1-a126-6d7e60cfc024", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "f4c8cb5a-7336-449e-ab99-6e867b435b85", + "name": "16:panel_16", + "type": "visualization" + }, + { + "id": "2316bb53-d98a-4f0f-8cd8-51e9fb317823", + "name": "17:panel_17", + "type": "visualization" + }, + { + "id": "aed09724-0a69-4331-84f5-3d2067c43930", + "name": "18:panel_18", + "type": "visualization" + }, + { + "id": "f531f957-e8c0-497a-ad41-ef39c2d29671", + "name": "19:panel_19", + "type": "visualization" + }, + { + "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", + "name": "20:panel_20", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:46.471Z", + "version": "WzQ4MTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/94972700-de4a-4272-9143-2fa8d4981365.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/94972700-de4a-4272-9143-2fa8d4981365.json new file mode 100644 index 000000000000..803ca5050800 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/94972700-de4a-4272-9143-2fa8d4981365.json @@ -0,0 +1,168 @@ +{ + "attributes": { + "description": "Netflow flow records", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "globalState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "input.type", + "negate": false, + "params": { + "query": "netflow" + }, + "type": "phrase", + "value": "netflow" + }, + "query": { + "match": { + "input.type": { + "query": "netflow", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "2", + "w": 36, + "x": 12, + "y": 4 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "gridData": { + "h": 8, + "i": "3", + "w": 12, + "x": 0, + "y": 4 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "4", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "columns": [ + "source.ip", + "source.port", + "destination.ip", + "destination.port", + "network.transport", + "network.bytes", + "network.packets" + ], + "enhancements": {}, + "sort": [ + "@timestamp", + "desc" + ] + }, + "gridData": { + "h": 16, + "i": "5", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "search", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Netflow] Flow records", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "94972700-de4a-4272-9143-2fa8d4981365", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "4bb0255e-18ed-45e4-bfb9-de8e35b12094", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "c27c6a3b-93ee-44d5-8d0c-9b097e575f52", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "a34c6611-79d8-4b50-ae3f-8b328d28e24a", + "name": "5:panel_5", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:45.451Z", + "version": "WzQ4MTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32.json new file mode 100644 index 000000000000..6226f7dc8046 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32.json @@ -0,0 +1,179 @@ +{ + "attributes": { + "description": "Netflow conversation partners", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "globalState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "input.type", + "negate": false, + "params": { + "query": "netflow" + }, + "type": "phrase", + "value": "netflow" + }, + "query": { + "match": { + "input.type": { + "query": "netflow", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "sort": { + "columnIndex": 2, + "direction": "desc" + } + } + } + }, + "gridData": { + "h": 20, + "i": "1", + "w": 48, + "x": 0, + "y": 12 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "2", + "w": 16, + "x": 32, + "y": 4 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "3", + "w": 16, + "x": 0, + "y": 4 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "4", + "w": 16, + "x": 16, + "y": 4 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "5", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Netflow] Conversation Partners", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "acd7a630-0c71-4840-bc9e-4a3801374a32", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "ebea013f-9b5b-4f61-a9c8-c62bebf62ae9", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "ae334aec-31fa-4df7-a064-40b18831d819", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "e822f94c-5f65-4963-a540-74ca9c25bd2d", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "c54f5529-e6d7-4c26-8e8e-3b35de132035", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", + "name": "5:panel_5", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:43.370Z", + "version": "WzQ3OTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a.json new file mode 100644 index 000000000000..dc6690da7282 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a.json @@ -0,0 +1,234 @@ +{ + "attributes": { + "description": "Autonomous systems Netflow", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "globalState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "input.type", + "negate": false, + "params": { + "query": "netflow" + }, + "type": "phrase", + "value": "netflow" + }, + "query": { + "match": { + "input.type": { + "query": "netflow", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "1", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "2", + "w": 24, + "x": 24, + "y": 12 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "3", + "w": 24, + "x": 24, + "y": 20 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "4", + "w": 24, + "x": 0, + "y": 12 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "5", + "w": 24, + "x": 0, + "y": 20 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "6", + "w": 16, + "x": 0, + "y": 4 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "7", + "w": 16, + "x": 16, + "y": 4 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "8", + "w": 16, + "x": 32, + "y": 4 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Netflow] Autonomous Systems", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "c64665f9-d222-421e-90b0-c7310d944b8a", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "12aad647-c45d-4667-a029-152c1a97cbbc", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "d27b5d74-b3b4-4311-a0e6-08ff8f4345df", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "751ecb6f-11c3-458d-b039-f6d57a6379fa", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "f75063c7-48b7-4de4-b8cb-d07eb2cea0e9", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "f7808e70-df2a-4532-a350-966704567c24", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "aed09724-0a69-4331-84f5-3d2067c43930", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "f531f957-e8c0-497a-ad41-ef39c2d29671", + "name": "8:panel_8", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:42.347Z", + "version": "WzQ3ODYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425.json new file mode 100644 index 000000000000..d9cb6d332492 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425.json @@ -0,0 +1,234 @@ +{ + "attributes": { + "description": "Netflow exporters", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "globalState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "input.type", + "negate": false, + "params": { + "query": "netflow" + }, + "type": "phrase", + "value": "netflow" + }, + "query": { + "match": { + "input.type": { + "query": "netflow", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "1", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "2", + "w": 16, + "x": 0, + "y": 4 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "3", + "w": 16, + "x": 16, + "y": 4 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "4", + "w": 16, + "x": 32, + "y": 4 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "5", + "w": 24, + "x": 24, + "y": 12 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "6", + "w": 24, + "x": 24, + "y": 20 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "8", + "w": 24, + "x": 0, + "y": 20 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "10", + "w": 24, + "x": 0, + "y": 12 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Netflow] Flow Exporters", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "feebb4e6-b13e-4e4e-b9fc-d3a178276425", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "441c6c50-fa1a-489c-96c6-76f7925dea24", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "14c7136d-b4aa-4367-9461-52bf8b5c4796", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "4ac97841-c89f-4d50-b3c6-6253f7e1dd1a", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "85ebf558-402b-45d2-a186-e15f8673ec07", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "f86a7769-8ef6-408d-bbe3-985d0ea0a3f7", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "1cd36f5d-d9c7-4098-acdb-14d312ecfb72", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "d3df8d28-65f8-4ea1-8b33-f479380a0600", + "name": "10:panel_10", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:44.454Z", + "version": "WzQ4MDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-autonomous-systems.ndjson b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-autonomous-systems.ndjson deleted file mode 100644 index b405ecc83b91..000000000000 --- a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-autonomous-systems.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Dashboard Navigation [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\\n***\"},\"title\":\"Dashboard Navigation [Filebeat Netflow]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Destination Autonomous Systems (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"destination.as.organization.name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.as.organization.name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Destination Autonomous Systems (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"12aad647-c45d-4667-a029-152c1a97cbbc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:42.347Z","version":"WzQ3ODgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Destination Autonomous Systems (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"destination.as.organization.name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.as.organization.name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Destination Autonomous Systems (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"d27b5d74-b3b4-4311-a0e6-08ff8f4345df","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:42.347Z","version":"WzQ3ODksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Source Autonomous Systems (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"source.as.organization.name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* source.as.organization.name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Source Autonomous Systems (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"751ecb6f-11c3-458d-b039-f6d57a6379fa","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:42.347Z","version":"WzQ3OTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Source Autonomous Systems (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"source.as.organization.name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* source.as.organization.name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Source Autonomous Systems (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"f75063c7-48b7-4de4-b8cb-d07eb2cea0e9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:42.347Z","version":"WzQ3OTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destination and Source ASs (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination AS\",\"field\":\"destination.as.organization.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source AS\",\"field\":\"source.as.organization.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destination and Source ASs (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"f7808e70-df2a-4532-a350-966704567c24","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:42.347Z","version":"WzQ3OTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destinations and Sources (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destinations and Sources (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"aed09724-0a69-4331-84f5-3d2067c43930","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:46.471Z","version":"WzQ4MTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destination and Source Ports (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Port\",\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source Port\",\"field\":\"source.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destination and Source Ports (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"f531f957-e8c0-497a-ad41-ef39c2d29671","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:46.471Z","version":"WzQ4MTksMV0="} -{"attributes":{"description":"Autonomous systems Netflow","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"globalState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"input.type\",\"negate\":false,\"params\":{\"query\":\"netflow\"},\"type\":\"phrase\",\"value\":\"netflow\"},\"query\":{\"match\":{\"input.type\":{\"query\":\"netflow\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"\",\"language\":\"kuery\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":12,\"w\":24,\"h\":8,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":20,\"w\":24,\"h\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":24,\"h\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":24,\"h\":8,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":16,\"h\":8,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":4,\"w\":16,\"h\":8,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":4,\"w\":16,\"h\":8,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"}]","timeRestore":false,"title":"[Filebeat Netflow] Autonomous Systems","version":1},"coreMigrationVersion":"8.0.0","id":"c64665f9-d222-421e-90b0-c7310d944b8a","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","name":"1:panel_1","type":"visualization"},{"id":"12aad647-c45d-4667-a029-152c1a97cbbc","name":"2:panel_2","type":"visualization"},{"id":"d27b5d74-b3b4-4311-a0e6-08ff8f4345df","name":"3:panel_3","type":"visualization"},{"id":"751ecb6f-11c3-458d-b039-f6d57a6379fa","name":"4:panel_4","type":"visualization"},{"id":"f75063c7-48b7-4de4-b8cb-d07eb2cea0e9","name":"5:panel_5","type":"visualization"},{"id":"f7808e70-df2a-4532-a350-966704567c24","name":"6:panel_6","type":"visualization"},{"id":"aed09724-0a69-4331-84f5-3d2067c43930","name":"7:panel_7","type":"visualization"},{"id":"f531f957-e8c0-497a-ad41-ef39c2d29671","name":"8:panel_8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:42.347Z","version":"WzQ3ODYsMV0="} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-conversation-partners.ndjson b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-conversation-partners.ndjson deleted file mode 100644 index a6169765e9e7..000000000000 --- a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-conversation-partners.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Conversation Partners [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 2, \"direction\": \"desc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":2,\"direction\":\"desc\"},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Conversation Partners [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"ebea013f-9b5b-4f61-a9c8-c62bebf62ae9","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:43.370Z","version":"WzQ3OTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}}"},"title":"IP Version and Protocols (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"IP Version\",\"field\":\"network.type\",\"missingBucket\":true,\"missingBucketLabel\":\"unset ip version\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Protocol\",\"field\":\"network.transport\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"sum\",\"format\":{\"id\":\"bytes\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"IP Version and Protocols (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"ae334aec-31fa-4df7-a064-40b18831d819","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destinations and Sources (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destinations and Sources (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"e822f94c-5f65-4963-a540-74ca9c25bd2d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:43.370Z","version":"WzQ3OTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destination and Source Ports (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Port\",\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source Port\",\"field\":\"source.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destination and Source Ports (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"c54f5529-e6d7-4c26-8e8e-3b35de132035","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:43.370Z","version":"WzQ3OTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Dashboard Navigation [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\\n***\"},\"title\":\"Dashboard Navigation [Filebeat Netflow]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDcsMV0="} -{"attributes":{"description":"Netflow conversation partners","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"globalState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"input.type\",\"negate\":false,\"params\":{\"query\":\"netflow\"},\"type\":\"phrase\",\"value\":\"netflow\"},\"query\":{\"match\":{\"input.type\":{\"query\":\"netflow\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"\",\"language\":\"kuery\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":20,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":2,\"direction\":\"desc\"}}},\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":4,\"w\":16,\"h\":8,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":16,\"h\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":4,\"w\":16,\"h\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Filebeat Netflow] Conversation Partners","version":1},"coreMigrationVersion":"8.0.0","id":"acd7a630-0c71-4840-bc9e-4a3801374a32","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"ebea013f-9b5b-4f61-a9c8-c62bebf62ae9","name":"1:panel_1","type":"visualization"},{"id":"ae334aec-31fa-4df7-a064-40b18831d819","name":"2:panel_2","type":"visualization"},{"id":"e822f94c-5f65-4963-a540-74ca9c25bd2d","name":"3:panel_3","type":"visualization"},{"id":"c54f5529-e6d7-4c26-8e8e-3b35de132035","name":"4:panel_4","type":"visualization"},{"id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:43.370Z","version":"WzQ3OTUsMV0="} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-exporters.ndjson b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-exporters.ndjson deleted file mode 100644 index ced7af755cfc..000000000000 --- a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-exporters.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Dashboard Navigation [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\\n***\"},\"title\":\"Dashboard Navigation [Filebeat Netflow]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Flow Exporters (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Flow Exporter\",\"field\":\"agent.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Flow Exporters (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"441c6c50-fa1a-489c-96c6-76f7925dea24","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:44.454Z","version":"WzQ4MDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Ingress Interfaces (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Ingress Interface\",\"field\":\"netflow.ingress_interface\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Ingress Interfaces (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"14c7136d-b4aa-4367-9461-52bf8b5c4796","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:44.454Z","version":"WzQ4MDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Egress Interfaces (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Egress Interface\",\"field\":\"netflow.egress_interface\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Egress Interfaces (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"4ac97841-c89f-4d50-b3c6-6253f7e1dd1a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:44.454Z","version":"WzQ4MDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Egress Interfaces (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"netflow.egress_interface:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.egress_interface:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Egress Interfaces (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"85ebf558-402b-45d2-a186-e15f8673ec07","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:44.454Z","version":"WzQ4MDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Egress Interfaces (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"netflow.egress_interface:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.egress_interface:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Egress Interfaces (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"f86a7769-8ef6-408d-bbe3-985d0ea0a3f7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:44.454Z","version":"WzQ4MDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Ingress Interfaces (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"netflow.ingress_interface:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.ingress_interface:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Ingress Interfaces (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"1cd36f5d-d9c7-4098-acdb-14d312ecfb72","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:44.454Z","version":"WzQ4MDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Ingress Interfaces (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"netflow.ingress_interface:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.ingress_interface:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Ingress Interfaces (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"d3df8d28-65f8-4ea1-8b33-f479380a0600","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:44.454Z","version":"WzQ4MDksMV0="} -{"attributes":{"description":"Netflow exporters","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"globalState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"input.type\",\"negate\":false,\"params\":{\"query\":\"netflow\"},\"type\":\"phrase\",\"value\":\"netflow\"},\"query\":{\"match\":{\"input.type\":{\"query\":\"netflow\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"\",\"language\":\"kuery\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":16,\"h\":8,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":4,\"w\":16,\"h\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":4,\"w\":16,\"h\":8,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":12,\"w\":24,\"h\":8,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":20,\"w\":24,\"h\":8,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":24,\"h\":8,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":24,\"h\":8,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"}]","timeRestore":false,"title":"[Filebeat Netflow] Flow Exporters","version":1},"coreMigrationVersion":"8.0.0","id":"feebb4e6-b13e-4e4e-b9fc-d3a178276425","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","name":"1:panel_1","type":"visualization"},{"id":"441c6c50-fa1a-489c-96c6-76f7925dea24","name":"2:panel_2","type":"visualization"},{"id":"14c7136d-b4aa-4367-9461-52bf8b5c4796","name":"3:panel_3","type":"visualization"},{"id":"4ac97841-c89f-4d50-b3c6-6253f7e1dd1a","name":"4:panel_4","type":"visualization"},{"id":"85ebf558-402b-45d2-a186-e15f8673ec07","name":"5:panel_5","type":"visualization"},{"id":"f86a7769-8ef6-408d-bbe3-985d0ea0a3f7","name":"6:panel_6","type":"visualization"},{"id":"1cd36f5d-d9c7-4098-acdb-14d312ecfb72","name":"8:panel_8","type":"visualization"},{"id":"d3df8d28-65f8-4ea1-8b33-f479380a0600","name":"10:panel_10","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:44.454Z","version":"WzQ4MDEsMV0="} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-records.ndjson b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-records.ndjson deleted file mode 100644 index 3de7f79f5ba5..000000000000 --- a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-flow-records.ndjson +++ /dev/null @@ -1,5 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Flow Records [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Timeline\",\"extended_bounds\":{},\"field\":\"event.end\",\"interval\":\"s\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Version\",\"field\":\"netflow.exporter.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"defaultYExtents\":false,\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"mode\":\"stacked\",\"scale\":\"linear\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Flow Records\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"setYExtents\":false,\"times\":[],\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}]},\"title\":\"Flow Records [Filebeat Netflow]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"4bb0255e-18ed-45e4-bfb9-de8e35b12094","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:45.451Z","version":"WzQ4MTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Flow Records [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Flow Records [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"c27c6a3b-93ee-44d5-8d0c-9b097e575f52","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:45.451Z","version":"WzQ4MTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Dashboard Navigation [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\\n***\"},\"title\":\"Dashboard Navigation [Filebeat Netflow]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDcsMV0="} -{"attributes":{"columns":["source.ip","source.port","destination.ip","destination.port","network.transport","network.bytes","network.packets"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Flow Records [Filebeat Netflow]","version":1},"coreMigrationVersion":"8.0.0","id":"a34c6611-79d8-4b50-ae3f-8b328d28e24a","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:45.451Z","version":"WzQ4MTQsMV0="} -{"attributes":{"description":"Netflow flow records","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"globalState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"input.type\",\"negate\":false,\"params\":{\"query\":\"netflow\"},\"type\":\"phrase\",\"value\":\"netflow\"},\"query\":{\"match\":{\"input.type\":{\"query\":\"netflow\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"\",\"language\":\"kuery\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":12,\"y\":4,\"w\":36,\"h\":8,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":12,\"h\":8,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"search\",\"gridData\":{\"x\":0,\"y\":12,\"w\":48,\"h\":16,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"columns\":[\"source.ip\",\"source.port\",\"destination.ip\",\"destination.port\",\"network.transport\",\"network.bytes\",\"network.packets\"],\"sort\":[\"@timestamp\",\"desc\"],\"enhancements\":{}},\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Filebeat Netflow] Flow records","version":1},"coreMigrationVersion":"8.0.0","id":"94972700-de4a-4272-9143-2fa8d4981365","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"4bb0255e-18ed-45e4-bfb9-de8e35b12094","name":"2:panel_2","type":"visualization"},{"id":"c27c6a3b-93ee-44d5-8d0c-9b097e575f52","name":"3:panel_3","type":"visualization"},{"id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","name":"4:panel_4","type":"visualization"},{"id":"a34c6611-79d8-4b50-ae3f-8b328d28e24a","name":"5:panel_5","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:34:45.451Z","version":"WzQ4MTAsMV0="} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-geo-location.ndjson b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-geo-location.ndjson deleted file mode 100644 index 9a2a0a099aa0..000000000000 --- a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-geo-location.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destination Geo Location Heatmap [Filebeat Netflow]","uiStateJSON":"{\"mapCenter\": [8.407168163601076, 9.4921875]}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"customLabel\":\"Location\",\"field\":\"destination.geo.location\",\"precision\":2},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"listeners\":{},\"params\":{\"addTooltip\":true,\"heatBlur\":\"16\",\"heatMaxZoom\":16,\"heatMinOpacity\":\"0.32\",\"heatNormalizeData\":true,\"heatRadius\":\"24\",\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[15,5],\"mapType\":\"Heatmap\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"attribution\":\"Maps provided by USGS\",\"format\":\"image/png\",\"layers\":\"0\",\"styles\":\"\",\"transparent\":true,\"version\":\"1.3.0\"},\"url\":\"https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer\"}},\"title\":\"Destination Geo Location Heatmap [Filebeat Netflow]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"f4c8cb5a-7336-449e-ab99-6e867b435b85","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:46.471Z","version":"WzQ4MTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Countries and Cities (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Country\",\"field\":\"destination.geo.country_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"City\",\"field\":\"destination.geo.city_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Countries and Cities (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"2316bb53-d98a-4f0f-8cd8-51e9fb317823","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:46.471Z","version":"WzQ4MTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destinations and Sources (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destinations and Sources (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"aed09724-0a69-4331-84f5-3d2067c43930","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:46.471Z","version":"WzQ4MTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destination and Source Ports (flow records) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Port\",\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Source Port\",\"field\":\"source.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destination and Source Ports (flow records) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"f531f957-e8c0-497a-ad41-ef39c2d29671","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:46.471Z","version":"WzQ4MTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Dashboard Navigation [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\\n***\"},\"title\":\"Dashboard Navigation [Filebeat Netflow]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDcsMV0="} -{"attributes":{"description":"Netflow geo location","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"globalState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"input.type\",\"negate\":false,\"params\":{\"query\":\"netflow\"},\"type\":\"phrase\",\"value\":\"netflow\"},\"query\":{\"match\":{\"input.type\":{\"query\":\"netflow\",\"type\":\"phrase\"}}}}],\"query\":{\"query\":\"\",\"language\":\"kuery\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":4,\"w\":32,\"h\":24,\"i\":\"16\"},\"panelIndex\":\"16\",\"embeddableConfig\":{\"mapCenter\":[20.632784250388028,16.69921875],\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":16,\"h\":8,\"i\":\"17\"},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":16,\"h\":8,\"i\":\"18\"},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":16,\"h\":8,\"i\":\"19\"},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"20\"},\"panelIndex\":\"20\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_20\"}]","timeRestore":false,"title":"[Filebeat Netflow] Geo Location","version":1},"coreMigrationVersion":"8.0.0","id":"77326664-23be-4bf1-a126-6d7e60cfc024","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"f4c8cb5a-7336-449e-ab99-6e867b435b85","name":"16:panel_16","type":"visualization"},{"id":"2316bb53-d98a-4f0f-8cd8-51e9fb317823","name":"17:panel_17","type":"visualization"},{"id":"aed09724-0a69-4331-84f5-3d2067c43930","name":"18:panel_18","type":"visualization"},{"id":"f531f957-e8c0-497a-ad41-ef39c2d29671","name":"19:panel_19","type":"visualization"},{"id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","name":"20:panel_20","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:46.471Z","version":"WzQ4MTUsMV0="} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-overview.ndjson b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-overview.ndjson deleted file mode 100644 index be0fea87ae09..000000000000 --- a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-overview.ndjson +++ /dev/null @@ -1,14 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}}"},"title":"IP Version and Protocols (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"IP Version\",\"field\":\"network.type\",\"missingBucket\":true,\"missingBucketLabel\":\"unset ip version\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Protocol\",\"field\":\"network.transport\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"sum\",\"format\":{\"id\":\"bytes\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"IP Version and Protocols (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"ae334aec-31fa-4df7-a064-40b18831d819","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destinations and Ports (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Port\",\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destinations and Ports (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"67fdca65-a9df-47f0-a8a4-1e8b056325de","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Sources and Ports (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Port\",\"field\":\"source.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Sources and Ports (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"1558508d-591c-49be-bef4-85fdac18a960","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Types of Service (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Type of Service\",\"field\":\"netflow.ip_class_of_service\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Types of Service (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"1cf30eac-aae8-47fa-a156-37f6346d2d5a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Dashboard Navigation [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\\n***\"},\"title\":\"Dashboard Navigation [Filebeat Netflow]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"VLANs (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"VLAN\",\"field\":\"netflow.vlan_id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"VLANs (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7fa6cb0a-518d-46e9-a228-15cd4253a957","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Autonomous Systems (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Autonomous System\",\"field\":\"destination.as.organization.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Autonomous Systems (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"f772028b-d5a6-4d55-b441-493871981a60","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"TCP Flags (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"TCP Flags\",\"field\":\"netflow.tcp_control_bits\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":255},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"TCP Flags (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"57e13a20-e94f-4465-a942-42148634a1d2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Locality (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Locality\",\"field\":\"flow.locality\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Locality (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"b02c2713-17f0-41dd-88a3-ce33b446f19d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Countries and Cities (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Country\",\"field\":\"destination.geo.country_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"City\",\"field\":\"destination.geo.city_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Countries and Cities (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"5ccac452-e90a-4dde-ae9b-1be36ce3f761","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Flow Exporters (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Flow Exporter\",\"field\":\"agent.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Flow Exporters (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"31708a70-4957-4a8a-8065-5c88a344ad02","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Direction (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Direction\",\"field\":\"network.direction\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Direction (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"b677cd82-b33e-49b3-8b6e-0e110177b163","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Version (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Version\",\"field\":\"netflow.exporter.version\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Version (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"3dec20c0-0d4f-43ef-8864-3779e1a1b33f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MzQsMV0="} -{"attributes":{"description":"Overview of Netflow","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"globalState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"input.type\",\"negate\":false,\"params\":{\"query\":\"netflow\"},\"type\":\"phrase\",\"value\":\"netflow\"},\"query\":{\"match\":{\"input.type\":{\"query\":\"netflow\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"\",\"language\":\"kuery\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":16,\"h\":8,\"i\":\"12\"},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":4,\"w\":16,\"h\":8,\"i\":\"13\"},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":4,\"w\":16,\"h\":8,\"i\":\"14\"},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":12,\"w\":16,\"h\":8,\"i\":\"15\"},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"17\"},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":12,\"w\":16,\"h\":8,\"i\":\"21\"},\"panelIndex\":\"21\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_21\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":20,\"w\":16,\"h\":8,\"i\":\"22\"},\"panelIndex\":\"22\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_22\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":16,\"h\":8,\"i\":\"23\"},\"panelIndex\":\"23\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_23\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":16,\"h\":8,\"i\":\"24\"},\"panelIndex\":\"24\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_24\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":20,\"w\":16,\"h\":8,\"i\":\"25\"},\"panelIndex\":\"25\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_25\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":16,\"h\":8,\"i\":\"26\"},\"panelIndex\":\"26\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_26\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":28,\"w\":16,\"h\":8,\"i\":\"27\"},\"panelIndex\":\"27\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_27\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":32,\"y\":28,\"w\":16,\"h\":8,\"i\":\"29\"},\"panelIndex\":\"29\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_29\"}]","timeRestore":false,"title":"[Filebeat Netflow] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"34e26884-161a-4448-9556-43b5bf2f62a2","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"ae334aec-31fa-4df7-a064-40b18831d819","name":"12:panel_12","type":"visualization"},{"id":"67fdca65-a9df-47f0-a8a4-1e8b056325de","name":"13:panel_13","type":"visualization"},{"id":"1558508d-591c-49be-bef4-85fdac18a960","name":"14:panel_14","type":"visualization"},{"id":"1cf30eac-aae8-47fa-a156-37f6346d2d5a","name":"15:panel_15","type":"visualization"},{"id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","name":"17:panel_17","type":"visualization"},{"id":"7fa6cb0a-518d-46e9-a228-15cd4253a957","name":"21:panel_21","type":"visualization"},{"id":"f772028b-d5a6-4d55-b441-493871981a60","name":"22:panel_22","type":"visualization"},{"id":"57e13a20-e94f-4465-a942-42148634a1d2","name":"23:panel_23","type":"visualization"},{"id":"b02c2713-17f0-41dd-88a3-ce33b446f19d","name":"24:panel_24","type":"visualization"},{"id":"5ccac452-e90a-4dde-ae9b-1be36ce3f761","name":"25:panel_25","type":"visualization"},{"id":"31708a70-4957-4a8a-8065-5c88a344ad02","name":"26:panel_26","type":"visualization"},{"id":"b677cd82-b33e-49b3-8b6e-0e110177b163","name":"27:panel_27","type":"visualization"},{"id":"3dec20c0-0d4f-43ef-8864-3779e1a1b33f","name":"29:panel_29","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:47.530Z","version":"WzQ4MjEsMV0="} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-top-n.ndjson b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-top-n.ndjson deleted file mode 100644 index bfdd7c29b8b0..000000000000 --- a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-top-n.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Dashboard Navigation [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\\n***\"},\"title\":\"Dashboard Navigation [Filebeat Netflow]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Top Sources [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Sources [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"15295ea6-ba84-47db-8ced-9312abbf495c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4MzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Top Destinations [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.ip\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Destinations [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"5303e99b-389c-47b7-ae7a-945c5a92ba49","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4MzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Top Source Ports [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.port\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Source Ports [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"e9ad835b-b2f2-42d3-a3e7-555a593deacf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4MzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Top Destination Ports [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Destination Ports [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"31b5f6fd-eb9d-4e97-90fd-367062ef217f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4NDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Top Protocols [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Protocol\",\"field\":\"network.transport\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Protocols [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"2b3d4e86-2254-4033-8fe3-ce4753fafd03","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4NDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Top Autonomous Systems [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Autonomous System\",\"field\":\"destination.as.organization.name\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Autonomous Systems [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"036aef95-ec90-468d-ad7c-3cc4405e9e81","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4NDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Top Cities [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 2, \"direction\": \"desc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Country\",\"field\":\"destination.geo.country_name\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"City\",\"field\":\"destination.geo.city_name\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":true,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Cities [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"5292a65b-c532-422a-9008-1251a8073a3a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4NDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Top Flow Exporters [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Packets\",\"field\":\"network.packets\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Flow Records\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Flow Exporter\",\"field\":\"agent.name\",\"order\":\"desc\",\"orderBy\":\"2\",\"size\":500},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":true,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Flow Exporters [Filebeat Netflow]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"cccff92f-cb71-49a9-9caf-84867751d31e","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4NDQsMV0="} -{"attributes":{"description":"Netflow Top N flows","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"globalState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"input.type\",\"negate\":false,\"params\":{\"query\":\"netflow\"},\"type\":\"phrase\",\"value\":\"netflow\"},\"query\":{\"match\":{\"input.type\":{\"query\":\"netflow\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"\",\"language\":\"kuery\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":24,\"h\":20,\"i\":\"2\"},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":4,\"w\":24,\"h\":20,\"i\":\"3\"},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":24,\"w\":24,\"h\":20,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":24,\"w\":24,\"h\":20,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":44,\"w\":24,\"h\":20,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":44,\"w\":24,\"h\":20,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":64,\"w\":24,\"h\":20,\"i\":\"8\"},\"panelIndex\":\"8\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":2,\"direction\":\"desc\"}}},\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":64,\"w\":24,\"h\":20,\"i\":\"9\"},\"panelIndex\":\"9\",\"embeddableConfig\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}},\"enhancements\":{}},\"panelRefName\":\"panel_9\"}]","timeRestore":false,"title":"[Filebeat Netflow] Top-N","version":1},"coreMigrationVersion":"8.0.0","id":"14387a13-53bc-43a4-b9cd-63977aa8d87c","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","name":"1:panel_1","type":"visualization"},{"id":"15295ea6-ba84-47db-8ced-9312abbf495c","name":"2:panel_2","type":"visualization"},{"id":"5303e99b-389c-47b7-ae7a-945c5a92ba49","name":"3:panel_3","type":"visualization"},{"id":"e9ad835b-b2f2-42d3-a3e7-555a593deacf","name":"4:panel_4","type":"visualization"},{"id":"31b5f6fd-eb9d-4e97-90fd-367062ef217f","name":"5:panel_5","type":"visualization"},{"id":"2b3d4e86-2254-4033-8fe3-ce4753fafd03","name":"6:panel_6","type":"visualization"},{"id":"036aef95-ec90-468d-ad7c-3cc4405e9e81","name":"7:panel_7","type":"visualization"},{"id":"5292a65b-c532-422a-9008-1251a8073a3a","name":"8:panel_8","type":"visualization"},{"id":"cccff92f-cb71-49a9-9caf-84867751d31e","name":"9:panel_9","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:48.527Z","version":"WzQ4MzUsMV0="} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-traffic-analysis.ndjson b/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-traffic-analysis.ndjson deleted file mode 100644 index 3b08f8de185c..000000000000 --- a/x-pack/filebeat/module/netflow/_meta/kibana/7/dashboard/filebeat-netflow-traffic-analysis.ndjson +++ /dev/null @@ -1,42 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Autonomous Systems (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"destination.as.organization.name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.as.organization.name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Autonomous Systems (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"abfa0b19-60cd-4984-9c3d-02ebf0aa1dfb","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Dashboard Navigation [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"markdown\":\"[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\\n***\"},\"title\":\"Dashboard Navigation [Filebeat Netflow]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Cities (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"destination.geo.city_name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.geo.city_name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Cities (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"1e74d5cb-556d-42ee-8042-88f6c1af47f0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Countries (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"destination.geo.country_name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.geo.country_name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Countries (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"5cfb2c9a-4815-4a25-9d7e-ab0ef55ffe63","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Destination Ports (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"destination.port:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.port:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Destination Ports (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"3e27fb83-b3e3-4c15-b999-ed6da49b7a86","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"TCP Flags (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"netflow.tcp_control_bits:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.tcp_control_bits:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"TCP Flags (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"5d868836-c7b2-4812-bf47-4838aac281d9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"VLANs (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"netflow.vlan_id:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.vlan_id:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"VLANs (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"a5efa3dd-f53a-4d14-9d3f-ee73345fd93d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Types of Service (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"netflow.ip_class_of_service:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.ip_class_of_service:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Types of Service (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"717cd7c7-bfca-435d-8ee7-38259927aade","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Source Ports (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"source.port:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* source.port:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Source Ports (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"f668ecdb-eec7-44c6-9060-26aaf9fc8404","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Sources (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"source.ip:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* source.ip:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Sources (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"6bbd6712-494a-4fd9-b3d3-757304681f0f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Destinations (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.bytes\\\", split=\\\"destination.ip:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.ip:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"bytes / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Destinations (bytes) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"681f0ce4-d828-4a99-b643-0c0715530050","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Sources (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source\",\"field\":\"source.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Sources (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"fd6c1144-5026-4795-b7af-a9aa3fc28c56","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Source Ports (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Port\",\"field\":\"source.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Source Ports (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0b2818fd-aecc-4bef-b566-9466eb702ae4","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destinations (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination\",\"field\":\"destination.ip\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destinations (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"248e00b4-8fc2-406f-8907-729d5380aaa7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destination Ports (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Destination Port\",\"field\":\"destination.port\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Destination Ports (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"cf399a85-e348-4ac1-a399-e8f5a44114c4","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Types of Service (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Type of Service\",\"field\":\"netflow.ip_class_of_service\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Types of Service (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"1cf30eac-aae8-47fa-a156-37f6346d2d5a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"VLANs (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"VLAN\",\"field\":\"netflow.vlan_id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"VLANs (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7fa6cb0a-518d-46e9-a228-15cd4253a957","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"TCP Flags (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"TCP Flags\",\"field\":\"netflow.tcp_control_bits\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":255},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"TCP Flags (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"57e13a20-e94f-4465-a942-42148634a1d2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Autonomous Systems (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Autonomous System\",\"field\":\"destination.as.organization.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Autonomous Systems (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"f772028b-d5a6-4d55-b441-493871981a60","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Countries (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Country\",\"field\":\"destination.geo.country_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Countries (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"a14c3248-952d-42aa-bd7d-9b39157a776f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Cities (bytes) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Bytes\",\"field\":\"network.bytes\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"City\",\"field\":\"destination.geo.city_name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":50},\"schema\":\"segment\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"right\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Cities (bytes) [Filebeat Netflow]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"a685420e-c45f-4b62-932b-5b76ac8b8ca2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Sources (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"source.ip:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* source.ip:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Sources (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"0528bc66-6981-400a-a02d-c1d221b38890","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destination Count [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Destinations\",\"field\":\"destination.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"fontSize\":\"32\",\"handleNoResults\":true},\"title\":\"Destination Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"e99dc327-03de-4561-9e0c-f550710125c2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Source Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Sources\",\"field\":\"source.ip\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Source Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"32e712ed-fa15-4db7-8575-8476e8d65b03","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Destinations (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"destination.ip:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.ip:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Destinations (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"d59a031c-70d6-47d7-966d-7fcb805be9be","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Destination Port Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Destination Ports\",\"field\":\"destination.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Destination Port Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"af707b01-29f1-462b-b279-6d2e803f3645","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Source Port Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Source Ports\",\"field\":\"source.port\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Source Port Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"ddd27657-c3c8-4f82-8059-6d7763dd599b","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Autonomous Systems (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"destination.as.organization.name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.as.organization.name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Autonomous Systems (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"30cd1009-2925-4c9b-820d-d689f5d1efda","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Cities (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"destination.geo.city_name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.geo.city_name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Cities (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"7d447b22-89dc-4f32-b549-4b8620af4d76","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Countries (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"destination.geo.country_name:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.geo.country_name:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Countries (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"d41a9663-e5ad-47a7-955e-3803ae4e23c0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Destination Ports (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"destination.port:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* destination.port:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Destination Ports (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"3a4209e2-281c-467e-b5cb-315bf4a2661f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Source Ports (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"source.port:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* source.port:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Source Ports (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"201d7dd1-a880-4a64-b631-db5629340db9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"TCP Flags (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"netflow.tcp_control_bits:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.tcp_control_bits:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"TCP Flags (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"8f83cf97-4a48-421f-8db5-690297d1f4fb","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"Types of Service (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"netflow.ip_class_of_service:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.ip_class_of_service:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"Types of Service (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"a1704d46-15fc-41c2-851d-796ceb49877f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"query_string\": {\"query\": \"*\"}}}"},"title":"VLANs (packets) [Filebeat Netflow]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"listeners\":{},\"params\":{\"expression\":\".es(index=\\\"filebeat-*\\\", metric=\\\"sum:network.packets\\\", split=\\\"netflow.vlan_id:10\\\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\\\"lt\\\", if=0, then=0).trim(start=2,end=1).label(regex=\\\"^.* netflow.vlan_id:(.+) > .*$\\\", label=\\\"$1\\\").lines(width=1, stack=true, fill=1).yaxis(label=\\\"packets / sec\\\", min=0)\",\"interval\":\"auto\"},\"title\":\"VLANs (packets) [Filebeat Netflow]\",\"type\":\"timelion\"}"},"coreMigrationVersion":"8.0.0","id":"15e2a267-2495-4df2-a121-abe410d2f18c","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4ODAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"ToS Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Types of Service\",\"field\":\"netflow.ip_class_of_service\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"ToS Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"f27c1479-0625-4cdc-92de-672e47db0f87","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4ODEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"VLAN Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"VLANs\",\"field\":\"netflow.vlan_id\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"VLAN Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"0177bf1a-cba8-4ba6-a1d7-73caed86ffc2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4ODIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Autonomous System Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Autonomous Systems\",\"field\":\"destination.as.organization.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Autonomous System Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"d5568704-e30b-4108-bb49-06a9b8dce6a6","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4ODMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"City Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Cities\",\"field\":\"destination.geo.city_name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"City Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"16262df9-a979-4136-935e-d883c7d373d7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4ODQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"Country Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Countries\",\"field\":\"destination.geo.country_name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"Country Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"63ef5338-fdf2-488e-b78a-f0e98daccc95","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4ODUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"query_string\": {\"analyze_wildcard\": true, \"query\": \"*\"}}}"},"title":"TCP Flags Count [Filebeat Netflow]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"TCP Flag States\",\"field\":\"netflow.tcp_control_bits\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"listeners\":{},\"params\":{\"addLegend\":false,\"addTooltip\":true,\"fontSize\":\"32\",\"gauge\":{\"autoExtend\":false,\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":100}],\"gaugeColorMode\":\"None\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Metric\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"#333\",\"labels\":false,\"show\":false,\"width\":2},\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":\"36\",\"labelColor\":false,\"subText\":\"\"},\"type\":\"simple\",\"useRange\":false,\"verticalSplit\":false},\"handleNoResults\":true,\"type\":\"gauge\"},\"title\":\"TCP Flags Count [Filebeat Netflow]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"2dca3025-692c-4876-8bcc-e0b248dc9819","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4ODYsMV0="} -{"attributes":{"description":"Netflow traffic analysis","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[{\"$state\":{\"store\":\"globalState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"input.type\",\"negate\":false,\"params\":{\"query\":\"netflow\"},\"type\":\"phrase\",\"value\":\"netflow\"},\"query\":{\"match\":{\"input.type\":{\"query\":\"netflow\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"version\":true,\"query\":{\"query\":\"\",\"language\":\"kuery\"}}"},"optionsJSON":"{\"darkTheme\": false}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":84,\"w\":24,\"h\":8,\"i\":\"1\"},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":0,\"w\":48,\"h\":4,\"i\":\"4\"},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":108,\"w\":24,\"h\":8,\"i\":\"5\"},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":108,\"w\":24,\"h\":8,\"i\":\"6\"},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":36,\"w\":24,\"h\":8,\"i\":\"7\"},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":84,\"w\":24,\"h\":8,\"i\":\"9\"},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":60,\"w\":24,\"h\":8,\"i\":\"10\"},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":60,\"w\":24,\"h\":8,\"i\":\"11\"},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":36,\"w\":24,\"h\":8,\"i\":\"12\"},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":12,\"w\":24,\"h\":8,\"i\":\"13\"},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":12,\"w\":24,\"h\":8,\"i\":\"14\"},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":4,\"w\":16,\"h\":8,\"i\":\"15\"},\"panelIndex\":\"15\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":28,\"w\":16,\"h\":8,\"i\":\"16\"},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":4,\"w\":16,\"h\":8,\"i\":\"17\"},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":28,\"w\":16,\"h\":8,\"i\":\"18\"},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":52,\"w\":16,\"h\":8,\"i\":\"19\"},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":52,\"w\":16,\"h\":8,\"i\":\"20\"},\"panelIndex\":\"20\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_20\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":76,\"w\":16,\"h\":8,\"i\":\"21\"},\"panelIndex\":\"21\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_21\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":76,\"w\":16,\"h\":8,\"i\":\"22\"},\"panelIndex\":\"22\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_22\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":100,\"w\":16,\"h\":8,\"i\":\"23\"},\"panelIndex\":\"23\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_23\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":100,\"w\":16,\"h\":8,\"i\":\"24\"},\"panelIndex\":\"24\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_24\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":20,\"w\":24,\"h\":8,\"i\":\"25\"},\"panelIndex\":\"25\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_25\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":40,\"y\":4,\"w\":8,\"h\":8,\"i\":\"26\"},\"panelIndex\":\"26\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_26\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":4,\"w\":8,\"h\":8,\"i\":\"27\"},\"panelIndex\":\"27\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_27\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":20,\"w\":24,\"h\":8,\"i\":\"28\"},\"panelIndex\":\"28\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_28\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":40,\"y\":28,\"w\":8,\"h\":8,\"i\":\"29\"},\"panelIndex\":\"29\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_29\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":28,\"w\":8,\"h\":8,\"i\":\"30\"},\"panelIndex\":\"30\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_30\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":92,\"w\":24,\"h\":8,\"i\":\"31\"},\"panelIndex\":\"31\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_31\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":116,\"w\":24,\"h\":8,\"i\":\"34\"},\"panelIndex\":\"34\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_34\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":116,\"w\":24,\"h\":8,\"i\":\"35\"},\"panelIndex\":\"35\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_35\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":44,\"w\":24,\"h\":8,\"i\":\"38\"},\"panelIndex\":\"38\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_38\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":44,\"w\":24,\"h\":8,\"i\":\"42\"},\"panelIndex\":\"42\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_42\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":92,\"w\":24,\"h\":8,\"i\":\"44\"},\"panelIndex\":\"44\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_44\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":0,\"y\":68,\"w\":24,\"h\":8,\"i\":\"45\"},\"panelIndex\":\"45\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_45\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":24,\"y\":68,\"w\":24,\"h\":8,\"i\":\"47\"},\"panelIndex\":\"47\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_47\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":52,\"w\":8,\"h\":8,\"i\":\"48\"},\"panelIndex\":\"48\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_48\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":40,\"y\":52,\"w\":8,\"h\":8,\"i\":\"49\"},\"panelIndex\":\"49\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_49\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":40,\"y\":76,\"w\":8,\"h\":8,\"i\":\"50\"},\"panelIndex\":\"50\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_50\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":40,\"y\":100,\"w\":8,\"h\":8,\"i\":\"51\"},\"panelIndex\":\"51\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_51\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":100,\"w\":8,\"h\":8,\"i\":\"52\"},\"panelIndex\":\"52\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_52\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"x\":16,\"y\":76,\"w\":8,\"h\":8,\"i\":\"53\"},\"panelIndex\":\"53\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 100\":\"rgb(0,104,55)\"}},\"enhancements\":{}},\"panelRefName\":\"panel_53\"}]","timeRestore":false,"title":"[Filebeat Netflow] Traffic Analysis","version":1},"coreMigrationVersion":"8.0.0","id":"38012abe-c611-4124-8497-381fcd85acc8","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"abfa0b19-60cd-4984-9c3d-02ebf0aa1dfb","name":"1:panel_1","type":"visualization"},{"id":"d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3","name":"4:panel_4","type":"visualization"},{"id":"1e74d5cb-556d-42ee-8042-88f6c1af47f0","name":"5:panel_5","type":"visualization"},{"id":"5cfb2c9a-4815-4a25-9d7e-ab0ef55ffe63","name":"6:panel_6","type":"visualization"},{"id":"3e27fb83-b3e3-4c15-b999-ed6da49b7a86","name":"7:panel_7","type":"visualization"},{"id":"5d868836-c7b2-4812-bf47-4838aac281d9","name":"9:panel_9","type":"visualization"},{"id":"a5efa3dd-f53a-4d14-9d3f-ee73345fd93d","name":"10:panel_10","type":"visualization"},{"id":"717cd7c7-bfca-435d-8ee7-38259927aade","name":"11:panel_11","type":"visualization"},{"id":"f668ecdb-eec7-44c6-9060-26aaf9fc8404","name":"12:panel_12","type":"visualization"},{"id":"6bbd6712-494a-4fd9-b3d3-757304681f0f","name":"13:panel_13","type":"visualization"},{"id":"681f0ce4-d828-4a99-b643-0c0715530050","name":"14:panel_14","type":"visualization"},{"id":"fd6c1144-5026-4795-b7af-a9aa3fc28c56","name":"15:panel_15","type":"visualization"},{"id":"0b2818fd-aecc-4bef-b566-9466eb702ae4","name":"16:panel_16","type":"visualization"},{"id":"248e00b4-8fc2-406f-8907-729d5380aaa7","name":"17:panel_17","type":"visualization"},{"id":"cf399a85-e348-4ac1-a399-e8f5a44114c4","name":"18:panel_18","type":"visualization"},{"id":"1cf30eac-aae8-47fa-a156-37f6346d2d5a","name":"19:panel_19","type":"visualization"},{"id":"7fa6cb0a-518d-46e9-a228-15cd4253a957","name":"20:panel_20","type":"visualization"},{"id":"57e13a20-e94f-4465-a942-42148634a1d2","name":"21:panel_21","type":"visualization"},{"id":"f772028b-d5a6-4d55-b441-493871981a60","name":"22:panel_22","type":"visualization"},{"id":"a14c3248-952d-42aa-bd7d-9b39157a776f","name":"23:panel_23","type":"visualization"},{"id":"a685420e-c45f-4b62-932b-5b76ac8b8ca2","name":"24:panel_24","type":"visualization"},{"id":"0528bc66-6981-400a-a02d-c1d221b38890","name":"25:panel_25","type":"visualization"},{"id":"e99dc327-03de-4561-9e0c-f550710125c2","name":"26:panel_26","type":"visualization"},{"id":"32e712ed-fa15-4db7-8575-8476e8d65b03","name":"27:panel_27","type":"visualization"},{"id":"d59a031c-70d6-47d7-966d-7fcb805be9be","name":"28:panel_28","type":"visualization"},{"id":"af707b01-29f1-462b-b279-6d2e803f3645","name":"29:panel_29","type":"visualization"},{"id":"ddd27657-c3c8-4f82-8059-6d7763dd599b","name":"30:panel_30","type":"visualization"},{"id":"30cd1009-2925-4c9b-820d-d689f5d1efda","name":"31:panel_31","type":"visualization"},{"id":"7d447b22-89dc-4f32-b549-4b8620af4d76","name":"34:panel_34","type":"visualization"},{"id":"d41a9663-e5ad-47a7-955e-3803ae4e23c0","name":"35:panel_35","type":"visualization"},{"id":"3a4209e2-281c-467e-b5cb-315bf4a2661f","name":"38:panel_38","type":"visualization"},{"id":"201d7dd1-a880-4a64-b631-db5629340db9","name":"42:panel_42","type":"visualization"},{"id":"8f83cf97-4a48-421f-8db5-690297d1f4fb","name":"44:panel_44","type":"visualization"},{"id":"a1704d46-15fc-41c2-851d-796ceb49877f","name":"45:panel_45","type":"visualization"},{"id":"15e2a267-2495-4df2-a121-abe410d2f18c","name":"47:panel_47","type":"visualization"},{"id":"f27c1479-0625-4cdc-92de-672e47db0f87","name":"48:panel_48","type":"visualization"},{"id":"0177bf1a-cba8-4ba6-a1d7-73caed86ffc2","name":"49:panel_49","type":"visualization"},{"id":"d5568704-e30b-4108-bb49-06a9b8dce6a6","name":"50:panel_50","type":"visualization"},{"id":"16262df9-a979-4136-935e-d883c7d373d7","name":"51:panel_51","type":"visualization"},{"id":"63ef5338-fdf2-488e-b78a-f0e98daccc95","name":"52:panel_52","type":"visualization"},{"id":"2dca3025-692c-4876-8bcc-e0b248dc9819","name":"53:panel_53","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:49.565Z","version":"WzQ4NDUsMV0="} diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/search/a34c6611-79d8-4b50-ae3f-8b328d28e24a.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/search/a34c6611-79d8-4b50-ae3f-8b328d28e24a.json new file mode 100644 index 000000000000..6c169a16a387 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/search/a34c6611-79d8-4b50-ae3f-8b328d28e24a.json @@ -0,0 +1,52 @@ +{ + "attributes": { + "columns": [ + "source.ip", + "source.port", + "destination.ip", + "destination.port", + "network.transport", + "network.bytes", + "network.packets" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Flow Records [Filebeat Netflow]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "a34c6611-79d8-4b50-ae3f-8b328d28e24a", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:45.451Z", + "version": "WzQ4MTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/0177bf1a-cba8-4ba6-a1d7-73caed86ffc2.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/0177bf1a-cba8-4ba6-a1d7-73caed86ffc2.json new file mode 100644 index 000000000000..9d3f36292a2a --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/0177bf1a-cba8-4ba6-a1d7-73caed86ffc2.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "VLAN Count [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "VLANs", + "field": "netflow.vlan_id" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "fontSize": "32", + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "36", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "handleNoResults": true, + "type": "gauge" + }, + "title": "VLAN Count [Filebeat Netflow]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0177bf1a-cba8-4ba6-a1d7-73caed86ffc2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4ODIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/036aef95-ec90-468d-ad7c-3cc4405e9e81.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/036aef95-ec90-468d-ad7c-3cc4405e9e81.json new file mode 100644 index 000000000000..f9158bec6a76 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/036aef95-ec90-468d-ad7c-3cc4405e9e81.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Top Autonomous Systems [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Packets", + "field": "network.packets" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Flow Records" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Autonomous System", + "field": "destination.as.organization.name", + "order": "desc", + "orderBy": "2", + "size": 500 + }, + "schema": "bucket", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": true, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top Autonomous Systems [Filebeat Netflow]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "036aef95-ec90-468d-ad7c-3cc4405e9e81", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:48.527Z", + "version": "WzQ4NDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/0528bc66-6981-400a-a02d-c1d221b38890.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/0528bc66-6981-400a-a02d-c1d221b38890.json new file mode 100644 index 000000000000..de1b85c16485 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/0528bc66-6981-400a-a02d-c1d221b38890.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Sources (packets) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"source.ip:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* source.ip:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", + "interval": "auto" + }, + "title": "Sources (packets) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0528bc66-6981-400a-a02d-c1d221b38890", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/0b2818fd-aecc-4bef-b566-9466eb702ae4.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/0b2818fd-aecc-4bef-b566-9466eb702ae4.json new file mode 100644 index 000000000000..1c9ad9f98851 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/0b2818fd-aecc-4bef-b566-9466eb702ae4.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Source Ports (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Source Port", + "field": "source.port", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Source Ports (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0b2818fd-aecc-4bef-b566-9466eb702ae4", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/12aad647-c45d-4667-a029-152c1a97cbbc.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/12aad647-c45d-4667-a029-152c1a97cbbc.json new file mode 100644 index 000000000000..20a84bb4a1ad --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/12aad647-c45d-4667-a029-152c1a97cbbc.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Destination Autonomous Systems (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"destination.as.organization.name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.as.organization.name:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", + "interval": "auto" + }, + "title": "Destination Autonomous Systems (bytes) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "12aad647-c45d-4667-a029-152c1a97cbbc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:42.347Z", + "version": "WzQ3ODgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/14c7136d-b4aa-4367-9461-52bf8b5c4796.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/14c7136d-b4aa-4367-9461-52bf8b5c4796.json new file mode 100644 index 000000000000..518ebef7c45d --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/14c7136d-b4aa-4367-9461-52bf8b5c4796.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Ingress Interfaces (flow records) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Ingress Interface", + "field": "netflow.ingress_interface", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Ingress Interfaces (flow records) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "14c7136d-b4aa-4367-9461-52bf8b5c4796", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:44.454Z", + "version": "WzQ4MDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/15295ea6-ba84-47db-8ced-9312abbf495c.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/15295ea6-ba84-47db-8ced-9312abbf495c.json new file mode 100644 index 000000000000..560de4c53f8d --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/15295ea6-ba84-47db-8ced-9312abbf495c.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Top Sources [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Packets", + "field": "network.packets" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Flow Records" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Source", + "field": "source.ip", + "order": "desc", + "orderBy": "2", + "size": 500 + }, + "schema": "bucket", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": true, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top Sources [Filebeat Netflow]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "15295ea6-ba84-47db-8ced-9312abbf495c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:48.527Z", + "version": "WzQ4MzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/1558508d-591c-49be-bef4-85fdac18a960.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/1558508d-591c-49be-bef4-85fdac18a960.json new file mode 100644 index 000000000000..767bc7a87278 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/1558508d-591c-49be-bef4-85fdac18a960.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Sources and Ports (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Source", + "field": "source.ip", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Port", + "field": "source.port", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Sources and Ports (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1558508d-591c-49be-bef4-85fdac18a960", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:47.530Z", + "version": "WzQ4MjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/15e2a267-2495-4df2-a121-abe410d2f18c.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/15e2a267-2495-4df2-a121-abe410d2f18c.json new file mode 100644 index 000000000000..0b2fb480c186 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/15e2a267-2495-4df2-a121-abe410d2f18c.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "VLANs (packets) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"netflow.vlan_id:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.vlan_id:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", + "interval": "auto" + }, + "title": "VLANs (packets) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "15e2a267-2495-4df2-a121-abe410d2f18c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4ODAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/16262df9-a979-4136-935e-d883c7d373d7.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/16262df9-a979-4136-935e-d883c7d373d7.json new file mode 100644 index 000000000000..48ddb0ad6ce7 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/16262df9-a979-4136-935e-d883c7d373d7.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "City Count [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Cities", + "field": "destination.geo.city_name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "fontSize": "32", + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "36", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "handleNoResults": true, + "type": "gauge" + }, + "title": "City Count [Filebeat Netflow]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "16262df9-a979-4136-935e-d883c7d373d7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4ODQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/1cd36f5d-d9c7-4098-acdb-14d312ecfb72.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/1cd36f5d-d9c7-4098-acdb-14d312ecfb72.json new file mode 100644 index 000000000000..db572454d1b8 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/1cd36f5d-d9c7-4098-acdb-14d312ecfb72.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Ingress Interfaces (packets) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"netflow.ingress_interface:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.ingress_interface:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", + "interval": "auto" + }, + "title": "Ingress Interfaces (packets) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1cd36f5d-d9c7-4098-acdb-14d312ecfb72", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:44.454Z", + "version": "WzQ4MDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/1cf30eac-aae8-47fa-a156-37f6346d2d5a.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/1cf30eac-aae8-47fa-a156-37f6346d2d5a.json new file mode 100644 index 000000000000..8a779c3e6658 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/1cf30eac-aae8-47fa-a156-37f6346d2d5a.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Types of Service (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Type of Service", + "field": "netflow.ip_class_of_service", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Types of Service (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1cf30eac-aae8-47fa-a156-37f6346d2d5a", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/1e74d5cb-556d-42ee-8042-88f6c1af47f0.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/1e74d5cb-556d-42ee-8042-88f6c1af47f0.json new file mode 100644 index 000000000000..1f6274c0fcff --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/1e74d5cb-556d-42ee-8042-88f6c1af47f0.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Cities (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"destination.geo.city_name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.geo.city_name:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", + "interval": "auto" + }, + "title": "Cities (bytes) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1e74d5cb-556d-42ee-8042-88f6c1af47f0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/201d7dd1-a880-4a64-b631-db5629340db9.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/201d7dd1-a880-4a64-b631-db5629340db9.json new file mode 100644 index 000000000000..70fd31ba7b21 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/201d7dd1-a880-4a64-b631-db5629340db9.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Source Ports (packets) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"source.port:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* source.port:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", + "interval": "auto" + }, + "title": "Source Ports (packets) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "201d7dd1-a880-4a64-b631-db5629340db9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/2316bb53-d98a-4f0f-8cd8-51e9fb317823.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/2316bb53-d98a-4f0f-8cd8-51e9fb317823.json new file mode 100644 index 000000000000..eb3abe373d7b --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/2316bb53-d98a-4f0f-8cd8-51e9fb317823.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Countries and Cities (flow records) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Flow Records" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Country", + "field": "destination.geo.country_name", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "City", + "field": "destination.geo.city_name", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Countries and Cities (flow records) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2316bb53-d98a-4f0f-8cd8-51e9fb317823", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:46.471Z", + "version": "WzQ4MTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/248e00b4-8fc2-406f-8907-729d5380aaa7.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/248e00b4-8fc2-406f-8907-729d5380aaa7.json new file mode 100644 index 000000000000..37b9194751f4 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/248e00b4-8fc2-406f-8907-729d5380aaa7.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Destinations (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Destination", + "field": "destination.ip", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Destinations (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "248e00b4-8fc2-406f-8907-729d5380aaa7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NTksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/2b3d4e86-2254-4033-8fe3-ce4753fafd03.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/2b3d4e86-2254-4033-8fe3-ce4753fafd03.json new file mode 100644 index 000000000000..406ab311fa89 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/2b3d4e86-2254-4033-8fe3-ce4753fafd03.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Top Protocols [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Packets", + "field": "network.packets" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Flow Records" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Protocol", + "field": "network.transport", + "order": "desc", + "orderBy": "2", + "size": 500 + }, + "schema": "bucket", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": true, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top Protocols [Filebeat Netflow]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2b3d4e86-2254-4033-8fe3-ce4753fafd03", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:48.527Z", + "version": "WzQ4NDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/2dca3025-692c-4876-8bcc-e0b248dc9819.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/2dca3025-692c-4876-8bcc-e0b248dc9819.json new file mode 100644 index 000000000000..bc62582d0b39 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/2dca3025-692c-4876-8bcc-e0b248dc9819.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "TCP Flags Count [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "TCP Flag States", + "field": "netflow.tcp_control_bits" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "fontSize": "32", + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "36", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "handleNoResults": true, + "type": "gauge" + }, + "title": "TCP Flags Count [Filebeat Netflow]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2dca3025-692c-4876-8bcc-e0b248dc9819", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4ODYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/30cd1009-2925-4c9b-820d-d689f5d1efda.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/30cd1009-2925-4c9b-820d-d689f5d1efda.json new file mode 100644 index 000000000000..27c8bcf610ca --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/30cd1009-2925-4c9b-820d-d689f5d1efda.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Autonomous Systems (packets) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"destination.as.organization.name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.as.organization.name:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", + "interval": "auto" + }, + "title": "Autonomous Systems (packets) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "30cd1009-2925-4c9b-820d-d689f5d1efda", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/31708a70-4957-4a8a-8065-5c88a344ad02.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/31708a70-4957-4a8a-8065-5c88a344ad02.json new file mode 100644 index 000000000000..fc4156e92f3c --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/31708a70-4957-4a8a-8065-5c88a344ad02.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Flow Exporters (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Flow Exporter", + "field": "agent.name", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Flow Exporters (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "31708a70-4957-4a8a-8065-5c88a344ad02", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:47.530Z", + "version": "WzQ4MzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/31b5f6fd-eb9d-4e97-90fd-367062ef217f.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/31b5f6fd-eb9d-4e97-90fd-367062ef217f.json new file mode 100644 index 000000000000..9c55891beefa --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/31b5f6fd-eb9d-4e97-90fd-367062ef217f.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Top Destination Ports [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Packets", + "field": "network.packets" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Flow Records" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Destination", + "field": "destination.port", + "order": "desc", + "orderBy": "2", + "size": 500 + }, + "schema": "bucket", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": true, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top Destination Ports [Filebeat Netflow]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "31b5f6fd-eb9d-4e97-90fd-367062ef217f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:48.527Z", + "version": "WzQ4NDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/32e712ed-fa15-4db7-8575-8476e8d65b03.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/32e712ed-fa15-4db7-8575-8476e8d65b03.json new file mode 100644 index 000000000000..e67933b2cbd4 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/32e712ed-fa15-4db7-8575-8476e8d65b03.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Source Count [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Sources", + "field": "source.ip" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "fontSize": "32", + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "36", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "handleNoResults": true, + "type": "gauge" + }, + "title": "Source Count [Filebeat Netflow]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "32e712ed-fa15-4db7-8575-8476e8d65b03", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NjksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/3a4209e2-281c-467e-b5cb-315bf4a2661f.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/3a4209e2-281c-467e-b5cb-315bf4a2661f.json new file mode 100644 index 000000000000..500cc7cee890 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/3a4209e2-281c-467e-b5cb-315bf4a2661f.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Destination Ports (packets) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"destination.port:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.port:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", + "interval": "auto" + }, + "title": "Destination Ports (packets) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3a4209e2-281c-467e-b5cb-315bf4a2661f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/3dec20c0-0d4f-43ef-8864-3779e1a1b33f.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/3dec20c0-0d4f-43ef-8864-3779e1a1b33f.json new file mode 100644 index 000000000000..59702f679bf0 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/3dec20c0-0d4f-43ef-8864-3779e1a1b33f.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Version (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Version", + "field": "netflow.exporter.version", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Version (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3dec20c0-0d4f-43ef-8864-3779e1a1b33f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:47.530Z", + "version": "WzQ4MzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/3e27fb83-b3e3-4c15-b999-ed6da49b7a86.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/3e27fb83-b3e3-4c15-b999-ed6da49b7a86.json new file mode 100644 index 000000000000..ded4c255bb87 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/3e27fb83-b3e3-4c15-b999-ed6da49b7a86.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Destination Ports (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"destination.port:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.port:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", + "interval": "auto" + }, + "title": "Destination Ports (bytes) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3e27fb83-b3e3-4c15-b999-ed6da49b7a86", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/441c6c50-fa1a-489c-96c6-76f7925dea24.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/441c6c50-fa1a-489c-96c6-76f7925dea24.json new file mode 100644 index 000000000000..4ceca55315a4 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/441c6c50-fa1a-489c-96c6-76f7925dea24.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Flow Exporters (flow records) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Flow Exporter", + "field": "agent.name", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Flow Exporters (flow records) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "441c6c50-fa1a-489c-96c6-76f7925dea24", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:44.454Z", + "version": "WzQ4MDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/4ac97841-c89f-4d50-b3c6-6253f7e1dd1a.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/4ac97841-c89f-4d50-b3c6-6253f7e1dd1a.json new file mode 100644 index 000000000000..5ce409575444 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/4ac97841-c89f-4d50-b3c6-6253f7e1dd1a.json @@ -0,0 +1,75 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Egress Interfaces (flow records) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Flow Records" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Egress Interface", + "field": "netflow.egress_interface", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Egress Interfaces (flow records) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4ac97841-c89f-4d50-b3c6-6253f7e1dd1a", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:44.454Z", + "version": "WzQ4MDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/4bb0255e-18ed-45e4-bfb9-de8e35b12094.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/4bb0255e-18ed-45e4-bfb9-de8e35b12094.json new file mode 100644 index 000000000000..9880ae8f66c5 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/4bb0255e-18ed-45e4-bfb9-de8e35b12094.json @@ -0,0 +1,152 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Flow Records [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "legendOpen": true + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Flow Records" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Timeline", + "extended_bounds": {}, + "field": "event.end", + "interval": "s", + "min_doc_count": 1 + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Version", + "field": "netflow.exporter.version", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "defaultYExtents": false, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "legendPosition": "right", + "mode": "stacked", + "scale": "linear", + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Flow Records" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "setYExtents": false, + "times": [], + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Flow Records [Filebeat Netflow]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4bb0255e-18ed-45e4-bfb9-de8e35b12094", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:45.451Z", + "version": "WzQ4MTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5292a65b-c532-422a-9008-1251a8073a3a.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5292a65b-c532-422a-9008-1251a8073a3a.json new file mode 100644 index 000000000000..1355fdebfe36 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5292a65b-c532-422a-9008-1251a8073a3a.json @@ -0,0 +1,118 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Top Cities [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": 2, + "direction": "desc" + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Packets", + "field": "network.packets" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Flow Records" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Country", + "field": "destination.geo.country_name", + "order": "desc", + "orderBy": "2", + "size": 500 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "City", + "field": "destination.geo.city_name", + "order": "desc", + "orderBy": "2", + "size": 500 + }, + "schema": "bucket", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": true, + "showToolbar": true, + "showTotal": true, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top Cities [Filebeat Netflow]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5292a65b-c532-422a-9008-1251a8073a3a", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:48.527Z", + "version": "WzQ4NDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5303e99b-389c-47b7-ae7a-945c5a92ba49.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5303e99b-389c-47b7-ae7a-945c5a92ba49.json new file mode 100644 index 000000000000..9b921eaa09f7 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5303e99b-389c-47b7-ae7a-945c5a92ba49.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Top Destinations [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Packets", + "field": "network.packets" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Flow Records" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Destination", + "field": "destination.ip", + "order": "desc", + "orderBy": "2", + "size": 500 + }, + "schema": "bucket", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": true, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top Destinations [Filebeat Netflow]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5303e99b-389c-47b7-ae7a-945c5a92ba49", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:48.527Z", + "version": "WzQ4MzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/57e13a20-e94f-4465-a942-42148634a1d2.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/57e13a20-e94f-4465-a942-42148634a1d2.json new file mode 100644 index 000000000000..20061c52052b --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/57e13a20-e94f-4465-a942-42148634a1d2.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "TCP Flags (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "TCP Flags", + "field": "netflow.tcp_control_bits", + "order": "desc", + "orderBy": "1", + "size": 255 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "TCP Flags (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "57e13a20-e94f-4465-a942-42148634a1d2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5ccac452-e90a-4dde-ae9b-1be36ce3f761.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5ccac452-e90a-4dde-ae9b-1be36ce3f761.json new file mode 100644 index 000000000000..0a4a292b709f --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5ccac452-e90a-4dde-ae9b-1be36ce3f761.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Countries and Cities (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Country", + "field": "destination.geo.country_name", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "City", + "field": "destination.geo.city_name", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Countries and Cities (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5ccac452-e90a-4dde-ae9b-1be36ce3f761", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:47.530Z", + "version": "WzQ4MzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5cfb2c9a-4815-4a25-9d7e-ab0ef55ffe63.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5cfb2c9a-4815-4a25-9d7e-ab0ef55ffe63.json new file mode 100644 index 000000000000..bfe26e31b98c --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5cfb2c9a-4815-4a25-9d7e-ab0ef55ffe63.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Countries (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"destination.geo.country_name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.geo.country_name:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", + "interval": "auto" + }, + "title": "Countries (bytes) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5cfb2c9a-4815-4a25-9d7e-ab0ef55ffe63", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NDksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5d868836-c7b2-4812-bf47-4838aac281d9.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5d868836-c7b2-4812-bf47-4838aac281d9.json new file mode 100644 index 000000000000..77e992bd0b3b --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/5d868836-c7b2-4812-bf47-4838aac281d9.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "TCP Flags (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"netflow.tcp_control_bits:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.tcp_control_bits:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", + "interval": "auto" + }, + "title": "TCP Flags (bytes) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5d868836-c7b2-4812-bf47-4838aac281d9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/63ef5338-fdf2-488e-b78a-f0e98daccc95.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/63ef5338-fdf2-488e-b78a-f0e98daccc95.json new file mode 100644 index 000000000000..d6e6250cbbb6 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/63ef5338-fdf2-488e-b78a-f0e98daccc95.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Country Count [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Countries", + "field": "destination.geo.country_name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "fontSize": "32", + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "36", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "handleNoResults": true, + "type": "gauge" + }, + "title": "Country Count [Filebeat Netflow]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "63ef5338-fdf2-488e-b78a-f0e98daccc95", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4ODUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/67fdca65-a9df-47f0-a8a4-1e8b056325de.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/67fdca65-a9df-47f0-a8a4-1e8b056325de.json new file mode 100644 index 000000000000..b2433d28e9a4 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/67fdca65-a9df-47f0-a8a4-1e8b056325de.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Destinations and Ports (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Destination", + "field": "destination.ip", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Port", + "field": "destination.port", + "order": "desc", + "orderBy": "1", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Destinations and Ports (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "67fdca65-a9df-47f0-a8a4-1e8b056325de", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:47.530Z", + "version": "WzQ4MjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/681f0ce4-d828-4a99-b643-0c0715530050.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/681f0ce4-d828-4a99-b643-0c0715530050.json new file mode 100644 index 000000000000..05453336918a --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/681f0ce4-d828-4a99-b643-0c0715530050.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Destinations (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"destination.ip:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.ip:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", + "interval": "auto" + }, + "title": "Destinations (bytes) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "681f0ce4-d828-4a99-b643-0c0715530050", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/6bbd6712-494a-4fd9-b3d3-757304681f0f.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/6bbd6712-494a-4fd9-b3d3-757304681f0f.json new file mode 100644 index 000000000000..7d6a5f027fdb --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/6bbd6712-494a-4fd9-b3d3-757304681f0f.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Sources (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"source.ip:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* source.ip:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", + "interval": "auto" + }, + "title": "Sources (bytes) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6bbd6712-494a-4fd9-b3d3-757304681f0f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/717cd7c7-bfca-435d-8ee7-38259927aade.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/717cd7c7-bfca-435d-8ee7-38259927aade.json new file mode 100644 index 000000000000..e29cdbc37242 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/717cd7c7-bfca-435d-8ee7-38259927aade.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Types of Service (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"netflow.ip_class_of_service:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.ip_class_of_service:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", + "interval": "auto" + }, + "title": "Types of Service (bytes) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "717cd7c7-bfca-435d-8ee7-38259927aade", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/751ecb6f-11c3-458d-b039-f6d57a6379fa.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/751ecb6f-11c3-458d-b039-f6d57a6379fa.json new file mode 100644 index 000000000000..f6398368bee5 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/751ecb6f-11c3-458d-b039-f6d57a6379fa.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Source Autonomous Systems (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"source.as.organization.name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* source.as.organization.name:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", + "interval": "auto" + }, + "title": "Source Autonomous Systems (bytes) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "751ecb6f-11c3-458d-b039-f6d57a6379fa", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:42.347Z", + "version": "WzQ3OTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/7d447b22-89dc-4f32-b549-4b8620af4d76.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/7d447b22-89dc-4f32-b549-4b8620af4d76.json new file mode 100644 index 000000000000..1e4ed291e881 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/7d447b22-89dc-4f32-b549-4b8620af4d76.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Cities (packets) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"destination.geo.city_name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.geo.city_name:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", + "interval": "auto" + }, + "title": "Cities (packets) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7d447b22-89dc-4f32-b549-4b8620af4d76", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/7fa6cb0a-518d-46e9-a228-15cd4253a957.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/7fa6cb0a-518d-46e9-a228-15cd4253a957.json new file mode 100644 index 000000000000..7f375ae1e28c --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/7fa6cb0a-518d-46e9-a228-15cd4253a957.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "VLANs (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "VLAN", + "field": "netflow.vlan_id", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "VLANs (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7fa6cb0a-518d-46e9-a228-15cd4253a957", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/85ebf558-402b-45d2-a186-e15f8673ec07.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/85ebf558-402b-45d2-a186-e15f8673ec07.json new file mode 100644 index 000000000000..2f1a7b930e3b --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/85ebf558-402b-45d2-a186-e15f8673ec07.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Egress Interfaces (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"netflow.egress_interface:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.egress_interface:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", + "interval": "auto" + }, + "title": "Egress Interfaces (bytes) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "85ebf558-402b-45d2-a186-e15f8673ec07", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:44.454Z", + "version": "WzQ4MDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/8f83cf97-4a48-421f-8db5-690297d1f4fb.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/8f83cf97-4a48-421f-8db5-690297d1f4fb.json new file mode 100644 index 000000000000..f1b650c186e4 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/8f83cf97-4a48-421f-8db5-690297d1f4fb.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "TCP Flags (packets) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"netflow.tcp_control_bits:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.tcp_control_bits:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", + "interval": "auto" + }, + "title": "TCP Flags (packets) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8f83cf97-4a48-421f-8db5-690297d1f4fb", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/a14c3248-952d-42aa-bd7d-9b39157a776f.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/a14c3248-952d-42aa-bd7d-9b39157a776f.json new file mode 100644 index 000000000000..c12140698ad7 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/a14c3248-952d-42aa-bd7d-9b39157a776f.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Countries (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Country", + "field": "destination.geo.country_name", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Countries (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a14c3248-952d-42aa-bd7d-9b39157a776f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/a1704d46-15fc-41c2-851d-796ceb49877f.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/a1704d46-15fc-41c2-851d-796ceb49877f.json new file mode 100644 index 000000000000..862036899083 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/a1704d46-15fc-41c2-851d-796ceb49877f.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Types of Service (packets) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"netflow.ip_class_of_service:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.ip_class_of_service:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", + "interval": "auto" + }, + "title": "Types of Service (packets) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a1704d46-15fc-41c2-851d-796ceb49877f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NzksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/a5efa3dd-f53a-4d14-9d3f-ee73345fd93d.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/a5efa3dd-f53a-4d14-9d3f-ee73345fd93d.json new file mode 100644 index 000000000000..9bab97af2545 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/a5efa3dd-f53a-4d14-9d3f-ee73345fd93d.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "VLANs (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"netflow.vlan_id:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.vlan_id:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", + "interval": "auto" + }, + "title": "VLANs (bytes) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a5efa3dd-f53a-4d14-9d3f-ee73345fd93d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/a685420e-c45f-4b62-932b-5b76ac8b8ca2.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/a685420e-c45f-4b62-932b-5b76ac8b8ca2.json new file mode 100644 index 000000000000..9b638b6df215 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/a685420e-c45f-4b62-932b-5b76ac8b8ca2.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Cities (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "City", + "field": "destination.geo.city_name", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Cities (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a685420e-c45f-4b62-932b-5b76ac8b8ca2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/abfa0b19-60cd-4984-9c3d-02ebf0aa1dfb.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/abfa0b19-60cd-4984-9c3d-02ebf0aa1dfb.json new file mode 100644 index 000000000000..e56a946db1ea --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/abfa0b19-60cd-4984-9c3d-02ebf0aa1dfb.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Autonomous Systems (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"destination.as.organization.name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.as.organization.name:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", + "interval": "auto" + }, + "title": "Autonomous Systems (bytes) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "abfa0b19-60cd-4984-9c3d-02ebf0aa1dfb", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/ae334aec-31fa-4df7-a064-40b18831d819.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/ae334aec-31fa-4df7-a064-40b18831d819.json new file mode 100644 index 000000000000..8e56da48274a --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/ae334aec-31fa-4df7-a064-40b18831d819.json @@ -0,0 +1,144 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + } + }, + "title": "IP Version and Protocols (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "IP Version", + "field": "network.type", + "missingBucket": true, + "missingBucketLabel": "unset ip version", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Protocol", + "field": "network.transport", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "sum", + "format": { + "id": "bytes" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "IP Version and Protocols (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ae334aec-31fa-4df7-a064-40b18831d819", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:47.530Z", + "version": "WzQ4MjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/aed09724-0a69-4331-84f5-3d2067c43930.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/aed09724-0a69-4331-84f5-3d2067c43930.json new file mode 100644 index 000000000000..2f55c2686b5d --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/aed09724-0a69-4331-84f5-3d2067c43930.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Destinations and Sources (flow records) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Flow Records" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Destination", + "field": "destination.ip", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Source", + "field": "source.ip", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Destinations and Sources (flow records) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "aed09724-0a69-4331-84f5-3d2067c43930", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:46.471Z", + "version": "WzQ4MTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/af707b01-29f1-462b-b279-6d2e803f3645.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/af707b01-29f1-462b-b279-6d2e803f3645.json new file mode 100644 index 000000000000..c2d8c5e08fde --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/af707b01-29f1-462b-b279-6d2e803f3645.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Destination Port Count [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Destination Ports", + "field": "destination.port" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "fontSize": "32", + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "36", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "handleNoResults": true, + "type": "gauge" + }, + "title": "Destination Port Count [Filebeat Netflow]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "af707b01-29f1-462b-b279-6d2e803f3645", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/b02c2713-17f0-41dd-88a3-ce33b446f19d.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/b02c2713-17f0-41dd-88a3-ce33b446f19d.json new file mode 100644 index 000000000000..dd011023150e --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/b02c2713-17f0-41dd-88a3-ce33b446f19d.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Locality (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Locality", + "field": "flow.locality", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Locality (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b02c2713-17f0-41dd-88a3-ce33b446f19d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:47.530Z", + "version": "WzQ4MzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/b677cd82-b33e-49b3-8b6e-0e110177b163.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/b677cd82-b33e-49b3-8b6e-0e110177b163.json new file mode 100644 index 000000000000..0e0c9cc53e27 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/b677cd82-b33e-49b3-8b6e-0e110177b163.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Direction (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Direction", + "field": "network.direction", + "order": "desc", + "orderBy": "1", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Direction (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b677cd82-b33e-49b3-8b6e-0e110177b163", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:47.530Z", + "version": "WzQ4MzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/c27c6a3b-93ee-44d5-8d0c-9b097e575f52.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/c27c6a3b-93ee-44d5-8d0c-9b097e575f52.json new file mode 100644 index 000000000000..812d38bb821a --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/c27c6a3b-93ee-44d5-8d0c-9b097e575f52.json @@ -0,0 +1,101 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Flow Records [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Flow Records" + }, + "schema": "metric", + "type": "count" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "fontSize": "32", + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "36", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "handleNoResults": true, + "type": "gauge" + }, + "title": "Flow Records [Filebeat Netflow]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c27c6a3b-93ee-44d5-8d0c-9b097e575f52", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:45.451Z", + "version": "WzQ4MTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/c54f5529-e6d7-4c26-8e8e-3b35de132035.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/c54f5529-e6d7-4c26-8e8e-3b35de132035.json new file mode 100644 index 000000000000..36a2424f454d --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/c54f5529-e6d7-4c26-8e8e-3b35de132035.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Destination and Source Ports (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Destination Port", + "field": "destination.port", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Source Port", + "field": "source.port", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Destination and Source Ports (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c54f5529-e6d7-4c26-8e8e-3b35de132035", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:43.370Z", + "version": "WzQ3OTksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/cccff92f-cb71-49a9-9caf-84867751d31e.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/cccff92f-cb71-49a9-9caf-84867751d31e.json new file mode 100644 index 000000000000..df8e1bb193c2 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/cccff92f-cb71-49a9-9caf-84867751d31e.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Top Flow Exporters [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Packets", + "field": "network.packets" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Flow Records" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Flow Exporter", + "field": "agent.name", + "order": "desc", + "orderBy": "2", + "size": 500 + }, + "schema": "bucket", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": true, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top Flow Exporters [Filebeat Netflow]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "cccff92f-cb71-49a9-9caf-84867751d31e", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:48.527Z", + "version": "WzQ4NDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/cf399a85-e348-4ac1-a399-e8f5a44114c4.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/cf399a85-e348-4ac1-a399-e8f5a44114c4.json new file mode 100644 index 000000000000..808399a57f0d --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/cf399a85-e348-4ac1-a399-e8f5a44114c4.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Destination Ports (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Destination Port", + "field": "destination.port", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Destination Ports (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "cf399a85-e348-4ac1-a399-e8f5a44114c4", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d27b5d74-b3b4-4311-a0e6-08ff8f4345df.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d27b5d74-b3b4-4311-a0e6-08ff8f4345df.json new file mode 100644 index 000000000000..207ef680a8e3 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d27b5d74-b3b4-4311-a0e6-08ff8f4345df.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Destination Autonomous Systems (packets) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"destination.as.organization.name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.as.organization.name:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", + "interval": "auto" + }, + "title": "Destination Autonomous Systems (packets) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d27b5d74-b3b4-4311-a0e6-08ff8f4345df", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:42.347Z", + "version": "WzQ3ODksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d3df8d28-65f8-4ea1-8b33-f479380a0600.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d3df8d28-65f8-4ea1-8b33-f479380a0600.json new file mode 100644 index 000000000000..ee4075eb5f59 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d3df8d28-65f8-4ea1-8b33-f479380a0600.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Ingress Interfaces (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"netflow.ingress_interface:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.ingress_interface:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", + "interval": "auto" + }, + "title": "Ingress Interfaces (bytes) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d3df8d28-65f8-4ea1-8b33-f479380a0600", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:44.454Z", + "version": "WzQ4MDksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d41a9663-e5ad-47a7-955e-3803ae4e23c0.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d41a9663-e5ad-47a7-955e-3803ae4e23c0.json new file mode 100644 index 000000000000..90a82150b605 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d41a9663-e5ad-47a7-955e-3803ae4e23c0.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Countries (packets) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"destination.geo.country_name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.geo.country_name:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", + "interval": "auto" + }, + "title": "Countries (packets) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d41a9663-e5ad-47a7-955e-3803ae4e23c0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3.json new file mode 100644 index 000000000000..f445096793cd --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Dashboard Navigation [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "markdown": "[Overview](#/dashboard/34e26884-161a-4448-9556-43b5bf2f62a2) | [Conversation Partners](#/dashboard/acd7a630-0c71-4840-bc9e-4a3801374a32) | [Traffic Analysis](#/dashboard/38012abe-c611-4124-8497-381fcd85acc8) | [Top-N](#/dashboard/14387a13-53bc-43a4-b9cd-63977aa8d87c) | [Geo Location](#/dashboard/77326664-23be-4bf1-a126-6d7e60cfc024) | [Autonomous Systems](#/dashboard/c64665f9-d222-421e-90b0-c7310d944b8a) | [Flow Exporters](#/dashboard/feebb4e6-b13e-4e4e-b9fc-d3a178276425) | [Raw Flow Records](#/dashboard/94972700-de4a-4272-9143-2fa8d4981365)\n***" + }, + "title": "Dashboard Navigation [Filebeat Netflow]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d4e6520a-9ced-47c9-a8f2-7246e8cbd2d3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d5568704-e30b-4108-bb49-06a9b8dce6a6.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d5568704-e30b-4108-bb49-06a9b8dce6a6.json new file mode 100644 index 000000000000..b1306af2128f --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d5568704-e30b-4108-bb49-06a9b8dce6a6.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Autonomous System Count [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Autonomous Systems", + "field": "destination.as.organization.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "fontSize": "32", + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "36", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "handleNoResults": true, + "type": "gauge" + }, + "title": "Autonomous System Count [Filebeat Netflow]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d5568704-e30b-4108-bb49-06a9b8dce6a6", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4ODMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d59a031c-70d6-47d7-966d-7fcb805be9be.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d59a031c-70d6-47d7-966d-7fcb805be9be.json new file mode 100644 index 000000000000..cb343491f6e5 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/d59a031c-70d6-47d7-966d-7fcb805be9be.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Destinations (packets) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"destination.ip:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* destination.ip:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", + "interval": "auto" + }, + "title": "Destinations (packets) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d59a031c-70d6-47d7-966d-7fcb805be9be", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/ddd27657-c3c8-4f82-8059-6d7763dd599b.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/ddd27657-c3c8-4f82-8059-6d7763dd599b.json new file mode 100644 index 000000000000..9017643d40a2 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/ddd27657-c3c8-4f82-8059-6d7763dd599b.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Source Port Count [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Source Ports", + "field": "source.port" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "fontSize": "32", + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "36", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "handleNoResults": true, + "type": "gauge" + }, + "title": "Source Port Count [Filebeat Netflow]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ddd27657-c3c8-4f82-8059-6d7763dd599b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/e822f94c-5f65-4963-a540-74ca9c25bd2d.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/e822f94c-5f65-4963-a540-74ca9c25bd2d.json new file mode 100644 index 000000000000..b0a576895aa3 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/e822f94c-5f65-4963-a540-74ca9c25bd2d.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Destinations and Sources (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Destination", + "field": "destination.ip", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Source", + "field": "source.ip", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Destinations and Sources (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e822f94c-5f65-4963-a540-74ca9c25bd2d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:43.370Z", + "version": "WzQ3OTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/e99dc327-03de-4561-9e0c-f550710125c2.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/e99dc327-03de-4561-9e0c-f550710125c2.json new file mode 100644 index 000000000000..f98c0e1dcfe5 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/e99dc327-03de-4561-9e0c-f550710125c2.json @@ -0,0 +1,56 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Destination Count [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Destinations", + "field": "destination.ip" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "fontSize": "32", + "handleNoResults": true + }, + "title": "Destination Count [Filebeat Netflow]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e99dc327-03de-4561-9e0c-f550710125c2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/e9ad835b-b2f2-42d3-a3e7-555a593deacf.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/e9ad835b-b2f2-42d3-a3e7-555a593deacf.json new file mode 100644 index 000000000000..69a408063b2c --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/e9ad835b-b2f2-42d3-a3e7-555a593deacf.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Top Source Ports [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Packets", + "field": "network.packets" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Flow Records" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Source", + "field": "source.port", + "order": "desc", + "orderBy": "2", + "size": 500 + }, + "schema": "bucket", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": true, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top Source Ports [Filebeat Netflow]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e9ad835b-b2f2-42d3-a3e7-555a593deacf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:48.527Z", + "version": "WzQ4MzksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/ebea013f-9b5b-4f61-a9c8-c62bebf62ae9.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/ebea013f-9b5b-4f61-a9c8-c62bebf62ae9.json new file mode 100644 index 000000000000..835b2248e9ef --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/ebea013f-9b5b-4f61-a9c8-c62bebf62ae9.json @@ -0,0 +1,118 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Conversation Partners [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": 2, + "direction": "desc" + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Packets", + "field": "network.packets" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Source", + "field": "source.ip", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Destination", + "field": "destination.ip", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Flow Records" + }, + "schema": "metric", + "type": "count" + } + ], + "listeners": {}, + "params": { + "perPage": 10, + "showMeticsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": 2, + "direction": "desc" + }, + "totalFunc": "sum" + }, + "title": "Conversation Partners [Filebeat Netflow]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ebea013f-9b5b-4f61-a9c8-c62bebf62ae9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:43.370Z", + "version": "WzQ3OTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f27c1479-0625-4cdc-92de-672e47db0f87.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f27c1479-0625-4cdc-92de-672e47db0f87.json new file mode 100644 index 000000000000..da1bff64478e --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f27c1479-0625-4cdc-92de-672e47db0f87.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "ToS Count [Filebeat Netflow]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Types of Service", + "field": "netflow.ip_class_of_service" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "listeners": {}, + "params": { + "addLegend": false, + "addTooltip": true, + "fontSize": "32", + "gauge": { + "autoExtend": false, + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 100 + } + ], + "gaugeColorMode": "None", + "gaugeStyle": "Full", + "gaugeType": "Metric", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "#333", + "labels": false, + "show": false, + "width": 2 + }, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": "36", + "labelColor": false, + "subText": "" + }, + "type": "simple", + "useRange": false, + "verticalSplit": false + }, + "handleNoResults": true, + "type": "gauge" + }, + "title": "ToS Count [Filebeat Netflow]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f27c1479-0625-4cdc-92de-672e47db0f87", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4ODEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f4c8cb5a-7336-449e-ab99-6e867b435b85.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f4c8cb5a-7336-449e-ab99-6e867b435b85.json new file mode 100644 index 000000000000..6acb8ee12816 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f4c8cb5a-7336-449e-ab99-6e867b435b85.json @@ -0,0 +1,96 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Destination Geo Location Heatmap [Filebeat Netflow]", + "uiStateJSON": { + "mapCenter": [ + 8.407168163601076, + 9.4921875 + ] + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Records" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "customLabel": "Location", + "field": "destination.geo.location", + "precision": 2 + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "listeners": {}, + "params": { + "addTooltip": true, + "heatBlur": "16", + "heatMaxZoom": 16, + "heatMinOpacity": "0.32", + "heatNormalizeData": true, + "heatRadius": "24", + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 15, + 5 + ], + "mapType": "Heatmap", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "attribution": "Maps provided by USGS", + "format": "image/png", + "layers": "0", + "styles": "", + "transparent": true, + "version": "1.3.0" + }, + "url": "https://basemap.nationalmap.gov/arcgis/services/USGSTopo/MapServer/WMSServer" + } + }, + "title": "Destination Geo Location Heatmap [Filebeat Netflow]", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f4c8cb5a-7336-449e-ab99-6e867b435b85", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:46.471Z", + "version": "WzQ4MTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f531f957-e8c0-497a-ad41-ef39c2d29671.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f531f957-e8c0-497a-ad41-ef39c2d29671.json new file mode 100644 index 000000000000..8e0c8bf04f61 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f531f957-e8c0-497a-ad41-ef39c2d29671.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Destination and Source Ports (flow records) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Flow Records" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Destination Port", + "field": "destination.port", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Source Port", + "field": "source.port", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Destination and Source Ports (flow records) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f531f957-e8c0-497a-ad41-ef39c2d29671", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:46.471Z", + "version": "WzQ4MTksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f668ecdb-eec7-44c6-9060-26aaf9fc8404.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f668ecdb-eec7-44c6-9060-26aaf9fc8404.json new file mode 100644 index 000000000000..2ed196f32fd4 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f668ecdb-eec7-44c6-9060-26aaf9fc8404.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Source Ports (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.bytes\", split=\"source.port:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* source.port:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"bytes / sec\", min=0)", + "interval": "auto" + }, + "title": "Source Ports (bytes) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f668ecdb-eec7-44c6-9060-26aaf9fc8404", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f75063c7-48b7-4de4-b8cb-d07eb2cea0e9.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f75063c7-48b7-4de4-b8cb-d07eb2cea0e9.json new file mode 100644 index 000000000000..a84f671fadce --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f75063c7-48b7-4de4-b8cb-d07eb2cea0e9.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Source Autonomous Systems (packets) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"source.as.organization.name:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* source.as.organization.name:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", + "interval": "auto" + }, + "title": "Source Autonomous Systems (packets) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f75063c7-48b7-4de4-b8cb-d07eb2cea0e9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:42.347Z", + "version": "WzQ3OTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f772028b-d5a6-4d55-b441-493871981a60.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f772028b-d5a6-4d55-b441-493871981a60.json new file mode 100644 index 000000000000..132446ee6b38 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f772028b-d5a6-4d55-b441-493871981a60.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Autonomous Systems (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Autonomous System", + "field": "destination.as.organization.name", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Autonomous Systems (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f772028b-d5a6-4d55-b441-493871981a60", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f7808e70-df2a-4532-a350-966704567c24.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f7808e70-df2a-4532-a350-966704567c24.json new file mode 100644 index 000000000000..f6ab2d106d29 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f7808e70-df2a-4532-a350-966704567c24.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Destination and Source ASs (flow records) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Flow Records" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Destination AS", + "field": "destination.as.organization.name", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Source AS", + "field": "source.as.organization.name", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Destination and Source ASs (flow records) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f7808e70-df2a-4532-a350-966704567c24", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:42.347Z", + "version": "WzQ3OTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f86a7769-8ef6-408d-bbe3-985d0ea0a3f7.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f86a7769-8ef6-408d-bbe3-985d0ea0a3f7.json new file mode 100644 index 000000000000..1f826f42fee4 --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/f86a7769-8ef6-408d-bbe3-985d0ea0a3f7.json @@ -0,0 +1,37 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "query_string": { + "query": "*" + } + } + } + }, + "title": "Egress Interfaces (packets) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "listeners": {}, + "params": { + "expression": ".es(index=\"filebeat-*\", metric=\"sum:network.packets\", split=\"netflow.egress_interface:10\", kibana=true).scale_interval(1s).fit(mode=scale).if(operator=\"lt\", if=0, then=0).trim(start=2,end=1).label(regex=\"^.* netflow.egress_interface:(.+) > .*$\", label=\"$1\").lines(width=1, stack=true, fill=1).yaxis(label=\"packets / sec\", min=0)", + "interval": "auto" + }, + "title": "Egress Interfaces (packets) [Filebeat Netflow]", + "type": "timelion" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f86a7769-8ef6-408d-bbe3-985d0ea0a3f7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:44.454Z", + "version": "WzQ4MDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/fd6c1144-5026-4795-b7af-a9aa3fc28c56.json b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/fd6c1144-5026-4795-b7af-a9aa3fc28c56.json new file mode 100644 index 000000000000..1c0e241c252c --- /dev/null +++ b/x-pack/filebeat/module/netflow/_meta/kibana/7/visualization/fd6c1144-5026-4795-b7af-a9aa3fc28c56.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "query_string": { + "analyze_wildcard": true, + "query": "*" + } + } + } + }, + "title": "Sources (bytes) [Filebeat Netflow]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Bytes", + "field": "network.bytes" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Source", + "field": "source.ip", + "order": "desc", + "orderBy": "1", + "size": 50 + }, + "schema": "segment", + "type": "terms" + } + ], + "listeners": {}, + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + } + }, + "title": "Sources (bytes) [Filebeat Netflow]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fd6c1144-5026-4795-b7af-a9aa3fc28c56", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:49.565Z", + "version": "WzQ4NTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/o365/_meta/kibana/7/dashboard/712e2c00-685d-11ea-8d6a-292ef5d68366.json b/x-pack/filebeat/module/o365/_meta/kibana/7/dashboard/712e2c00-685d-11ea-8d6a-292ef5d68366.json new file mode 100644 index 000000000000..900982f96083 --- /dev/null +++ b/x-pack/filebeat/module/o365/_meta/kibana/7/dashboard/712e2c00-685d-11ea-8d6a-292ef5d68366.json @@ -0,0 +1,198 @@ +{ + "attributes": { + "description": "Sample dashboard for Office 365 Management Activity events", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "b6942e2a-81dc-40e4-a932-8b7a864b28bc", + "w": 10, + "x": 0, + "y": 0 + }, + "panelIndex": "b6942e2a-81dc-40e4-a932-8b7a864b28bc", + "panelRefName": "panel_b6942e2a-81dc-40e4-a932-8b7a864b28bc", + "title": "Total audit events", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "9673e6df-4b1e-4771-b1c6-c41c9bfc7272", + "w": 38, + "x": 10, + "y": 0 + }, + "panelIndex": "9673e6df-4b1e-4771-b1c6-c41c9bfc7272", + "panelRefName": "panel_9673e6df-4b1e-4771-b1c6-c41c9bfc7272", + "title": "Event histogram by service", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "colors": { + "alert": "#EF843C", + "event": "#7EB26D" + }, + "enhancements": {}, + "legendOpen": true, + "vis": { + "colors": { + "alert": "#E24D42", + "event": "#7EB26D" + }, + "legendOpen": true + } + }, + "gridData": { + "h": 8, + "i": "70ab7239-c65c-41da-8242-da61750745d7", + "w": 10, + "x": 0, + "y": 6 + }, + "panelIndex": "70ab7239-c65c-41da-8242-da61750745d7", + "panelRefName": "panel_70ab7239-c65c-41da-8242-da61750745d7", + "title": "Events by type", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "colors": { + "failure": "#E24D42", + "success": "#629E51" + }, + "enhancements": {}, + "legendOpen": false, + "vis": { + "colors": { + "failure": "#E24D42", + "success": "#629E51" + }, + "legendOpen": true + } + }, + "gridData": { + "h": 17, + "i": "775ced7d-7c58-44bc-8d4e-2a757d2c218c", + "w": 10, + "x": 0, + "y": 14 + }, + "panelIndex": "775ced7d-7c58-44bc-8d4e-2a757d2c218c", + "panelRefName": "panel_775ced7d-7c58-44bc-8d4e-2a757d2c218c", + "title": "Top users by authentication failures", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hiddenLayers": [], + "isLayerTOCOpen": false, + "mapCenter": { + "lat": 42.68781, + "lon": -48.94209, + "zoom": 1.88 + }, + "openTOCDetails": [] + }, + "gridData": { + "h": 17, + "i": "15fe975b-6b8b-4445-872d-e06c041e2c31", + "w": 38, + "x": 10, + "y": 14 + }, + "panelIndex": "15fe975b-6b8b-4445-872d-e06c041e2c31", + "panelRefName": "panel_15fe975b-6b8b-4445-872d-e06c041e2c31", + "title": "Client geolocation map", + "type": "map", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "481f1778-caad-4971-b598-bb61c94bf998", + "w": 48, + "x": 0, + "y": 31 + }, + "panelIndex": "481f1778-caad-4971-b598-bb61c94bf998", + "panelRefName": "panel_481f1778-caad-4971-b598-bb61c94bf998", + "title": "Data Loss Prevention alerts", + "type": "search", + "version": "7.6.0" + } + ], + "timeRestore": false, + "title": "[Filebeat o365] Audit Dashboard ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "712e2c00-685d-11ea-8d6a-292ef5d68366", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "0be1adb0-6860-11ea-8d6a-292ef5d68366", + "name": "b6942e2a-81dc-40e4-a932-8b7a864b28bc:panel_b6942e2a-81dc-40e4-a932-8b7a864b28bc", + "type": "visualization" + }, + { + "id": "8b033510-685a-11ea-8d6a-292ef5d68366", + "name": "9673e6df-4b1e-4771-b1c6-c41c9bfc7272:panel_9673e6df-4b1e-4771-b1c6-c41c9bfc7272", + "type": "visualization" + }, + { + "id": "d43c95a0-6864-11ea-8d6a-292ef5d68366", + "name": "70ab7239-c65c-41da-8242-da61750745d7:panel_70ab7239-c65c-41da-8242-da61750745d7", + "type": "visualization" + }, + { + "id": "897d0c70-6869-11ea-8d6a-292ef5d68366", + "name": "775ced7d-7c58-44bc-8d4e-2a757d2c218c:panel_775ced7d-7c58-44bc-8d4e-2a757d2c218c", + "type": "visualization" + }, + { + "id": "dbae13c0-685c-11ea-8d6a-292ef5d68366", + "name": "15fe975b-6b8b-4445-872d-e06c041e2c31:panel_15fe975b-6b8b-4445-872d-e06c041e2c31", + "type": "map" + }, + { + "id": "8b8e5a10-6886-11ea-8d6a-292ef5d68366", + "name": "481f1778-caad-4971-b598-bb61c94bf998:panel_481f1778-caad-4971-b598-bb61c94bf998", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:49.253Z", + "version": "WzQzMDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/o365/_meta/kibana/7/dashboard/Filebeat-O365-Audit.ndjson b/x-pack/filebeat/module/o365/_meta/kibana/7/dashboard/Filebeat-O365-Audit.ndjson deleted file mode 100644 index 43b3588ee685..000000000000 --- a/x-pack/filebeat/module/o365/_meta/kibana/7/dashboard/Filebeat-O365-Audit.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset:\\\"o365.audit\\\" \"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Audit Events [Filebeat O365]","version":1},"coreMigrationVersion":"8.0.0","id":"fdc14020-6859-11ea-8d6a-292ef5d68366","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:49.253Z","version":"WzQzMTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"savedSearchRefName":"search_0","title":"Audit Event Count [Filebeat o365]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":40,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Audit Event Count [Filebeat o365]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"0be1adb0-6860-11ea-8d6a-292ef5d68366","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"fdc14020-6859-11ea-8d6a-292ef5d68366","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:49.253Z","version":"WzQzMDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"savedSearchRefName":"search_0","title":"Events Histogram [Filebeat o365]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":50},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-02-05T03:25:59.045Z\",\"to\":\"2020-02-29T10:59:01.067Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"event.code: Descending\",\"params\":{}}],\"x\":{\"accessor\":1,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"label\":\"@timestamp per 12 hours\",\"params\":{\"bounds\":{\"max\":\"2020-02-29T10:59:01.067Z\",\"min\":\"2020-02-05T03:25:59.045Z\"},\"date\":true,\"format\":\"YYYY-MM-DD HH:mm\",\"interval\":\"PT12H\",\"intervalESUnit\":\"h\",\"intervalESValue\":12}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Events Histogram [Filebeat o365]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"8b033510-685a-11ea-8d6a-292ef5d68366","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"fdc14020-6859-11ea-8d6a-292ef5d68366","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:49.253Z","version":"WzQzMDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"savedSearchRefName":"search_0","title":"Audit Event Type [Filebeat o365]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.kind\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Audit Event Type [Filebeat o365]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"d43c95a0-6864-11ea-8d6a-292ef5d68366","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"fdc14020-6859-11ea-8d6a-292ef5d68366","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:49.253Z","version":"WzQzMDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.category\", \"negate\": false, \"params\": {\"query\": \"authentication\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.category\": \"authentication\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top Authentication Failures [Filebeat o365]","uiStateJSON":"{\"vis\": {\"colors\": {\"failure\": \"#E24D42\", \"success\": \"#629E51\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"asc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":2},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"split\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":false,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"event.outcome: Ascending\",\"params\":{}}],\"splitRow\":[{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"user.name: Descending\",\"params\":{}}],\"x\":null,\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}]},\"grid\":{\"categoryLines\":false,\"valueAxis\":\"\"},\"labels\":{\"show\":true},\"legendPosition\":\"bottom\",\"orderBucketsBySum\":true,\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":false,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":false,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"row\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Top Authentication Failures [Filebeat o365]\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"897d0c70-6869-11ea-8d6a-292ef5d68366","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"fdc14020-6859-11ea-8d6a-292ef5d68366","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:33:49.253Z","version":"WzQzMDgsMV0="} -{"attributes":{"description":"","layerListJSON":"[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"0b910b6c-77c8-4223-892a-1ebf69b0ccb4\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"type\":\"ES_GEO_GRID\",\"id\":\"3ba31ffc-7051-44bf-96a0-a684020cd2a3\",\"geoField\":\"source.geo.location\",\"requestType\":\"point\",\"resolution\":\"FINE\",\"applyGlobalQuery\":true,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"DYNAMIC\",\"options\":{\"color\":\"Yellow to Red\",\"colorCategory\":\"palette_0\",\"field\":{\"name\":\"doc_count\",\"origin\":\"source\"},\"fieldMetaOptions\":{\"isEnabled\":true,\"sigma\":3},\"type\":\"ORDINAL\",\"useCustomColorRamp\":false}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFF\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":0}},\"iconSize\":{\"type\":\"DYNAMIC\",\"options\":{\"minSize\":8,\"maxSize\":32,\"field\":{\"name\":\"doc_count\",\"origin\":\"source\"},\"fieldMetaOptions\":{\"isEnabled\":true,\"sigma\":3}}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"DYNAMIC\",\"options\":{\"field\":{\"name\":\"doc_count\",\"origin\":\"source\"}}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"airfield\"}}},\"isTimeAware\":true},\"id\":\"acc53b7b-3411-406b-9371-6fa62b6b9365\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\"}]","mapStateJSON":"{\"zoom\":2.88,\"center\":{\"lon\":16.67387,\"lat\":30.87292},\"timeFilters\":{\"from\":\"now-7d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"event.dataset:\\\"o365.audit\\\" \",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false}}","title":"Client Geo Map [Filebeat o365 audit]","uiStateJSON":"{\"isLayerTOCOpen\": true, \"openTOCDetails\": []}"},"coreMigrationVersion":"8.0.0","id":"dbae13c0-685c-11ea-8d6a-292ef5d68366","migrationVersion":{"map":"7.14.0"},"references":[{"id":"filebeat-*","name":"layer_1_source_index_pattern","type":"index-pattern"}],"type":"map","updated_at":"2021-08-04T16:33:49.253Z","version":"WzQzMDksMV0="} -{"attributes":{"columns":["event.category","event.type","event.action","event.outcome","user.name","file.name","rule.name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"o365.audit\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"o365.audit\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"alert\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"alert\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"ComplianceDLPSharePoint\", \"ComplianceDLPExchange\"], \"type\": \"phrases\", \"value\": \"ComplianceDLPSharePoint, ComplianceDLPExchange\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"ComplianceDLPSharePoint\"}}, {\"match_phrase\": {\"event.code\": \"ComplianceDLPExchange\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Data Loss Prevention [Filebeat o365]","version":1},"coreMigrationVersion":"8.0.0","id":"8b8e5a10-6886-11ea-8d6a-292ef5d68366","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:49.253Z","version":"WzQzMTAsMV0="} -{"attributes":{"description":"Sample dashboard for Office 365 Management Activity events","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"b6942e2a-81dc-40e4-a932-8b7a864b28bc\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"b6942e2a-81dc-40e4-a932-8b7a864b28bc\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total audit events\",\"panelRefName\":\"panel_b6942e2a-81dc-40e4-a932-8b7a864b28bc\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"9673e6df-4b1e-4771-b1c6-c41c9bfc7272\",\"w\":38,\"x\":10,\"y\":0},\"panelIndex\":\"9673e6df-4b1e-4771-b1c6-c41c9bfc7272\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Event histogram by service\",\"panelRefName\":\"panel_9673e6df-4b1e-4771-b1c6-c41c9bfc7272\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"70ab7239-c65c-41da-8242-da61750745d7\",\"w\":10,\"x\":0,\"y\":6},\"panelIndex\":\"70ab7239-c65c-41da-8242-da61750745d7\",\"embeddableConfig\":{\"colors\":{\"alert\":\"#EF843C\",\"event\":\"#7EB26D\"},\"legendOpen\":true,\"vis\":{\"colors\":{\"alert\":\"#E24D42\",\"event\":\"#7EB26D\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Events by type\",\"panelRefName\":\"panel_70ab7239-c65c-41da-8242-da61750745d7\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":17,\"i\":\"775ced7d-7c58-44bc-8d4e-2a757d2c218c\",\"w\":10,\"x\":0,\"y\":14},\"panelIndex\":\"775ced7d-7c58-44bc-8d4e-2a757d2c218c\",\"embeddableConfig\":{\"colors\":{\"failure\":\"#E24D42\",\"success\":\"#629E51\"},\"legendOpen\":false,\"vis\":{\"colors\":{\"failure\":\"#E24D42\",\"success\":\"#629E51\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Top users by authentication failures\",\"panelRefName\":\"panel_775ced7d-7c58-44bc-8d4e-2a757d2c218c\"},{\"version\":\"7.6.0\",\"type\":\"map\",\"gridData\":{\"h\":17,\"i\":\"15fe975b-6b8b-4445-872d-e06c041e2c31\",\"w\":38,\"x\":10,\"y\":14},\"panelIndex\":\"15fe975b-6b8b-4445-872d-e06c041e2c31\",\"embeddableConfig\":{\"hiddenLayers\":[],\"isLayerTOCOpen\":false,\"mapCenter\":{\"lat\":42.68781,\"lon\":-48.94209,\"zoom\":1.88},\"openTOCDetails\":[],\"enhancements\":{}},\"title\":\"Client geolocation map\",\"panelRefName\":\"panel_15fe975b-6b8b-4445-872d-e06c041e2c31\"},{\"version\":\"7.6.0\",\"type\":\"search\",\"gridData\":{\"h\":13,\"i\":\"481f1778-caad-4971-b598-bb61c94bf998\",\"w\":48,\"x\":0,\"y\":31},\"panelIndex\":\"481f1778-caad-4971-b598-bb61c94bf998\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Data Loss Prevention alerts\",\"panelRefName\":\"panel_481f1778-caad-4971-b598-bb61c94bf998\"}]","timeRestore":false,"title":"[Filebeat o365] Audit Dashboard ECS","version":1},"coreMigrationVersion":"8.0.0","id":"712e2c00-685d-11ea-8d6a-292ef5d68366","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"0be1adb0-6860-11ea-8d6a-292ef5d68366","name":"b6942e2a-81dc-40e4-a932-8b7a864b28bc:panel_b6942e2a-81dc-40e4-a932-8b7a864b28bc","type":"visualization"},{"id":"8b033510-685a-11ea-8d6a-292ef5d68366","name":"9673e6df-4b1e-4771-b1c6-c41c9bfc7272:panel_9673e6df-4b1e-4771-b1c6-c41c9bfc7272","type":"visualization"},{"id":"d43c95a0-6864-11ea-8d6a-292ef5d68366","name":"70ab7239-c65c-41da-8242-da61750745d7:panel_70ab7239-c65c-41da-8242-da61750745d7","type":"visualization"},{"id":"897d0c70-6869-11ea-8d6a-292ef5d68366","name":"775ced7d-7c58-44bc-8d4e-2a757d2c218c:panel_775ced7d-7c58-44bc-8d4e-2a757d2c218c","type":"visualization"},{"id":"dbae13c0-685c-11ea-8d6a-292ef5d68366","name":"15fe975b-6b8b-4445-872d-e06c041e2c31:panel_15fe975b-6b8b-4445-872d-e06c041e2c31","type":"map"},{"id":"8b8e5a10-6886-11ea-8d6a-292ef5d68366","name":"481f1778-caad-4971-b598-bb61c94bf998:panel_481f1778-caad-4971-b598-bb61c94bf998","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:49.253Z","version":"WzQzMDQsMV0="} diff --git a/x-pack/filebeat/module/o365/_meta/kibana/7/map/dbae13c0-685c-11ea-8d6a-292ef5d68366.json b/x-pack/filebeat/module/o365/_meta/kibana/7/map/dbae13c0-685c-11ea-8d6a-292ef5d68366.json new file mode 100644 index 000000000000..1c3afa633e7d --- /dev/null +++ b/x-pack/filebeat/module/o365/_meta/kibana/7/map/dbae13c0-685c-11ea-8d6a-292ef5d68366.json @@ -0,0 +1,27 @@ +{ + "attributes": { + "description": "", + "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"0b910b6c-77c8-4223-892a-1ebf69b0ccb4\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"type\":\"ES_GEO_GRID\",\"id\":\"3ba31ffc-7051-44bf-96a0-a684020cd2a3\",\"geoField\":\"source.geo.location\",\"requestType\":\"point\",\"resolution\":\"FINE\",\"applyGlobalQuery\":true,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"fillColor\":{\"type\":\"DYNAMIC\",\"options\":{\"color\":\"Yellow to Red\",\"colorCategory\":\"palette_0\",\"field\":{\"name\":\"doc_count\",\"origin\":\"source\"},\"fieldMetaOptions\":{\"isEnabled\":true,\"sigma\":3},\"type\":\"ORDINAL\",\"useCustomColorRamp\":false}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFF\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":0}},\"iconSize\":{\"type\":\"DYNAMIC\",\"options\":{\"minSize\":8,\"maxSize\":32,\"field\":{\"name\":\"doc_count\",\"origin\":\"source\"},\"fieldMetaOptions\":{\"isEnabled\":true,\"sigma\":3}}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"DYNAMIC\",\"options\":{\"field\":{\"name\":\"doc_count\",\"origin\":\"source\"}}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"airfield\"}}},\"isTimeAware\":true},\"id\":\"acc53b7b-3411-406b-9371-6fa62b6b9365\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\"}]", + "mapStateJSON": "{\"zoom\":2.88,\"center\":{\"lon\":16.67387,\"lat\":30.87292},\"timeFilters\":{\"from\":\"now-7d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"event.dataset:\\\"o365.audit\\\" \",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false}}", + "title": "Client Geo Map [Filebeat o365 audit]", + "uiStateJSON": { + "isLayerTOCOpen": true, + "openTOCDetails": [] + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dbae13c0-685c-11ea-8d6a-292ef5d68366", + "migrationVersion": { + "map": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "layer_1_source_index_pattern", + "type": "index-pattern" + } + ], + "type": "map", + "updated_at": "2021-08-04T16:33:49.253Z", + "version": "WzQzMDksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/o365/_meta/kibana/7/search/8b8e5a10-6886-11ea-8d6a-292ef5d68366.json b/x-pack/filebeat/module/o365/_meta/kibana/7/search/8b8e5a10-6886-11ea-8d6a-292ef5d68366.json new file mode 100644 index 000000000000..f142387bb5cc --- /dev/null +++ b/x-pack/filebeat/module/o365/_meta/kibana/7/search/8b8e5a10-6886-11ea-8d6a-292ef5d68366.json @@ -0,0 +1,143 @@ +{ + "attributes": { + "columns": [ + "event.category", + "event.type", + "event.action", + "event.outcome", + "user.name", + "file.name", + "rule.name" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "o365.audit" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "o365.audit" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.kind", + "negate": false, + "params": { + "query": "alert" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.kind": "alert" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "ComplianceDLPSharePoint", + "ComplianceDLPExchange" + ], + "type": "phrases", + "value": "ComplianceDLPSharePoint, ComplianceDLPExchange" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "ComplianceDLPSharePoint" + } + }, + { + "match_phrase": { + "event.code": "ComplianceDLPExchange" + } + } + ] + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Data Loss Prevention [Filebeat o365]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "8b8e5a10-6886-11ea-8d6a-292ef5d68366", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:49.253Z", + "version": "WzQzMTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/o365/_meta/kibana/7/search/fdc14020-6859-11ea-8d6a-292ef5d68366.json b/x-pack/filebeat/module/o365/_meta/kibana/7/search/fdc14020-6859-11ea-8d6a-292ef5d68366.json new file mode 100644 index 000000000000..dd6b0cbb0a3f --- /dev/null +++ b/x-pack/filebeat/module/o365/_meta/kibana/7/search/fdc14020-6859-11ea-8d6a-292ef5d68366.json @@ -0,0 +1,44 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset:\"o365.audit\" " + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Audit Events [Filebeat O365]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "fdc14020-6859-11ea-8d6a-292ef5d68366", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:49.253Z", + "version": "WzQzMTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/o365/_meta/kibana/7/visualization/0be1adb0-6860-11ea-8d6a-292ef5d68366.json b/x-pack/filebeat/module/o365/_meta/kibana/7/visualization/0be1adb0-6860-11ea-8d6a-292ef5d68366.json new file mode 100644 index 000000000000..948a8dd057a3 --- /dev/null +++ b/x-pack/filebeat/module/o365/_meta/kibana/7/visualization/0be1adb0-6860-11ea-8d6a-292ef5d68366.json @@ -0,0 +1,81 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "savedSearchRefName": "search_0", + "title": "Audit Event Count [Filebeat o365]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 40, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Audit Event Count [Filebeat o365]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0be1adb0-6860-11ea-8d6a-292ef5d68366", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "fdc14020-6859-11ea-8d6a-292ef5d68366", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:49.253Z", + "version": "WzQzMDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/o365/_meta/kibana/7/visualization/897d0c70-6869-11ea-8d6a-292ef5d68366.json b/x-pack/filebeat/module/o365/_meta/kibana/7/visualization/897d0c70-6869-11ea-8d6a-292ef5d68366.json new file mode 100644 index 000000000000..ebd9b39648d7 --- /dev/null +++ b/x-pack/filebeat/module/o365/_meta/kibana/7/visualization/897d0c70-6869-11ea-8d6a-292ef5d68366.json @@ -0,0 +1,258 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.category", + "negate": false, + "params": { + "query": "authentication" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.category": "authentication" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top Authentication Failures [Filebeat o365]", + "uiStateJSON": { + "vis": { + "colors": { + "failure": "#E24D42", + "success": "#629E51" + }, + "legendOpen": true + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "event.outcome", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "asc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 2 + }, + "schema": "group", + "type": "terms" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "split", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 200 + }, + "position": "left", + "scale": { + "type": "linear" + }, + "show": false, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "dimensions": { + "series": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "", + "origin": "http://localhost:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "event.outcome: Ascending", + "params": {} + } + ], + "splitRow": [ + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "", + "origin": "http://localhost:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "user.name: Descending", + "params": {} + } + ], + "x": null, + "y": [ + { + "accessor": 2, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + } + ] + }, + "grid": { + "categoryLines": false, + "valueAxis": "" + }, + "isVislibVis": true, + "labels": { + "show": true + }, + "legendPosition": "bottom", + "orderBucketsBySum": true, + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "row": true, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": true, + "rotate": 75, + "show": false, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "bottom", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": false, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Top Authentication Failures [Filebeat o365]", + "type": "horizontal_bar" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "897d0c70-6869-11ea-8d6a-292ef5d68366", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "fdc14020-6859-11ea-8d6a-292ef5d68366", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:49.253Z", + "version": "WzQzMDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/o365/_meta/kibana/7/visualization/8b033510-685a-11ea-8d6a-292ef5d68366.json b/x-pack/filebeat/module/o365/_meta/kibana/7/visualization/8b033510-685a-11ea-8d6a-292ef5d68366.json new file mode 100644 index 000000000000..708fc717b68d --- /dev/null +++ b/x-pack/filebeat/module/o365/_meta/kibana/7/visualization/8b033510-685a-11ea-8d6a-292ef5d68366.json @@ -0,0 +1,214 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "savedSearchRefName": "search_0", + "title": "Events Histogram [Filebeat o365]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.code", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 50 + }, + "schema": "group", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "2020-02-05T03:25:59.045Z", + "to": "2020-02-29T10:59:01.067Z" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "dimensions": { + "series": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "", + "origin": "http://localhost:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "event.code: Descending", + "params": {} + } + ], + "x": { + "accessor": 1, + "aggType": "date_histogram", + "format": { + "id": "date", + "params": { + "pattern": "YYYY-MM-DD HH:mm" + } + }, + "label": "@timestamp per 12 hours", + "params": { + "bounds": { + "max": "2020-02-29T10:59:01.067Z", + "min": "2020-02-05T03:25:59.045Z" + }, + "date": true, + "format": "YYYY-MM-DD HH:mm", + "interval": "PT12H", + "intervalESUnit": "h", + "intervalESValue": 12 + } + }, + "y": [ + { + "accessor": 2, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + } + ] + }, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": { + "show": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Events Histogram [Filebeat o365]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8b033510-685a-11ea-8d6a-292ef5d68366", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "fdc14020-6859-11ea-8d6a-292ef5d68366", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:49.253Z", + "version": "WzQzMDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/o365/_meta/kibana/7/visualization/d43c95a0-6864-11ea-8d6a-292ef5d68366.json b/x-pack/filebeat/module/o365/_meta/kibana/7/visualization/d43c95a0-6864-11ea-8d6a-292ef5d68366.json new file mode 100644 index 000000000000..dc8f69f0ae7a --- /dev/null +++ b/x-pack/filebeat/module/o365/_meta/kibana/7/visualization/d43c95a0-6864-11ea-8d6a-292ef5d68366.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "savedSearchRefName": "search_0", + "title": "Audit Event Type [Filebeat o365]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.kind", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "metric": { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Audit Event Type [Filebeat o365]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d43c95a0-6864-11ea-8d6a-292ef5d68366", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "fdc14020-6859-11ea-8d6a-292ef5d68366", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:49.253Z", + "version": "WzQzMDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/o365/module.yml b/x-pack/filebeat/module/o365/module.yml index 22fc12c7878b..2ef22242db88 100644 --- a/x-pack/filebeat/module/o365/module.yml +++ b/x-pack/filebeat/module/o365/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 712e2c00-685d-11ea-8d6a-292ef5d68366 - file: Filebeat-O365-Audit.ndjson + file: Filebeat-O365-Audit.json diff --git a/x-pack/filebeat/module/okta/_meta/kibana/7/dashboard/749203a0-67b1-11ea-a76f-bf44814e437d.json b/x-pack/filebeat/module/okta/_meta/kibana/7/dashboard/749203a0-67b1-11ea-a76f-bf44814e437d.json new file mode 100644 index 000000000000..bbdaaf8ff7e0 --- /dev/null +++ b/x-pack/filebeat/module/okta/_meta/kibana/7/dashboard/749203a0-67b1-11ea-a76f-bf44814e437d.json @@ -0,0 +1,168 @@ +{ + "attributes": { + "description": "Filebeat Okta module Kibana dashboard", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "hiddenLayers": [], + "isLayerTOCOpen": false, + "mapCenter": { + "lat": 26.54701, + "lon": -44.69098, + "zoom": 2.75 + }, + "openTOCDetails": [] + }, + "gridData": { + "h": 22, + "i": "8013824b-5a66-494c-acc5-3df8b7678879", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "8013824b-5a66-494c-acc5-3df8b7678879", + "panelRefName": "panel_8013824b-5a66-494c-acc5-3df8b7678879", + "type": "map", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "c6a66fe5-21a2-4308-8563-d4a7f5135d25", + "w": 10, + "x": 0, + "y": 22 + }, + "panelIndex": "c6a66fe5-21a2-4308-8563-d4a7f5135d25", + "panelRefName": "panel_c6a66fe5-21a2-4308-8563-d4a7f5135d25", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "195db901-dc2b-4b7d-80c3-742e2712ac2a", + "w": 9, + "x": 10, + "y": 22 + }, + "panelIndex": "195db901-dc2b-4b7d-80c3-742e2712ac2a", + "panelRefName": "panel_195db901-dc2b-4b7d-80c3-742e2712ac2a", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "dc5128e2-0b4d-4dd5-bbc2-624f64467a77", + "w": 19, + "x": 29, + "y": 22 + }, + "panelIndex": "dc5128e2-0b4d-4dd5-bbc2-624f64467a77", + "panelRefName": "panel_dc5128e2-0b4d-4dd5-bbc2-624f64467a77", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "a25a43ed-3262-486c-a482-1fac52f26128", + "w": 10, + "x": 19, + "y": 22 + }, + "panelIndex": "a25a43ed-3262-486c-a482-1fac52f26128", + "panelRefName": "panel_a25a43ed-3262-486c-a482-1fac52f26128", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "c0d5bac3-7e50-4ef9-a401-5a596ec84ee9", + "w": 48, + "x": 0, + "y": 33 + }, + "panelIndex": "c0d5bac3-7e50-4ef9-a401-5a596ec84ee9", + "panelRefName": "panel_c0d5bac3-7e50-4ef9-a401-5a596ec84ee9", + "type": "search", + "version": "8.0.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Filebeat Okta] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "749203a0-67b1-11ea-a76f-bf44814e437d", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "281ca660-67b1-11ea-a76f-bf44814e437d", + "name": "8013824b-5a66-494c-acc5-3df8b7678879:panel_8013824b-5a66-494c-acc5-3df8b7678879", + "type": "map" + }, + { + "id": "545d6a00-67ae-11ea-a76f-bf44814e437d", + "name": "c6a66fe5-21a2-4308-8563-d4a7f5135d25:panel_c6a66fe5-21a2-4308-8563-d4a7f5135d25", + "type": "visualization" + }, + { + "id": "7c6ec080-67c6-11ea-a76f-bf44814e437d", + "name": "195db901-dc2b-4b7d-80c3-742e2712ac2a:panel_195db901-dc2b-4b7d-80c3-742e2712ac2a", + "type": "visualization" + }, + { + "id": "cda883a0-67c6-11ea-a76f-bf44814e437d", + "name": "dc5128e2-0b4d-4dd5-bbc2-624f64467a77:panel_dc5128e2-0b4d-4dd5-bbc2-624f64467a77", + "type": "visualization" + }, + { + "id": "0a784b30-67c7-11ea-a76f-bf44814e437d", + "name": "a25a43ed-3262-486c-a482-1fac52f26128:panel_a25a43ed-3262-486c-a482-1fac52f26128", + "type": "visualization" + }, + { + "id": "21028750-67ca-11ea-a76f-bf44814e437d", + "name": "c0d5bac3-7e50-4ef9-a401-5a596ec84ee9:panel_c0d5bac3-7e50-4ef9-a401-5a596ec84ee9", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:39.099Z", + "version": "WzQyMzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/okta/_meta/kibana/7/dashboard/749203a0-67b1-11ea-a76f-bf44814e437d.ndjson b/x-pack/filebeat/module/okta/_meta/kibana/7/dashboard/749203a0-67b1-11ea-a76f-bf44814e437d.ndjson deleted file mode 100644 index b9688f8af3c7..000000000000 --- a/x-pack/filebeat/module/okta/_meta/kibana/7/dashboard/749203a0-67b1-11ea-a76f-bf44814e437d.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","layerListJSON":"[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"6908e81b-1695-4445-aee4-8bc8c9f65600\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"id\":\"4b8bd321-4b90-4d97-83e0-2b12bf091f66\",\"geoField\":\"client.geo.location\",\"filterByMapBounds\":false,\"type\":\"ES_SEARCH\",\"tooltipProperties\":[],\"sortField\":\"\",\"sortOrder\":\"desc\",\"topHitsSize\":1,\"applyGlobalQuery\":true,\"indexPatternRefName\":\"layer_1_source_index_pattern\",\"scalingType\":\"LIMIT\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#54B399\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#41937c\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"dc52e707-92d7-4de7-becf-a3a8bfaa2c2d\",\"label\":\"Okta \",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"query\":{\"query\":\"event.dataset : \\\"okta.system\\\" \",\"language\":\"kuery\"}}]","mapStateJSON":"{\"zoom\":2.75,\"center\":{\"lon\":-44.69098,\"lat\":26.54701},\"timeFilters\":{\"from\":\"now-15w\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"index\":\"filebeat-*\",\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"okta.system\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"event.dataset\":\"okta.system\"}}}],\"settings\":{\"autoFitToDataBounds\":false}}","title":"Geolocation [Filebeat Okta]","uiStateJSON":"{\"isLayerTOCOpen\": true, \"openTOCDetails\": []}"},"coreMigrationVersion":"8.0.0","id":"281ca660-67b1-11ea-a76f-bf44814e437d","migrationVersion":{"map":"7.14.0"},"references":[{"id":"filebeat-*","name":"layer_1_source_index_pattern","type":"index-pattern"}],"type":"map","updated_at":"2021-08-04T16:33:39.099Z","version":"WzQyMzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"okta.system\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"okta.system\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Event Outcome [Filebeat Okta]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Event Outcome [Filebeat Okta]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"545d6a00-67ae-11ea-a76f-bf44814e437d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:39.099Z","version":"WzQyMzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"okta.system\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"okta.system\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Transaction Types [Filebeat Okta]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"okta.transaction.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Transaction Types [Filebeat Okta]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7c6ec080-67c6-11ea-a76f-bf44814e437d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:39.099Z","version":"WzQyMzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Time Series [Filebeat Okta]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"abd68650-67c6-11ea-8c7d-ed286611413e\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"event.dataset : \\\"okta.system\\\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Time Series [Filebeat Okta]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cda883a0-67c6-11ea-a76f-bf44814e437d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:39.099Z","version":"WzQyMzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"okta.system\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"okta.system\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Actor Types [Filebeat Okta]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"okta.actor.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Actor Types [Filebeat Okta]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0a784b30-67c7-11ea-a76f-bf44814e437d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:39.099Z","version":"WzQyMzgsMV0="} -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"okta.system\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"okta.system\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.outcome\", \"negate\": false, \"params\": {\"query\": \"FAILURE\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.outcome\": \"FAILURE\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"],["event.created","desc"]],"title":"Okta Failure Events","version":1},"coreMigrationVersion":"8.0.0","id":"21028750-67ca-11ea-a76f-bf44814e437d","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:33:39.099Z","version":"WzQyMzksMV0="} -{"attributes":{"description":"Filebeat Okta module Kibana dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"map\",\"gridData\":{\"h\":22,\"i\":\"8013824b-5a66-494c-acc5-3df8b7678879\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"8013824b-5a66-494c-acc5-3df8b7678879\",\"embeddableConfig\":{\"hiddenLayers\":[],\"isLayerTOCOpen\":false,\"mapCenter\":{\"lat\":26.54701,\"lon\":-44.69098,\"zoom\":2.75},\"openTOCDetails\":[],\"enhancements\":{}},\"panelRefName\":\"panel_8013824b-5a66-494c-acc5-3df8b7678879\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"c6a66fe5-21a2-4308-8563-d4a7f5135d25\",\"w\":10,\"x\":0,\"y\":22},\"panelIndex\":\"c6a66fe5-21a2-4308-8563-d4a7f5135d25\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_c6a66fe5-21a2-4308-8563-d4a7f5135d25\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"195db901-dc2b-4b7d-80c3-742e2712ac2a\",\"w\":9,\"x\":10,\"y\":22},\"panelIndex\":\"195db901-dc2b-4b7d-80c3-742e2712ac2a\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_195db901-dc2b-4b7d-80c3-742e2712ac2a\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"dc5128e2-0b4d-4dd5-bbc2-624f64467a77\",\"w\":19,\"x\":29,\"y\":22},\"panelIndex\":\"dc5128e2-0b4d-4dd5-bbc2-624f64467a77\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_dc5128e2-0b4d-4dd5-bbc2-624f64467a77\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"a25a43ed-3262-486c-a482-1fac52f26128\",\"w\":10,\"x\":19,\"y\":22},\"panelIndex\":\"a25a43ed-3262-486c-a482-1fac52f26128\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a25a43ed-3262-486c-a482-1fac52f26128\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"search\",\"gridData\":{\"h\":16,\"i\":\"c0d5bac3-7e50-4ef9-a401-5a596ec84ee9\",\"w\":48,\"x\":0,\"y\":33},\"panelIndex\":\"c0d5bac3-7e50-4ef9-a401-5a596ec84ee9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_c0d5bac3-7e50-4ef9-a401-5a596ec84ee9\"}]","timeRestore":false,"title":"[Filebeat Okta] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"749203a0-67b1-11ea-a76f-bf44814e437d","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"281ca660-67b1-11ea-a76f-bf44814e437d","name":"8013824b-5a66-494c-acc5-3df8b7678879:panel_8013824b-5a66-494c-acc5-3df8b7678879","type":"map"},{"id":"545d6a00-67ae-11ea-a76f-bf44814e437d","name":"c6a66fe5-21a2-4308-8563-d4a7f5135d25:panel_c6a66fe5-21a2-4308-8563-d4a7f5135d25","type":"visualization"},{"id":"7c6ec080-67c6-11ea-a76f-bf44814e437d","name":"195db901-dc2b-4b7d-80c3-742e2712ac2a:panel_195db901-dc2b-4b7d-80c3-742e2712ac2a","type":"visualization"},{"id":"cda883a0-67c6-11ea-a76f-bf44814e437d","name":"dc5128e2-0b4d-4dd5-bbc2-624f64467a77:panel_dc5128e2-0b4d-4dd5-bbc2-624f64467a77","type":"visualization"},{"id":"0a784b30-67c7-11ea-a76f-bf44814e437d","name":"a25a43ed-3262-486c-a482-1fac52f26128:panel_a25a43ed-3262-486c-a482-1fac52f26128","type":"visualization"},{"id":"21028750-67ca-11ea-a76f-bf44814e437d","name":"c0d5bac3-7e50-4ef9-a401-5a596ec84ee9:panel_c0d5bac3-7e50-4ef9-a401-5a596ec84ee9","type":"search"}],"type":"dashboard","updated_at":"2021-08-04T16:33:39.099Z","version":"WzQyMzMsMV0="} diff --git a/x-pack/filebeat/module/okta/_meta/kibana/7/map/281ca660-67b1-11ea-a76f-bf44814e437d.json b/x-pack/filebeat/module/okta/_meta/kibana/7/map/281ca660-67b1-11ea-a76f-bf44814e437d.json new file mode 100644 index 000000000000..8e84bedce4af --- /dev/null +++ b/x-pack/filebeat/module/okta/_meta/kibana/7/map/281ca660-67b1-11ea-a76f-bf44814e437d.json @@ -0,0 +1,27 @@ +{ + "attributes": { + "description": "", + "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"6908e81b-1695-4445-aee4-8bc8c9f65600\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"id\":\"4b8bd321-4b90-4d97-83e0-2b12bf091f66\",\"geoField\":\"client.geo.location\",\"filterByMapBounds\":false,\"type\":\"ES_SEARCH\",\"tooltipProperties\":[],\"sortField\":\"\",\"sortOrder\":\"desc\",\"topHitsSize\":1,\"applyGlobalQuery\":true,\"indexPatternRefName\":\"layer_1_source_index_pattern\",\"scalingType\":\"LIMIT\"},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#54B399\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#41937c\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"dc52e707-92d7-4de7-becf-a3a8bfaa2c2d\",\"label\":\"Okta \",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\",\"query\":{\"query\":\"event.dataset : \\\"okta.system\\\" \",\"language\":\"kuery\"}}]", + "mapStateJSON": "{\"zoom\":2.75,\"center\":{\"lon\":-44.69098,\"lat\":26.54701},\"timeFilters\":{\"from\":\"now-15w\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":false,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"index\":\"filebeat-*\",\"key\":\"event.dataset\",\"negate\":false,\"params\":{\"query\":\"okta.system\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"event.dataset\":\"okta.system\"}}}],\"settings\":{\"autoFitToDataBounds\":false}}", + "title": "Geolocation [Filebeat Okta]", + "uiStateJSON": { + "isLayerTOCOpen": true, + "openTOCDetails": [] + } + }, + "coreMigrationVersion": "8.0.0", + "id": "281ca660-67b1-11ea-a76f-bf44814e437d", + "migrationVersion": { + "map": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "layer_1_source_index_pattern", + "type": "index-pattern" + } + ], + "type": "map", + "updated_at": "2021-08-04T16:33:39.099Z", + "version": "WzQyMzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/okta/_meta/kibana/7/search/21028750-67ca-11ea-a76f-bf44814e437d.json b/x-pack/filebeat/module/okta/_meta/kibana/7/search/21028750-67ca-11ea-a76f-bf44814e437d.json new file mode 100644 index 000000000000..09015545950a --- /dev/null +++ b/x-pack/filebeat/module/okta/_meta/kibana/7/search/21028750-67ca-11ea-a76f-bf44814e437d.json @@ -0,0 +1,101 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "okta.system" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "okta.system" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.outcome", + "negate": false, + "params": { + "query": "FAILURE" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.outcome": "FAILURE" + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ], + [ + "event.created", + "desc" + ] + ], + "title": "Okta Failure Events", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "21028750-67ca-11ea-a76f-bf44814e437d", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:33:39.099Z", + "version": "WzQyMzksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/okta/_meta/kibana/7/visualization/0a784b30-67c7-11ea-a76f-bf44814e437d.json b/x-pack/filebeat/module/okta/_meta/kibana/7/visualization/0a784b30-67c7-11ea-a76f-bf44814e437d.json new file mode 100644 index 000000000000..aca4898a2ce7 --- /dev/null +++ b/x-pack/filebeat/module/okta/_meta/kibana/7/visualization/0a784b30-67c7-11ea-a76f-bf44814e437d.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "okta.system" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "okta.system" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Actor Types [Filebeat Okta]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "okta.actor.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Actor Types [Filebeat Okta]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0a784b30-67c7-11ea-a76f-bf44814e437d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:39.099Z", + "version": "WzQyMzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/okta/_meta/kibana/7/visualization/545d6a00-67ae-11ea-a76f-bf44814e437d.json b/x-pack/filebeat/module/okta/_meta/kibana/7/visualization/545d6a00-67ae-11ea-a76f-bf44814e437d.json new file mode 100644 index 000000000000..8c26e7a75e19 --- /dev/null +++ b/x-pack/filebeat/module/okta/_meta/kibana/7/visualization/545d6a00-67ae-11ea-a76f-bf44814e437d.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "okta.system" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "okta.system" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Event Outcome [Filebeat Okta]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.outcome", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Event Outcome [Filebeat Okta]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "545d6a00-67ae-11ea-a76f-bf44814e437d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:39.099Z", + "version": "WzQyMzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/okta/_meta/kibana/7/visualization/7c6ec080-67c6-11ea-a76f-bf44814e437d.json b/x-pack/filebeat/module/okta/_meta/kibana/7/visualization/7c6ec080-67c6-11ea-a76f-bf44814e437d.json new file mode 100644 index 000000000000..51a6b385b6fe --- /dev/null +++ b/x-pack/filebeat/module/okta/_meta/kibana/7/visualization/7c6ec080-67c6-11ea-a76f-bf44814e437d.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "okta.system" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "okta.system" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Transaction Types [Filebeat Okta]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "okta.transaction.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Transaction Types [Filebeat Okta]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7c6ec080-67c6-11ea-a76f-bf44814e437d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:39.099Z", + "version": "WzQyMzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/okta/_meta/kibana/7/visualization/cda883a0-67c6-11ea-a76f-bf44814e437d.json b/x-pack/filebeat/module/okta/_meta/kibana/7/visualization/cda883a0-67c6-11ea-a76f-bf44814e437d.json new file mode 100644 index 000000000000..487e3d30bd57 --- /dev/null +++ b/x-pack/filebeat/module/okta/_meta/kibana/7/visualization/cda883a0-67c6-11ea-a76f-bf44814e437d.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Time Series [Filebeat Okta]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "abd68650-67c6-11ea-8c7d-ed286611413e" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "event.dataset : \"okta.system\"" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Time Series [Filebeat Okta]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "cda883a0-67c6-11ea-a76f-bf44814e437d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:33:39.099Z", + "version": "WzQyMzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/okta/module.yml b/x-pack/filebeat/module/okta/module.yml index 1b948b24a649..ecdcb3a47ff1 100644 --- a/x-pack/filebeat/module/okta/module.yml +++ b/x-pack/filebeat/module/okta/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 749203a0-67b1-11ea-a76f-bf44814e437d - file: 749203a0-67b1-11ea-a76f-bf44814e437d.ndjson + file: 749203a0-67b1-11ea-a76f-bf44814e437d.json diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/772964e0-7591-11e9-aacf-79a3704914a0.json b/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/772964e0-7591-11e9-aacf-79a3704914a0.json new file mode 100644 index 000000000000..36bb25f5766b --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/772964e0-7591-11e9-aacf-79a3704914a0.json @@ -0,0 +1,172 @@ +{ + "attributes": { + "description": "Palo Alto Networks PAN-OS Threats Overview", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 15, + "i": "1", + "w": 31, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Threat outcome histogram", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "2", + "w": 24, + "x": 0, + "y": 15 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Top threats by name", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "3", + "w": 24, + "x": 24, + "y": 15 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Top threats by resource", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "4", + "w": 24, + "x": 0, + "y": 30 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "Top attackers (clients)", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "5", + "w": 24, + "x": 24, + "y": 30 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Top attackers (servers)", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": true + } + }, + "gridData": { + "h": 15, + "i": "6", + "w": 17, + "x": 31, + "y": 0 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Outcome by threat type", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat PANW] Threats Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "772964e0-7591-11e9-aacf-79a3704914a0", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "0bd2a0c0-7574-11e9-976e-65a8f47cc4c1", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "3eca1070-7589-11e9-aacf-79a3704914a0", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "5bd32b20-7575-11e9-976e-65a8f47cc4c1", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "90ce3300-758a-11e9-aacf-79a3704914a0", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "a95aaf20-758a-11e9-aacf-79a3704914a0", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "6dce7930-758c-11e9-aacf-79a3704914a0", + "name": "6:panel_6", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:21.950Z", + "version": "WzQ1MjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-network-overview.ndjson b/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-network-overview.ndjson deleted file mode 100644 index 0dfc149eacfb..000000000000 --- a/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-network-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset: \\\"panw.panos\\\" and event.category: \\\"network_traffic\\\"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"PAN-OS Flows [Filebeat PANW] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"290685e0-7569-11e9-976e-65a8f47cc4c1","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Destination Flows Map [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"destination.geo.location\",\"isFilteredByCollar\":true,\"mapCenter\":[0,0],\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true}}},\"title\":\"Destination Flows Map [Filebeat PANW] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"091fe860-756a-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"290685e0-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Source Flows Map [Filebeat PANW] ECS","uiStateJSON":"{\"mapCenter\": [-0.17578097424708533, 0.17578125], \"mapZoom\": 1}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"isFilteredByCollar\":true,\"mapCenter\":[0,0],\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true}}},\"title\":\"Source Flows Map [Filebeat PANW] ECS\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"87f30f60-7569-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"290685e0-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.action\", \"negate\": true, \"params\": {\"query\": \"flow_terminated\"}, \"type\": \"phrase\", \"value\": \"flow_terminated\"}, \"query\": {\"match\": {\"event.action\": {\"query\": \"flow_terminated\", \"type\": \"phrase\"}}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Flow Creation Histogram [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"2018-04-10T04:36:19.586Z\",\"to\":\"2018-04-10T04:39:56.264Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Flow Creation Histogram [Filebeat PANW] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"78e7e820-756d-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"290685e0-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.action\", \"negate\": true, \"params\": {\"query\": \"flow_started\"}, \"type\": \"phrase\", \"value\": \"flow_started\"}, \"query\": {\"match\": {\"event.action\": {\"query\": \"flow_started\", \"type\": \"phrase\"}}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Source Zone breakout [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"panw.panos.source.zone\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Source Zone breakout [Filebeat PANW] ECS\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"d9cab170-756f-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"290685e0-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.action\", \"negate\": true, \"params\": {\"query\": \"flow_started\"}, \"type\": \"phrase\", \"value\": \"flow_started\"}, \"query\": {\"match\": {\"event.action\": {\"query\": \"flow_started\", \"type\": \"phrase\"}}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Destination Zone breakout [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"panw.panos.destination.zone\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Destination Zone breakout [Filebeat PANW] ECS\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"135930b0-7570-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"290685e0-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Event Outcome by Transport and Destination Port [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"network.transport\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"destination.port\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Event Outcome by Transport and Destination Port [Filebeat PANW] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"e46331c0-756a-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"290685e0-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Network Application breakout [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"network.application\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Network Application breakout [Filebeat PANW] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0407a3e0-756f-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"290685e0-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MjEsMV0="} -{"attributes":{"description":"Palo Alto Networks PAN-OS Networks Overview","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":12,\"x\":24,\"y\":15},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":12,\"x\":36,\"y\":15},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Filebeat PANW] Network Flows ECS","version":1},"coreMigrationVersion":"8.0.0","id":"e40ba240-7572-11e9-976e-65a8f47cc4c1","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"091fe860-756a-11e9-976e-65a8f47cc4c1","name":"1:panel_1","type":"visualization"},{"id":"87f30f60-7569-11e9-976e-65a8f47cc4c1","name":"2:panel_2","type":"visualization"},{"id":"78e7e820-756d-11e9-976e-65a8f47cc4c1","name":"3:panel_3","type":"visualization"},{"id":"d9cab170-756f-11e9-976e-65a8f47cc4c1","name":"4:panel_4","type":"visualization"},{"id":"135930b0-7570-11e9-976e-65a8f47cc4c1","name":"5:panel_5","type":"visualization"},{"id":"e46331c0-756a-11e9-976e-65a8f47cc4c1","name":"6:panel_6","type":"visualization"},{"id":"0407a3e0-756f-11e9-976e-65a8f47cc4c1","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:20.886Z","version":"WzQ1MTQsMV0="} diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-threat-overview.ndjson b/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-threat-overview.ndjson deleted file mode 100644 index 4e229fd12748..000000000000 --- a/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/Filebeat-panw-threat-overview.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"event.dataset: \\\"panw.panos\\\" and event.category: \\\"security_threat\\\"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"PAN-OS Threats [Filebeat PANW] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"3cea1360-7569-11e9-976e-65a8f47cc4c1","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:21.950Z","version":"WzQ1MzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Threat outcome histogram [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"2018-04-10T04:36:19.586Z\",\"to\":\"2018-04-10T04:39:56.264Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Threat outcome histogram [Filebeat PANW] ECS\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"0bd2a0c0-7574-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"3cea1360-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:21.950Z","version":"WzQ1MjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Threat ID Cloud [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"panw.panos.threat.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Threat ID Cloud [Filebeat PANW] ECS\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"3eca1070-7589-11e9-aacf-79a3704914a0","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"3cea1360-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:21.950Z","version":"WzQ1MjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Threat Resource Cloud [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"url.original\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Threat Resource Cloud [Filebeat PANW] ECS\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"5bd32b20-7575-11e9-976e-65a8f47cc4c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"3cea1360-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:21.950Z","version":"WzQ1MjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"network.direction\", \"negate\": false, \"params\": {\"query\": \"inbound\"}, \"type\": \"phrase\", \"value\": \"inbound\"}, \"query\": {\"match\": {\"network.direction\": {\"query\": \"inbound\", \"type\": \"phrase\"}}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top attackers (clients) [Filebeat PANW] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"client.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top attackers (clients) [Filebeat PANW] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"90ce3300-758a-11e9-aacf-79a3704914a0","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"3cea1360-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:21.950Z","version":"WzQ1MjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"network.direction\", \"negate\": false, \"params\": {\"query\": \"outbound\"}, \"type\": \"phrase\", \"value\": \"outbound\"}, \"query\": {\"match\": {\"network.direction\": {\"query\": \"outbound\", \"type\": \"phrase\"}}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top attackers (servers) [Filebeat PANW] ECS","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"server.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top attackers (servers) [Filebeat PANW] ECS\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"a95aaf20-758a-11e9-aacf-79a3704914a0","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"3cea1360-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:21.950Z","version":"WzQ1MjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Outcome by Threat Type [Filebeat PANW] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.outcome\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Outcome by Threat Type [Filebeat PANW] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"6dce7930-758c-11e9-aacf-79a3704914a0","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"3cea1360-7569-11e9-976e-65a8f47cc4c1","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:21.950Z","version":"WzQ1MjksMV0="} -{"attributes":{"description":"Palo Alto Networks PAN-OS Threats Overview","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":31,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Threat outcome histogram\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top threats by name\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top threats by resource\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"4\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top attackers (clients)\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top attackers (servers)\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":17,\"x\":31,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Outcome by threat type\",\"panelRefName\":\"panel_6\"}]","timeRestore":false,"title":"[Filebeat PANW] Threats Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"772964e0-7591-11e9-aacf-79a3704914a0","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"0bd2a0c0-7574-11e9-976e-65a8f47cc4c1","name":"1:panel_1","type":"visualization"},{"id":"3eca1070-7589-11e9-aacf-79a3704914a0","name":"2:panel_2","type":"visualization"},{"id":"5bd32b20-7575-11e9-976e-65a8f47cc4c1","name":"3:panel_3","type":"visualization"},{"id":"90ce3300-758a-11e9-aacf-79a3704914a0","name":"4:panel_4","type":"visualization"},{"id":"a95aaf20-758a-11e9-aacf-79a3704914a0","name":"5:panel_5","type":"visualization"},{"id":"6dce7930-758c-11e9-aacf-79a3704914a0","name":"6:panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:21.950Z","version":"WzQ1MjMsMV0="} diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/e40ba240-7572-11e9-976e-65a8f47cc4c1.json b/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/e40ba240-7572-11e9-976e-65a8f47cc4c1.json new file mode 100644 index 000000000000..8c6a02aadf59 --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/dashboard/e40ba240-7572-11e9-976e-65a8f47cc4c1.json @@ -0,0 +1,187 @@ +{ + "attributes": { + "description": "Palo Alto Networks PAN-OS Networks Overview", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "1", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "2", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 15, + "i": "3", + "w": 24, + "x": 0, + "y": 15 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 15, + "i": "4", + "w": 12, + "x": 24, + "y": 15 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "5", + "w": 12, + "x": 36, + "y": 15 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "6", + "w": 24, + "x": 0, + "y": 30 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "7", + "w": 24, + "x": 24, + "y": 30 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Filebeat PANW] Network Flows ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "e40ba240-7572-11e9-976e-65a8f47cc4c1", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "091fe860-756a-11e9-976e-65a8f47cc4c1", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "87f30f60-7569-11e9-976e-65a8f47cc4c1", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "78e7e820-756d-11e9-976e-65a8f47cc4c1", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "d9cab170-756f-11e9-976e-65a8f47cc4c1", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "135930b0-7570-11e9-976e-65a8f47cc4c1", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "e46331c0-756a-11e9-976e-65a8f47cc4c1", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "0407a3e0-756f-11e9-976e-65a8f47cc4c1", + "name": "7:panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:20.886Z", + "version": "WzQ1MTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/search/290685e0-7569-11e9-976e-65a8f47cc4c1.json b/x-pack/filebeat/module/panw/_meta/kibana/7/search/290685e0-7569-11e9-976e-65a8f47cc4c1.json new file mode 100644 index 000000000000..ab9164c41d73 --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/search/290685e0-7569-11e9-976e-65a8f47cc4c1.json @@ -0,0 +1,44 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset: \"panw.panos\" and event.category: \"network_traffic\"" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "PAN-OS Flows [Filebeat PANW] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "290685e0-7569-11e9-976e-65a8f47cc4c1", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:20.886Z", + "version": "WzQ1MjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/search/3cea1360-7569-11e9-976e-65a8f47cc4c1.json b/x-pack/filebeat/module/panw/_meta/kibana/7/search/3cea1360-7569-11e9-976e-65a8f47cc4c1.json new file mode 100644 index 000000000000..512e3bd54703 --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/search/3cea1360-7569-11e9-976e-65a8f47cc4c1.json @@ -0,0 +1,44 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "event.dataset: \"panw.panos\" and event.category: \"security_threat\"" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "PAN-OS Threats [Filebeat PANW] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "3cea1360-7569-11e9-976e-65a8f47cc4c1", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:21.950Z", + "version": "WzQ1MzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/0407a3e0-756f-11e9-976e-65a8f47cc4c1.json b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/0407a3e0-756f-11e9-976e-65a8f47cc4c1.json new file mode 100644 index 000000000000..6344410f8f2c --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/0407a3e0-756f-11e9-976e-65a8f47cc4c1.json @@ -0,0 +1,96 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Network Application breakout [Filebeat PANW] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.outcome", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "network.application", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Network Application breakout [Filebeat PANW] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0407a3e0-756f-11e9-976e-65a8f47cc4c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "290685e0-7569-11e9-976e-65a8f47cc4c1", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:20.886Z", + "version": "WzQ1MjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/091fe860-756a-11e9-976e-65a8f47cc4c1.json b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/091fe860-756a-11e9-976e-65a8f47cc4c1.json new file mode 100644 index 000000000000..4d92a7d51161 --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/091fe860-756a-11e9-976e-65a8f47cc4c1.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Destination Flows Map [Filebeat PANW] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "destination.geo.location", + "isFilteredByCollar": true, + "mapCenter": [ + 0, + 0 + ], + "mapZoom": 2, + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "params": { + "addTooltip": true, + "colorSchema": "Yellow to Red", + "heatClusterSize": 1.5, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 0, + 0 + ], + "mapType": "Scaled Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "format": "image/png", + "transparent": true + } + } + }, + "title": "Destination Flows Map [Filebeat PANW] ECS", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "091fe860-756a-11e9-976e-65a8f47cc4c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "290685e0-7569-11e9-976e-65a8f47cc4c1", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:20.886Z", + "version": "WzQ1MTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/0bd2a0c0-7574-11e9-976e-65a8f47cc4c1.json b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/0bd2a0c0-7574-11e9-976e-65a8f47cc4c1.json new file mode 100644 index 000000000000..1fb0eb4ff44d --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/0bd2a0c0-7574-11e9-976e-65a8f47cc4c1.json @@ -0,0 +1,152 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Threat outcome histogram [Filebeat PANW] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "timeRange": { + "from": "2018-04-10T04:36:19.586Z", + "to": "2018-04-10T04:39:56.264Z" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "event.outcome", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Threat outcome histogram [Filebeat PANW] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0bd2a0c0-7574-11e9-976e-65a8f47cc4c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "3cea1360-7569-11e9-976e-65a8f47cc4c1", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:21.950Z", + "version": "WzQ1MjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/135930b0-7570-11e9-976e-65a8f47cc4c1.json b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/135930b0-7570-11e9-976e-65a8f47cc4c1.json new file mode 100644 index 000000000000..7cefe5848a47 --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/135930b0-7570-11e9-976e-65a8f47cc4c1.json @@ -0,0 +1,182 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.action", + "negate": true, + "params": { + "query": "flow_started" + }, + "type": "phrase", + "value": "flow_started" + }, + "query": { + "match": { + "event.action": { + "query": "flow_started", + "type": "phrase" + } + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Destination Zone breakout [Filebeat PANW] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "panw.panos.destination.zone", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "event.outcome", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 200 + }, + "position": "left", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": true, + "rotate": 75, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "bottom", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Destination Zone breakout [Filebeat PANW] ECS", + "type": "horizontal_bar" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "135930b0-7570-11e9-976e-65a8f47cc4c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "290685e0-7569-11e9-976e-65a8f47cc4c1", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:20.886Z", + "version": "WzQ1MTksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/3eca1070-7589-11e9-aacf-79a3704914a0.json b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/3eca1070-7589-11e9-aacf-79a3704914a0.json new file mode 100644 index 000000000000..79686b689809 --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/3eca1070-7589-11e9-aacf-79a3704914a0.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Threat ID Cloud [Filebeat PANW] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "panw.panos.threat.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "maxFontSize": 72, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": true + }, + "title": "Threat ID Cloud [Filebeat PANW] ECS", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3eca1070-7589-11e9-aacf-79a3704914a0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "3cea1360-7569-11e9-976e-65a8f47cc4c1", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:21.950Z", + "version": "WzQ1MjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/5bd32b20-7575-11e9-976e-65a8f47cc4c1.json b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/5bd32b20-7575-11e9-976e-65a8f47cc4c1.json new file mode 100644 index 000000000000..ddedc1d51b84 --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/5bd32b20-7575-11e9-976e-65a8f47cc4c1.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Threat Resource Cloud [Filebeat PANW] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "url.original", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "maxFontSize": 72, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": true + }, + "title": "Threat Resource Cloud [Filebeat PANW] ECS", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5bd32b20-7575-11e9-976e-65a8f47cc4c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "3cea1360-7569-11e9-976e-65a8f47cc4c1", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:21.950Z", + "version": "WzQ1MjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/6dce7930-758c-11e9-aacf-79a3704914a0.json b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/6dce7930-758c-11e9-aacf-79a3704914a0.json new file mode 100644 index 000000000000..fc64c8f4ada6 --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/6dce7930-758c-11e9-aacf-79a3704914a0.json @@ -0,0 +1,96 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Outcome by Threat Type [Filebeat PANW] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.outcome", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Outcome by Threat Type [Filebeat PANW] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6dce7930-758c-11e9-aacf-79a3704914a0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "3cea1360-7569-11e9-976e-65a8f47cc4c1", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:21.950Z", + "version": "WzQ1MjksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/78e7e820-756d-11e9-976e-65a8f47cc4c1.json b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/78e7e820-756d-11e9-976e-65a8f47cc4c1.json new file mode 100644 index 000000000000..f1924e09af89 --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/78e7e820-756d-11e9-976e-65a8f47cc4c1.json @@ -0,0 +1,183 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.action", + "negate": true, + "params": { + "query": "flow_terminated" + }, + "type": "phrase", + "value": "flow_terminated" + }, + "query": { + "match": { + "event.action": { + "query": "flow_terminated", + "type": "phrase" + } + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Flow Creation Histogram [Filebeat PANW] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "timeRange": { + "from": "2018-04-10T04:36:19.586Z", + "to": "2018-04-10T04:39:56.264Z" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "event.outcome", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Flow Creation Histogram [Filebeat PANW] ECS", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "78e7e820-756d-11e9-976e-65a8f47cc4c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "290685e0-7569-11e9-976e-65a8f47cc4c1", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:20.886Z", + "version": "WzQ1MTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/87f30f60-7569-11e9-976e-65a8f47cc4c1.json b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/87f30f60-7569-11e9-976e-65a8f47cc4c1.json new file mode 100644 index 000000000000..593d002b9869 --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/87f30f60-7569-11e9-976e-65a8f47cc4c1.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Source Flows Map [Filebeat PANW] ECS", + "uiStateJSON": { + "mapCenter": [ + -0.17578097424708533, + 0.17578125 + ], + "mapZoom": 1 + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "source.geo.location", + "isFilteredByCollar": true, + "mapCenter": [ + 0, + 0 + ], + "mapZoom": 2, + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "params": { + "addTooltip": true, + "colorSchema": "Yellow to Red", + "heatClusterSize": 1.5, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 0, + 0 + ], + "mapType": "Scaled Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "format": "image/png", + "transparent": true + } + } + }, + "title": "Source Flows Map [Filebeat PANW] ECS", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "87f30f60-7569-11e9-976e-65a8f47cc4c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "290685e0-7569-11e9-976e-65a8f47cc4c1", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:20.886Z", + "version": "WzQ1MTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/90ce3300-758a-11e9-aacf-79a3704914a0.json b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/90ce3300-758a-11e9-aacf-79a3704914a0.json new file mode 100644 index 000000000000..80fb9b02aa6e --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/90ce3300-758a-11e9-aacf-79a3704914a0.json @@ -0,0 +1,114 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "network.direction", + "negate": false, + "params": { + "query": "inbound" + }, + "type": "phrase", + "value": "inbound" + }, + "query": { + "match": { + "network.direction": { + "query": "inbound", + "type": "phrase" + } + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top attackers (clients) [Filebeat PANW] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "client.ip", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top attackers (clients) [Filebeat PANW] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "90ce3300-758a-11e9-aacf-79a3704914a0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "3cea1360-7569-11e9-976e-65a8f47cc4c1", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:21.950Z", + "version": "WzQ1MjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/a95aaf20-758a-11e9-aacf-79a3704914a0.json b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/a95aaf20-758a-11e9-aacf-79a3704914a0.json new file mode 100644 index 000000000000..1f93eca3c050 --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/a95aaf20-758a-11e9-aacf-79a3704914a0.json @@ -0,0 +1,114 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "network.direction", + "negate": false, + "params": { + "query": "outbound" + }, + "type": "phrase", + "value": "outbound" + }, + "query": { + "match": { + "network.direction": { + "query": "outbound", + "type": "phrase" + } + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top attackers (servers) [Filebeat PANW] ECS", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "server.ip", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top attackers (servers) [Filebeat PANW] ECS", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a95aaf20-758a-11e9-aacf-79a3704914a0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "3cea1360-7569-11e9-976e-65a8f47cc4c1", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:21.950Z", + "version": "WzQ1MjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/d9cab170-756f-11e9-976e-65a8f47cc4c1.json b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/d9cab170-756f-11e9-976e-65a8f47cc4c1.json new file mode 100644 index 000000000000..db3a5d148e22 --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/d9cab170-756f-11e9-976e-65a8f47cc4c1.json @@ -0,0 +1,182 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.action", + "negate": true, + "params": { + "query": "flow_started" + }, + "type": "phrase", + "value": "flow_started" + }, + "query": { + "match": { + "event.action": { + "query": "flow_started", + "type": "phrase" + } + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Source Zone breakout [Filebeat PANW] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "panw.panos.source.zone", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "event.outcome", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 200 + }, + "position": "left", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": true, + "rotate": 75, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "bottom", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Source Zone breakout [Filebeat PANW] ECS", + "type": "horizontal_bar" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d9cab170-756f-11e9-976e-65a8f47cc4c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "290685e0-7569-11e9-976e-65a8f47cc4c1", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:20.886Z", + "version": "WzQ1MTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/e46331c0-756a-11e9-976e-65a8f47cc4c1.json b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/e46331c0-756a-11e9-976e-65a8f47cc4c1.json new file mode 100644 index 000000000000..ca5130512a59 --- /dev/null +++ b/x-pack/filebeat/module/panw/_meta/kibana/7/visualization/e46331c0-756a-11e9-976e-65a8f47cc4c1.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Event Outcome by Transport and Destination Port [Filebeat PANW] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.outcome", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "network.transport", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "field": "destination.port", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Event Outcome by Transport and Destination Port [Filebeat PANW] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e46331c0-756a-11e9-976e-65a8f47cc4c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "290685e0-7569-11e9-976e-65a8f47cc4c1", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:20.886Z", + "version": "WzQ1MjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/panw/module.yml b/x-pack/filebeat/module/panw/module.yml index 26a39accb59a..ed975d78f706 100644 --- a/x-pack/filebeat/module/panw/module.yml +++ b/x-pack/filebeat/module/panw/module.yml @@ -1,5 +1,5 @@ dashboards: - id: 772964e0-7591-11e9-aacf-79a3704914a0 - file: Filebeat-panw-threat-overview.ndjson + file: Filebeat-panw-threat-overview.json - id: e40ba240-7572-11e9-976e-65a8f47cc4c1 - file: Filebeat-panw-network-overview.ndjson + file: Filebeat-panw-network-overview.json diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/05268ee0-86d1-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/05268ee0-86d1-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..b0581a47b9ef --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/05268ee0-86d1-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,215 @@ +{ + "attributes": { + "description": "Overview of the Suricata Alerts dashboard.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "1", + "w": 23, + "x": 0, + "y": 4 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 26, + "i": "2", + "w": 25, + "x": 23, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "3", + "w": 48, + "x": 0, + "y": 41 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "search", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapCenter": [ + 38.548165423046584, + -6.328125000000001 + ], + "mapZoom": 2 + }, + "gridData": { + "h": 15, + "i": "4", + "w": 23, + "x": 0, + "y": 26 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {}, + "mapCenter": [ + 41.77131167976407, + 1.9335937500000002 + ], + "mapZoom": 2 + }, + "gridData": { + "h": 15, + "i": "5", + "w": 25, + "x": 23, + "y": 26 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "7", + "w": 12, + "x": 11, + "y": 14 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "8", + "w": 11, + "x": 0, + "y": 14 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "e86b7f30-96da-4f52-9ff0-cefcaadcc914", + "w": 23, + "x": 0, + "y": 0 + }, + "panelIndex": "e86b7f30-96da-4f52-9ff0-cefcaadcc914", + "panelRefName": "panel_e86b7f30-96da-4f52-9ff0-cefcaadcc914", + "type": "visualization", + "version": "7.9.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Filebeat Suricata] Alert Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "05268ee0-86d1-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "494fa290-86d2-11e8-b59d-21efb914e65c-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "16033310-86d3-11e8-b59d-21efb914e65c-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs", + "name": "3:panel_3", + "type": "search" + }, + { + "id": "85fed080-86d7-11e8-b59d-21efb914e65c-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "a09ca070-86d7-11e8-b59d-21efb914e65c-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "2ccdc1a0-86d8-11e8-b59d-21efb914e65c-ecs", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "c7b8b8f0-86d8-11e8-b59d-21efb914e65c-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "908e8c90-d296-11ea-90e3-8767fe7ccf14", + "name": "e86b7f30-96da-4f52-9ff0-cefcaadcc914:panel_e86b7f30-96da-4f52-9ff0-cefcaadcc914", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:52.614Z", + "version": "WzQ5MDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/78289c40-86da-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/78289c40-86da-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..6e72c9e9b18b --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/78289c40-86da-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,269 @@ +{ + "attributes": { + "description": "Overview of the Surcata events dashboard.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "1", + "w": 48, + "x": 0, + "y": 4 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "2", + "w": 9, + "x": 0, + "y": 24 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "3", + "w": 11, + "x": 19, + "y": 24 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "4", + "w": 48, + "x": 0, + "y": 14 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 19, + "i": "5", + "w": 48, + "x": 0, + "y": 38 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "search", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "6", + "w": 9, + "x": 30, + "y": 24 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "7", + "w": 9, + "x": 39, + "y": 24 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "8", + "w": 10, + "x": 9, + "y": 24 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "type": "visualization", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "9", + "w": 48, + "x": 0, + "y": 57 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "search", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "78f64fb8-a6ed-4960-a73b-a8c42c40f799", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "78f64fb8-a6ed-4960-a73b-a8c42c40f799", + "panelRefName": "panel_78f64fb8-a6ed-4960-a73b-a8c42c40f799", + "title": "", + "type": "visualization", + "version": "7.9.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "63e14057-b48b-48fe-b3e2-84f7690d60e8", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "63e14057-b48b-48fe-b3e2-84f7690d60e8", + "panelRefName": "panel_63e14057-b48b-48fe-b3e2-84f7690d60e8", + "type": "visualization", + "version": "7.9.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Filebeat Suricata] Events Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "78289c40-86da-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "c7d46c60-86da-11e8-b59d-21efb914e65c-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "0a0aa630-86db-11e8-b59d-21efb914e65c-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "728f64c0-86db-11e8-b59d-21efb914e65c-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "9d5b5b50-86db-11e8-b59d-21efb914e65c-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", + "name": "5:panel_5", + "type": "search" + }, + { + "id": "5f99eb50-86dc-11e8-b59d-21efb914e65c-ecs", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "8e7f88d0-86dc-11e8-b59d-21efb914e65c-ecs", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "0a363820-86dd-11e8-b59d-21efb914e65c-ecs", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "d57a2db0-86ca-11e8-b59d-21efb914e65c-ecs", + "name": "9:panel_9", + "type": "search" + }, + { + "id": "908e8c90-d296-11ea-90e3-8767fe7ccf14", + "name": "78f64fb8-a6ed-4960-a73b-a8c42c40f799:panel_78f64fb8-a6ed-4960-a73b-a8c42c40f799", + "type": "visualization" + }, + { + "id": "169c0600-d297-11ea-90e3-8767fe7ccf14", + "name": "63e14057-b48b-48fe-b3e2-84f7690d60e8:panel_63e14057-b48b-48fe-b3e2-84f7690d60e8", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:53.687Z", + "version": "WzQ5MTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-alert-overview.ndjson b/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-alert-overview.ndjson deleted file mode 100644 index a6e4f0081752..000000000000 --- a/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-alert-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"columns":["host.name","suricata.eve.flow_id","source.ip","source.port","destination.ip","destination.port","source.geo.country_iso_code","destination.geo.country_iso_code"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"alert\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"alert\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"suricata\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.module\": {\"query\": \"suricata\", \"type\": \"phrase\"}}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Alerts [Filebeat Suricata]","version":1},"coreMigrationVersion":"8.0.0","id":"1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:52.614Z","version":"WzQ5MDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top Alerting Hosts [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-6y\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"host.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Top Alerting Hosts [Filebeat Suricata]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"494fa290-86d2-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:52.614Z","version":"WzQ5MDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top Alert Signatures [Filebeat Suricata]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Alert Signature\",\"field\":\"rule.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Alert Category\",\"field\":\"rule.category\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top Alert Signatures [Filebeat Suricata]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"16033310-86d3-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:52.614Z","version":"WzQ5MDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Alert - Source Location [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"source.geo.location\",\"isFilteredByCollar\":true,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"baseLayersAreLoaded\":{},\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"subdomains\":[],\"url\":\"https://tiles.maps.elastic.co/v2/default/{z}/{x}/{y}.png?elastic_tile_service_tos=agree&my_app_name=kibana&my_app_version=6.3.0&license=fc9de2c1-5f06-4080-8dd0-8a334171d89a\"},\"tmsLayers\":[{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"subdomains\":[],\"url\":\"https://tiles.maps.elastic.co/v2/default/{z}/{x}/{y}.png?elastic_tile_service_tos=agree&my_app_name=kibana&my_app_version=6.3.0&license=fc9de2c1-5f06-4080-8dd0-8a334171d89a\"}]}},\"title\":\"Alert - Source Location [Filebeat Suricata]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"85fed080-86d7-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:52.614Z","version":"WzQ5MDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Alert - Destination Location [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"destination.geo.location\",\"isFilteredByCollar\":true,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"baseLayersAreLoaded\":{},\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true},\"selectedTmsLayer\":{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"subdomains\":[],\"url\":\"https://tiles.maps.elastic.co/v2/default/{z}/{x}/{y}.png?elastic_tile_service_tos=agree&my_app_name=kibana&my_app_version=6.3.0&license=fc9de2c1-5f06-4080-8dd0-8a334171d89a\"},\"tmsLayers\":[{\"attribution\":\"

© OpenStreetMap contributors | Elastic Maps Service

\",\"id\":\"road_map\",\"maxZoom\":18,\"minZoom\":0,\"subdomains\":[],\"url\":\"https://tiles.maps.elastic.co/v2/default/{z}/{x}/{y}.png?elastic_tile_service_tos=agree&my_app_name=kibana&my_app_version=6.3.0&license=fc9de2c1-5f06-4080-8dd0-8a334171d89a\"}]}},\"title\":\"Alert - Destination Location [Filebeat Suricata]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"a09ca070-86d7-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:52.614Z","version":"WzQ5MDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Alerts - Top Destination Countries [Filebeat Suricata]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Country\",\"field\":\"destination.geo.country_iso_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Alerts - Top Destination Countries [Filebeat Suricata]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"2ccdc1a0-86d8-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:52.614Z","version":"WzQ5MDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Alerts - Top Source Countries [Filebeat Suricata]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Source Country\",\"field\":\"source.geo.country_iso_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Alerts - Top Source Countries [Filebeat Suricata]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"c7b8b8f0-86d8-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:52.614Z","version":"WzQ5MTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":18,\"markdown\":\"![Hello World](data:image/png;base64,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) [Events](/app/dashboards#/view/78289c40-86da-11e8-b59d-21efb914e65c-ecs) | [Alerts](/app/dashboards#/view/05268ee0-86d1-11e8-b59d-21efb914e65c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Filebeat Suricata]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"908e8c90-d296-11ea-90e3-8767fe7ccf14","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MjIsMV0="} -{"attributes":{"description":"Overview of the Suricata Alerts dashboard.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":23,\"x\":0,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":26,\"i\":\"2\",\"w\":25,\"x\":23,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"search\",\"gridData\":{\"h\":16,\"i\":\"3\",\"w\":48,\"x\":0,\"y\":41},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":23,\"x\":0,\"y\":26},\"panelIndex\":\"4\",\"embeddableConfig\":{\"mapCenter\":[38.548165423046584,-6.328125000000001],\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":25,\"x\":23,\"y\":26},\"panelIndex\":\"5\",\"embeddableConfig\":{\"mapCenter\":[41.77131167976407,1.9335937500000002],\"mapZoom\":2,\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"7\",\"w\":12,\"x\":11,\"y\":14},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"8\",\"w\":11,\"x\":0,\"y\":14},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"e86b7f30-96da-4f52-9ff0-cefcaadcc914\",\"w\":23,\"x\":0,\"y\":0},\"panelIndex\":\"e86b7f30-96da-4f52-9ff0-cefcaadcc914\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e86b7f30-96da-4f52-9ff0-cefcaadcc914\"}]","timeRestore":false,"title":"[Filebeat Suricata] Alert Overview","version":1},"coreMigrationVersion":"8.0.0","id":"05268ee0-86d1-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"494fa290-86d2-11e8-b59d-21efb914e65c-ecs","name":"1:panel_1","type":"visualization"},{"id":"16033310-86d3-11e8-b59d-21efb914e65c-ecs","name":"2:panel_2","type":"visualization"},{"id":"1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs","name":"3:panel_3","type":"search"},{"id":"85fed080-86d7-11e8-b59d-21efb914e65c-ecs","name":"4:panel_4","type":"visualization"},{"id":"a09ca070-86d7-11e8-b59d-21efb914e65c-ecs","name":"5:panel_5","type":"visualization"},{"id":"2ccdc1a0-86d8-11e8-b59d-21efb914e65c-ecs","name":"7:panel_7","type":"visualization"},{"id":"c7b8b8f0-86d8-11e8-b59d-21efb914e65c-ecs","name":"8:panel_8","type":"visualization"},{"id":"908e8c90-d296-11ea-90e3-8767fe7ccf14","name":"e86b7f30-96da-4f52-9ff0-cefcaadcc914:panel_e86b7f30-96da-4f52-9ff0-cefcaadcc914","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:52.614Z","version":"WzQ5MDMsMV0="} diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-event-overview.ndjson b/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-event-overview.ndjson deleted file mode 100644 index 243fe867e4be..000000000000 --- a/x-pack/filebeat/module/suricata/_meta/kibana/7/dashboard/filebeat-suricata-event-overview.ndjson +++ /dev/null @@ -1,12 +0,0 @@ -{"attributes":{"columns":["host.name","suricata.eve.flow_id","network.transport","source.ip","source.port","destination.ip","destination.port","destination.geo.region_name","destination.geo.country_iso_code"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"event\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"event\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"suricata\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.module\": {\"query\": \"suricata\", \"type\": \"phrase\"}}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Events [Filebeat Suricata]","version":1},"coreMigrationVersion":"8.0.0","id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Activity Types over Time [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-6y\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"suricata.eve.event_type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Activity Types over Time [Filebeat Suricata]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"c7d46c60-86da-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Event Types [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"ECS Event Type\",\"field\":\"event.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Suricata Event Type\",\"field\":\"suricata.eve.event_type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"bottom\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Event Types [Filebeat Suricata]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0a0aa630-86db-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top Network Protocols [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.protocol\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"bottom\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top Network Protocols [Filebeat Suricata]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"728f64c0-86db-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top Hosts Generating Events [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-6y\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"host.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Top Hosts Generating Events [Filebeat Suricata]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"9d5b5b50-86db-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top Connection Source Countries [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Top Connection Source Countries\",\"field\":\"source.geo.country_iso_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top Connection Source Countries [Filebeat Suricata]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"5f99eb50-86dc-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top Connection Destination Countries [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Top Connection Destination Countries\",\"field\":\"destination.geo.country_iso_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Top Connection Destination Countries [Filebeat Suricata]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"8e7f88d0-86dc-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Top Transport Protocols [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.transport\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"bottom\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top Transport Protocols [Filebeat Suricata]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"0a363820-86dd-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MjAsMV0="} -{"attributes":{"columns":["host.name","suricata.eve.stats.detect.alert","suricata.eve.stats.app_layer.flow.dns_udp","suricata.eve.stats.app_layer.flow.tls","suricata.eve.stats.app_layer.flow.http","suricata.eve.stats.app_layer.flow.ssh","suricata.eve.stats.tcp.sessions"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"metric\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"metric\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"suricata\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.module\": {\"query\": \"suricata\", \"type\": \"phrase\"}}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Host Stats [Filebeat Suricata]","version":1},"coreMigrationVersion":"8.0.0","id":"d57a2db0-86ca-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":18,\"markdown\":\"![Hello World](data:image/png;base64,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) [Events](/app/dashboards#/view/78289c40-86da-11e8-b59d-21efb914e65c-ecs) | [Alerts](/app/dashboards#/view/05268ee0-86d1-11e8-b59d-21efb914e65c-ecs)\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Filebeat Suricata]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"908e8c90-d296-11ea-90e3-8767fe7ccf14","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Event Count [Filebeat Suricata]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Events\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":30,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Event Count [Filebeat Suricata]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"169c0600-d297-11ea-90e3-8767fe7ccf14","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MjMsMV0="} -{"attributes":{"description":"Overview of the Surcata events dashboard.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":48,\"x\":0,\"y\":4},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"2\",\"w\":9,\"x\":0,\"y\":24},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"3\",\"w\":11,\"x\":19,\"y\":24},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":48,\"x\":0,\"y\":14},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"search\",\"gridData\":{\"h\":19,\"i\":\"5\",\"w\":48,\"x\":0,\"y\":38},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"6\",\"w\":9,\"x\":30,\"y\":24},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"7\",\"w\":9,\"x\":39,\"y\":24},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"8\",\"w\":10,\"x\":9,\"y\":24},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"search\",\"gridData\":{\"h\":16,\"i\":\"9\",\"w\":48,\"x\":0,\"y\":57},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"78f64fb8-a6ed-4960-a73b-a8c42c40f799\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"78f64fb8-a6ed-4960-a73b-a8c42c40f799\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_78f64fb8-a6ed-4960-a73b-a8c42c40f799\"},{\"version\":\"7.9.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"63e14057-b48b-48fe-b3e2-84f7690d60e8\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"63e14057-b48b-48fe-b3e2-84f7690d60e8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_63e14057-b48b-48fe-b3e2-84f7690d60e8\"}]","timeRestore":false,"title":"[Filebeat Suricata] Events Overview","version":1},"coreMigrationVersion":"8.0.0","id":"78289c40-86da-11e8-b59d-21efb914e65c-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"c7d46c60-86da-11e8-b59d-21efb914e65c-ecs","name":"1:panel_1","type":"visualization"},{"id":"0a0aa630-86db-11e8-b59d-21efb914e65c-ecs","name":"2:panel_2","type":"visualization"},{"id":"728f64c0-86db-11e8-b59d-21efb914e65c-ecs","name":"3:panel_3","type":"visualization"},{"id":"9d5b5b50-86db-11e8-b59d-21efb914e65c-ecs","name":"4:panel_4","type":"visualization"},{"id":"13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs","name":"5:panel_5","type":"search"},{"id":"5f99eb50-86dc-11e8-b59d-21efb914e65c-ecs","name":"6:panel_6","type":"visualization"},{"id":"8e7f88d0-86dc-11e8-b59d-21efb914e65c-ecs","name":"7:panel_7","type":"visualization"},{"id":"0a363820-86dd-11e8-b59d-21efb914e65c-ecs","name":"8:panel_8","type":"visualization"},{"id":"d57a2db0-86ca-11e8-b59d-21efb914e65c-ecs","name":"9:panel_9","type":"search"},{"id":"908e8c90-d296-11ea-90e3-8767fe7ccf14","name":"78f64fb8-a6ed-4960-a73b-a8c42c40f799:panel_78f64fb8-a6ed-4960-a73b-a8c42c40f799","type":"visualization"},{"id":"169c0600-d297-11ea-90e3-8767fe7ccf14","name":"63e14057-b48b-48fe-b3e2-84f7690d60e8:panel_63e14057-b48b-48fe-b3e2-84f7690d60e8","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:34:53.687Z","version":"WzQ5MTIsMV0="} diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/search/13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/search/13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..d10fc941f39d --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/search/13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "columns": [ + "host.name", + "suricata.eve.flow_id", + "network.transport", + "source.ip", + "source.port", + "destination.ip", + "destination.port", + "destination.geo.region_name", + "destination.geo.country_iso_code" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.kind", + "negate": false, + "params": { + "query": "event" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.kind": "event" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "suricata" + }, + "type": "phrase" + }, + "query": { + "match": { + "event.module": { + "query": "suricata", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Events [Filebeat Suricata]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:53.687Z", + "version": "WzQ5MTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/search/1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/search/1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..583fa803af6b --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/search/1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "columns": [ + "host.name", + "suricata.eve.flow_id", + "source.ip", + "source.port", + "destination.ip", + "destination.port", + "source.geo.country_iso_code", + "destination.geo.country_iso_code" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.kind", + "negate": false, + "params": { + "query": "alert" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.kind": "alert" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "suricata" + }, + "type": "phrase" + }, + "query": { + "match": { + "event.module": { + "query": "suricata", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Alerts [Filebeat Suricata]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:52.614Z", + "version": "WzQ5MDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/search/d57a2db0-86ca-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/search/d57a2db0-86ca-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..910182076f62 --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/search/d57a2db0-86ca-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,106 @@ +{ + "attributes": { + "columns": [ + "host.name", + "suricata.eve.stats.detect.alert", + "suricata.eve.stats.app_layer.flow.dns_udp", + "suricata.eve.stats.app_layer.flow.tls", + "suricata.eve.stats.app_layer.flow.http", + "suricata.eve.stats.app_layer.flow.ssh", + "suricata.eve.stats.tcp.sessions" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.kind", + "negate": false, + "params": { + "query": "metric" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.kind": "metric" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "suricata" + }, + "type": "phrase" + }, + "query": { + "match": { + "event.module": { + "query": "suricata", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Host Stats [Filebeat Suricata]", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "d57a2db0-86ca-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:53.687Z", + "version": "WzQ5MjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/0a0aa630-86db-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/0a0aa630-86db-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..0265fc87bf7a --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/0a0aa630-86db-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Event Types [Filebeat Suricata]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "ECS Event Type", + "field": "event.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Suricata Event Type", + "field": "suricata.eve.event_type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Event Types [Filebeat Suricata]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0a0aa630-86db-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:53.687Z", + "version": "WzQ5MTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/0a363820-86dd-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/0a363820-86dd-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..91fce2cab48f --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/0a363820-86dd-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top Transport Protocols [Filebeat Suricata]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "network.transport", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Top Transport Protocols [Filebeat Suricata]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0a363820-86dd-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:53.687Z", + "version": "WzQ5MjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/16033310-86d3-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/16033310-86d3-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..b97d25e76da8 --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/16033310-86d3-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top Alert Signatures [Filebeat Suricata]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Alert Signature", + "field": "rule.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Alert Category", + "field": "rule.category", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top Alert Signatures [Filebeat Suricata]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "16033310-86d3-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:52.614Z", + "version": "WzQ5MDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/169c0600-d297-11ea-90e3-8767fe7ccf14.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/169c0600-d297-11ea-90e3-8767fe7ccf14.json new file mode 100644 index 000000000000..60b7df12203f --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/169c0600-d297-11ea-90e3-8767fe7ccf14.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Event Count [Filebeat Suricata]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Events" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 30, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Event Count [Filebeat Suricata]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "169c0600-d297-11ea-90e3-8767fe7ccf14", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:53.687Z", + "version": "WzQ5MjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/2ccdc1a0-86d8-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/2ccdc1a0-86d8-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..aa39f3bfe30b --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/2ccdc1a0-86d8-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Alerts - Top Destination Countries [Filebeat Suricata]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Source Country", + "field": "destination.geo.country_iso_code", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 5, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Alerts - Top Destination Countries [Filebeat Suricata]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2ccdc1a0-86d8-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:52.614Z", + "version": "WzQ5MDksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/494fa290-86d2-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/494fa290-86d2-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..70c801ff0ed0 --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/494fa290-86d2-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,166 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top Alerting Hosts [Filebeat Suricata]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "now-6y", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "host.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "labels": { + "show": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Top Alerting Hosts [Filebeat Suricata]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "494fa290-86d2-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:52.614Z", + "version": "WzQ5MDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/5f99eb50-86dc-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/5f99eb50-86dc-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..c1c0fdab0a43 --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/5f99eb50-86dc-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,74 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top Connection Source Countries [Filebeat Suricata]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Top Connection Source Countries", + "field": "source.geo.country_iso_code", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "maxFontSize": 72, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": false + }, + "title": "Top Connection Source Countries [Filebeat Suricata]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5f99eb50-86dc-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:53.687Z", + "version": "WzQ5MTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/728f64c0-86db-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/728f64c0-86db-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..c0707d242a15 --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/728f64c0-86db-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top Network Protocols [Filebeat Suricata]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "network.protocol", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Top Network Protocols [Filebeat Suricata]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "728f64c0-86db-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:53.687Z", + "version": "WzQ5MTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/85fed080-86d7-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/85fed080-86d7-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..852f2009cc9c --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/85fed080-86d7-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Alert - Source Location [Filebeat Suricata]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "source.geo.location", + "isFilteredByCollar": true, + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "params": { + "addTooltip": true, + "colorSchema": "Yellow to Red", + "heatClusterSize": 1.5, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 0, + 0 + ], + "mapType": "Scaled Circle Markers", + "mapZoom": 2, + "wms": { + "baseLayersAreLoaded": {}, + "enabled": false, + "options": { + "format": "image/png", + "transparent": true + }, + "selectedTmsLayer": { + "attribution": "

© OpenStreetMap contributors | Elastic Maps Service

", + "id": "road_map", + "maxZoom": 18, + "minZoom": 0, + "subdomains": [], + "url": "https://tiles.maps.elastic.co/v2/default/{z}/{x}/{y}.png?elastic_tile_service_tos=agree&my_app_name=kibana&my_app_version=6.3.0&license=fc9de2c1-5f06-4080-8dd0-8a334171d89a" + }, + "tmsLayers": [ + { + "attribution": "

© OpenStreetMap contributors | Elastic Maps Service

", + "id": "road_map", + "maxZoom": 18, + "minZoom": 0, + "subdomains": [], + "url": "https://tiles.maps.elastic.co/v2/default/{z}/{x}/{y}.png?elastic_tile_service_tos=agree&my_app_name=kibana&my_app_version=6.3.0&license=fc9de2c1-5f06-4080-8dd0-8a334171d89a" + } + ] + } + }, + "title": "Alert - Source Location [Filebeat Suricata]", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "85fed080-86d7-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:52.614Z", + "version": "WzQ5MDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/8e7f88d0-86dc-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/8e7f88d0-86dc-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..c3db3c725f8d --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/8e7f88d0-86dc-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,74 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top Connection Destination Countries [Filebeat Suricata]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Top Connection Destination Countries", + "field": "destination.geo.country_iso_code", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "maxFontSize": 72, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": false + }, + "title": "Top Connection Destination Countries [Filebeat Suricata]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8e7f88d0-86dc-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:53.687Z", + "version": "WzQ5MTksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/908e8c90-d296-11ea-90e3-8767fe7ccf14.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/908e8c90-d296-11ea-90e3-8767fe7ccf14.json new file mode 100644 index 000000000000..2c19ef9196c7 --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/908e8c90-d296-11ea-90e3-8767fe7ccf14.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Navigation [Filebeat Suricata]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 18, + "markdown": "![Hello World](data:image/png;base64,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) [Events](/app/dashboards#/view/78289c40-86da-11e8-b59d-21efb914e65c-ecs) | [Alerts](/app/dashboards#/view/05268ee0-86d1-11e8-b59d-21efb914e65c-ecs)", + "openLinksInNewTab": false + }, + "title": "Navigation [Filebeat Suricata]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "908e8c90-d296-11ea-90e3-8767fe7ccf14", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:34:53.687Z", + "version": "WzQ5MjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/9d5b5b50-86db-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/9d5b5b50-86db-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..2219051f207d --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/9d5b5b50-86db-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,166 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Top Hosts Generating Events [Filebeat Suricata]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "now-6y", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "host.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "labels": { + "show": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Top Hosts Generating Events [Filebeat Suricata]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9d5b5b50-86db-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:53.687Z", + "version": "WzQ5MTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/a09ca070-86d7-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/a09ca070-86d7-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..c4ead208dc3f --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/a09ca070-86d7-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Alert - Destination Location [Filebeat Suricata]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "destination.geo.location", + "isFilteredByCollar": true, + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "params": { + "addTooltip": true, + "colorSchema": "Yellow to Red", + "heatClusterSize": 1.5, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 0, + 0 + ], + "mapType": "Scaled Circle Markers", + "mapZoom": 2, + "wms": { + "baseLayersAreLoaded": {}, + "enabled": false, + "options": { + "format": "image/png", + "transparent": true + }, + "selectedTmsLayer": { + "attribution": "

© OpenStreetMap contributors | Elastic Maps Service

", + "id": "road_map", + "maxZoom": 18, + "minZoom": 0, + "subdomains": [], + "url": "https://tiles.maps.elastic.co/v2/default/{z}/{x}/{y}.png?elastic_tile_service_tos=agree&my_app_name=kibana&my_app_version=6.3.0&license=fc9de2c1-5f06-4080-8dd0-8a334171d89a" + }, + "tmsLayers": [ + { + "attribution": "

© OpenStreetMap contributors | Elastic Maps Service

", + "id": "road_map", + "maxZoom": 18, + "minZoom": 0, + "subdomains": [], + "url": "https://tiles.maps.elastic.co/v2/default/{z}/{x}/{y}.png?elastic_tile_service_tos=agree&my_app_name=kibana&my_app_version=6.3.0&license=fc9de2c1-5f06-4080-8dd0-8a334171d89a" + } + ] + } + }, + "title": "Alert - Destination Location [Filebeat Suricata]", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a09ca070-86d7-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:52.614Z", + "version": "WzQ5MDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/c7b8b8f0-86d8-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/c7b8b8f0-86d8-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..e68c966bb4d7 --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/c7b8b8f0-86d8-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Alerts - Top Source Countries [Filebeat Suricata]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Source Country", + "field": "source.geo.country_iso_code", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 5, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Alerts - Top Source Countries [Filebeat Suricata]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c7b8b8f0-86d8-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "1c2bcec0-86d1-11e8-b59d-21efb914e65c-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:52.614Z", + "version": "WzQ5MTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/c7d46c60-86da-11e8-b59d-21efb914e65c-ecs.json b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/c7d46c60-86da-11e8-b59d-21efb914e65c-ecs.json new file mode 100644 index 000000000000..d0bf252984ff --- /dev/null +++ b/x-pack/filebeat/module/suricata/_meta/kibana/7/visualization/c7d46c60-86da-11e8-b59d-21efb914e65c-ecs.json @@ -0,0 +1,166 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Activity Types over Time [Filebeat Suricata]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "now-6y", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "suricata.eve.event_type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "labels": { + "show": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Activity Types over Time [Filebeat Suricata]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c7d46c60-86da-11e8-b59d-21efb914e65c-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "13dd22f0-86cc-11e8-b59d-21efb914e65c-ecs", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:53.687Z", + "version": "WzQ5MTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/suricata/module.yml b/x-pack/filebeat/module/suricata/module.yml index 2df56d7d5147..d3747be1f4d3 100644 --- a/x-pack/filebeat/module/suricata/module.yml +++ b/x-pack/filebeat/module/suricata/module.yml @@ -1,5 +1,5 @@ dashboards: - id: 78289c40-86da-11e8-b59d-21efb914e65c-ecs - file: filebeat-suricata-event-overview.ndjson + file: filebeat-suricata-event-overview.json - id: 05268ee0-86d1-11e8-b59d-21efb914e65c-ecs - file: filebeat-suricata-alert-overview.ndjson + file: filebeat-suricata-alert-overview.json diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/47e6fdc0-76b9-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/47e6fdc0-76b9-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..6cca39a83bbd --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/47e6fdc0-76b9-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,350 @@ +{ + "attributes": { + "description": "MISP indicators ingested by the threat intel Filebeat module.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 589 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "dddbb2ed-b025-4bc3-b3a1-16f834da532b", + "w": 15, + "x": 0, + "y": 0 + }, + "panelIndex": "dddbb2ed-b025-4bc3-b3a1-16f834da532b", + "panelRefName": "panel_0", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 370 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "bb692014-ed24-441d-a717-d40025f46602", + "w": 10, + "x": 15, + "y": 0 + }, + "panelIndex": "bb692014-ed24-441d-a717-d40025f46602", + "panelRefName": "panel_1", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "fcc0d72f-70ee-4fac-b859-77326444f472", + "w": 14, + "x": 25, + "y": 0 + }, + "panelIndex": "fcc0d72f-70ee-4fac-b859-77326444f472", + "panelRefName": "panel_2", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "a3b70237-fbd4-43c6-96b6-ffb3c9266b55", + "w": 9, + "x": 39, + "y": 0 + }, + "panelIndex": "a3b70237-fbd4-43c6-96b6-ffb3c9266b55", + "panelRefName": "panel_3", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "table": null, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 814 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "c34da3b4-e3d8-4ade-85f2-1f2195aa9cdc", + "w": 19, + "x": 0, + "y": 18 + }, + "panelIndex": "c34da3b4-e3d8-4ade-85f2-1f2195aa9cdc", + "panelRefName": "panel_4", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 451 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "c23a8d34-62e3-42f2-912b-120251392d03", + "w": 12, + "x": 19, + "y": 18 + }, + "panelIndex": "c23a8d34-62e3-42f2-912b-120251392d03", + "panelRefName": "panel_5", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "a9e87eb5-f981-472c-9fb1-00f956c7ca1e", + "w": 9, + "x": 31, + "y": 18 + }, + "panelIndex": "a9e87eb5-f981-472c-9fb1-00f956c7ca1e", + "panelRefName": "panel_6", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "a47d65d3-01ef-4488-9c0d-2fbd23b923ad", + "w": 8, + "x": 40, + "y": 18 + }, + "panelIndex": "a47d65d3-01ef-4488-9c0d-2fbd23b923ad", + "panelRefName": "panel_7", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 324 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "c4010d5b-9082-453d-90a1-a4bc629f62a7", + "w": 10, + "x": 0, + "y": 36 + }, + "panelIndex": "c4010d5b-9082-453d-90a1-a4bc629f62a7", + "panelRefName": "panel_8", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 371 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "e59a30c1-97bb-4f16-81ba-9a9dc705fed6", + "w": 12, + "x": 10, + "y": 36 + }, + "panelIndex": "e59a30c1-97bb-4f16-81ba-9a9dc705fed6", + "panelRefName": "panel_9", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 600.5 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "1309e7f5-8554-4265-a8c4-9f8f00db8299", + "w": 14, + "x": 22, + "y": 36 + }, + "panelIndex": "1309e7f5-8554-4265-a8c4-9f8f00db8299", + "panelRefName": "panel_10", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "42cec04d-ab8e-4aa2-a78b-7c6a6d8b8798", + "w": 12, + "x": 36, + "y": 36 + }, + "panelIndex": "42cec04d-ab8e-4aa2-a78b-7c6a6d8b8798", + "panelRefName": "panel_11", + "version": "7.11.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Threat Intel] MISP", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "47e6fdc0-76b9-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "7582b030-73c6-11eb-a3e3-b3cc7c78a70f", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "a09329d0-73c6-11eb-a3e3-b3cc7c78a70f", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "7c7d3750-73c3-11eb-a3e3-b3cc7c78a70f", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "418e5a30-73c2-11eb-a3e3-b3cc7c78a70f", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "c102b0f0-73c6-11eb-a3e3-b3cc7c78a70f", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "55b5c280-76b7-11eb-a3e3-b3cc7c78a70f", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "ad55b1e0-73c8-11eb-a3e3-b3cc7c78a70f", + "name": "panel_6", + "type": "visualization" + }, + { + "id": "bf3dfde0-73c3-11eb-a3e3-b3cc7c78a70f", + "name": "panel_7", + "type": "visualization" + }, + { + "id": "ec68c4a0-73c6-11eb-a3e3-b3cc7c78a70f", + "name": "panel_8", + "type": "visualization" + }, + { + "id": "02294f80-73c7-11eb-a3e3-b3cc7c78a70f", + "name": "panel_9", + "type": "visualization" + }, + { + "id": "1c969990-73c7-11eb-a3e3-b3cc7c78a70f", + "name": "panel_10", + "type": "visualization" + }, + { + "id": "57faae10-73c5-11eb-a3e3-b3cc7c78a70f", + "name": "panel_11", + "type": "visualization" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:31.083Z", + "version": "WzQ2MzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/53e4e630-76cf-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/53e4e630-76cf-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..bc99f938e985 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/53e4e630-76cf-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,289 @@ +{ + "attributes": { + "description": "AlienVault OTX indicators ingested by the threat intel Filebeat module.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "7847e7a5-06a5-43e7-bd6b-ccae637739e5", + "w": 17, + "x": 0, + "y": 0 + }, + "panelIndex": "7847e7a5-06a5-43e7-bd6b-ccae637739e5", + "panelRefName": "panel_0", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "dc17e932-e983-4deb-95dc-07d571bf9e28", + "w": 7, + "x": 17, + "y": 0 + }, + "panelIndex": "dc17e932-e983-4deb-95dc-07d571bf9e28", + "panelRefName": "panel_1", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "6d448f2b-f2b7-4e18-a9ef-77c06ab755ac", + "w": 15, + "x": 24, + "y": 0 + }, + "panelIndex": "6d448f2b-f2b7-4e18-a9ef-77c06ab755ac", + "panelRefName": "panel_2", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "a946ed22-37d4-4c8d-8250-fc00f2ad646b", + "w": 9, + "x": 39, + "y": 0 + }, + "panelIndex": "a946ed22-37d4-4c8d-8250-fc00f2ad646b", + "panelRefName": "panel_3", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 286 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "e4c2fa0c-b238-4502-82b8-b61847d19b18", + "w": 9, + "x": 0, + "y": 18 + }, + "panelIndex": "e4c2fa0c-b238-4502-82b8-b61847d19b18", + "panelRefName": "panel_4", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "ed1ab436-d7cc-4545-bbc6-a3aa4d45108b", + "w": 17, + "x": 9, + "y": 18 + }, + "panelIndex": "ed1ab436-d7cc-4545-bbc6-a3aa4d45108b", + "panelRefName": "panel_5", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "ac6508e3-214a-4af9-8621-f9bd9cd9fe36", + "w": 10, + "x": 26, + "y": 18 + }, + "panelIndex": "ac6508e3-214a-4af9-8621-f9bd9cd9fe36", + "panelRefName": "panel_6", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "d5dbe626-716b-4dc2-9018-21050ee860ad", + "w": 12, + "x": 36, + "y": 18 + }, + "panelIndex": "d5dbe626-716b-4dc2-9018-21050ee860ad", + "panelRefName": "panel_7", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "fb89a073-18ce-41a0-87ec-a66bb35216e5", + "w": 24, + "x": 0, + "y": 36 + }, + "panelIndex": "fb89a073-18ce-41a0-87ec-a66bb35216e5", + "panelRefName": "panel_8", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 303 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "a2a17e0d-2de0-45cc-8440-d00a7044aaab", + "w": 9, + "x": 24, + "y": 36 + }, + "panelIndex": "a2a17e0d-2de0-45cc-8440-d00a7044aaab", + "panelRefName": "panel_9", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 598 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "291a8404-8e31-45f4-9117-4ea5bf996e78", + "w": 15, + "x": 33, + "y": 36 + }, + "panelIndex": "291a8404-8e31-45f4-9117-4ea5bf996e78", + "panelRefName": "panel_10", + "version": "7.11.1" + } + ], + "timeRestore": false, + "title": "[Filebeat Threat Intel] AlienVault OTX", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "53e4e630-76cf-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "95f384b0-76d8-11eb-a3e3-b3cc7c78a70f", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "b5bd3a70-76ce-11eb-a3e3-b3cc7c78a70f", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "f33125b0-76d8-11eb-a3e3-b3cc7c78a70f", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "302cd5b0-76cd-11eb-a3e3-b3cc7c78a70f", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "49f0c060-76cd-11eb-a3e3-b3cc7c78a70f", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "346136f0-76d5-11eb-a3e3-b3cc7c78a70f", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "9109e490-76cd-11eb-a3e3-b3cc7c78a70f", + "name": "panel_6", + "type": "visualization" + }, + { + "id": "6077fd00-76d5-11eb-a3e3-b3cc7c78a70f", + "name": "panel_7", + "type": "visualization" + }, + { + "id": "4e5d25c0-76ce-11eb-a3e3-b3cc7c78a70f", + "name": "panel_8", + "type": "visualization" + }, + { + "id": "0ccdda50-76ce-11eb-a3e3-b3cc7c78a70f", + "name": "panel_9", + "type": "visualization" + }, + { + "id": "01c261b0-7aa9-11eb-ac13-d5ca87cb8fa2", + "name": "panel_10", + "type": "visualization" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:27.014Z", + "version": "WzQ1NjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/5ba16340-72e6-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/5ba16340-72e6-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..389e3151f5c1 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/5ba16340-72e6-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,274 @@ +{ + "attributes": { + "description": "Abuse Malware indicators ingested by the threat intel Filebeat module.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 654.3333333333333 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "80e2f028-a447-4fa4-9161-052717ca9021", + "w": 17, + "x": 0, + "y": 0 + }, + "panelIndex": "80e2f028-a447-4fa4-9161-052717ca9021", + "panelRefName": "panel_0", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "7483e258-c1e3-4fc8-9e8d-7e2abb400cda", + "w": 10, + "x": 17, + "y": 0 + }, + "panelIndex": "7483e258-c1e3-4fc8-9e8d-7e2abb400cda", + "panelRefName": "panel_1", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "5b627f39-1ddb-499f-b9b6-87297576e3dd", + "w": 8, + "x": 27, + "y": 0 + }, + "panelIndex": "5b627f39-1ddb-499f-b9b6-87297576e3dd", + "panelRefName": "panel_2", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 422.33333333333337 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "e7f02b6f-7a4c-417d-904a-582fa4f7f4b0", + "w": 13, + "x": 35, + "y": 0 + }, + "panelIndex": "e7f02b6f-7a4c-417d-904a-582fa4f7f4b0", + "panelRefName": "panel_3", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 584.3333333333333 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "8459964a-6437-490f-a8f3-54f68ca4c9ef", + "w": 16, + "x": 0, + "y": 18 + }, + "panelIndex": "8459964a-6437-490f-a8f3-54f68ca4c9ef", + "panelRefName": "panel_4", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "705312de-dfcc-4f8f-8371-78c3b0fbb968", + "w": 13, + "x": 16, + "y": 18 + }, + "panelIndex": "705312de-dfcc-4f8f-8371-78c3b0fbb968", + "panelRefName": "panel_5", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "table": null, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 755.6666666666667 + }, + { + "colIndex": 1, + "width": 96 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "d3b6eec0-1b14-43f7-be9b-05314ee54c07", + "w": 19, + "x": 29, + "y": 18 + }, + "panelIndex": "d3b6eec0-1b14-43f7-be9b-05314ee54c07", + "panelRefName": "panel_6", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 896.5 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "6d6ea6b0-21a5-4af4-bbea-4f85fc54eaf5", + "w": 23, + "x": 0, + "y": 36 + }, + "panelIndex": "6d6ea6b0-21a5-4af4-bbea-4f85fc54eaf5", + "panelRefName": "panel_7", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "040ae85b-1abc-439e-a1b9-7bc3ddca1059", + "w": 25, + "x": 23, + "y": 36 + }, + "panelIndex": "040ae85b-1abc-439e-a1b9-7bc3ddca1059", + "panelRefName": "panel_8", + "version": "7.11.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Threat Intel] Abuse Malware", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "5ba16340-72e6-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "79da77d0-72e5-11eb-a3e3-b3cc7c78a70f", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "0db62ee0-72e6-11eb-a3e3-b3cc7c78a70f", + "name": "panel_1", + "type": "lens" + }, + { + "id": "5f955bb0-7394-11eb-a3e3-b3cc7c78a70f", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "b9533f50-72e5-11eb-a3e3-b3cc7c78a70f", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "1a0d5250-72e5-11eb-a3e3-b3cc7c78a70f", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "40d61ab0-72e6-11eb-a3e3-b3cc7c78a70f", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "41100be0-72e5-11eb-a3e3-b3cc7c78a70f", + "name": "panel_6", + "type": "visualization" + }, + { + "id": "c369c190-72e4-11eb-a3e3-b3cc7c78a70f", + "name": "panel_7", + "type": "visualization" + }, + { + "id": "f9c6ba80-72e5-11eb-a3e3-b3cc7c78a70f", + "name": "panel_8", + "type": "visualization" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:29.041Z", + "version": "WzQ2MDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/65fa6bc0-72f0-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/65fa6bc0-72f0-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..acdc3581e5f1 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/65fa6bc0-72f0-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,289 @@ +{ + "attributes": { + "description": "Abuse URL indicators ingested by the threat intel Filebeat module.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "166a6654-675d-4802-b1bf-05a9b95e6547", + "w": 12, + "x": 0, + "y": 0 + }, + "panelIndex": "166a6654-675d-4802-b1bf-05a9b95e6547", + "panelRefName": "panel_0", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "92819fb6-a0a3-4831-881f-de6e9203f3ee", + "w": 14, + "x": 12, + "y": 0 + }, + "panelIndex": "92819fb6-a0a3-4831-881f-de6e9203f3ee", + "panelRefName": "panel_1", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "0d49c092-01ba-4213-b3f4-05f939796184", + "w": 10, + "x": 26, + "y": 0 + }, + "panelIndex": "0d49c092-01ba-4213-b3f4-05f939796184", + "panelRefName": "panel_2", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "ac111656-d2ad-4b02-8c4f-b07ae92cf3f5", + "w": 12, + "x": 36, + "y": 0 + }, + "panelIndex": "ac111656-d2ad-4b02-8c4f-b07ae92cf3f5", + "panelRefName": "panel_3", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 690.5 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "0fbd766f-a11e-4287-ab1d-2239068f4aa9", + "w": 16, + "x": 0, + "y": 18 + }, + "panelIndex": "0fbd766f-a11e-4287-ab1d-2239068f4aa9", + "panelRefName": "panel_4", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 494.5 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "9b7733e0-a86a-4721-a456-2f394577025a", + "w": 12, + "x": 16, + "y": 18 + }, + "panelIndex": "9b7733e0-a86a-4721-a456-2f394577025a", + "panelRefName": "panel_5", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "4bce30b1-9606-4fc7-91af-1890ad0578bd", + "w": 12, + "x": 28, + "y": 18 + }, + "panelIndex": "4bce30b1-9606-4fc7-91af-1890ad0578bd", + "panelRefName": "panel_6", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "2e7f876d-4e18-4dc6-a57f-51c651f90b4c", + "w": 8, + "x": 40, + "y": 18 + }, + "panelIndex": "2e7f876d-4e18-4dc6-a57f-51c651f90b4c", + "panelRefName": "panel_7", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 467.5 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "a824f293-41a3-46bf-83c9-1d17fa840fde", + "w": 13, + "x": 0, + "y": 36 + }, + "panelIndex": "a824f293-41a3-46bf-83c9-1d17fa840fde", + "panelRefName": "panel_8", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "91d7b4bf-4a43-4747-91ad-3e2fd201468e", + "w": 11, + "x": 13, + "y": 36 + }, + "panelIndex": "91d7b4bf-4a43-4747-91ad-3e2fd201468e", + "panelRefName": "panel_9", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "f597f182-0cf4-4fab-b0ab-af4e7c74a897", + "w": 24, + "x": 24, + "y": 36 + }, + "panelIndex": "f597f182-0cf4-4fab-b0ab-af4e7c74a897", + "panelRefName": "panel_10", + "version": "7.11.0" + } + ], + "timeRestore": false, + "title": "[Filebeat Threat Intel] Abuse URL", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "65fa6bc0-72f0-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "87980f70-72ec-11eb-a3e3-b3cc7c78a70f", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "98d42ee0-76b6-11eb-a3e3-b3cc7c78a70f", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "a7b6e910-72ed-11eb-a3e3-b3cc7c78a70f", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "eba4ec60-72ea-11eb-a3e3-b3cc7c78a70f", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "1adff580-72ee-11eb-a3e3-b3cc7c78a70f", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "62f6daa0-72ee-11eb-a3e3-b3cc7c78a70f", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "ecf74b10-72ec-11eb-a3e3-b3cc7c78a70f", + "name": "panel_6", + "type": "visualization" + }, + { + "id": "44020830-7394-11eb-a3e3-b3cc7c78a70f", + "name": "panel_7", + "type": "visualization" + }, + { + "id": "d5d76c60-72ee-11eb-a3e3-b3cc7c78a70f", + "name": "panel_8", + "type": "visualization" + }, + { + "id": "ea5879c0-72eb-11eb-a3e3-b3cc7c78a70f", + "name": "panel_9", + "type": "visualization" + }, + { + "id": "a1616dd0-72eb-11eb-a3e3-b3cc7c78a70f", + "name": "panel_10", + "type": "visualization" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:25.974Z", + "version": "WzQ1NDksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/68c48a30-739e-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/68c48a30-739e-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..821271041f2c --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/68c48a30-739e-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,635 @@ +{ + "attributes": { + "description": "Anomali indicators ingested by the threat intel Filebeat module.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "db6836db-8df5-4f4d-814b-7b1919eeb405", + "w": 8, + "x": 0, + "y": 0 + }, + "panelIndex": "db6836db-8df5-4f4d-814b-7b1919eeb405", + "panelRefName": "panel_db6836db-8df5-4f4d-814b-7b1919eeb405", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "e6288d8d-2a04-4b53-9507-62e6bf79fa90", + "w": 8, + "x": 8, + "y": 0 + }, + "panelIndex": "e6288d8d-2a04-4b53-9507-62e6bf79fa90", + "panelRefName": "panel_e6288d8d-2a04-4b53-9507-62e6bf79fa90", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "64186fc9-ecd9-461d-8b9f-2e38b7e10952", + "w": 7, + "x": 16, + "y": 0 + }, + "panelIndex": "64186fc9-ecd9-461d-8b9f-2e38b7e10952", + "panelRefName": "panel_64186fc9-ecd9-461d-8b9f-2e38b7e10952", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "f54f6633-8185-43da-af7b-64729c6d19c4", + "w": 8, + "x": 23, + "y": 0 + }, + "panelIndex": "f54f6633-8185-43da-af7b-64729c6d19c4", + "panelRefName": "panel_f54f6633-8185-43da-af7b-64729c6d19c4", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "b28f9576-c381-4b8e-a2c4-2f085477d9fe", + "w": 8, + "x": 31, + "y": 0 + }, + "panelIndex": "b28f9576-c381-4b8e-a2c4-2f085477d9fe", + "panelRefName": "panel_b28f9576-c381-4b8e-a2c4-2f085477d9fe", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "bf8b3c50-9df8-4a80-b678-fe7f463f365c", + "w": 9, + "x": 39, + "y": 0 + }, + "panelIndex": "bf8b3c50-9df8-4a80-b678-fe7f463f365c", + "panelRefName": "panel_bf8b3c50-9df8-4a80-b678-fe7f463f365c", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "30f2e620-6c9e-48a2-9111-0e641e5e999a", + "w": 8, + "x": 0, + "y": 16 + }, + "panelIndex": "30f2e620-6c9e-48a2-9111-0e641e5e999a", + "panelRefName": "panel_30f2e620-6c9e-48a2-9111-0e641e5e999a", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "a220d0d1-d800-4539-955e-c0454b823c80", + "w": 8, + "x": 8, + "y": 16 + }, + "panelIndex": "a220d0d1-d800-4539-955e-c0454b823c80", + "panelRefName": "panel_a220d0d1-d800-4539-955e-c0454b823c80", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-823b507c-03a2-413b-9fc6-ba86a0160d50", + "type": "index-pattern" + } + ], + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "823b507c-03a2-413b-9fc6-ba86a0160d50": { + "columnOrder": [ + "a89c7d23-2879-41d9-9f71-7f33c63cca60", + "1266faef-9fa3-4560-9dd0-7116e8b2a6de", + "43cd0668-5ea3-495f-97a5-1d2ddae02ef6" + ], + "columns": { + "1266faef-9fa3-4560-9dd0-7116e8b2a6de": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "43cd0668-5ea3-495f-97a5-1d2ddae02ef6": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "a89c7d23-2879-41d9-9f71-7f33c63cca60": { + "customLabel": true, + "dataType": "date", + "isBucketed": true, + "label": "Anomali Data Source", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "curveType": "LINEAR", + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "43cd0668-5ea3-495f-97a5-1d2ddae02ef6" + ], + "layerId": "823b507c-03a2-413b-9fc6-ba86a0160d50", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "a89c7d23-2879-41d9-9f71-7f33c63cca60", + "xAccessor": "1266faef-9fa3-4560-9dd0-7116e8b2a6de" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {}, + "type": "lens" + }, + "gridData": { + "h": 16, + "i": "2a0a608b-3d0d-4de6-8e82-0a34611c465f", + "w": 23, + "x": 16, + "y": 16 + }, + "panelIndex": "2a0a608b-3d0d-4de6-8e82-0a34611c465f", + "panelRefName": "panel_2a0a608b-3d0d-4de6-8e82-0a34611c465f", + "type": "lens", + "version": "7.14.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "f96c5e71-869a-4cbd-a9b0-c0a83126d596", + "w": 9, + "x": 39, + "y": 16 + }, + "panelIndex": "f96c5e71-869a-4cbd-a9b0-c0a83126d596", + "panelRefName": "panel_f96c5e71-869a-4cbd-a9b0-c0a83126d596", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hiddenLayers": [], + "isLayerTOCOpen": true, + "mapBuffer": { + "maxLat": 103.96437999999999, + "maxLon": 422.73256, + "minLat": -76.05418, + "minLon": -422.73256 + }, + "mapCenter": { + "lat": 19.94277, + "lon": 0, + "zoom": 2.08 + }, + "openTOCDetails": [] + }, + "gridData": { + "h": 24, + "i": "dc602af3-264e-4086-9875-164baac7810f", + "w": 48, + "x": 0, + "y": 32 + }, + "panelIndex": "dc602af3-264e-4086-9875-164baac7810f", + "panelRefName": "panel_dc602af3-264e-4086-9875-164baac7810f", + "type": "map", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f", + "w": 14, + "x": 0, + "y": 56 + }, + "panelIndex": "fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f", + "panelRefName": "panel_fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "2c4c65a4-7de7-4985-8516-592b1929770b", + "w": 15, + "x": 14, + "y": 56 + }, + "panelIndex": "2c4c65a4-7de7-4985-8516-592b1929770b", + "panelRefName": "panel_2c4c65a4-7de7-4985-8516-592b1929770b", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "175715f8-9e3c-4f04-8c13-2658bee47e4f", + "w": 11, + "x": 29, + "y": 56 + }, + "panelIndex": "175715f8-9e3c-4f04-8c13-2658bee47e4f", + "panelRefName": "panel_175715f8-9e3c-4f04-8c13-2658bee47e4f", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "9cbed687-e299-42a2-b966-1ac38d2ce178", + "w": 8, + "x": 40, + "y": 56 + }, + "panelIndex": "9cbed687-e299-42a2-b966-1ac38d2ce178", + "panelRefName": "panel_9cbed687-e299-42a2-b966-1ac38d2ce178", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "c4bfc787-6b1e-48da-98a1-ffb40786e772", + "w": 9, + "x": 0, + "y": 73 + }, + "panelIndex": "c4bfc787-6b1e-48da-98a1-ffb40786e772", + "panelRefName": "panel_c4bfc787-6b1e-48da-98a1-ffb40786e772", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "e6ecb6c4-565b-40b4-979f-42e2d200561a", + "w": 10, + "x": 9, + "y": 73 + }, + "panelIndex": "e6ecb6c4-565b-40b4-979f-42e2d200561a", + "panelRefName": "panel_e6ecb6c4-565b-40b4-979f-42e2d200561a", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "1aa274fa-0c73-4475-b1b8-a1a2fde2350f", + "w": 14, + "x": 19, + "y": 73 + }, + "panelIndex": "1aa274fa-0c73-4475-b1b8-a1a2fde2350f", + "panelRefName": "panel_1aa274fa-0c73-4475-b1b8-a1a2fde2350f", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1", + "w": 7, + "x": 33, + "y": 73 + }, + "panelIndex": "5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1", + "panelRefName": "panel_5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "ef43fef1-a2e4-4572-8f03-02738650b757", + "w": 8, + "x": 40, + "y": 73 + }, + "panelIndex": "ef43fef1-a2e4-4572-8f03-02738650b757", + "panelRefName": "panel_ef43fef1-a2e4-4572-8f03-02738650b757", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "58a150f9-b99d-4040-8ae8-260ad7041086", + "w": 9, + "x": 0, + "y": 90 + }, + "panelIndex": "58a150f9-b99d-4040-8ae8-260ad7041086", + "panelRefName": "panel_58a150f9-b99d-4040-8ae8-260ad7041086", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "486ad65a-6356-4b9d-8455-4c207f017eb8", + "w": 16, + "x": 9, + "y": 90 + }, + "panelIndex": "486ad65a-6356-4b9d-8455-4c207f017eb8", + "panelRefName": "panel_486ad65a-6356-4b9d-8455-4c207f017eb8", + "type": "lens", + "version": "7.13.2" + } + ], + "timeRestore": false, + "title": "[Filebeat Threat Intel] Anomali", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "68c48a30-739e-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "bfd2bfe0-de97-11eb-8f2b-753caedf727d", + "name": "db6836db-8df5-4f4d-814b-7b1919eeb405:panel_db6836db-8df5-4f4d-814b-7b1919eeb405", + "type": "lens" + }, + { + "id": "9a61edc0-de93-11eb-8f2b-753caedf727d", + "name": "e6288d8d-2a04-4b53-9507-62e6bf79fa90:panel_e6288d8d-2a04-4b53-9507-62e6bf79fa90", + "type": "lens" + }, + { + "id": "021ba940-de96-11eb-8f2b-753caedf727d", + "name": "64186fc9-ecd9-461d-8b9f-2e38b7e10952:panel_64186fc9-ecd9-461d-8b9f-2e38b7e10952", + "type": "lens" + }, + { + "id": "3c40f4d0-de97-11eb-8f2b-753caedf727d", + "name": "f54f6633-8185-43da-af7b-64729c6d19c4:panel_f54f6633-8185-43da-af7b-64729c6d19c4", + "type": "lens" + }, + { + "id": "bd28cb00-de96-11eb-8f2b-753caedf727d", + "name": "b28f9576-c381-4b8e-a2c4-2f085477d9fe:panel_b28f9576-c381-4b8e-a2c4-2f085477d9fe", + "type": "lens" + }, + { + "id": "f5f18940-de96-11eb-8f2b-753caedf727d", + "name": "bf8b3c50-9df8-4a80-b678-fe7f463f365c:panel_bf8b3c50-9df8-4a80-b678-fe7f463f365c", + "type": "lens" + }, + { + "id": "c91fcd10-de95-11eb-8f2b-753caedf727d", + "name": "30f2e620-6c9e-48a2-9111-0e641e5e999a:panel_30f2e620-6c9e-48a2-9111-0e641e5e999a", + "type": "lens" + }, + { + "id": "36f61650-de96-11eb-8f2b-753caedf727d", + "name": "a220d0d1-d800-4539-955e-c0454b823c80:panel_a220d0d1-d800-4539-955e-c0454b823c80", + "type": "lens" + }, + { + "id": "1d7a18c0-df54-11eb-8f2b-753caedf727d", + "name": "2a0a608b-3d0d-4de6-8e82-0a34611c465f:panel_2a0a608b-3d0d-4de6-8e82-0a34611c465f", + "type": "lens" + }, + { + "id": "filebeat-*", + "name": "2a0a608b-3d0d-4de6-8e82-0a34611c465f:indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "2a0a608b-3d0d-4de6-8e82-0a34611c465f:indexpattern-datasource-layer-823b507c-03a2-413b-9fc6-ba86a0160d50", + "type": "index-pattern" + }, + { + "id": "d991e510-de96-11eb-8f2b-753caedf727d", + "name": "f96c5e71-869a-4cbd-a9b0-c0a83126d596:panel_f96c5e71-869a-4cbd-a9b0-c0a83126d596", + "type": "lens" + }, + { + "id": "ec5aa090-df42-11eb-8f2b-753caedf727d", + "name": "dc602af3-264e-4086-9875-164baac7810f:panel_dc602af3-264e-4086-9875-164baac7810f", + "type": "map" + }, + { + "id": "f52a9720-de93-11eb-8f2b-753caedf727d", + "name": "fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f:panel_fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f", + "type": "lens" + }, + { + "id": "8a6f7b20-de94-11eb-8f2b-753caedf727d", + "name": "2c4c65a4-7de7-4985-8516-592b1929770b:panel_2c4c65a4-7de7-4985-8516-592b1929770b", + "type": "lens" + }, + { + "id": "ae5934e0-de94-11eb-8f2b-753caedf727d", + "name": "175715f8-9e3c-4f04-8c13-2658bee47e4f:panel_175715f8-9e3c-4f04-8c13-2658bee47e4f", + "type": "lens" + }, + { + "id": "5ef7b430-de94-11eb-8f2b-753caedf727d", + "name": "9cbed687-e299-42a2-b966-1ac38d2ce178:panel_9cbed687-e299-42a2-b966-1ac38d2ce178", + "type": "lens" + }, + { + "id": "976620a0-de98-11eb-8f2b-753caedf727d", + "name": "c4bfc787-6b1e-48da-98a1-ffb40786e772:panel_c4bfc787-6b1e-48da-98a1-ffb40786e772", + "type": "lens" + }, + { + "id": "aac00bc0-de98-11eb-8f2b-753caedf727d", + "name": "e6ecb6c4-565b-40b4-979f-42e2d200561a:panel_e6ecb6c4-565b-40b4-979f-42e2d200561a", + "type": "lens" + }, + { + "id": "7ec83f60-de98-11eb-8f2b-753caedf727d", + "name": "1aa274fa-0c73-4475-b1b8-a1a2fde2350f:panel_1aa274fa-0c73-4475-b1b8-a1a2fde2350f", + "type": "lens" + }, + { + "id": "7d9c70f0-de95-11eb-8f2b-753caedf727d", + "name": "5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1:panel_5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1", + "type": "lens" + }, + { + "id": "9c78ade0-de95-11eb-8f2b-753caedf727d", + "name": "ef43fef1-a2e4-4572-8f03-02738650b757:panel_ef43fef1-a2e4-4572-8f03-02738650b757", + "type": "lens" + }, + { + "id": "e5f07800-de94-11eb-8f2b-753caedf727d", + "name": "58a150f9-b99d-4040-8ae8-260ad7041086:panel_58a150f9-b99d-4040-8ae8-260ad7041086", + "type": "lens" + }, + { + "id": "1136ceb0-de95-11eb-8f2b-753caedf727d", + "name": "486ad65a-6356-4b9d-8455-4c207f017eb8:panel_486ad65a-6356-4b9d-8455-4c207f017eb8", + "type": "lens" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1NzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/894dd3e0-df57-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/894dd3e0-df57-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..8f49344ce69c --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/894dd3e0-df57-11eb-8f2b-753caedf727d.json @@ -0,0 +1,396 @@ +{ + "attributes": { + "description": "Recorded Future indicators ingested by the threat intel Filebeat module.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "c5528bd5-fc50-4902-94d9-6f6579e93364", + "w": 10, + "x": 0, + "y": 0 + }, + "panelIndex": "c5528bd5-fc50-4902-94d9-6f6579e93364", + "panelRefName": "panel_c5528bd5-fc50-4902-94d9-6f6579e93364", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "5844ac07-8c60-4e94-9fdb-f5489bbaafb0", + "w": 10, + "x": 10, + "y": 0 + }, + "panelIndex": "5844ac07-8c60-4e94-9fdb-f5489bbaafb0", + "panelRefName": "panel_5844ac07-8c60-4e94-9fdb-f5489bbaafb0", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "705de4dd-b10b-4871-b42e-c32802f07cdc", + "w": 9, + "x": 20, + "y": 0 + }, + "panelIndex": "705de4dd-b10b-4871-b42e-c32802f07cdc", + "panelRefName": "panel_705de4dd-b10b-4871-b42e-c32802f07cdc", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "579da37e-73d7-48b8-a2ae-09f9252be1d0", + "w": 9, + "x": 29, + "y": 0 + }, + "panelIndex": "579da37e-73d7-48b8-a2ae-09f9252be1d0", + "panelRefName": "panel_579da37e-73d7-48b8-a2ae-09f9252be1d0", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "5df65cab-f10e-4192-8490-9586519be39a", + "w": 10, + "x": 38, + "y": 0 + }, + "panelIndex": "5df65cab-f10e-4192-8490-9586519be39a", + "panelRefName": "panel_5df65cab-f10e-4192-8490-9586519be39a", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "64b0403d-03e5-48c3-9dae-0b005ebb5f1a", + "w": 25, + "x": 0, + "y": 16 + }, + "panelIndex": "64b0403d-03e5-48c3-9dae-0b005ebb5f1a", + "panelRefName": "panel_64b0403d-03e5-48c3-9dae-0b005ebb5f1a", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "e95ad49d-d270-4592-af6b-0bb20ab8686a", + "w": 23, + "x": 25, + "y": 16 + }, + "panelIndex": "e95ad49d-d270-4592-af6b-0bb20ab8686a", + "panelRefName": "panel_e95ad49d-d270-4592-af6b-0bb20ab8686a", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "1be4a1f3-6421-4bd4-99af-f2c9f99c944d", + "w": 7, + "x": 0, + "y": 33 + }, + "panelIndex": "1be4a1f3-6421-4bd4-99af-f2c9f99c944d", + "panelRefName": "panel_1be4a1f3-6421-4bd4-99af-f2c9f99c944d", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "f2318e6a-9258-4628-897f-c39d16452ec5", + "w": 9, + "x": 7, + "y": 33 + }, + "panelIndex": "f2318e6a-9258-4628-897f-c39d16452ec5", + "panelRefName": "panel_f2318e6a-9258-4628-897f-c39d16452ec5", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "2aec92d5-3db8-42ee-b5a6-27886672811e", + "w": 9, + "x": 16, + "y": 33 + }, + "panelIndex": "2aec92d5-3db8-42ee-b5a6-27886672811e", + "panelRefName": "panel_2aec92d5-3db8-42ee-b5a6-27886672811e", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "4ba8c6c1-b5d2-4624-af2a-5c3a0b999eb9", + "w": 10, + "x": 25, + "y": 33 + }, + "panelIndex": "4ba8c6c1-b5d2-4624-af2a-5c3a0b999eb9", + "panelRefName": "panel_4ba8c6c1-b5d2-4624-af2a-5c3a0b999eb9", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "a60753a1-e859-4388-aff7-e7c30fea8ea0", + "w": 13, + "x": 35, + "y": 33 + }, + "panelIndex": "a60753a1-e859-4388-aff7-e7c30fea8ea0", + "panelRefName": "panel_a60753a1-e859-4388-aff7-e7c30fea8ea0", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "1ccdc84b-976e-4579-8227-e1fec014d744", + "w": 9, + "x": 0, + "y": 50 + }, + "panelIndex": "1ccdc84b-976e-4579-8227-e1fec014d744", + "panelRefName": "panel_1ccdc84b-976e-4579-8227-e1fec014d744", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "48cc5d73-41e5-4c50-bd4b-a2c44848bfa1", + "w": 9, + "x": 9, + "y": 50 + }, + "panelIndex": "48cc5d73-41e5-4c50-bd4b-a2c44848bfa1", + "panelRefName": "panel_48cc5d73-41e5-4c50-bd4b-a2c44848bfa1", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "a454a943-3968-4796-ac2a-89c78ad10c50", + "w": 9, + "x": 18, + "y": 50 + }, + "panelIndex": "a454a943-3968-4796-ac2a-89c78ad10c50", + "panelRefName": "panel_a454a943-3968-4796-ac2a-89c78ad10c50", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "f2bbe7e9-0c11-4ab8-a1cb-5c7b36b950f6", + "w": 9, + "x": 27, + "y": 50 + }, + "panelIndex": "f2bbe7e9-0c11-4ab8-a1cb-5c7b36b950f6", + "panelRefName": "panel_f2bbe7e9-0c11-4ab8-a1cb-5c7b36b950f6", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "f3a61f45-ac06-44db-b21c-1ffbb9e99014", + "w": 12, + "x": 36, + "y": 50 + }, + "panelIndex": "f3a61f45-ac06-44db-b21c-1ffbb9e99014", + "panelRefName": "panel_f3a61f45-ac06-44db-b21c-1ffbb9e99014", + "type": "lens", + "version": "7.13.2" + } + ], + "timeRestore": false, + "title": "[Filebeat Threat Intel] Recorded Future", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "894dd3e0-df57-11eb-8f2b-753caedf727d", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "037e2af0-df50-11eb-8f2b-753caedf727d", + "name": "c5528bd5-fc50-4902-94d9-6f6579e93364:panel_c5528bd5-fc50-4902-94d9-6f6579e93364", + "type": "lens" + }, + { + "id": "b0837690-df52-11eb-8f2b-753caedf727d", + "name": "5844ac07-8c60-4e94-9fdb-f5489bbaafb0:panel_5844ac07-8c60-4e94-9fdb-f5489bbaafb0", + "type": "lens" + }, + { + "id": "176bf800-df58-11eb-8f2b-753caedf727d", + "name": "705de4dd-b10b-4871-b42e-c32802f07cdc:panel_705de4dd-b10b-4871-b42e-c32802f07cdc", + "type": "lens" + }, + { + "id": "4bcc4cb0-df50-11eb-8f2b-753caedf727d", + "name": "579da37e-73d7-48b8-a2ae-09f9252be1d0:panel_579da37e-73d7-48b8-a2ae-09f9252be1d0", + "type": "lens" + }, + { + "id": "949bc180-df52-11eb-8f2b-753caedf727d", + "name": "5df65cab-f10e-4192-8490-9586519be39a:panel_5df65cab-f10e-4192-8490-9586519be39a", + "type": "lens" + }, + { + "id": "7ed4ce00-df52-11eb-8f2b-753caedf727d", + "name": "64b0403d-03e5-48c3-9dae-0b005ebb5f1a:panel_64b0403d-03e5-48c3-9dae-0b005ebb5f1a", + "type": "lens" + }, + { + "id": "82fa7420-df58-11eb-8f2b-753caedf727d", + "name": "e95ad49d-d270-4592-af6b-0bb20ab8686a:panel_e95ad49d-d270-4592-af6b-0bb20ab8686a", + "type": "lens" + }, + { + "id": "c2a5c180-df51-11eb-8f2b-753caedf727d", + "name": "1be4a1f3-6421-4bd4-99af-f2c9f99c944d:panel_1be4a1f3-6421-4bd4-99af-f2c9f99c944d", + "type": "lens" + }, + { + "id": "06744e90-df52-11eb-8f2b-753caedf727d", + "name": "f2318e6a-9258-4628-897f-c39d16452ec5:panel_f2318e6a-9258-4628-897f-c39d16452ec5", + "type": "lens" + }, + { + "id": "dd4a3da0-df50-11eb-8f2b-753caedf727d", + "name": "2aec92d5-3db8-42ee-b5a6-27886672811e:panel_2aec92d5-3db8-42ee-b5a6-27886672811e", + "type": "lens" + }, + { + "id": "f37f8350-df50-11eb-8f2b-753caedf727d", + "name": "4ba8c6c1-b5d2-4624-af2a-5c3a0b999eb9:panel_4ba8c6c1-b5d2-4624-af2a-5c3a0b999eb9", + "type": "lens" + }, + { + "id": "139c7da0-df51-11eb-8f2b-753caedf727d", + "name": "a60753a1-e859-4388-aff7-e7c30fea8ea0:panel_a60753a1-e859-4388-aff7-e7c30fea8ea0", + "type": "lens" + }, + { + "id": "a0a31740-df51-11eb-8f2b-753caedf727d", + "name": "1ccdc84b-976e-4579-8227-e1fec014d744:panel_1ccdc84b-976e-4579-8227-e1fec014d744", + "type": "lens" + }, + { + "id": "5e76ef90-df51-11eb-8f2b-753caedf727d", + "name": "48cc5d73-41e5-4c50-bd4b-a2c44848bfa1:panel_48cc5d73-41e5-4c50-bd4b-a2c44848bfa1", + "type": "lens" + }, + { + "id": "8fb01a00-df51-11eb-8f2b-753caedf727d", + "name": "a454a943-3968-4796-ac2a-89c78ad10c50:panel_a454a943-3968-4796-ac2a-89c78ad10c50", + "type": "lens" + }, + { + "id": "3c996410-df52-11eb-8f2b-753caedf727d", + "name": "f2bbe7e9-0c11-4ab8-a1cb-5c7b36b950f6:panel_f2bbe7e9-0c11-4ab8-a1cb-5c7b36b950f6", + "type": "lens" + }, + { + "id": "790cd040-df51-11eb-8f2b-753caedf727d", + "name": "f3a61f45-ac06-44db-b21c-1ffbb9e99014:panel_f3a61f45-ac06-44db-b21c-1ffbb9e99014", + "type": "lens" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-abuse-url.ndjson b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-abuse-url.ndjson deleted file mode 100644 index ecdb7e1121da..000000000000 --- a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-abuse-url.ndjson +++ /dev/null @@ -1,14 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"threatintel\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"threatintel\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.category\", \"negate\": false, \"params\": {\"query\": \"threat\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.category\": \"threat\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"enrichment\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"enrichment\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index\", \"key\": \"event.type\", \"negate\": false, \"params\": {\"query\": \"indicator\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.type\": \"indicator\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[],"title":"All Logs [Filebeat Threat Intel] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NjAsMV0="} -{"attributes":{"color":"#a548ae","description":"Tag for indicators ingested by the Threat Intel Filebeat module.","name":"threat intel"},"coreMigrationVersion":"8.0.0","id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","references":[],"type":"tag","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzksMV0="} -{"attributes":{"description":"Abuse URL threat of indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abuseurl.threat\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.abuseurl.threat\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Threat [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"Count\": \"#E24D42\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Abuse URL Threat\",\"field\":\"threatintel.abuseurl.threat\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":true},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Abuse URL Threat [Filebeat Threat Intel]\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"87980f70-72ec-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTAsMV0="} -{"attributes":{"description":"Tags for Abuse URL indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abuseurl.tags\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.abuseurl.tags\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Tags [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Abuse URL Tags\",\"field\":\"threatintel.abuseurl.tags\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse URL Tags [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"98d42ee0-76b6-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTEsMV0="} -{"attributes":{"description":"Abuse URL scheme of indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.url.scheme\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.url.scheme\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Scheme [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"http\": \"#65C5DB\", \"https\": \"#F9934E\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"URL Scheme\",\"field\":\"threatintel.indicator.url.scheme\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"threatintel.indicator.url.scheme\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Abuse URL Scheme [Filebeat Threat Intel]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"a7b6e910-72ed-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTIsMV0="} -{"attributes":{"description":"Hosting provider notified for indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abuseurl.larted\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.abuseurl.larted\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Hosting Provider Notified [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"false\": \"#E24D42\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Hosting Provider Notified\",\"field\":\"threatintel.abuseurl.larted\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":2},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Abuse URL Hosting Provider Notified [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"eba4ec60-72ea-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTMsMV0="} -{"attributes":{"description":"Abuse URL domain indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.domain\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.domain\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Indicator Domain [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Threat Indicator Domain\",\"field\":\"threatintel.indicator.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse URL Indicator Domain [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"1adff580-72ee-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTQsMV0="} -{"attributes":{"description":"Abuse URL full URL indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.url.full\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.url.full\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Indicator URLs [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Threat Indicator URL\",\"field\":\"threatintel.indicator.url.full\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse URL Indicator URLs [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"62f6daa0-72ee-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTUsMV0="} -{"attributes":{"description":"Abuse URL provider of indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abuseurl.threat\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.abuseurl.threat\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Indicator Provider [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"Count\": \"#705DA0\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"threatintel.indicator.provider\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":true},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Abuse URL Indicator Provider [Filebeat Threat Intel]\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"ecf74b10-72ec-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTYsMV0="} -{"attributes":{"description":"Total number of Abuse URL indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Abuse URL Indicators\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Abuse URL Indicators [Filebeat Threat Intel]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"44020830-7394-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTcsMV0="} -{"attributes":{"description":"Abuse URL event references ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.url.full\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.url.full\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Event Reference [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Abuse URL Reference URL\",\"field\":\"event.reference\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse URL Event Reference [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"d5d76c60-72ee-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTgsMV0="} -{"attributes":{"description":"Status of URLs ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abuseurl.url_status\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.abuseurl.url_status\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL URL Status [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"URL Status\",\"field\":\"threatintel.abuseurl.url_status\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse URL URL Status [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"ea5879c0-72eb-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NTksMV0="} -{"attributes":{"description":"Blacklist status of URLs ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abuseurl\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abuseurl\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abuseurl.blacklists.spamhaus_dbl\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.abuseurl.blacklists.spamhaus_dbl\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abuseurl.blacklists.surbl\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"threatintel.abuseurl.blacklists.surbl\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse URL Blacklist Status [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Spamhaus DBL Blacklist Status\",\"field\":\"threatintel.abuseurl.blacklists.spamhaus_dbl\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"SURBL Blacklist Status\",\"field\":\"threatintel.abuseurl.blacklists.surbl\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse URL Blacklist Status [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"a1616dd0-72eb-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NjAsMV0="} -{"attributes":{"description":"Abuse URL indicators ingested by the threat intel Filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"166a6654-675d-4802-b1bf-05a9b95e6547\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"166a6654-675d-4802-b1bf-05a9b95e6547\",\"panelRefName\":\"panel_0\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"92819fb6-a0a3-4831-881f-de6e9203f3ee\",\"w\":14,\"x\":12,\"y\":0},\"panelIndex\":\"92819fb6-a0a3-4831-881f-de6e9203f3ee\",\"panelRefName\":\"panel_1\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"0d49c092-01ba-4213-b3f4-05f939796184\",\"w\":10,\"x\":26,\"y\":0},\"panelIndex\":\"0d49c092-01ba-4213-b3f4-05f939796184\",\"panelRefName\":\"panel_2\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"ac111656-d2ad-4b02-8c4f-b07ae92cf3f5\",\"w\":12,\"x\":36,\"y\":0},\"panelIndex\":\"ac111656-d2ad-4b02-8c4f-b07ae92cf3f5\",\"panelRefName\":\"panel_3\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":690.5}]}}},\"gridData\":{\"h\":18,\"i\":\"0fbd766f-a11e-4287-ab1d-2239068f4aa9\",\"w\":16,\"x\":0,\"y\":18},\"panelIndex\":\"0fbd766f-a11e-4287-ab1d-2239068f4aa9\",\"panelRefName\":\"panel_4\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":494.5}]}}},\"gridData\":{\"h\":18,\"i\":\"9b7733e0-a86a-4721-a456-2f394577025a\",\"w\":12,\"x\":16,\"y\":18},\"panelIndex\":\"9b7733e0-a86a-4721-a456-2f394577025a\",\"panelRefName\":\"panel_5\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"4bce30b1-9606-4fc7-91af-1890ad0578bd\",\"w\":12,\"x\":28,\"y\":18},\"panelIndex\":\"4bce30b1-9606-4fc7-91af-1890ad0578bd\",\"panelRefName\":\"panel_6\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"2e7f876d-4e18-4dc6-a57f-51c651f90b4c\",\"w\":8,\"x\":40,\"y\":18},\"panelIndex\":\"2e7f876d-4e18-4dc6-a57f-51c651f90b4c\",\"panelRefName\":\"panel_7\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":467.5}]}}},\"gridData\":{\"h\":18,\"i\":\"a824f293-41a3-46bf-83c9-1d17fa840fde\",\"w\":13,\"x\":0,\"y\":36},\"panelIndex\":\"a824f293-41a3-46bf-83c9-1d17fa840fde\",\"panelRefName\":\"panel_8\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"91d7b4bf-4a43-4747-91ad-3e2fd201468e\",\"w\":11,\"x\":13,\"y\":36},\"panelIndex\":\"91d7b4bf-4a43-4747-91ad-3e2fd201468e\",\"panelRefName\":\"panel_9\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"f597f182-0cf4-4fab-b0ab-af4e7c74a897\",\"w\":24,\"x\":24,\"y\":36},\"panelIndex\":\"f597f182-0cf4-4fab-b0ab-af4e7c74a897\",\"panelRefName\":\"panel_10\",\"version\":\"7.11.0\"}]","timeRestore":false,"title":"[Filebeat Threat Intel] Abuse URL","version":1},"coreMigrationVersion":"8.0.0","id":"65fa6bc0-72f0-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"87980f70-72ec-11eb-a3e3-b3cc7c78a70f","name":"panel_0","type":"visualization"},{"id":"98d42ee0-76b6-11eb-a3e3-b3cc7c78a70f","name":"panel_1","type":"visualization"},{"id":"a7b6e910-72ed-11eb-a3e3-b3cc7c78a70f","name":"panel_2","type":"visualization"},{"id":"eba4ec60-72ea-11eb-a3e3-b3cc7c78a70f","name":"panel_3","type":"visualization"},{"id":"1adff580-72ee-11eb-a3e3-b3cc7c78a70f","name":"panel_4","type":"visualization"},{"id":"62f6daa0-72ee-11eb-a3e3-b3cc7c78a70f","name":"panel_5","type":"visualization"},{"id":"ecf74b10-72ec-11eb-a3e3-b3cc7c78a70f","name":"panel_6","type":"visualization"},{"id":"44020830-7394-11eb-a3e3-b3cc7c78a70f","name":"panel_7","type":"visualization"},{"id":"d5d76c60-72ee-11eb-a3e3-b3cc7c78a70f","name":"panel_8","type":"visualization"},{"id":"ea5879c0-72eb-11eb-a3e3-b3cc7c78a70f","name":"panel_9","type":"visualization"},{"id":"a1616dd0-72eb-11eb-a3e3-b3cc7c78a70f","name":"panel_10","type":"visualization"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"dashboard","updated_at":"2021-08-04T16:34:25.974Z","version":"WzQ1NDksMV0="} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-alienvault-otx.ndjson b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-alienvault-otx.ndjson deleted file mode 100644 index eaee8545b033..000000000000 --- a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-alienvault-otx.ndjson +++ /dev/null @@ -1,14 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"threatintel\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"threatintel\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.category\", \"negate\": false, \"params\": {\"query\": \"threat\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.category\": \"threat\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"enrichment\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"enrichment\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index\", \"key\": \"event.type\", \"negate\": false, \"params\": {\"query\": \"indicator\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.type\": \"indicator\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[],"title":"All Logs [Filebeat Threat Intel] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NjAsMV0="} -{"attributes":{"color":"#a548ae","description":"Tag for indicators ingested by the Threat Intel Filebeat module.","name":"threat intel"},"coreMigrationVersion":"8.0.0","id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","references":[],"type":"tag","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzksMV0="} -{"attributes":{"description":"AlienVault OTX URL scheme ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlientVault OTX URL Scheme [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"http\": \"#65C5DB\", \"https\": \"#F9934E\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"\",\"field\":\"threatintel.indicator.url.scheme\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":true},\"labels\":{\"show\":true},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"AlientVault OTX URL Scheme [Filebeat Threat Intel]\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"95f384b0-76d8-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NjQsMV0="} -{"attributes":{"description":"Total number of AlienVault OTX indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlienVault OTX Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"AlienVault OTX Indicators\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"AlienVault OTX Indicators [Filebeat Threat Intel]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"b5bd3a70-76ce-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NjUsMV0="} -{"attributes":{"description":"AlienVault OTX indicator types ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlientVault OTX Indicator Types [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"threatintel.indicator.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"AlientVault OTX Indicator Types [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"f33125b0-76d8-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NjYsMV0="} -{"attributes":{"description":"AlienVault OTX IP indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.ip\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.ip\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlientVault OTX IP Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"AlienVault OTX IP Indicator\",\"field\":\"threatintel.indicator.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"AlientVault OTX IP Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"302cd5b0-76cd-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NjcsMV0="} -{"attributes":{"description":"AlienVault OTX domain indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.domain\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.domain\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlientVault OTX Domain Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"AlienVault OTX IP Indicator\",\"field\":\"threatintel.indicator.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"AlientVault OTX Domain Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"49f0c060-76cd-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NjgsMV0="} -{"attributes":{"description":"AlienVault OTX URL indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.url.original\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.url.original\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlienVault OTX URL Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"AlienVault OTX URL Indicator\",\"field\":\"threatintel.indicator.url.original\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"AlienVault OTX URL Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"346136f0-76d5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NjksMV0="} -{"attributes":{"description":"AlienVault OTX URL domain indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.url.domain\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.url.domain\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlienVault OTX URL Domain Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"AlienVault OTX URL Domain Indicator\",\"field\":\"threatintel.indicator.url.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"AlienVault OTX URL Domain Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"9109e490-76cd-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NzAsMV0="} -{"attributes":{"description":"AlienVault OTX URI indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.url.path\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.url.path\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlienVault OTX URI Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"AlienVault OTX URI Indicator\",\"field\":\"threatintel.indicator.url.path\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"AlienVault OTX URI Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"6077fd00-76d5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NzEsMV0="} -{"attributes":{"description":"AlienVault OTX SHA256 hash indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.sha256\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.sha256\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlientVault OTX SHA256 Hash Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"AlienVault OTX SHA256 Hash Indicator\",\"field\":\"threatintel.indicator.file.hash.sha256\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"AlientVault OTX SHA256 Hash Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"4e5d25c0-76ce-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NzIsMV0="} -{"attributes":{"description":"AlienVault OTX MD5 hash indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.md5\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.md5\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlientVault OTX MD5 Hash Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"AlienVault OTX MD5 Hash Indicator\",\"field\":\"threatintel.indicator.file.hash.md5\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"AlientVault OTX MD5 Hash Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"0ccdda50-76ce-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NzMsMV0="} -{"attributes":{"description":"AlienVault OTX indicator title ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.otx\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.otx\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.otx.title\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.otx.title\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"AlienVault OTX Indicator Title [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"AlienVault OTX Indicator Title\",\"field\":\"threatintel.otx.title\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"AlienVault OTX Indicator Title [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"01c261b0-7aa9-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NzQsMV0="} -{"attributes":{"description":"AlienVault OTX indicators ingested by the threat intel Filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"7847e7a5-06a5-43e7-bd6b-ccae637739e5\",\"w\":17,\"x\":0,\"y\":0},\"panelIndex\":\"7847e7a5-06a5-43e7-bd6b-ccae637739e5\",\"panelRefName\":\"panel_0\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"dc17e932-e983-4deb-95dc-07d571bf9e28\",\"w\":7,\"x\":17,\"y\":0},\"panelIndex\":\"dc17e932-e983-4deb-95dc-07d571bf9e28\",\"panelRefName\":\"panel_1\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"6d448f2b-f2b7-4e18-a9ef-77c06ab755ac\",\"w\":15,\"x\":24,\"y\":0},\"panelIndex\":\"6d448f2b-f2b7-4e18-a9ef-77c06ab755ac\",\"panelRefName\":\"panel_2\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"a946ed22-37d4-4c8d-8250-fc00f2ad646b\",\"w\":9,\"x\":39,\"y\":0},\"panelIndex\":\"a946ed22-37d4-4c8d-8250-fc00f2ad646b\",\"panelRefName\":\"panel_3\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":286}]}}},\"gridData\":{\"h\":18,\"i\":\"e4c2fa0c-b238-4502-82b8-b61847d19b18\",\"w\":9,\"x\":0,\"y\":18},\"panelIndex\":\"e4c2fa0c-b238-4502-82b8-b61847d19b18\",\"panelRefName\":\"panel_4\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"ed1ab436-d7cc-4545-bbc6-a3aa4d45108b\",\"w\":17,\"x\":9,\"y\":18},\"panelIndex\":\"ed1ab436-d7cc-4545-bbc6-a3aa4d45108b\",\"panelRefName\":\"panel_5\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"ac6508e3-214a-4af9-8621-f9bd9cd9fe36\",\"w\":10,\"x\":26,\"y\":18},\"panelIndex\":\"ac6508e3-214a-4af9-8621-f9bd9cd9fe36\",\"panelRefName\":\"panel_6\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"d5dbe626-716b-4dc2-9018-21050ee860ad\",\"w\":12,\"x\":36,\"y\":18},\"panelIndex\":\"d5dbe626-716b-4dc2-9018-21050ee860ad\",\"panelRefName\":\"panel_7\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"fb89a073-18ce-41a0-87ec-a66bb35216e5\",\"w\":24,\"x\":0,\"y\":36},\"panelIndex\":\"fb89a073-18ce-41a0-87ec-a66bb35216e5\",\"panelRefName\":\"panel_8\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":303}]}}},\"gridData\":{\"h\":18,\"i\":\"a2a17e0d-2de0-45cc-8440-d00a7044aaab\",\"w\":9,\"x\":24,\"y\":36},\"panelIndex\":\"a2a17e0d-2de0-45cc-8440-d00a7044aaab\",\"panelRefName\":\"panel_9\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":598}]}}},\"gridData\":{\"h\":18,\"i\":\"291a8404-8e31-45f4-9117-4ea5bf996e78\",\"w\":15,\"x\":33,\"y\":36},\"panelIndex\":\"291a8404-8e31-45f4-9117-4ea5bf996e78\",\"panelRefName\":\"panel_10\",\"version\":\"7.11.1\"}]","timeRestore":false,"title":"[Filebeat Threat Intel] AlienVault OTX","version":1},"coreMigrationVersion":"8.0.0","id":"53e4e630-76cf-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"95f384b0-76d8-11eb-a3e3-b3cc7c78a70f","name":"panel_0","type":"visualization"},{"id":"b5bd3a70-76ce-11eb-a3e3-b3cc7c78a70f","name":"panel_1","type":"visualization"},{"id":"f33125b0-76d8-11eb-a3e3-b3cc7c78a70f","name":"panel_2","type":"visualization"},{"id":"302cd5b0-76cd-11eb-a3e3-b3cc7c78a70f","name":"panel_3","type":"visualization"},{"id":"49f0c060-76cd-11eb-a3e3-b3cc7c78a70f","name":"panel_4","type":"visualization"},{"id":"346136f0-76d5-11eb-a3e3-b3cc7c78a70f","name":"panel_5","type":"visualization"},{"id":"9109e490-76cd-11eb-a3e3-b3cc7c78a70f","name":"panel_6","type":"visualization"},{"id":"6077fd00-76d5-11eb-a3e3-b3cc7c78a70f","name":"panel_7","type":"visualization"},{"id":"4e5d25c0-76ce-11eb-a3e3-b3cc7c78a70f","name":"panel_8","type":"visualization"},{"id":"0ccdda50-76ce-11eb-a3e3-b3cc7c78a70f","name":"panel_9","type":"visualization"},{"id":"01c261b0-7aa9-11eb-ac13-d5ca87cb8fa2","name":"panel_10","type":"visualization"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"dashboard","updated_at":"2021-08-04T16:34:27.014Z","version":"WzQ1NjMsMV0="} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-anomali.ndjson b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-anomali.ndjson deleted file mode 100644 index bd2e2a4df12d..000000000000 --- a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-anomali.ndjson +++ /dev/null @@ -1,24 +0,0 @@ -{"attributes":{"color":"#a548ae","description":"Tag for indicators ingested by the Threat Intel Filebeat module.","name":"threat intel"},"coreMigrationVersion":"8.0.0","id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","references":[],"type":"tag","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzksMV0="} -{"attributes":{"description":"Anomali indicator confidence ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["208779ac-fe5e-4c9b-bfc5-1429ec918089","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"208779ac-fe5e-4c9b-bfc5-1429ec918089":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator Confidence","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":5},"scale":"ordinal","sourceField":"threatintel.indicator.confidence"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"layers":[{"categoryDisplay":"default","groups":["208779ac-fe5e-4c9b-bfc5-1429ec918089"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","legendDisplay":"default","metric":"9afb1b09-0f20-488c-9242-a94f7d11800b","nestedLegend":false,"numberDisplay":"percent"}],"shape":"donut"}},"title":"Anomali Indicator Confidence [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"bfd2bfe0-de97-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1NzgsMV0="} -{"attributes":{"description":"Total number of Anomali indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["15a91057-d730-461d-8510-633a1205b462"],"columns":{"15a91057-d730-461d-8510-633a1205b462":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total Anomali Indicators","operationType":"count","params":{"format":{"id":"number","params":{"decimals":0}}},"scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"accessor":"15a91057-d730-461d-8510-633a1205b462","layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali Indicators [Filebeat Threat Intel]","visualizationType":"lnsMetric"},"coreMigrationVersion":"8.0.0","id":"9a61edc0-de93-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1NzksMV0="} -{"attributes":{"description":"Anomali indicator type ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["7b2420d3-1149-4f18-a114-e984e3c701f3","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"7b2420d3-1149-4f18-a114-e984e3c701f3":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator Type","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":5},"scale":"ordinal","sourceField":"threatintel.indicator.type"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"layers":[{"categoryDisplay":"default","groups":["7b2420d3-1149-4f18-a114-e984e3c701f3","7b2420d3-1149-4f18-a114-e984e3c701f3","7b2420d3-1149-4f18-a114-e984e3c701f3"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","legendDisplay":"default","metric":"9afb1b09-0f20-488c-9242-a94f7d11800b","nestedLegend":false,"numberDisplay":"percent"}],"shape":"donut"}},"title":"Anomali Indicator Type [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"021ba940-de96-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODAsMV0="} -{"attributes":{"description":"Anomali detailed indicator type ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["6a19d4b1-f2d9-4fb8-9970-b7b255f63988","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"6a19d4b1-f2d9-4fb8-9970-b7b255f63988":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Detailed Indicator Type","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":5},"scale":"ordinal","sourceField":"threatintel.anomalithreatstream.itype"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"layers":[{"categoryDisplay":"default","groups":["6a19d4b1-f2d9-4fb8-9970-b7b255f63988"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","legendDisplay":"default","metric":"9afb1b09-0f20-488c-9242-a94f7d11800b","nestedLegend":false,"numberDisplay":"percent"}],"shape":"donut"}},"title":"Anomali Detailed Indicator Type [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"3c40f4d0-de97-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODEsMV0="} -{"attributes":{"description":"Anomali indicator severity ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["dde93810-194c-43e5-bf06-31bfba459425","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"dde93810-194c-43e5-bf06-31bfba459425":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator Severity","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":3},"scale":"ordinal","sourceField":"threatintel.anomalithreatstream.severity"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"layers":[{"categoryDisplay":"default","groups":["dde93810-194c-43e5-bf06-31bfba459425"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","legendDisplay":"default","metric":"9afb1b09-0f20-488c-9242-a94f7d11800b","nestedLegend":false,"numberDisplay":"percent"}],"palette":{"name":"default","type":"palette"},"shape":"donut"}},"title":"Anomali Indicator Severity [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"bd28cb00-de96-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODIsMV0="} -{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["8cd1203c-8d1a-4a49-b97f-bc5a011119b0","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"8cd1203c-8d1a-4a49-b97f-bc5a011119b0":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator TLP Marking","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":5},"scale":"ordinal","sourceField":"threatintel.indicator.marking.tlp"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["9afb1b09-0f20-488c-9242-a94f7d11800b"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","seriesType":"bar_horizontal","xAccessor":"8cd1203c-8d1a-4a49-b97f-bc5a011119b0"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar_horizontal","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"Anomali Indicator TLP Marking [Filebeat Threat Intel]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"f5f18940-de96-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODMsMV0="} -{"attributes":{"description":"Anomali indicator provider ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["a5ec41b6-ad59-4c19-8e50-8fca5230931f","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"a5ec41b6-ad59-4c19-8e50-8fca5230931f":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator Provider","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.provider"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"a5ec41b6-ad59-4c19-8e50-8fca5230931f","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali Indicator Provider [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"c91fcd10-de95-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODQsMV0="} -{"attributes":{"description":"Anomali indicator classification ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["8d7cc68f-5178-40f1-b041-bdb02dea3324","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"8d7cc68f-5178-40f1-b041-bdb02dea3324":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator Classification","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":5},"scale":"ordinal","sourceField":"threatintel.anomalithreatstream.classification"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"layers":[{"categoryDisplay":"default","groups":["8d7cc68f-5178-40f1-b041-bdb02dea3324"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","legendDisplay":"default","metric":"9afb1b09-0f20-488c-9242-a94f7d11800b","nestedLegend":false,"numberDisplay":"percent"}],"shape":"donut"}},"title":"Anomali Indicator Classification [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"36f61650-de96-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODUsMV0="} -{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"823b507c-03a2-413b-9fc6-ba86a0160d50":{"columnOrder":["3da14e5a-0f82-42ce-9bca-cc20ec7f3639","1266faef-9fa3-4560-9dd0-7116e8b2a6de","43cd0668-5ea3-495f-97a5-1d2ddae02ef6"],"columns":{"1266faef-9fa3-4560-9dd0-7116e8b2a6de":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"3da14e5a-0f82-42ce-9bca-cc20ec7f3639":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Feed Source","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"43cd0668-5ea3-495f-97a5-1d2ddae02ef6","type":"column"},"orderDirection":"desc","otherBucket":true,"size":2},"scale":"ordinal","sourceField":"event.dataset"},"43cd0668-5ea3-495f-97a5-1d2ddae02ef6":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"curveType":"LINEAR","fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["43cd0668-5ea3-495f-97a5-1d2ddae02ef6"],"layerId":"823b507c-03a2-413b-9fc6-ba86a0160d50","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"3da14e5a-0f82-42ce-9bca-cc20ec7f3639","xAccessor":"1266faef-9fa3-4560-9dd0-7116e8b2a6de"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"Anomali Data Source [Filebeat Threat Intel]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"1d7a18c0-df54-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-823b507c-03a2-413b-9fc6-ba86a0160d50","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODYsMV0="} -{"attributes":{"description":"Anomali indicator state ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["e5a7fb87-1df1-4b79-b610-1196abdfd499","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"e5a7fb87-1df1-4b79-b610-1196abdfd499":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator State","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":5},"scale":"ordinal","sourceField":"threatintel.anomalithreatstream.state"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["9afb1b09-0f20-488c-9242-a94f7d11800b"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","seriesType":"bar_horizontal","xAccessor":"e5a7fb87-1df1-4b79-b610-1196abdfd499"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar_horizontal","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"Anomali Indicator State [Filebeat Threat Intel]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"d991e510-de96-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODcsMV0="} -{"attributes":{"description":"Geographic location of Anomali indicators ingested by the threat intel Filebeat module.","layerListJSON":"[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"9027343a-f725-4467-9b08-8566ad0b2a52\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{\"type\":\"TILE\"},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"geoField\":\"threatintel.indicator.geo.location\",\"filterByMapBounds\":true,\"scalingType\":\"LIMIT\",\"id\":\"a3ecc6af-0299-4cb9-a29c-0b70f666b011\",\"type\":\"ES_SEARCH\",\"applyGlobalQuery\":true,\"applyGlobalTime\":true,\"tooltipProperties\":[\"threatintel.indicator.as.number\",\"threatintel.indicator.as.organization.name\",\"threatintel.indicator.geo.country_iso_code\"],\"sortField\":\"\",\"sortOrder\":\"desc\",\"topHitsSplitField\":\"\",\"topHitsSize\":1,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"id\":\"83ede860-fe89-43c9-8e74-fa2703efbb85\",\"label\":\"Indicator Geographic Location\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"danger\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#D36086\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#41937c\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"type\":\"VECTOR\",\"joins\":[]}]","mapStateJSON":"{\"zoom\":2.08,\"center\":{\"lon\":0,\"lat\":19.94277},\"timeFilters\":{\"from\":\"now-7d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":true,\"interval\":0},\"query\":{\"query\":\"event.dataset:\\\"threatintel.anomalithreatstream\\\" \",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false,\"backgroundColor\":\"#ffffff\",\"disableInteractive\":false,\"disableTooltipControl\":false,\"hideToolbarOverlay\":false,\"hideLayerControl\":false,\"hideViewControl\":false,\"initialLocation\":\"LAST_SAVED_LOCATION\",\"fixedLocation\":{\"lat\":0,\"lon\":0,\"zoom\":2},\"browserLocation\":{\"zoom\":2},\"maxZoom\":24,\"minZoom\":0,\"showScaleControl\":false,\"showSpatialFilters\":true,\"spatialFiltersAlpa\":0.3,\"spatialFiltersFillColor\":\"#DA8B45\",\"spatialFiltersLineColor\":\"#DA8B45\"}}","title":"Anomali Indicator Geographic Location [Filebeat Threat Intel]","uiStateJSON":"{\"isLayerTOCOpen\": true, \"openTOCDetails\": []}"},"coreMigrationVersion":"8.0.0","id":"ec5aa090-df42-11eb-8f2b-753caedf727d","migrationVersion":{"map":"7.14.0"},"references":[{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"},{"id":"filebeat-*","name":"layer_1_source_index_pattern","type":"index-pattern"}],"type":"map","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODgsMV0="} -{"attributes":{"description":"Anomali email indicator ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["81a03111-2286-4898-aef5-9e8b309b2437","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"81a03111-2286-4898-aef5-9e8b309b2437":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Email Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.email.address"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"81a03111-2286-4898-aef5-9e8b309b2437","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali Email Indicator [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"f52a9720-de93-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1ODksMV0="} -{"attributes":{"description":"Anomali URL indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["b42d5573-842d-4494-82d7-c35c9b66b188","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"b42d5573-842d-4494-82d7-c35c9b66b188":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali URL Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.url.original"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"b42d5573-842d-4494-82d7-c35c9b66b188","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali URL Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"8a6f7b20-de94-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTAsMV0="} -{"attributes":{"description":"Anomali domain indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["9e23efd8-7ea2-4c0e-af80-99b2f915ae81","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"9e23efd8-7ea2-4c0e-af80-99b2f915ae81":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Domain Indicators","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.url.domain"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"9e23efd8-7ea2-4c0e-af80-99b2f915ae81","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali Domain Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"ae5934e0-de94-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTEsMV0="} -{"attributes":{"description":"Anomali IP indicator ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["f89f3b93-e409-4ed2-b938-4cd31f2b7247","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"f89f3b93-e409-4ed2-b938-4cd31f2b7247":{"customLabel":true,"dataType":"ip","isBucketed":true,"label":"Anomali IP Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.ip"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"f89f3b93-e409-4ed2-b938-4cd31f2b7247","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali IP Indicator [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"5ef7b430-de94-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTIsMV0="} -{"attributes":{"description":"Anomali indicator MD5 hash ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["3ae42baf-5685-4f7d-94d3-66ff57b4febd","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"3ae42baf-5685-4f7d-94d3-66ff57b4febd":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali MD5 File Hash","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.file.hash.md5"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"3ae42baf-5685-4f7d-94d3-66ff57b4febd","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali MD5 Hash Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"976620a0-de98-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTMsMV0="} -{"attributes":{"description":"Anomali indicator SHA1 hash ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["3ae42baf-5685-4f7d-94d3-66ff57b4febd","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"3ae42baf-5685-4f7d-94d3-66ff57b4febd":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali SHA1 File Hash","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.file.hash.sha1"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"3ae42baf-5685-4f7d-94d3-66ff57b4febd","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali SHA1 Hash Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"aac00bc0-de98-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTQsMV0="} -{"attributes":{"description":"Anomali indicator SHA256 hash ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["3ae42baf-5685-4f7d-94d3-66ff57b4febd","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"3ae42baf-5685-4f7d-94d3-66ff57b4febd":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali SHA256 File Hash","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.file.hash.sha256"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"3ae42baf-5685-4f7d-94d3-66ff57b4febd","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali SHA256 Hash Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"7ec83f60-de98-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTUsMV0="} -{"attributes":{"description":"Anomali indicator name ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["4cca9b50-a9a4-4cce-ae15-9447a451d8a1","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"4cca9b50-a9a4-4cce-ae15-9447a451d8a1":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator Name","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.anomali.name"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"4cca9b50-a9a4-4cce-ae15-9447a451d8a1","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali Indicator Name [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"7d9c70f0-de95-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTYsMV0="} -{"attributes":{"description":"Anomali indicator description ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["577fd2f3-2a3f-4932-8348-9653e54a61e0","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"577fd2f3-2a3f-4932-8348-9653e54a61e0":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Anomali Indicator Description","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.anomali.description"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"577fd2f3-2a3f-4932-8348-9653e54a61e0","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali Indicator Description [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"9c78ade0-de95-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTcsMV0="} -{"attributes":{"description":"Anomali indicator ID ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["9e0166f4-d0f0-448c-befa-c07a3e86d69f","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"9e0166f4-d0f0-448c-befa-c07a3e86d69f":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"ThreatStream ID","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.anomalithreatstream.id"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"9e0166f4-d0f0-448c-befa-c07a3e86d69f","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali Indicator ID [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"e5f07800-de94-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTgsMV0="} -{"attributes":{"description":"Anomali ThreatStream URI ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["2e21ae71-6d85-4de2-8585-a60933c18f60","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"2e21ae71-6d85-4de2-8585-a60933c18f60":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"ThreatStream URI","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.anomalithreatstream.resource_uri"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)"},"visualization":{"columns":[{"columnId":"2e21ae71-6d85-4de2-8585-a60933c18f60","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Anomali URI [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"1136ceb0-de95-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1OTksMV0="} -{"attributes":{"description":"Anomali indicators ingested by the threat intel Filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"db6836db-8df5-4f4d-814b-7b1919eeb405\",\"w\":8,\"x\":0,\"y\":0},\"panelIndex\":\"db6836db-8df5-4f4d-814b-7b1919eeb405\",\"panelRefName\":\"panel_db6836db-8df5-4f4d-814b-7b1919eeb405\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"e6288d8d-2a04-4b53-9507-62e6bf79fa90\",\"w\":8,\"x\":8,\"y\":0},\"panelIndex\":\"e6288d8d-2a04-4b53-9507-62e6bf79fa90\",\"panelRefName\":\"panel_e6288d8d-2a04-4b53-9507-62e6bf79fa90\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"64186fc9-ecd9-461d-8b9f-2e38b7e10952\",\"w\":7,\"x\":16,\"y\":0},\"panelIndex\":\"64186fc9-ecd9-461d-8b9f-2e38b7e10952\",\"panelRefName\":\"panel_64186fc9-ecd9-461d-8b9f-2e38b7e10952\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"f54f6633-8185-43da-af7b-64729c6d19c4\",\"w\":8,\"x\":23,\"y\":0},\"panelIndex\":\"f54f6633-8185-43da-af7b-64729c6d19c4\",\"panelRefName\":\"panel_f54f6633-8185-43da-af7b-64729c6d19c4\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"b28f9576-c381-4b8e-a2c4-2f085477d9fe\",\"w\":8,\"x\":31,\"y\":0},\"panelIndex\":\"b28f9576-c381-4b8e-a2c4-2f085477d9fe\",\"panelRefName\":\"panel_b28f9576-c381-4b8e-a2c4-2f085477d9fe\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"bf8b3c50-9df8-4a80-b678-fe7f463f365c\",\"w\":9,\"x\":39,\"y\":0},\"panelIndex\":\"bf8b3c50-9df8-4a80-b678-fe7f463f365c\",\"panelRefName\":\"panel_bf8b3c50-9df8-4a80-b678-fe7f463f365c\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"30f2e620-6c9e-48a2-9111-0e641e5e999a\",\"w\":8,\"x\":0,\"y\":16},\"panelIndex\":\"30f2e620-6c9e-48a2-9111-0e641e5e999a\",\"panelRefName\":\"panel_30f2e620-6c9e-48a2-9111-0e641e5e999a\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"a220d0d1-d800-4539-955e-c0454b823c80\",\"w\":8,\"x\":8,\"y\":16},\"panelIndex\":\"a220d0d1-d800-4539-955e-c0454b823c80\",\"panelRefName\":\"panel_a220d0d1-d800-4539-955e-c0454b823c80\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":16,\"i\":\"2a0a608b-3d0d-4de6-8e82-0a34611c465f\",\"w\":23,\"x\":16,\"y\":16},\"panelIndex\":\"2a0a608b-3d0d-4de6-8e82-0a34611c465f\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"filebeat-*\",\"name\":\"indexpattern-datasource-layer-823b507c-03a2-413b-9fc6-ba86a0160d50\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"823b507c-03a2-413b-9fc6-ba86a0160d50\":{\"columnOrder\":[\"a89c7d23-2879-41d9-9f71-7f33c63cca60\",\"1266faef-9fa3-4560-9dd0-7116e8b2a6de\",\"43cd0668-5ea3-495f-97a5-1d2ddae02ef6\"],\"columns\":{\"1266faef-9fa3-4560-9dd0-7116e8b2a6de\":{\"dataType\":\"date\",\"isBucketed\":true,\"label\":\"@timestamp\",\"operationType\":\"date_histogram\",\"params\":{\"interval\":\"auto\"},\"scale\":\"interval\",\"sourceField\":\"@timestamp\"},\"43cd0668-5ea3-495f-97a5-1d2ddae02ef6\":{\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Count of records\",\"operationType\":\"count\",\"scale\":\"ratio\",\"sourceField\":\"Records\"},\"a89c7d23-2879-41d9-9f71-7f33c63cca60\":{\"customLabel\":true,\"dataType\":\"date\",\"isBucketed\":true,\"label\":\"Anomali Data Source\",\"operationType\":\"date_histogram\",\"params\":{\"interval\":\"auto\"},\"scale\":\"interval\",\"sourceField\":\"@timestamp\"}},\"incompleteColumns\":{}}}}},\"filters\":[],\"query\":{\"language\":\"kuery\",\"query\":\"event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)\"},\"visualization\":{\"axisTitlesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"curveType\":\"LINEAR\",\"fittingFunction\":\"None\",\"gridlinesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"layers\":[{\"accessors\":[\"43cd0668-5ea3-495f-97a5-1d2ddae02ef6\"],\"layerId\":\"823b507c-03a2-413b-9fc6-ba86a0160d50\",\"position\":\"top\",\"seriesType\":\"line\",\"showGridlines\":false,\"splitAccessor\":\"a89c7d23-2879-41d9-9f71-7f33c63cca60\",\"xAccessor\":\"1266faef-9fa3-4560-9dd0-7116e8b2a6de\"}],\"legend\":{\"isVisible\":true,\"position\":\"right\"},\"preferredSeriesType\":\"line\",\"tickLabelsVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"valueLabels\":\"hide\"}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsXY\"},\"enhancements\":{},\"type\":\"lens\"},\"panelRefName\":\"panel_2a0a608b-3d0d-4de6-8e82-0a34611c465f\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"f96c5e71-869a-4cbd-a9b0-c0a83126d596\",\"w\":9,\"x\":39,\"y\":16},\"panelIndex\":\"f96c5e71-869a-4cbd-a9b0-c0a83126d596\",\"panelRefName\":\"panel_f96c5e71-869a-4cbd-a9b0-c0a83126d596\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{},\"hiddenLayers\":[],\"isLayerTOCOpen\":true,\"mapBuffer\":{\"maxLat\":103.96437999999999,\"maxLon\":422.73256,\"minLat\":-76.05418,\"minLon\":-422.73256},\"mapCenter\":{\"lat\":19.94277,\"lon\":0,\"zoom\":2.08},\"openTOCDetails\":[]},\"gridData\":{\"h\":24,\"i\":\"dc602af3-264e-4086-9875-164baac7810f\",\"w\":48,\"x\":0,\"y\":32},\"panelIndex\":\"dc602af3-264e-4086-9875-164baac7810f\",\"panelRefName\":\"panel_dc602af3-264e-4086-9875-164baac7810f\",\"type\":\"map\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f\",\"w\":14,\"x\":0,\"y\":56},\"panelIndex\":\"fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f\",\"panelRefName\":\"panel_fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"2c4c65a4-7de7-4985-8516-592b1929770b\",\"w\":15,\"x\":14,\"y\":56},\"panelIndex\":\"2c4c65a4-7de7-4985-8516-592b1929770b\",\"panelRefName\":\"panel_2c4c65a4-7de7-4985-8516-592b1929770b\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"175715f8-9e3c-4f04-8c13-2658bee47e4f\",\"w\":11,\"x\":29,\"y\":56},\"panelIndex\":\"175715f8-9e3c-4f04-8c13-2658bee47e4f\",\"panelRefName\":\"panel_175715f8-9e3c-4f04-8c13-2658bee47e4f\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"9cbed687-e299-42a2-b966-1ac38d2ce178\",\"w\":8,\"x\":40,\"y\":56},\"panelIndex\":\"9cbed687-e299-42a2-b966-1ac38d2ce178\",\"panelRefName\":\"panel_9cbed687-e299-42a2-b966-1ac38d2ce178\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"c4bfc787-6b1e-48da-98a1-ffb40786e772\",\"w\":9,\"x\":0,\"y\":73},\"panelIndex\":\"c4bfc787-6b1e-48da-98a1-ffb40786e772\",\"panelRefName\":\"panel_c4bfc787-6b1e-48da-98a1-ffb40786e772\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"e6ecb6c4-565b-40b4-979f-42e2d200561a\",\"w\":10,\"x\":9,\"y\":73},\"panelIndex\":\"e6ecb6c4-565b-40b4-979f-42e2d200561a\",\"panelRefName\":\"panel_e6ecb6c4-565b-40b4-979f-42e2d200561a\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"1aa274fa-0c73-4475-b1b8-a1a2fde2350f\",\"w\":14,\"x\":19,\"y\":73},\"panelIndex\":\"1aa274fa-0c73-4475-b1b8-a1a2fde2350f\",\"panelRefName\":\"panel_1aa274fa-0c73-4475-b1b8-a1a2fde2350f\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1\",\"w\":7,\"x\":33,\"y\":73},\"panelIndex\":\"5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1\",\"panelRefName\":\"panel_5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"ef43fef1-a2e4-4572-8f03-02738650b757\",\"w\":8,\"x\":40,\"y\":73},\"panelIndex\":\"ef43fef1-a2e4-4572-8f03-02738650b757\",\"panelRefName\":\"panel_ef43fef1-a2e4-4572-8f03-02738650b757\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"58a150f9-b99d-4040-8ae8-260ad7041086\",\"w\":9,\"x\":0,\"y\":90},\"panelIndex\":\"58a150f9-b99d-4040-8ae8-260ad7041086\",\"panelRefName\":\"panel_58a150f9-b99d-4040-8ae8-260ad7041086\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"486ad65a-6356-4b9d-8455-4c207f017eb8\",\"w\":16,\"x\":9,\"y\":90},\"panelIndex\":\"486ad65a-6356-4b9d-8455-4c207f017eb8\",\"panelRefName\":\"panel_486ad65a-6356-4b9d-8455-4c207f017eb8\",\"type\":\"lens\",\"version\":\"7.13.2\"}]","timeRestore":false,"title":"[Filebeat Threat Intel] Anomali","version":1},"coreMigrationVersion":"8.0.0","id":"68c48a30-739e-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"bfd2bfe0-de97-11eb-8f2b-753caedf727d","name":"db6836db-8df5-4f4d-814b-7b1919eeb405:panel_db6836db-8df5-4f4d-814b-7b1919eeb405","type":"lens"},{"id":"9a61edc0-de93-11eb-8f2b-753caedf727d","name":"e6288d8d-2a04-4b53-9507-62e6bf79fa90:panel_e6288d8d-2a04-4b53-9507-62e6bf79fa90","type":"lens"},{"id":"021ba940-de96-11eb-8f2b-753caedf727d","name":"64186fc9-ecd9-461d-8b9f-2e38b7e10952:panel_64186fc9-ecd9-461d-8b9f-2e38b7e10952","type":"lens"},{"id":"3c40f4d0-de97-11eb-8f2b-753caedf727d","name":"f54f6633-8185-43da-af7b-64729c6d19c4:panel_f54f6633-8185-43da-af7b-64729c6d19c4","type":"lens"},{"id":"bd28cb00-de96-11eb-8f2b-753caedf727d","name":"b28f9576-c381-4b8e-a2c4-2f085477d9fe:panel_b28f9576-c381-4b8e-a2c4-2f085477d9fe","type":"lens"},{"id":"f5f18940-de96-11eb-8f2b-753caedf727d","name":"bf8b3c50-9df8-4a80-b678-fe7f463f365c:panel_bf8b3c50-9df8-4a80-b678-fe7f463f365c","type":"lens"},{"id":"c91fcd10-de95-11eb-8f2b-753caedf727d","name":"30f2e620-6c9e-48a2-9111-0e641e5e999a:panel_30f2e620-6c9e-48a2-9111-0e641e5e999a","type":"lens"},{"id":"36f61650-de96-11eb-8f2b-753caedf727d","name":"a220d0d1-d800-4539-955e-c0454b823c80:panel_a220d0d1-d800-4539-955e-c0454b823c80","type":"lens"},{"id":"1d7a18c0-df54-11eb-8f2b-753caedf727d","name":"2a0a608b-3d0d-4de6-8e82-0a34611c465f:panel_2a0a608b-3d0d-4de6-8e82-0a34611c465f","type":"lens"},{"id":"filebeat-*","name":"2a0a608b-3d0d-4de6-8e82-0a34611c465f:indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"2a0a608b-3d0d-4de6-8e82-0a34611c465f:indexpattern-datasource-layer-823b507c-03a2-413b-9fc6-ba86a0160d50","type":"index-pattern"},{"id":"d991e510-de96-11eb-8f2b-753caedf727d","name":"f96c5e71-869a-4cbd-a9b0-c0a83126d596:panel_f96c5e71-869a-4cbd-a9b0-c0a83126d596","type":"lens"},{"id":"ec5aa090-df42-11eb-8f2b-753caedf727d","name":"dc602af3-264e-4086-9875-164baac7810f:panel_dc602af3-264e-4086-9875-164baac7810f","type":"map"},{"id":"f52a9720-de93-11eb-8f2b-753caedf727d","name":"fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f:panel_fbd74b73-06a8-4be1-bfd6-848b7f1c9f4f","type":"lens"},{"id":"8a6f7b20-de94-11eb-8f2b-753caedf727d","name":"2c4c65a4-7de7-4985-8516-592b1929770b:panel_2c4c65a4-7de7-4985-8516-592b1929770b","type":"lens"},{"id":"ae5934e0-de94-11eb-8f2b-753caedf727d","name":"175715f8-9e3c-4f04-8c13-2658bee47e4f:panel_175715f8-9e3c-4f04-8c13-2658bee47e4f","type":"lens"},{"id":"5ef7b430-de94-11eb-8f2b-753caedf727d","name":"9cbed687-e299-42a2-b966-1ac38d2ce178:panel_9cbed687-e299-42a2-b966-1ac38d2ce178","type":"lens"},{"id":"976620a0-de98-11eb-8f2b-753caedf727d","name":"c4bfc787-6b1e-48da-98a1-ffb40786e772:panel_c4bfc787-6b1e-48da-98a1-ffb40786e772","type":"lens"},{"id":"aac00bc0-de98-11eb-8f2b-753caedf727d","name":"e6ecb6c4-565b-40b4-979f-42e2d200561a:panel_e6ecb6c4-565b-40b4-979f-42e2d200561a","type":"lens"},{"id":"7ec83f60-de98-11eb-8f2b-753caedf727d","name":"1aa274fa-0c73-4475-b1b8-a1a2fde2350f:panel_1aa274fa-0c73-4475-b1b8-a1a2fde2350f","type":"lens"},{"id":"7d9c70f0-de95-11eb-8f2b-753caedf727d","name":"5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1:panel_5a0c5e26-a71c-4217-9590-f2e7ffc6b4b1","type":"lens"},{"id":"9c78ade0-de95-11eb-8f2b-753caedf727d","name":"ef43fef1-a2e4-4572-8f03-02738650b757:panel_ef43fef1-a2e4-4572-8f03-02738650b757","type":"lens"},{"id":"e5f07800-de94-11eb-8f2b-753caedf727d","name":"58a150f9-b99d-4040-8ae8-260ad7041086:panel_58a150f9-b99d-4040-8ae8-260ad7041086","type":"lens"},{"id":"1136ceb0-de95-11eb-8f2b-753caedf727d","name":"486ad65a-6356-4b9d-8455-4c207f017eb8:panel_486ad65a-6356-4b9d-8455-4c207f017eb8","type":"lens"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"dashboard","updated_at":"2021-08-04T16:34:28.102Z","version":"WzQ1NzcsMV0="} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-aubse-malware.ndjson b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-aubse-malware.ndjson deleted file mode 100644 index 0f788b509e66..000000000000 --- a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-aubse-malware.ndjson +++ /dev/null @@ -1,12 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"threatintel\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"threatintel\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.category\", \"negate\": false, \"params\": {\"query\": \"threat\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.category\": \"threat\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"enrichment\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"enrichment\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index\", \"key\": \"event.type\", \"negate\": false, \"params\": {\"query\": \"indicator\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.type\": \"indicator\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[],"title":"All Logs [Filebeat Threat Intel] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NjAsMV0="} -{"attributes":{"color":"#a548ae","description":"Tag for indicators ingested by the Threat Intel Filebeat module.","name":"threat intel"},"coreMigrationVersion":"8.0.0","id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","references":[],"type":"tag","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzksMV0="} -{"attributes":{"description":"Abuse malware TLSH hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abusemalware\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abusemalware\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.tlsh\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.tlsh\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"threatintel.indicator.type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse Malware TLSH Hashes [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"TLSH Hash\",\"field\":\"threatintel.indicator.file.hash.tlsh\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"File Type\",\"field\":\"threatintel.indicator.file.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse Malware TLSH Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"79da77d0-72e5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDIsMV0="} -{"attributes":{"description":"Abuse malware signatures ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"dff48ab9-4cc8-4744-afe5-ee36a0a2065d":{"columnOrder":["959db113-1ce6-46fc-97c3-dbf5fd5abb9a","de396547-655b-4db2-8a21-e9850acff0b0"],"columns":{"959db113-1ce6-46fc-97c3-dbf5fd5abb9a":{"dataType":"string","isBucketed":true,"label":"Top values of threatintel.abusemalware.signature","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"de396547-655b-4db2-8a21-e9850acff0b0","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.abusemalware.signature"},"de396547-655b-4db2-8a21-e9850acff0b0":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[{"$state":{"store":"appState"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-0","key":"event.module","negate":false,"params":{"query":"threatintel"},"type":"phrase"},"query":{"match_phrase":{"event.module":"threatintel"}}},{"$state":{"store":"appState"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-1","key":"event.dataset","negate":false,"params":{"query":"threatintel.abusemalware"},"type":"phrase"},"query":{"match_phrase":{"event.dataset":"threatintel.abusemalware"}}},{"$state":{"store":"appState"},"exists":{"field":"threatintel.abusemalware.signature"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-2","key":"threatintel.abusemalware.signature","negate":false,"type":"exists","value":"exists"}}],"query":{"language":"kuery","query":""},"visualization":{"layers":[{"categoryDisplay":"default","groups":["959db113-1ce6-46fc-97c3-dbf5fd5abb9a"],"layerId":"dff48ab9-4cc8-4744-afe5-ee36a0a2065d","legendDisplay":"default","metric":"de396547-655b-4db2-8a21-e9850acff0b0","nestedLegend":false,"numberDisplay":"percent"}],"shape":"treemap"}},"title":"Abuse Malware Signature [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"0db62ee0-72e6-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-dff48ab9-4cc8-4744-afe5-ee36a0a2065d","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-0","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-1","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-2","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDMsMV0="} -{"attributes":{"description":"Total number of Abuse Malware indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abusemalware\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abusemalware\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse Malware Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Abuse Malware Indicators\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Abuse Malware Indicators [Filebeat Threat Intel]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"5f955bb0-7394-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDQsMV0="} -{"attributes":{"description":"Abuse malware import table hash by file type ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abusemalware\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abusemalware\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.pe.imphash\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.pe.imphash\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"threatintel.indicator.type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse Malware Import Table Hash [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Imphash Hash\",\"field\":\"threatintel.indicator.file.pe.imphash\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"File Type\",\"field\":\"threatintel.indicator.file.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse Malware Import Table Hash [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"b9533f50-72e5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDUsMV0="} -{"attributes":{"description":"Abuse malware SHA256 hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abusemalware\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abusemalware\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.sha256\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.sha256\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"threatintel.indicator.type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse Malware SHA256 Hashes [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"SHA256 Hash\",\"field\":\"threatintel.indicator.file.hash.sha256\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"File Type\",\"field\":\"threatintel.indicator.file.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse Malware SHA256 Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"1a0d5250-72e5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDYsMV0="} -{"attributes":{"description":"Abuse malware file types ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse Malware File Types [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"threatintel.indicator.file.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Abuse Malware File Types [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"40d61ab0-72e6-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDcsMV0="} -{"attributes":{"description":"Abuse malware ssdeep hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abusemalware\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abusemalware\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.ssdeep\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.ssdeep\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"threatintel.indicator.type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse Malware ssdeep Hashes [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"ssdeep Hash\",\"field\":\"threatintel.indicator.file.hash.ssdeep\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"File Type\",\"field\":\"threatintel.indicator.file.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse Malware ssdeep Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"41100be0-72e5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDgsMV0="} -{"attributes":{"description":"Abuse malware event references ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abusemalware\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abusemalware\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"event.reference\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.reference\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse Malware Event Reference [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Abuse Malware Reference URL\",\"field\":\"event.reference\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse Malware Event Reference [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"c369c190-72e4-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDksMV0="} -{"attributes":{"description":"Abuse malware VirusTotal references ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.abusemalware\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.abusemalware\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abusemalware.virustotal.link\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.abusemalware.virustotal.link\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.abusemalware.virustotal.result\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"threatintel.abusemalware.virustotal.result\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Abuse Malware VirusTotal References [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"colWidth\": [{\"colIndex\": 0, \"width\": 937.6666666666665}]}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"VirusTotal URL\",\"field\":\"threatintel.abusemalware.virustotal.link\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"VirusTotal Result\",\"field\":\"threatintel.abusemalware.virustotal.result\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Abuse Malware VirusTotal References [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"f9c6ba80-72e5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MTAsMV0="} -{"attributes":{"description":"Abuse Malware indicators ingested by the threat intel Filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":654.3333333333333}]}}},\"gridData\":{\"h\":18,\"i\":\"80e2f028-a447-4fa4-9161-052717ca9021\",\"w\":17,\"x\":0,\"y\":0},\"panelIndex\":\"80e2f028-a447-4fa4-9161-052717ca9021\",\"panelRefName\":\"panel_0\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"7483e258-c1e3-4fc8-9e8d-7e2abb400cda\",\"w\":10,\"x\":17,\"y\":0},\"panelIndex\":\"7483e258-c1e3-4fc8-9e8d-7e2abb400cda\",\"panelRefName\":\"panel_1\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"5b627f39-1ddb-499f-b9b6-87297576e3dd\",\"w\":8,\"x\":27,\"y\":0},\"panelIndex\":\"5b627f39-1ddb-499f-b9b6-87297576e3dd\",\"panelRefName\":\"panel_2\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":422.33333333333337}]}}},\"gridData\":{\"h\":18,\"i\":\"e7f02b6f-7a4c-417d-904a-582fa4f7f4b0\",\"w\":13,\"x\":35,\"y\":0},\"panelIndex\":\"e7f02b6f-7a4c-417d-904a-582fa4f7f4b0\",\"panelRefName\":\"panel_3\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":584.3333333333333}]}}},\"gridData\":{\"h\":18,\"i\":\"8459964a-6437-490f-a8f3-54f68ca4c9ef\",\"w\":16,\"x\":0,\"y\":18},\"panelIndex\":\"8459964a-6437-490f-a8f3-54f68ca4c9ef\",\"panelRefName\":\"panel_4\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"705312de-dfcc-4f8f-8371-78c3b0fbb968\",\"w\":13,\"x\":16,\"y\":18},\"panelIndex\":\"705312de-dfcc-4f8f-8371-78c3b0fbb968\",\"panelRefName\":\"panel_5\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"table\":null,\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":755.6666666666667},{\"colIndex\":1,\"width\":96}]}}},\"gridData\":{\"h\":18,\"i\":\"d3b6eec0-1b14-43f7-be9b-05314ee54c07\",\"w\":19,\"x\":29,\"y\":18},\"panelIndex\":\"d3b6eec0-1b14-43f7-be9b-05314ee54c07\",\"panelRefName\":\"panel_6\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":896.5}]}}},\"gridData\":{\"h\":18,\"i\":\"6d6ea6b0-21a5-4af4-bbea-4f85fc54eaf5\",\"w\":23,\"x\":0,\"y\":36},\"panelIndex\":\"6d6ea6b0-21a5-4af4-bbea-4f85fc54eaf5\",\"panelRefName\":\"panel_7\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"040ae85b-1abc-439e-a1b9-7bc3ddca1059\",\"w\":25,\"x\":23,\"y\":36},\"panelIndex\":\"040ae85b-1abc-439e-a1b9-7bc3ddca1059\",\"panelRefName\":\"panel_8\",\"version\":\"7.11.0\"}]","timeRestore":false,"title":"[Filebeat Threat Intel] Abuse Malware","version":1},"coreMigrationVersion":"8.0.0","id":"5ba16340-72e6-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"79da77d0-72e5-11eb-a3e3-b3cc7c78a70f","name":"panel_0","type":"visualization"},{"id":"0db62ee0-72e6-11eb-a3e3-b3cc7c78a70f","name":"panel_1","type":"lens"},{"id":"5f955bb0-7394-11eb-a3e3-b3cc7c78a70f","name":"panel_2","type":"visualization"},{"id":"b9533f50-72e5-11eb-a3e3-b3cc7c78a70f","name":"panel_3","type":"visualization"},{"id":"1a0d5250-72e5-11eb-a3e3-b3cc7c78a70f","name":"panel_4","type":"visualization"},{"id":"40d61ab0-72e6-11eb-a3e3-b3cc7c78a70f","name":"panel_5","type":"visualization"},{"id":"41100be0-72e5-11eb-a3e3-b3cc7c78a70f","name":"panel_6","type":"visualization"},{"id":"c369c190-72e4-11eb-a3e3-b3cc7c78a70f","name":"panel_7","type":"visualization"},{"id":"f9c6ba80-72e5-11eb-a3e3-b3cc7c78a70f","name":"panel_8","type":"visualization"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"dashboard","updated_at":"2021-08-04T16:34:29.041Z","version":"WzQ2MDEsMV0="} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-malwarebazaar.ndjson b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-malwarebazaar.ndjson deleted file mode 100644 index 9b904cabe5c7..000000000000 --- a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-malwarebazaar.ndjson +++ /dev/null @@ -1,18 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"threatintel\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"threatintel\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.category\", \"negate\": false, \"params\": {\"query\": \"threat\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.category\": \"threat\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"enrichment\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"enrichment\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index\", \"key\": \"event.type\", \"negate\": false, \"params\": {\"query\": \"indicator\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.type\": \"indicator\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[],"title":"All Logs [Filebeat Threat Intel] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NjAsMV0="} -{"attributes":{"color":"#a548ae","description":"Tag for indicators ingested by the Threat Intel Filebeat module.","name":"threat intel"},"coreMigrationVersion":"8.0.0","id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","references":[],"type":"tag","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzksMV0="} -{"attributes":{"description":"Tags for Malware Bazaar indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.malwarebazaar.tags\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.malwarebazaar.tags\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar Tags [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Malware Bazaar Tags\",\"field\":\"threatintel.malwarebazaar.tags\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar Tags [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"f91e9620-82a8-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MTQsMV0="} -{"attributes":{"description":"Malware Bazaar malware file MIME type ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.mime_type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.mime_type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar File MIME Type [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"colWidth\": [{\"colIndex\": 0, \"width\": 920.6666666666666}]}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"File MIME Type\",\"field\":\"threatintel.indicator.file.mime_type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar File MIME Type [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"d22c1090-82a5-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MTUsMV0="} -{"attributes":{"description":"Total number of Malware Bazaar indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Malware Bazaar Indicators\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Malware Bazaar Indicators [Filebeat Threat Intel]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"737d4f30-82ac-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MTYsMV0="} -{"attributes":{"description":"Malware Bazaar file extensions ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.extension\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.extension\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar File Extensions [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"threatintel.indicator.file.extension\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Malware Bazaar File Extensions [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"8b2a64a0-82a8-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MTcsMV0="} -{"attributes":{"description":"Malware Bazaar provider of indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.provider\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.provider\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar Indicator Provider [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"Count\": \"#705DA0\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Indicator Provider\",\"field\":\"threatintel.indicator.provider\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":true},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Malware Bazaar Indicator Provider [Filebeat Threat Intel]\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"c7d5db50-82a8-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MTgsMV0="} -{"attributes":{"description":"Origin country of the indicator ingested by the threat intel Filebeat module.","layerListJSON":"[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"ea2479ec-b43e-4377-a068-91d93265081d\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{\"type\":\"TILE\"},\"type\":\"VECTOR_TILE\"},{\"joins\":[{\"leftField\":\"iso2\",\"right\":{\"type\":\"ES_TERM_SOURCE\",\"id\":\"81d209f7-b068-4b0d-90f4-baf9a3eefb55\",\"indexPatternTitle\":\"filebeat-*\",\"term\":\"threatintel.indicator.geo.country_iso_code\",\"metrics\":[{\"type\":\"count\"}],\"applyGlobalQuery\":true,\"applyGlobalTime\":true,\"indexPatternRefName\":\"layer_1_join_0_index_pattern\"}}],\"sourceDescriptor\":{\"type\":\"EMS_FILE\",\"id\":\"world_countries\",\"tooltipProperties\":[\"name\"]},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"DYNAMIC\",\"options\":{\"color\":\"Yellow to Red\",\"colorCategory\":\"palette_0\",\"field\":{\"name\":\"__kbnjoin__count__81d209f7-b068-4b0d-90f4-baf9a3eefb55\",\"origin\":\"join\"},\"fieldMetaOptions\":{\"isEnabled\":true,\"sigma\":3},\"type\":\"ORDINAL\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#3d3d3d\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"66df8b3a-7f7c-4969-929e-2c1ac5b64584\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\"}]","mapStateJSON":"{\"zoom\":2.08,\"center\":{\"lon\":0,\"lat\":19.94277},\"timeFilters\":{\"from\":\"now-30d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":true,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false,\"backgroundColor\":\"#ffffff\",\"initialLocation\":\"LAST_SAVED_LOCATION\",\"fixedLocation\":{\"lat\":0,\"lon\":0,\"zoom\":2},\"browserLocation\":{\"zoom\":2},\"maxZoom\":24,\"minZoom\":0,\"showSpatialFilters\":true,\"spatialFiltersAlpa\":0.3,\"spatialFiltersFillColor\":\"#DA8B45\",\"spatialFiltersLineColor\":\"#DA8B45\"}}","title":"Indicator Origin Country [Filebeat Threat Intel]","uiStateJSON":"{\"isLayerTOCOpen\": true, \"openTOCDetails\": []}"},"coreMigrationVersion":"8.0.0","id":"63365b50-82aa-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"map":"7.14.0"},"references":[{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"},{"id":"filebeat-*","name":"layer_1_join_0_index_pattern","type":"index-pattern"}],"type":"map","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MTksMV0="} -{"attributes":{"description":"Number of times Malware Bazaar indicators ingested by the threat intel Filebeat module have been downloaded.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.malwarebazaar.intelligence.downloads\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.malwarebazaar.intelligence.downloads\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar Downloads [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 0, \"direction\": \"desc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Malware Bazaar Downloads\",\"field\":\"threatintel.malwarebazaar.intelligence.downloads\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar Downloads [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"bc4790b0-82aa-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjAsMV0="} -{"attributes":{"description":"Number of times Malware Bazaar indicators ingested by the threat intel Filebeat module have been uploaded.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.malwarebazaar.intelligence.uploads\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.malwarebazaar.intelligence.uploads\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar Uploads [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 0, \"direction\": \"desc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Malware Bazaar Uploads\",\"field\":\"threatintel.malwarebazaar.intelligence.uploads\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar Uploads [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"dbd199d0-82aa-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjEsMV0="} -{"attributes":{"description":"First time indicators ingested by the threat intel Filebeat module have been seen by Malware Bazaar","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.first_seen\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.first_seen\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar Indicator First Seen [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": 0, \"direction\": \"desc\"}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Indicator First Seen\",\"field\":\"threatintel.indicator.first_seen\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar Indicator First Seen [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"7cbe5900-82ab-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjIsMV0="} -{"attributes":{"description":"Malware Bazaar malware TLSH hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.tlsh\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.tlsh\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar TLSH Hashes [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"colWidth\": [{\"colIndex\": 0, \"width\": 920.6666666666666}]}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"TLSH Hash\",\"field\":\"threatintel.indicator.file.hash.tlsh\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar TLSH Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"786546d0-82a5-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjMsMV0="} -{"attributes":{"description":"Malware Bazaar malware ssdeep hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.ssdeep\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.ssdeep\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar ssdeep Hashes [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"colWidth\": [{\"colIndex\": 0, \"width\": 920.6666666666666}]}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"ssdeep Hash\",\"field\":\"threatintel.indicator.file.hash.ssdeep\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar ssdeep Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"7546ac40-82a6-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjQsMV0="} -{"attributes":{"description":"Malware Bazaar malware MD5 hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.md5\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.md5\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar MD5 Hashes [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"colWidth\": [{\"colIndex\": 0, \"width\": 920.6666666666666}]}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"MD5 Hash\",\"field\":\"threatintel.indicator.file.hash.md5\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar MD5 Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"21ff17c0-82a6-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjUsMV0="} -{"attributes":{"description":"Malware Bazaar malware SHA1 hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.sha1\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.sha1\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar SHA1 Hashes [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"colWidth\": [{\"colIndex\": 0, \"width\": 920.6666666666666}]}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"SHA1 Hash\",\"field\":\"threatintel.indicator.file.hash.sha1\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar SHA1 Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"142fb6c0-82a8-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjYsMV0="} -{"attributes":{"description":"Malware Bazaar malware SHA256 hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.sha256\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.sha256\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar SHA256 Hashes [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"colWidth\": [{\"colIndex\": 0, \"width\": 920.6666666666666}]}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"SHA256 Hash\",\"field\":\"threatintel.indicator.file.hash.sha256\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar SHA256 Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"5b4877b0-82a6-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjcsMV0="} -{"attributes":{"description":"Malware Bazaar malware Import Table hashes ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.malwarebazaar\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.malwarebazaar\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.pe.imphash\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.pe.imphash\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Malware Bazaar Import Table Hashes [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"params\": {\"colWidth\": [{\"colIndex\": 0, \"width\": 920.6666666666666}]}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Imphash Hash\",\"field\":\"threatintel.indicator.file.pe.imphash\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"Malware Bazaar Import Table Hashes [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"1d8002d0-82a7-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MjgsMV0="} -{"attributes":{"description":"Malware Bazaar indicators ingested by the threat intel Filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"1083ca13-ad6f-4814-8fbf-81b6e6e699ce\",\"w\":8,\"x\":0,\"y\":0},\"panelIndex\":\"1083ca13-ad6f-4814-8fbf-81b6e6e699ce\",\"panelRefName\":\"panel_0\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":215.66666666666663}]}}},\"gridData\":{\"h\":18,\"i\":\"e5a1ac0c-48a9-445e-becf-865607f990e5\",\"w\":8,\"x\":8,\"y\":0},\"panelIndex\":\"e5a1ac0c-48a9-445e-becf-865607f990e5\",\"panelRefName\":\"panel_1\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"d3b51c89-ac94-4972-a47e-171a0ae635c2\",\"w\":7,\"x\":16,\"y\":0},\"panelIndex\":\"d3b51c89-ac94-4972-a47e-171a0ae635c2\",\"panelRefName\":\"panel_2\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"04c92d8e-6022-4734-96a2-75c51779da75\",\"w\":14,\"x\":23,\"y\":0},\"panelIndex\":\"04c92d8e-6022-4734-96a2-75c51779da75\",\"panelRefName\":\"panel_3\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"0ba44fdb-d494-45ea-8890-1b9eb4e07e44\",\"w\":11,\"x\":37,\"y\":0},\"panelIndex\":\"0ba44fdb-d494-45ea-8890-1b9eb4e07e44\",\"panelRefName\":\"panel_4\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"hiddenLayers\":[],\"isLayerTOCOpen\":true,\"mapCenter\":{\"lat\":19.94277,\"lon\":0,\"zoom\":1.08},\"openTOCDetails\":[]},\"gridData\":{\"h\":18,\"i\":\"f0c69f9f-856b-4a66-ac07-6f4f1836743e\",\"w\":27,\"x\":0,\"y\":18},\"panelIndex\":\"f0c69f9f-856b-4a66-ac07-6f4f1836743e\",\"panelRefName\":\"panel_5\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"30bc1259-fae6-4806-a4f7-de4e15a57599\",\"w\":12,\"x\":27,\"y\":18},\"panelIndex\":\"30bc1259-fae6-4806-a4f7-de4e15a57599\",\"panelRefName\":\"panel_6\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"3e41e9e7-2d9a-44ef-9092-3e14fc07f9ec\",\"w\":9,\"x\":39,\"y\":18},\"panelIndex\":\"3e41e9e7-2d9a-44ef-9092-3e14fc07f9ec\",\"panelRefName\":\"panel_7\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"ac98b880-f1a9-4682-8438-38058275209e\",\"w\":11,\"x\":0,\"y\":36},\"panelIndex\":\"ac98b880-f1a9-4682-8438-38058275209e\",\"panelRefName\":\"panel_8\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":661.6666666666666}]}}},\"gridData\":{\"h\":18,\"i\":\"0086d444-b5bf-4330-bdc2-01aa8f7c06db\",\"w\":16,\"x\":11,\"y\":36},\"panelIndex\":\"0086d444-b5bf-4330-bdc2-01aa8f7c06db\",\"panelRefName\":\"panel_9\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"table\":null,\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":944.6666666666666}]}}},\"gridData\":{\"h\":18,\"i\":\"0d852939-66e7-4702-aeb3-886d3ae98e90\",\"w\":21,\"x\":27,\"y\":36},\"panelIndex\":\"0d852939-66e7-4702-aeb3-886d3ae98e90\",\"panelRefName\":\"panel_10\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":395.66666666666663}]}}},\"gridData\":{\"h\":18,\"i\":\"79426cc6-6f0b-4403-be33-77fe1c40656f\",\"w\":11,\"x\":0,\"y\":54},\"panelIndex\":\"79426cc6-6f0b-4403-be33-77fe1c40656f\",\"panelRefName\":\"panel_11\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"4394a033-cccf-46a6-83a6-ae5598fe1198\",\"w\":15,\"x\":11,\"y\":54},\"panelIndex\":\"4394a033-cccf-46a6-83a6-ae5598fe1198\",\"panelRefName\":\"panel_12\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":562.6666666666666}]}}},\"gridData\":{\"h\":18,\"i\":\"f09ad2ef-d681-44bf-834e-b5c85c39efe0\",\"w\":14,\"x\":26,\"y\":54},\"panelIndex\":\"f09ad2ef-d681-44bf-834e-b5c85c39efe0\",\"panelRefName\":\"panel_13\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":309.66666666666663}]}}},\"gridData\":{\"h\":18,\"i\":\"7907e86f-a77d-47a5-8d35-d0805449b925\",\"w\":8,\"x\":40,\"y\":54},\"panelIndex\":\"7907e86f-a77d-47a5-8d35-d0805449b925\",\"panelRefName\":\"panel_14\",\"version\":\"7.11.1\"}]","timeRestore":false,"title":"[Filebeat Threat Intel] Malware Bazaar","version":1},"coreMigrationVersion":"8.0.0","id":"dee7be00-82ab-11eb-ac13-d5ca87cb8fa2","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"f91e9620-82a8-11eb-ac13-d5ca87cb8fa2","name":"panel_0","type":"visualization"},{"id":"d22c1090-82a5-11eb-ac13-d5ca87cb8fa2","name":"panel_1","type":"visualization"},{"id":"737d4f30-82ac-11eb-ac13-d5ca87cb8fa2","name":"panel_2","type":"visualization"},{"id":"8b2a64a0-82a8-11eb-ac13-d5ca87cb8fa2","name":"panel_3","type":"visualization"},{"id":"c7d5db50-82a8-11eb-ac13-d5ca87cb8fa2","name":"panel_4","type":"visualization"},{"id":"63365b50-82aa-11eb-ac13-d5ca87cb8fa2","name":"panel_5","type":"map"},{"id":"bc4790b0-82aa-11eb-ac13-d5ca87cb8fa2","name":"panel_6","type":"visualization"},{"id":"dbd199d0-82aa-11eb-ac13-d5ca87cb8fa2","name":"panel_7","type":"visualization"},{"id":"7cbe5900-82ab-11eb-ac13-d5ca87cb8fa2","name":"panel_8","type":"visualization"},{"id":"786546d0-82a5-11eb-ac13-d5ca87cb8fa2","name":"panel_9","type":"visualization"},{"id":"7546ac40-82a6-11eb-ac13-d5ca87cb8fa2","name":"panel_10","type":"visualization"},{"id":"21ff17c0-82a6-11eb-ac13-d5ca87cb8fa2","name":"panel_11","type":"visualization"},{"id":"142fb6c0-82a8-11eb-ac13-d5ca87cb8fa2","name":"panel_12","type":"visualization"},{"id":"5b4877b0-82a6-11eb-ac13-d5ca87cb8fa2","name":"panel_13","type":"visualization"},{"id":"1d8002d0-82a7-11eb-ac13-d5ca87cb8fa2","name":"panel_14","type":"visualization"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"dashboard","updated_at":"2021-08-04T16:34:30.070Z","version":"WzQ2MTMsMV0="} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-misp.ndjson b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-misp.ndjson deleted file mode 100644 index 389bb64af3cb..000000000000 --- a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-misp.ndjson +++ /dev/null @@ -1,15 +0,0 @@ -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"threatintel\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"threatintel\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.category\", \"negate\": false, \"params\": {\"query\": \"threat\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.category\": \"threat\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"enrichment\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"enrichment\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index\", \"key\": \"event.type\", \"negate\": false, \"params\": {\"query\": \"indicator\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.type\": \"indicator\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[],"title":"All Logs [Filebeat Threat Intel] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NjAsMV0="} -{"attributes":{"color":"#a548ae","description":"Tag for indicators ingested by the Threat Intel Filebeat module.","name":"threat intel"},"coreMigrationVersion":"8.0.0","id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","references":[],"type":"tag","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzksMV0="} -{"attributes":{"description":"MISP domain indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.domain\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.domain\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP Domain Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"MISP Domain Indicator\",\"field\":\"threatintel.indicator.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"MISP Domain Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"7582b030-73c6-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzIsMV0="} -{"attributes":{"description":"MISP IP indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.ip\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.ip\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP IP Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"MISP IP Indicator\",\"field\":\"threatintel.indicator.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"MISP IP Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"a09329d0-73c6-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzMsMV0="} -{"attributes":{"description":"Types of MISP indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP Indicator Type [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"threatintel.indicator.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"MISP Indicator Type [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"7c7d3750-73c3-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzQsMV0="} -{"attributes":{"description":"Total number of Abuse URL indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"MISP Indicators\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"MISP Indicators [Filebeat Threat Intel]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"418e5a30-73c2-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzUsMV0="} -{"attributes":{"description":"MISP URL indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.url.full\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.url.full\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP URL Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"MISP URL Indicator\",\"field\":\"threatintel.indicator.url.full\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"MISP URL Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"c102b0f0-73c6-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzYsMV0="} -{"attributes":{"description":"MISP tags for indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"tags\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"tags\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP Tags [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"MISP Tags\",\"field\":\"tags\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"MISP Tags [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"55b5c280-76b7-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzcsMV0="} -{"attributes":{"description":"TLP of MISP indicators ingested by the threat intel Filebeat module. Top 10 datasets.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP Indicator TLP [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"green\": \"#7EB26D\", \"white\": \"#E0F9D7\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Indicator Marking TLP\",\"field\":\"threatintel.indicator.marking.tlp\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"threatintel.indicator.marking.tlp\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":true},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"MISP Indicator TLP [Filebeat Threat Intel]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"ad55b1e0-73c8-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzgsMV0="} -{"attributes":{"description":"MISP indicator ingested by the threat intel Filebeat module has been published.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.misp.published\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.misp.published\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP Indicator Published [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"true\": \"#7EB26D\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"threatintel.misp.published\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":3},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"MISP Indicator Published [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"bf3dfde0-73c3-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzksMV0="} -{"attributes":{"description":"MISP MD5 hash indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.md5\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.md5\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP MD5 Hash Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"MISP MD5 Hash Indicator\",\"field\":\"threatintel.indicator.file.hash.md5\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"MISP MD5 Hash Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"ec68c4a0-73c6-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2NDAsMV0="} -{"attributes":{"description":"MISP SHA1 hash indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.sha1\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.sha1\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP SHA1 Hash Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"MISP SHA1 Hash Indicator\",\"field\":\"threatintel.indicator.file.hash.sha1\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"MISP SHA1 Hash Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"02294f80-73c7-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2NDEsMV0="} -{"attributes":{"description":"MISP SHA256 hash indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.file.hash.sha256\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.file.hash.sha256\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP SHA256 Hash Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"MISP SHA256 Hash Indicator\",\"field\":\"threatintel.indicator.file.hash.sha256\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showToolbar\":false,\"showTotal\":false,\"totalFunc\":\"sum\"},\"title\":\"MISP SHA256 Hash Indicators [Filebeat Threat Intel]\",\"type\":\"table\"}"},"coreMigrationVersion":"8.0.0","id":"1c969990-73c7-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2NDIsMV0="} -{"attributes":{"description":"MISP provider for indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"threatintel.misp\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.dataset\": \"threatintel.misp\"}}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.provider\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.provider\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"MISP Indicator Provider [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"misp\": \"#5195CE\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"threatintel.indicator.provider\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"MISP Indicator Provider [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"57faae10-73c5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2NDMsMV0="} -{"attributes":{"description":"MISP indicators ingested by the threat intel Filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":589}]}}},\"gridData\":{\"h\":18,\"i\":\"dddbb2ed-b025-4bc3-b3a1-16f834da532b\",\"w\":15,\"x\":0,\"y\":0},\"panelIndex\":\"dddbb2ed-b025-4bc3-b3a1-16f834da532b\",\"panelRefName\":\"panel_0\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":370}]}}},\"gridData\":{\"h\":18,\"i\":\"bb692014-ed24-441d-a717-d40025f46602\",\"w\":10,\"x\":15,\"y\":0},\"panelIndex\":\"bb692014-ed24-441d-a717-d40025f46602\",\"panelRefName\":\"panel_1\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"fcc0d72f-70ee-4fac-b859-77326444f472\",\"w\":14,\"x\":25,\"y\":0},\"panelIndex\":\"fcc0d72f-70ee-4fac-b859-77326444f472\",\"panelRefName\":\"panel_2\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"a3b70237-fbd4-43c6-96b6-ffb3c9266b55\",\"w\":9,\"x\":39,\"y\":0},\"panelIndex\":\"a3b70237-fbd4-43c6-96b6-ffb3c9266b55\",\"panelRefName\":\"panel_3\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"table\":null,\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":814}]}}},\"gridData\":{\"h\":18,\"i\":\"c34da3b4-e3d8-4ade-85f2-1f2195aa9cdc\",\"w\":19,\"x\":0,\"y\":18},\"panelIndex\":\"c34da3b4-e3d8-4ade-85f2-1f2195aa9cdc\",\"panelRefName\":\"panel_4\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":451}]}}},\"gridData\":{\"h\":18,\"i\":\"c23a8d34-62e3-42f2-912b-120251392d03\",\"w\":12,\"x\":19,\"y\":18},\"panelIndex\":\"c23a8d34-62e3-42f2-912b-120251392d03\",\"panelRefName\":\"panel_5\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"a9e87eb5-f981-472c-9fb1-00f956c7ca1e\",\"w\":9,\"x\":31,\"y\":18},\"panelIndex\":\"a9e87eb5-f981-472c-9fb1-00f956c7ca1e\",\"panelRefName\":\"panel_6\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"a47d65d3-01ef-4488-9c0d-2fbd23b923ad\",\"w\":8,\"x\":40,\"y\":18},\"panelIndex\":\"a47d65d3-01ef-4488-9c0d-2fbd23b923ad\",\"panelRefName\":\"panel_7\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":324}]}}},\"gridData\":{\"h\":18,\"i\":\"c4010d5b-9082-453d-90a1-a4bc629f62a7\",\"w\":10,\"x\":0,\"y\":36},\"panelIndex\":\"c4010d5b-9082-453d-90a1-a4bc629f62a7\",\"panelRefName\":\"panel_8\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":371}]}}},\"gridData\":{\"h\":18,\"i\":\"e59a30c1-97bb-4f16-81ba-9a9dc705fed6\",\"w\":12,\"x\":10,\"y\":36},\"panelIndex\":\"e59a30c1-97bb-4f16-81ba-9a9dc705fed6\",\"panelRefName\":\"panel_9\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"vis\":{\"params\":{\"colWidth\":[{\"colIndex\":0,\"width\":600.5}]}}},\"gridData\":{\"h\":18,\"i\":\"1309e7f5-8554-4265-a8c4-9f8f00db8299\",\"w\":14,\"x\":22,\"y\":36},\"panelIndex\":\"1309e7f5-8554-4265-a8c4-9f8f00db8299\",\"panelRefName\":\"panel_10\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"42cec04d-ab8e-4aa2-a78b-7c6a6d8b8798\",\"w\":12,\"x\":36,\"y\":36},\"panelIndex\":\"42cec04d-ab8e-4aa2-a78b-7c6a6d8b8798\",\"panelRefName\":\"panel_11\",\"version\":\"7.11.0\"}]","timeRestore":false,"title":"[Filebeat Threat Intel] MISP","version":1},"coreMigrationVersion":"8.0.0","id":"47e6fdc0-76b9-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"7582b030-73c6-11eb-a3e3-b3cc7c78a70f","name":"panel_0","type":"visualization"},{"id":"a09329d0-73c6-11eb-a3e3-b3cc7c78a70f","name":"panel_1","type":"visualization"},{"id":"7c7d3750-73c3-11eb-a3e3-b3cc7c78a70f","name":"panel_2","type":"visualization"},{"id":"418e5a30-73c2-11eb-a3e3-b3cc7c78a70f","name":"panel_3","type":"visualization"},{"id":"c102b0f0-73c6-11eb-a3e3-b3cc7c78a70f","name":"panel_4","type":"visualization"},{"id":"55b5c280-76b7-11eb-a3e3-b3cc7c78a70f","name":"panel_5","type":"visualization"},{"id":"ad55b1e0-73c8-11eb-a3e3-b3cc7c78a70f","name":"panel_6","type":"visualization"},{"id":"bf3dfde0-73c3-11eb-a3e3-b3cc7c78a70f","name":"panel_7","type":"visualization"},{"id":"ec68c4a0-73c6-11eb-a3e3-b3cc7c78a70f","name":"panel_8","type":"visualization"},{"id":"02294f80-73c7-11eb-a3e3-b3cc7c78a70f","name":"panel_9","type":"visualization"},{"id":"1c969990-73c7-11eb-a3e3-b3cc7c78a70f","name":"panel_10","type":"visualization"},{"id":"57faae10-73c5-11eb-a3e3-b3cc7c78a70f","name":"panel_11","type":"visualization"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"dashboard","updated_at":"2021-08-04T16:34:31.083Z","version":"WzQ2MzEsMV0="} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-overview.ndjson b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-overview.ndjson deleted file mode 100644 index d3fd51cc53df..000000000000 --- a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-overview.ndjson +++ /dev/null @@ -1,15 +0,0 @@ -{"attributes":{"color":"#a548ae","description":"Tag for indicators ingested by the Threat Intel Filebeat module.","name":"threat intel"},"coreMigrationVersion":"8.0.0","id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","references":[],"type":"tag","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzksMV0="} -{"attributes":{"description":"Feed and provider selector for indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Feed and Indicator Selector [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"event.dataset\",\"id\":\"1614117070660\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Feed Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"threatintel.indicator.provider\",\"id\":\"1614117093181\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Indicator Provider\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"threatintel.indicator.type\",\"id\":\"1614117117360\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Indicator Type\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Feed and Indicator Selector [Filebeat Threat Intel]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"92961600-7621-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"filebeat-*","name":"control_2_index_pattern","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NDcsMV0="} -{"attributes":{"description":"Navigation pane for the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Threat Intel Module Navigation [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Filebeat Threat Intel Module Navigation**\\n\\n[Abuse Malware Overview](#/dashboard/5ba16340-72e6-11eb-a3e3-b3cc7c78a70f) \\n[Abuse URL Overview](#/dashboard/65fa6bc0-72f0-11eb-a3e3-b3cc7c78a70f) \\n[AlienVault Overview](#/dashboard/53e4e630-76cf-11eb-a3e3-b3cc7c78a70f) \\n[Anomali Overview](#/dashboard/68c48a30-739e-11eb-a3e3-b3cc7c78a70f) \\n[Malware Bazaar Overview](#/dashboard/dee7be00-82ab-11eb-ac13-d5ca87cb8fa2) \\n[MISP Overview](#/dashboard/47e6fdc0-76b9-11eb-a3e3-b3cc7c78a70f) \\n[Recorded Future Overview](#/dashboard/894dd3e0-df57-11eb-8f2b-753caedf727d) \",\"openLinksInNewTab\":false},\"title\":\"Threat Intel Module Navigation [Filebeat Threat Intel]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"f13f5650-df5b-11eb-8f2b-753caedf727d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NDgsMV0="} -{"attributes":{"columns":["_source"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.module\", \"negate\": false, \"params\": {\"query\": \"threatintel\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.module\": \"threatintel\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"event.category\", \"negate\": false, \"params\": {\"query\": \"threat\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.category\": \"threat\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index\", \"key\": \"event.kind\", \"negate\": false, \"params\": {\"query\": \"enrichment\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.kind\": \"enrichment\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index\", \"key\": \"event.type\", \"negate\": false, \"params\": {\"query\": \"indicator\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.type\": \"indicator\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[],"title":"All Logs [Filebeat Threat Intel] ECS","version":1},"coreMigrationVersion":"8.0.0","id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"search":"7.9.3"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NjAsMV0="} -{"attributes":{"description":"Types of indicators by dataset ingested by the threat intel Filebeat module. Top 10 datasets and top 10 indicator types.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"event.dataset\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}, {\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"threatintel.indicator.type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Indicator Type per Dataset [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.dataset\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"threatintel.indicator.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Indicator Type per Dataset [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"1a1c60c0-72d5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NDksMV0="} -{"attributes":{"description":"Total number of datasets reflected by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"event.dataset\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Total Datasets [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Datasets\",\"field\":\"event.dataset\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total Datasets [Filebeat Threat Intel]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"c049e1c0-72d5-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTAsMV0="} -{"attributes":{"description":"Total number of indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"event.dataset\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Total Indicators [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Indicators\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total Indicators [Filebeat Threat Intel]\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"6ce04320-72d1-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTEsMV0="} -{"attributes":{"description":"Total number of indicators by dataset ingested by the threat intel Filebeat module. Top 10 datasets.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"event.dataset\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Total Indicators per Dataset [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.dataset\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Total Indicators per Dataset [Filebeat Threat Intel]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"81f16940-72d3-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTIsMV0="} -{"attributes":{"description":"Total number of indicators by type ingested by the threat intel Filebeat module. Top 10 types.","state":{"datasourceStates":{"indexpattern":{"layers":{"9e3d1f18-6e1e-4e13-8b0b-9b17d12a15f2":{"columnOrder":["a6319ec8-2ec8-4d3a-bc54-efe0a306786f","1e5c28a2-6405-44ee-bdf1-8bdd03bdf919"],"columns":{"1e5c28a2-6405-44ee-bdf1-8bdd03bdf919":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"a6319ec8-2ec8-4d3a-bc54-efe0a306786f":{"dataType":"string","isBucketed":true,"label":"Top values of threatintel.indicator.type","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"1e5c28a2-6405-44ee-bdf1-8bdd03bdf919","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.type"}},"incompleteColumns":{}}}}},"filters":[{"$state":{"store":"appState"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-0","key":"event.module","negate":false,"params":{"query":"threatintel"},"type":"phrase"},"query":{"match_phrase":{"event.module":"threatintel"}}},{"$state":{"store":"appState"},"exists":{"field":"threatintel.indicator.type"},"meta":{"alias":null,"disabled":false,"indexRefName":"filter-index-pattern-1","key":"threatintel.indicator.type","negate":false,"type":"exists","value":"exists"}}],"query":{"language":"kuery","query":""},"visualization":{"layers":[{"categoryDisplay":"default","groups":["a6319ec8-2ec8-4d3a-bc54-efe0a306786f"],"layerId":"9e3d1f18-6e1e-4e13-8b0b-9b17d12a15f2","legendDisplay":"show","metric":"1e5c28a2-6405-44ee-bdf1-8bdd03bdf919","nestedLegend":false,"numberDisplay":"value","percentDecimals":2}],"palette":{"name":"default","type":"palette"},"shape":"treemap"}},"title":"Total Indicators per Type [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"9282afc0-72d9-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-9e3d1f18-6e1e-4e13-8b0b-9b17d12a15f2","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-0","type":"index-pattern"},{"id":"filebeat-*","name":"filter-index-pattern-1","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTMsMV0="} -{"attributes":{"description":"Tags for indicators ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Indicator Tag Cloud [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"exclude\":\"forwarded|threatintel-anomali|threatintel-otx|threatintel-abuseurls|threatintel-abusemalware\",\"field\":\"tags\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":30,\"minFontSize\":5,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Indicator Tag Cloud [Filebeat Threat Intel]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"f9f89660-72d9-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTQsMV0="} -{"attributes":{"description":"Total number of indicators by provider ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Total Indicators per Provider [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"Count\": \"#806EB7\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Threat Indicator Provider\",\"field\":\"threatintel.indicator.provider\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"detailedTooltip\":true,\"grid\":{\"categoryLines\":false,\"valueAxis\":\"ValueAxis-1\"},\"isVislibVis\":true,\"labels\":{\"show\":true},\"legendPosition\":\"right\",\"palette\":{\"name\":\"kibana_palette\",\"type\":\"palette\"},\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}]},\"title\":\"Total Indicators per Provider [Filebeat Threat Intel]\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"9047e8b0-72de-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTUsMV0="} -{"attributes":{"description":"Timeline of indicators by dataset ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"event.dataset\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Indicator Ingest Timeline per Dataset [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Indicators per Dataset\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Ingest Timestamp\",\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-90d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.dataset\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"detailedTooltip\":true,\"fittingFunction\":\"zero\",\"grid\":{\"categoryLines\":false},\"isVislibVis\":true,\"labels\":{},\"legendPosition\":\"right\",\"palette\":{\"name\":\"kibana_palette\",\"type\":\"palette\"},\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Indicators per Dataset\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Indicators per Dataset\"},\"type\":\"value\"}]},\"title\":\"Indicator Ingest Timeline per Dataset [Filebeat Threat Intel]\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"b9aa1d70-72db-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTYsMV0="} -{"attributes":{"description":"TLP of indicators ingested by the threat intel Filebeat module. Top 10 datasets.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.marking.tlp\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"threatintel.indicator.marking.tlp\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Indicator TLP [Filebeat Threat Intel]","uiStateJSON":"{\"vis\": {\"colors\": {\"green\": \"#7EB26D\", \"white\": \"#E0F9D7\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Indicator Marking TLP\",\"field\":\"threatintel.indicator.marking.tlp\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"threatintel.indicator.marking.tlp\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"detailedTooltip\":true,\"grid\":{\"categoryLines\":false},\"isVislibVis\":true,\"labels\":{\"show\":true},\"legendPosition\":\"right\",\"palette\":{\"name\":\"kibana_palette\",\"type\":\"palette\"},\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}]},\"title\":\"Indicator TLP [Filebeat Threat Intel]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"aebde030-72d2-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTcsMV0="} -{"attributes":{"description":"Timeline of indicators by type ingested by the threat intel Filebeat module.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"threatintel.indicator.type\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"threatintel.indicator.type\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Indicator Ingest Timeline per Type [Filebeat Threat Intel]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Count of Indicator by Type\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Ingest Timestamp\",\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-90d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"threatintel.indicator.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"detailedTooltip\":true,\"fittingFunction\":\"zero\",\"grid\":{\"categoryLines\":false},\"isVislibVis\":true,\"labels\":{},\"legendPosition\":\"right\",\"palette\":{\"name\":\"kibana_palette\",\"type\":\"palette\"},\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count of Indicator by Type\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"area\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"area\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count of Indicator by Type\"},\"type\":\"value\"}]},\"title\":\"Indicator Ingest Timeline per Type [Filebeat Threat Intel]\",\"type\":\"area\"}"},"coreMigrationVersion":"8.0.0","id":"c813c5d0-72dd-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"6acbb070-72d0-11eb-a3e3-b3cc7c78a70f","name":"search_0","type":"search"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"visualization","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NTgsMV0="} -{"attributes":{"description":"Top-level metrics of indicators and datasets ingested by the threat intel Filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":7,\"i\":\"0a8c6e54-3d3a-4e88-a230-75d7a3856154\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"0a8c6e54-3d3a-4e88-a230-75d7a3856154\",\"panelRefName\":\"panel_0a8c6e54-3d3a-4e88-a230-75d7a3856154\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"eed57854-9d6a-4373-ab79-aba5025ab5ed\",\"w\":10,\"x\":0,\"y\":7},\"panelIndex\":\"eed57854-9d6a-4373-ab79-aba5025ab5ed\",\"panelRefName\":\"panel_eed57854-9d6a-4373-ab79-aba5025ab5ed\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"cecb5fce-b1c6-4121-a943-73c163554fff\",\"w\":13,\"x\":30,\"y\":7},\"panelIndex\":\"cecb5fce-b1c6-4121-a943-73c163554fff\",\"panelRefName\":\"panel_cecb5fce-b1c6-4121-a943-73c163554fff\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"8c2caa0d-fedc-406b-a4cc-87c09ba9e929\",\"w\":5,\"x\":43,\"y\":7},\"panelIndex\":\"8c2caa0d-fedc-406b-a4cc-87c09ba9e929\",\"panelRefName\":\"panel_8c2caa0d-fedc-406b-a4cc-87c09ba9e929\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"81f493cc-5459-4baf-b57a-295f290debf3\",\"w\":8,\"x\":10,\"y\":7},\"panelIndex\":\"81f493cc-5459-4baf-b57a-295f290debf3\",\"panelRefName\":\"panel_81f493cc-5459-4baf-b57a-295f290debf3\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"c5d9284a-f44c-4cee-b9fd-9585dcaadc89\",\"w\":12,\"x\":18,\"y\":7},\"panelIndex\":\"c5d9284a-f44c-4cee-b9fd-9585dcaadc89\",\"panelRefName\":\"panel_c5d9284a-f44c-4cee-b9fd-9585dcaadc89\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"8788d810-774f-4190-bc01-16fb04c0b38c\",\"w\":19,\"x\":0,\"y\":22},\"panelIndex\":\"8788d810-774f-4190-bc01-16fb04c0b38c\",\"panelRefName\":\"panel_8788d810-774f-4190-bc01-16fb04c0b38c\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"51db6286-e72d-4a6c-99f5-363f17bb333a\",\"w\":10,\"x\":19,\"y\":22},\"panelIndex\":\"51db6286-e72d-4a6c-99f5-363f17bb333a\",\"panelRefName\":\"panel_51db6286-e72d-4a6c-99f5-363f17bb333a\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"4dbff662-ebdd-4b6d-910b-1b80bd4e9045\",\"w\":19,\"x\":29,\"y\":22},\"panelIndex\":\"4dbff662-ebdd-4b6d-910b-1b80bd4e9045\",\"panelRefName\":\"panel_4dbff662-ebdd-4b6d-910b-1b80bd4e9045\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"f7fb86cb-c07f-4489-afaa-942bcacfedda\",\"w\":19,\"x\":0,\"y\":37},\"panelIndex\":\"f7fb86cb-c07f-4489-afaa-942bcacfedda\",\"panelRefName\":\"panel_f7fb86cb-c07f-4489-afaa-942bcacfedda\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264\",\"w\":10,\"x\":19,\"y\":37},\"panelIndex\":\"e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264\",\"panelRefName\":\"panel_e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264\",\"type\":\"visualization\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":15,\"i\":\"ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce\",\"w\":19,\"x\":29,\"y\":37},\"panelIndex\":\"ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce\",\"panelRefName\":\"panel_ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce\",\"type\":\"visualization\",\"version\":\"7.13.2\"}]","timeRestore":false,"title":"[Filebeat Threat Intel] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"ad9c7430-72de-11eb-a3e3-b3cc7c78a70f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"92961600-7621-11eb-a3e3-b3cc7c78a70f","name":"0a8c6e54-3d3a-4e88-a230-75d7a3856154:panel_0a8c6e54-3d3a-4e88-a230-75d7a3856154","type":"visualization"},{"id":"f13f5650-df5b-11eb-8f2b-753caedf727d","name":"eed57854-9d6a-4373-ab79-aba5025ab5ed:panel_eed57854-9d6a-4373-ab79-aba5025ab5ed","type":"visualization"},{"id":"1a1c60c0-72d5-11eb-a3e3-b3cc7c78a70f","name":"cecb5fce-b1c6-4121-a943-73c163554fff:panel_cecb5fce-b1c6-4121-a943-73c163554fff","type":"visualization"},{"id":"c049e1c0-72d5-11eb-a3e3-b3cc7c78a70f","name":"8c2caa0d-fedc-406b-a4cc-87c09ba9e929:panel_8c2caa0d-fedc-406b-a4cc-87c09ba9e929","type":"visualization"},{"id":"6ce04320-72d1-11eb-a3e3-b3cc7c78a70f","name":"81f493cc-5459-4baf-b57a-295f290debf3:panel_81f493cc-5459-4baf-b57a-295f290debf3","type":"visualization"},{"id":"81f16940-72d3-11eb-a3e3-b3cc7c78a70f","name":"c5d9284a-f44c-4cee-b9fd-9585dcaadc89:panel_c5d9284a-f44c-4cee-b9fd-9585dcaadc89","type":"visualization"},{"id":"9282afc0-72d9-11eb-a3e3-b3cc7c78a70f","name":"8788d810-774f-4190-bc01-16fb04c0b38c:panel_8788d810-774f-4190-bc01-16fb04c0b38c","type":"lens"},{"id":"f9f89660-72d9-11eb-a3e3-b3cc7c78a70f","name":"51db6286-e72d-4a6c-99f5-363f17bb333a:panel_51db6286-e72d-4a6c-99f5-363f17bb333a","type":"visualization"},{"id":"9047e8b0-72de-11eb-a3e3-b3cc7c78a70f","name":"4dbff662-ebdd-4b6d-910b-1b80bd4e9045:panel_4dbff662-ebdd-4b6d-910b-1b80bd4e9045","type":"visualization"},{"id":"b9aa1d70-72db-11eb-a3e3-b3cc7c78a70f","name":"f7fb86cb-c07f-4489-afaa-942bcacfedda:panel_f7fb86cb-c07f-4489-afaa-942bcacfedda","type":"visualization"},{"id":"aebde030-72d2-11eb-a3e3-b3cc7c78a70f","name":"e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264:panel_e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264","type":"visualization"},{"id":"c813c5d0-72dd-11eb-a3e3-b3cc7c78a70f","name":"ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce:panel_ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce","type":"visualization"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"dashboard","updated_at":"2021-08-04T16:34:32.145Z","version":"WzQ2NDYsMV0="} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-recordedfuture.ndjson b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-recordedfuture.ndjson deleted file mode 100644 index 3dfcfe31b119..000000000000 --- a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/Filebeat-threatintel-recordedfuture.ndjson +++ /dev/null @@ -1,19 +0,0 @@ -{"attributes":{"color":"#a548ae","description":"Tag for indicators ingested by the Threat Intel Filebeat module.","name":"threat intel"},"coreMigrationVersion":"8.0.0","id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","references":[],"type":"tag","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzksMV0="} -{"attributes":{"description":"Recorded Future indicator type ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["7b2420d3-1149-4f18-a114-e984e3c701f3","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"7b2420d3-1149-4f18-a114-e984e3c701f3":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future Indicator Type","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":5},"scale":"ordinal","sourceField":"threatintel.indicator.type"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"layers":[{"categoryDisplay":"default","groups":["7b2420d3-1149-4f18-a114-e984e3c701f3","7b2420d3-1149-4f18-a114-e984e3c701f3","7b2420d3-1149-4f18-a114-e984e3c701f3"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","legendDisplay":"default","metric":"9afb1b09-0f20-488c-9242-a94f7d11800b","nestedLegend":false,"numberDisplay":"percent"}],"shape":"donut"}},"title":"Recorded Future Indicator Type [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"037e2af0-df50-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjIsMV0="} -{"attributes":{"description":"Recorded Future risk criticality for indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future Risk Criticality","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.recordedfuture.risk.criticalityLabel"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\""},"visualization":{"layers":[{"categoryDisplay":"default","groups":["642d5400-4a72-4116-b752-58df5138392a"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","legendDisplay":"default","metric":"9afb1b09-0f20-488c-9242-a94f7d11800b","nestedLegend":false,"numberDisplay":"percent"}],"shape":"donut"}},"title":"Recorded Future Risk Criticality [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"b0837690-df52-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjMsMV0="} -{"attributes":{"description":"Recorded Future indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"27155b23-ab24-4f18-b7dd-159f339e5e9b":{"columnOrder":["7a45df79-3fa9-480a-95f4-7f287a386b7d"],"columns":{"7a45df79-3fa9-480a-95f4-7f287a386b7d":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Recorded Future Indicators","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"accessor":"7a45df79-3fa9-480a-95f4-7f287a386b7d","layerId":"27155b23-ab24-4f18-b7dd-159f339e5e9b"}},"title":"Recorded Future Indicators [Filebeat Threat Intel]","visualizationType":"lnsMetric"},"coreMigrationVersion":"8.0.0","id":"176bf800-df58-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-27155b23-ab24-4f18-b7dd-159f339e5e9b","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjQsMV0="} -{"attributes":{"description":"Recorded Future indicator risk score ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["7b2420d3-1149-4f18-a114-e984e3c701f3","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"7b2420d3-1149-4f18-a114-e984e3c701f3":{"customLabel":true,"dataType":"number","isBucketed":true,"label":"Recorded Future Risk Score","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":5},"scale":"ordinal","sourceField":"event.risk_score"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"layers":[{"categoryDisplay":"default","groups":["7b2420d3-1149-4f18-a114-e984e3c701f3","7b2420d3-1149-4f18-a114-e984e3c701f3","7b2420d3-1149-4f18-a114-e984e3c701f3","7b2420d3-1149-4f18-a114-e984e3c701f3"],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc","legendDisplay":"default","metric":"9afb1b09-0f20-488c-9242-a94f7d11800b","nestedLegend":false,"numberDisplay":"percent"}],"shape":"donut"}},"title":"Recorded Future Risk Score [Filebeat Threat Intel]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"4bcc4cb0-df50-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjUsMV0="} -{"attributes":{"description":"Recorded Future risk summary for indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future Risk Summary","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.recordedfuture.risk.riskSummary"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\""},"visualization":{"columns":[{"columnId":"642d5400-4a72-4116-b752-58df5138392a","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future Risk Summary [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"949bc180-df52-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjYsMV0="} -{"attributes":{"description":"Recorded Future intel cards for indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future Intel Card","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"event.reference"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\""},"visualization":{"columns":[{"columnId":"642d5400-4a72-4116-b752-58df5138392a","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future Intel Cards [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"7ed4ce00-df52-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjcsMV0="} -{"attributes":{"description":"Recorded Future indicators over time ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"98644301-1cd1-4e54-9f5b-71a1cbcdd8c8":{"columnOrder":["8f48381c-5786-43f4-8602-5c23ba146a60","86e20fd3-86a5-4796-b4b8-f2461a9fa922"],"columns":{"86e20fd3-86a5-4796-b4b8-f2461a9fa922":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"8f48381c-5786-43f4-8602-5c23ba146a60":{"customLabel":true,"dataType":"date","isBucketed":true,"label":"Recorded Future Indicators Over Time","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"layers":[{"accessors":["86e20fd3-86a5-4796-b4b8-f2461a9fa922"],"layerId":"98644301-1cd1-4e54-9f5b-71a1cbcdd8c8","position":"top","seriesType":"line","showGridlines":false,"xAccessor":"8f48381c-5786-43f4-8602-5c23ba146a60"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","title":"Empty XY chart","valueLabels":"hide"}},"title":"Recorded Future Indicators Over Time [Filebeat Threat Intel]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"82fa7420-df58-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-98644301-1cd1-4e54-9f5b-71a1cbcdd8c8","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjgsMV0="} -{"attributes":{"description":"Recorded Future IPv4 indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"ip","isBucketed":true,"label":"Recorded Future IPv4 Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.ip"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" and threatintel.indicator.type:ipv4-addr"},"visualization":{"columns":[{"columnId":"642d5400-4a72-4116-b752-58df5138392a","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future IPv4 Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"c2a5c180-df51-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjksMV0="} -{"attributes":{"description":"Recorded Future IPv6 indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"ip","isBucketed":true,"label":"Recorded Future IPv6 Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.ip"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" and threatintel.indicator.type:ipv6-addr"},"visualization":{"columns":[{"columnId":"642d5400-4a72-4116-b752-58df5138392a","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future IPv6 Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"06744e90-df52-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzAsMV0="} -{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["ebb0878f-715a-4987-85f1-87420428c88f","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"ebb0878f-715a-4987-85f1-87420428c88f":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future MD5 File Hash","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.file.hash.md5"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"columns":[{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b"},{"columnId":"ebb0878f-715a-4987-85f1-87420428c88f","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future MD5 Hash Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"dd4a3da0-df50-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzEsMV0="} -{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["ebb0878f-715a-4987-85f1-87420428c88f","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"ebb0878f-715a-4987-85f1-87420428c88f":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future SHA1 File Hash","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.file.hash.sha1"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"columns":[{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b"},{"columnId":"ebb0878f-715a-4987-85f1-87420428c88f","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future SHA1 Hash Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"f37f8350-df50-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzIsMV0="} -{"attributes":{"description":"Recorded Future indicator SHA256 hash ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["ebb0878f-715a-4987-85f1-87420428c88f","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"ebb0878f-715a-4987-85f1-87420428c88f":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future SHA256 File Hash","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.file.hash.sha256"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"columns":[{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b"},{"columnId":"ebb0878f-715a-4987-85f1-87420428c88f","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future SHA256 Hash Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"139c7da0-df51-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzMsMV0="} -{"attributes":{"description":"Recorded Future URL scheme indicator ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future URL Scheme Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.url.scheme"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"columns":[{"columnId":"642d5400-4a72-4116-b752-58df5138392a","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future URL Scheme Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"a0a31740-df51-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzQsMV0="} -{"attributes":{"description":"Recorded Future URL domain indicator ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["ebb0878f-715a-4987-85f1-87420428c88f","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"},"ebb0878f-715a-4987-85f1-87420428c88f":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future URL Domain Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.url.domain"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"columns":[{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b"},{"columnId":"ebb0878f-715a-4987-85f1-87420428c88f","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future URL Domain Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"5e76ef90-df51-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzUsMV0="} -{"attributes":{"description":"Recorded Future URL path indicator ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future URL Path Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.url.path"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"columns":[{"columnId":"642d5400-4a72-4116-b752-58df5138392a","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future URL Path Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"8fb01a00-df51-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzYsMV0="} -{"attributes":{"description":"Recorded Future domain indicators ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future Domain Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.domain"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\""},"visualization":{"columns":[{"columnId":"642d5400-4a72-4116-b752-58df5138392a","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future Domain Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"3c996410-df52-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzcsMV0="} -{"attributes":{"description":"Recorded Future URL original indicator ingested by the threat intel Filebeat module.","state":{"datasourceStates":{"indexpattern":{"layers":{"41f41086-8875-4d18-8844-b51b9c9cb8bc":{"columnOrder":["642d5400-4a72-4116-b752-58df5138392a","9afb1b09-0f20-488c-9242-a94f7d11800b"],"columns":{"642d5400-4a72-4116-b752-58df5138392a":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Recorded Future URL Original Indicator","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"threatintel.indicator.url.original"},"9afb1b09-0f20-488c-9242-a94f7d11800b":{"dataType":"number","isBucketed":false,"label":"Count of records","operationType":"count","scale":"ratio","sourceField":"Records"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":"event.dataset:\"threatintel.recordedfuture\" "},"visualization":{"columns":[{"columnId":"642d5400-4a72-4116-b752-58df5138392a","isTransposed":false},{"columnId":"9afb1b09-0f20-488c-9242-a94f7d11800b","isTransposed":false}],"layerId":"41f41086-8875-4d18-8844-b51b9c9cb8bc"}},"title":"Recorded Future URL Original Indicators [Filebeat Threat Intel]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"790cd040-df51-11eb-8f2b-753caedf727d","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"filebeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"filebeat-*","name":"indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc","type":"index-pattern"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"lens","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NzgsMV0="} -{"attributes":{"description":"Recorded Future indicators ingested by the threat intel Filebeat module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"c5528bd5-fc50-4902-94d9-6f6579e93364\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"c5528bd5-fc50-4902-94d9-6f6579e93364\",\"panelRefName\":\"panel_c5528bd5-fc50-4902-94d9-6f6579e93364\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"5844ac07-8c60-4e94-9fdb-f5489bbaafb0\",\"w\":10,\"x\":10,\"y\":0},\"panelIndex\":\"5844ac07-8c60-4e94-9fdb-f5489bbaafb0\",\"panelRefName\":\"panel_5844ac07-8c60-4e94-9fdb-f5489bbaafb0\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"705de4dd-b10b-4871-b42e-c32802f07cdc\",\"w\":9,\"x\":20,\"y\":0},\"panelIndex\":\"705de4dd-b10b-4871-b42e-c32802f07cdc\",\"panelRefName\":\"panel_705de4dd-b10b-4871-b42e-c32802f07cdc\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"579da37e-73d7-48b8-a2ae-09f9252be1d0\",\"w\":9,\"x\":29,\"y\":0},\"panelIndex\":\"579da37e-73d7-48b8-a2ae-09f9252be1d0\",\"panelRefName\":\"panel_579da37e-73d7-48b8-a2ae-09f9252be1d0\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":16,\"i\":\"5df65cab-f10e-4192-8490-9586519be39a\",\"w\":10,\"x\":38,\"y\":0},\"panelIndex\":\"5df65cab-f10e-4192-8490-9586519be39a\",\"panelRefName\":\"panel_5df65cab-f10e-4192-8490-9586519be39a\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"64b0403d-03e5-48c3-9dae-0b005ebb5f1a\",\"w\":25,\"x\":0,\"y\":16},\"panelIndex\":\"64b0403d-03e5-48c3-9dae-0b005ebb5f1a\",\"panelRefName\":\"panel_64b0403d-03e5-48c3-9dae-0b005ebb5f1a\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"e95ad49d-d270-4592-af6b-0bb20ab8686a\",\"w\":23,\"x\":25,\"y\":16},\"panelIndex\":\"e95ad49d-d270-4592-af6b-0bb20ab8686a\",\"panelRefName\":\"panel_e95ad49d-d270-4592-af6b-0bb20ab8686a\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"1be4a1f3-6421-4bd4-99af-f2c9f99c944d\",\"w\":7,\"x\":0,\"y\":33},\"panelIndex\":\"1be4a1f3-6421-4bd4-99af-f2c9f99c944d\",\"panelRefName\":\"panel_1be4a1f3-6421-4bd4-99af-f2c9f99c944d\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"f2318e6a-9258-4628-897f-c39d16452ec5\",\"w\":9,\"x\":7,\"y\":33},\"panelIndex\":\"f2318e6a-9258-4628-897f-c39d16452ec5\",\"panelRefName\":\"panel_f2318e6a-9258-4628-897f-c39d16452ec5\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"2aec92d5-3db8-42ee-b5a6-27886672811e\",\"w\":9,\"x\":16,\"y\":33},\"panelIndex\":\"2aec92d5-3db8-42ee-b5a6-27886672811e\",\"panelRefName\":\"panel_2aec92d5-3db8-42ee-b5a6-27886672811e\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"4ba8c6c1-b5d2-4624-af2a-5c3a0b999eb9\",\"w\":10,\"x\":25,\"y\":33},\"panelIndex\":\"4ba8c6c1-b5d2-4624-af2a-5c3a0b999eb9\",\"panelRefName\":\"panel_4ba8c6c1-b5d2-4624-af2a-5c3a0b999eb9\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"a60753a1-e859-4388-aff7-e7c30fea8ea0\",\"w\":13,\"x\":35,\"y\":33},\"panelIndex\":\"a60753a1-e859-4388-aff7-e7c30fea8ea0\",\"panelRefName\":\"panel_a60753a1-e859-4388-aff7-e7c30fea8ea0\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"1ccdc84b-976e-4579-8227-e1fec014d744\",\"w\":9,\"x\":0,\"y\":50},\"panelIndex\":\"1ccdc84b-976e-4579-8227-e1fec014d744\",\"panelRefName\":\"panel_1ccdc84b-976e-4579-8227-e1fec014d744\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"48cc5d73-41e5-4c50-bd4b-a2c44848bfa1\",\"w\":9,\"x\":9,\"y\":50},\"panelIndex\":\"48cc5d73-41e5-4c50-bd4b-a2c44848bfa1\",\"panelRefName\":\"panel_48cc5d73-41e5-4c50-bd4b-a2c44848bfa1\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"a454a943-3968-4796-ac2a-89c78ad10c50\",\"w\":9,\"x\":18,\"y\":50},\"panelIndex\":\"a454a943-3968-4796-ac2a-89c78ad10c50\",\"panelRefName\":\"panel_a454a943-3968-4796-ac2a-89c78ad10c50\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"f2bbe7e9-0c11-4ab8-a1cb-5c7b36b950f6\",\"w\":9,\"x\":27,\"y\":50},\"panelIndex\":\"f2bbe7e9-0c11-4ab8-a1cb-5c7b36b950f6\",\"panelRefName\":\"panel_f2bbe7e9-0c11-4ab8-a1cb-5c7b36b950f6\",\"type\":\"lens\",\"version\":\"7.13.2\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":17,\"i\":\"f3a61f45-ac06-44db-b21c-1ffbb9e99014\",\"w\":12,\"x\":36,\"y\":50},\"panelIndex\":\"f3a61f45-ac06-44db-b21c-1ffbb9e99014\",\"panelRefName\":\"panel_f3a61f45-ac06-44db-b21c-1ffbb9e99014\",\"type\":\"lens\",\"version\":\"7.13.2\"}]","timeRestore":false,"title":"[Filebeat Threat Intel] Recorded Future","version":1},"coreMigrationVersion":"8.0.0","id":"894dd3e0-df57-11eb-8f2b-753caedf727d","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"037e2af0-df50-11eb-8f2b-753caedf727d","name":"c5528bd5-fc50-4902-94d9-6f6579e93364:panel_c5528bd5-fc50-4902-94d9-6f6579e93364","type":"lens"},{"id":"b0837690-df52-11eb-8f2b-753caedf727d","name":"5844ac07-8c60-4e94-9fdb-f5489bbaafb0:panel_5844ac07-8c60-4e94-9fdb-f5489bbaafb0","type":"lens"},{"id":"176bf800-df58-11eb-8f2b-753caedf727d","name":"705de4dd-b10b-4871-b42e-c32802f07cdc:panel_705de4dd-b10b-4871-b42e-c32802f07cdc","type":"lens"},{"id":"4bcc4cb0-df50-11eb-8f2b-753caedf727d","name":"579da37e-73d7-48b8-a2ae-09f9252be1d0:panel_579da37e-73d7-48b8-a2ae-09f9252be1d0","type":"lens"},{"id":"949bc180-df52-11eb-8f2b-753caedf727d","name":"5df65cab-f10e-4192-8490-9586519be39a:panel_5df65cab-f10e-4192-8490-9586519be39a","type":"lens"},{"id":"7ed4ce00-df52-11eb-8f2b-753caedf727d","name":"64b0403d-03e5-48c3-9dae-0b005ebb5f1a:panel_64b0403d-03e5-48c3-9dae-0b005ebb5f1a","type":"lens"},{"id":"82fa7420-df58-11eb-8f2b-753caedf727d","name":"e95ad49d-d270-4592-af6b-0bb20ab8686a:panel_e95ad49d-d270-4592-af6b-0bb20ab8686a","type":"lens"},{"id":"c2a5c180-df51-11eb-8f2b-753caedf727d","name":"1be4a1f3-6421-4bd4-99af-f2c9f99c944d:panel_1be4a1f3-6421-4bd4-99af-f2c9f99c944d","type":"lens"},{"id":"06744e90-df52-11eb-8f2b-753caedf727d","name":"f2318e6a-9258-4628-897f-c39d16452ec5:panel_f2318e6a-9258-4628-897f-c39d16452ec5","type":"lens"},{"id":"dd4a3da0-df50-11eb-8f2b-753caedf727d","name":"2aec92d5-3db8-42ee-b5a6-27886672811e:panel_2aec92d5-3db8-42ee-b5a6-27886672811e","type":"lens"},{"id":"f37f8350-df50-11eb-8f2b-753caedf727d","name":"4ba8c6c1-b5d2-4624-af2a-5c3a0b999eb9:panel_4ba8c6c1-b5d2-4624-af2a-5c3a0b999eb9","type":"lens"},{"id":"139c7da0-df51-11eb-8f2b-753caedf727d","name":"a60753a1-e859-4388-aff7-e7c30fea8ea0:panel_a60753a1-e859-4388-aff7-e7c30fea8ea0","type":"lens"},{"id":"a0a31740-df51-11eb-8f2b-753caedf727d","name":"1ccdc84b-976e-4579-8227-e1fec014d744:panel_1ccdc84b-976e-4579-8227-e1fec014d744","type":"lens"},{"id":"5e76ef90-df51-11eb-8f2b-753caedf727d","name":"48cc5d73-41e5-4c50-bd4b-a2c44848bfa1:panel_48cc5d73-41e5-4c50-bd4b-a2c44848bfa1","type":"lens"},{"id":"8fb01a00-df51-11eb-8f2b-753caedf727d","name":"a454a943-3968-4796-ac2a-89c78ad10c50:panel_a454a943-3968-4796-ac2a-89c78ad10c50","type":"lens"},{"id":"3c996410-df52-11eb-8f2b-753caedf727d","name":"f2bbe7e9-0c11-4ab8-a1cb-5c7b36b950f6:panel_f2bbe7e9-0c11-4ab8-a1cb-5c7b36b950f6","type":"lens"},{"id":"790cd040-df51-11eb-8f2b-753caedf727d","name":"f3a61f45-ac06-44db-b21c-1ffbb9e99014:panel_f3a61f45-ac06-44db-b21c-1ffbb9e99014","type":"lens"},{"id":"d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","name":"tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f","type":"tag"}],"type":"dashboard","updated_at":"2021-08-04T16:34:33.127Z","version":"WzQ2NjEsMV0="} diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/ad9c7430-72de-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/ad9c7430-72de-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..c7c6d5fbd5e1 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/ad9c7430-72de-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,291 @@ +{ + "attributes": { + "description": "Top-level metrics of indicators and datasets ingested by the threat intel Filebeat module.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "0a8c6e54-3d3a-4e88-a230-75d7a3856154", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "0a8c6e54-3d3a-4e88-a230-75d7a3856154", + "panelRefName": "panel_0a8c6e54-3d3a-4e88-a230-75d7a3856154", + "type": "visualization", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "eed57854-9d6a-4373-ab79-aba5025ab5ed", + "w": 10, + "x": 0, + "y": 7 + }, + "panelIndex": "eed57854-9d6a-4373-ab79-aba5025ab5ed", + "panelRefName": "panel_eed57854-9d6a-4373-ab79-aba5025ab5ed", + "type": "visualization", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "cecb5fce-b1c6-4121-a943-73c163554fff", + "w": 13, + "x": 30, + "y": 7 + }, + "panelIndex": "cecb5fce-b1c6-4121-a943-73c163554fff", + "panelRefName": "panel_cecb5fce-b1c6-4121-a943-73c163554fff", + "type": "visualization", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "8c2caa0d-fedc-406b-a4cc-87c09ba9e929", + "w": 5, + "x": 43, + "y": 7 + }, + "panelIndex": "8c2caa0d-fedc-406b-a4cc-87c09ba9e929", + "panelRefName": "panel_8c2caa0d-fedc-406b-a4cc-87c09ba9e929", + "type": "visualization", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "81f493cc-5459-4baf-b57a-295f290debf3", + "w": 8, + "x": 10, + "y": 7 + }, + "panelIndex": "81f493cc-5459-4baf-b57a-295f290debf3", + "panelRefName": "panel_81f493cc-5459-4baf-b57a-295f290debf3", + "type": "visualization", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "c5d9284a-f44c-4cee-b9fd-9585dcaadc89", + "w": 12, + "x": 18, + "y": 7 + }, + "panelIndex": "c5d9284a-f44c-4cee-b9fd-9585dcaadc89", + "panelRefName": "panel_c5d9284a-f44c-4cee-b9fd-9585dcaadc89", + "type": "visualization", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "8788d810-774f-4190-bc01-16fb04c0b38c", + "w": 19, + "x": 0, + "y": 22 + }, + "panelIndex": "8788d810-774f-4190-bc01-16fb04c0b38c", + "panelRefName": "panel_8788d810-774f-4190-bc01-16fb04c0b38c", + "type": "lens", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "51db6286-e72d-4a6c-99f5-363f17bb333a", + "w": 10, + "x": 19, + "y": 22 + }, + "panelIndex": "51db6286-e72d-4a6c-99f5-363f17bb333a", + "panelRefName": "panel_51db6286-e72d-4a6c-99f5-363f17bb333a", + "type": "visualization", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "4dbff662-ebdd-4b6d-910b-1b80bd4e9045", + "w": 19, + "x": 29, + "y": 22 + }, + "panelIndex": "4dbff662-ebdd-4b6d-910b-1b80bd4e9045", + "panelRefName": "panel_4dbff662-ebdd-4b6d-910b-1b80bd4e9045", + "type": "visualization", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "f7fb86cb-c07f-4489-afaa-942bcacfedda", + "w": 19, + "x": 0, + "y": 37 + }, + "panelIndex": "f7fb86cb-c07f-4489-afaa-942bcacfedda", + "panelRefName": "panel_f7fb86cb-c07f-4489-afaa-942bcacfedda", + "type": "visualization", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264", + "w": 10, + "x": 19, + "y": 37 + }, + "panelIndex": "e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264", + "panelRefName": "panel_e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264", + "type": "visualization", + "version": "7.13.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce", + "w": 19, + "x": 29, + "y": 37 + }, + "panelIndex": "ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce", + "panelRefName": "panel_ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce", + "type": "visualization", + "version": "7.13.2" + } + ], + "timeRestore": false, + "title": "[Filebeat Threat Intel] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "ad9c7430-72de-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "92961600-7621-11eb-a3e3-b3cc7c78a70f", + "name": "0a8c6e54-3d3a-4e88-a230-75d7a3856154:panel_0a8c6e54-3d3a-4e88-a230-75d7a3856154", + "type": "visualization" + }, + { + "id": "f13f5650-df5b-11eb-8f2b-753caedf727d", + "name": "eed57854-9d6a-4373-ab79-aba5025ab5ed:panel_eed57854-9d6a-4373-ab79-aba5025ab5ed", + "type": "visualization" + }, + { + "id": "1a1c60c0-72d5-11eb-a3e3-b3cc7c78a70f", + "name": "cecb5fce-b1c6-4121-a943-73c163554fff:panel_cecb5fce-b1c6-4121-a943-73c163554fff", + "type": "visualization" + }, + { + "id": "c049e1c0-72d5-11eb-a3e3-b3cc7c78a70f", + "name": "8c2caa0d-fedc-406b-a4cc-87c09ba9e929:panel_8c2caa0d-fedc-406b-a4cc-87c09ba9e929", + "type": "visualization" + }, + { + "id": "6ce04320-72d1-11eb-a3e3-b3cc7c78a70f", + "name": "81f493cc-5459-4baf-b57a-295f290debf3:panel_81f493cc-5459-4baf-b57a-295f290debf3", + "type": "visualization" + }, + { + "id": "81f16940-72d3-11eb-a3e3-b3cc7c78a70f", + "name": "c5d9284a-f44c-4cee-b9fd-9585dcaadc89:panel_c5d9284a-f44c-4cee-b9fd-9585dcaadc89", + "type": "visualization" + }, + { + "id": "9282afc0-72d9-11eb-a3e3-b3cc7c78a70f", + "name": "8788d810-774f-4190-bc01-16fb04c0b38c:panel_8788d810-774f-4190-bc01-16fb04c0b38c", + "type": "lens" + }, + { + "id": "f9f89660-72d9-11eb-a3e3-b3cc7c78a70f", + "name": "51db6286-e72d-4a6c-99f5-363f17bb333a:panel_51db6286-e72d-4a6c-99f5-363f17bb333a", + "type": "visualization" + }, + { + "id": "9047e8b0-72de-11eb-a3e3-b3cc7c78a70f", + "name": "4dbff662-ebdd-4b6d-910b-1b80bd4e9045:panel_4dbff662-ebdd-4b6d-910b-1b80bd4e9045", + "type": "visualization" + }, + { + "id": "b9aa1d70-72db-11eb-a3e3-b3cc7c78a70f", + "name": "f7fb86cb-c07f-4489-afaa-942bcacfedda:panel_f7fb86cb-c07f-4489-afaa-942bcacfedda", + "type": "visualization" + }, + { + "id": "aebde030-72d2-11eb-a3e3-b3cc7c78a70f", + "name": "e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264:panel_e640ab8b-1aa8-4a33-9df9-bbb6cc1fe264", + "type": "visualization" + }, + { + "id": "c813c5d0-72dd-11eb-a3e3-b3cc7c78a70f", + "name": "ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce:panel_ca86a2c7-7b2e-4c16-bbba-02e5a09aa7ce", + "type": "visualization" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:32.145Z", + "version": "WzQ2NDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/dee7be00-82ab-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/dee7be00-82ab-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..849e3b80f5d4 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/dashboard/dee7be00-82ab-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,408 @@ +{ + "attributes": { + "description": "Malware Bazaar indicators ingested by the threat intel Filebeat module.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "1083ca13-ad6f-4814-8fbf-81b6e6e699ce", + "w": 8, + "x": 0, + "y": 0 + }, + "panelIndex": "1083ca13-ad6f-4814-8fbf-81b6e6e699ce", + "panelRefName": "panel_0", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 215.66666666666663 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "e5a1ac0c-48a9-445e-becf-865607f990e5", + "w": 8, + "x": 8, + "y": 0 + }, + "panelIndex": "e5a1ac0c-48a9-445e-becf-865607f990e5", + "panelRefName": "panel_1", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "d3b51c89-ac94-4972-a47e-171a0ae635c2", + "w": 7, + "x": 16, + "y": 0 + }, + "panelIndex": "d3b51c89-ac94-4972-a47e-171a0ae635c2", + "panelRefName": "panel_2", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "04c92d8e-6022-4734-96a2-75c51779da75", + "w": 14, + "x": 23, + "y": 0 + }, + "panelIndex": "04c92d8e-6022-4734-96a2-75c51779da75", + "panelRefName": "panel_3", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "0ba44fdb-d494-45ea-8890-1b9eb4e07e44", + "w": 11, + "x": 37, + "y": 0 + }, + "panelIndex": "0ba44fdb-d494-45ea-8890-1b9eb4e07e44", + "panelRefName": "panel_4", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hiddenLayers": [], + "isLayerTOCOpen": true, + "mapCenter": { + "lat": 19.94277, + "lon": 0, + "zoom": 1.08 + }, + "openTOCDetails": [] + }, + "gridData": { + "h": 18, + "i": "f0c69f9f-856b-4a66-ac07-6f4f1836743e", + "w": 27, + "x": 0, + "y": 18 + }, + "panelIndex": "f0c69f9f-856b-4a66-ac07-6f4f1836743e", + "panelRefName": "panel_5", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "30bc1259-fae6-4806-a4f7-de4e15a57599", + "w": 12, + "x": 27, + "y": 18 + }, + "panelIndex": "30bc1259-fae6-4806-a4f7-de4e15a57599", + "panelRefName": "panel_6", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "3e41e9e7-2d9a-44ef-9092-3e14fc07f9ec", + "w": 9, + "x": 39, + "y": 18 + }, + "panelIndex": "3e41e9e7-2d9a-44ef-9092-3e14fc07f9ec", + "panelRefName": "panel_7", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "ac98b880-f1a9-4682-8438-38058275209e", + "w": 11, + "x": 0, + "y": 36 + }, + "panelIndex": "ac98b880-f1a9-4682-8438-38058275209e", + "panelRefName": "panel_8", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 661.6666666666666 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "0086d444-b5bf-4330-bdc2-01aa8f7c06db", + "w": 16, + "x": 11, + "y": 36 + }, + "panelIndex": "0086d444-b5bf-4330-bdc2-01aa8f7c06db", + "panelRefName": "panel_9", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "table": null, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 944.6666666666666 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "0d852939-66e7-4702-aeb3-886d3ae98e90", + "w": 21, + "x": 27, + "y": 36 + }, + "panelIndex": "0d852939-66e7-4702-aeb3-886d3ae98e90", + "panelRefName": "panel_10", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 395.66666666666663 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "79426cc6-6f0b-4403-be33-77fe1c40656f", + "w": 11, + "x": 0, + "y": 54 + }, + "panelIndex": "79426cc6-6f0b-4403-be33-77fe1c40656f", + "panelRefName": "panel_11", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "4394a033-cccf-46a6-83a6-ae5598fe1198", + "w": 15, + "x": 11, + "y": 54 + }, + "panelIndex": "4394a033-cccf-46a6-83a6-ae5598fe1198", + "panelRefName": "panel_12", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 562.6666666666666 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "f09ad2ef-d681-44bf-834e-b5c85c39efe0", + "w": 14, + "x": 26, + "y": 54 + }, + "panelIndex": "f09ad2ef-d681-44bf-834e-b5c85c39efe0", + "panelRefName": "panel_13", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 309.66666666666663 + } + ] + } + } + }, + "gridData": { + "h": 18, + "i": "7907e86f-a77d-47a5-8d35-d0805449b925", + "w": 8, + "x": 40, + "y": 54 + }, + "panelIndex": "7907e86f-a77d-47a5-8d35-d0805449b925", + "panelRefName": "panel_14", + "version": "7.11.1" + } + ], + "timeRestore": false, + "title": "[Filebeat Threat Intel] Malware Bazaar", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "dee7be00-82ab-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "f91e9620-82a8-11eb-ac13-d5ca87cb8fa2", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "d22c1090-82a5-11eb-ac13-d5ca87cb8fa2", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "737d4f30-82ac-11eb-ac13-d5ca87cb8fa2", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "8b2a64a0-82a8-11eb-ac13-d5ca87cb8fa2", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "c7d5db50-82a8-11eb-ac13-d5ca87cb8fa2", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "63365b50-82aa-11eb-ac13-d5ca87cb8fa2", + "name": "panel_5", + "type": "map" + }, + { + "id": "bc4790b0-82aa-11eb-ac13-d5ca87cb8fa2", + "name": "panel_6", + "type": "visualization" + }, + { + "id": "dbd199d0-82aa-11eb-ac13-d5ca87cb8fa2", + "name": "panel_7", + "type": "visualization" + }, + { + "id": "7cbe5900-82ab-11eb-ac13-d5ca87cb8fa2", + "name": "panel_8", + "type": "visualization" + }, + { + "id": "786546d0-82a5-11eb-ac13-d5ca87cb8fa2", + "name": "panel_9", + "type": "visualization" + }, + { + "id": "7546ac40-82a6-11eb-ac13-d5ca87cb8fa2", + "name": "panel_10", + "type": "visualization" + }, + { + "id": "21ff17c0-82a6-11eb-ac13-d5ca87cb8fa2", + "name": "panel_11", + "type": "visualization" + }, + { + "id": "142fb6c0-82a8-11eb-ac13-d5ca87cb8fa2", + "name": "panel_12", + "type": "visualization" + }, + { + "id": "5b4877b0-82a6-11eb-ac13-d5ca87cb8fa2", + "name": "panel_13", + "type": "visualization" + }, + { + "id": "1d8002d0-82a7-11eb-ac13-d5ca87cb8fa2", + "name": "panel_14", + "type": "visualization" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:34:30.070Z", + "version": "WzQ2MTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/021ba940-de96-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/021ba940-de96-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..993d2edcccec --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/021ba940-de96-11eb-8f2b-753caedf727d.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "Anomali indicator type ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "7b2420d3-1149-4f18-a114-e984e3c701f3", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "7b2420d3-1149-4f18-a114-e984e3c701f3": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali Indicator Type", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.type" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "groups": [ + "7b2420d3-1149-4f18-a114-e984e3c701f3", + "7b2420d3-1149-4f18-a114-e984e3c701f3", + "7b2420d3-1149-4f18-a114-e984e3c701f3" + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", + "legendDisplay": "default", + "metric": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "nestedLegend": false, + "numberDisplay": "percent" + } + ], + "shape": "donut" + } + }, + "title": "Anomali Indicator Type [Filebeat Threat Intel]", + "visualizationType": "lnsPie" + }, + "coreMigrationVersion": "8.0.0", + "id": "021ba940-de96-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1ODAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/037e2af0-df50-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/037e2af0-df50-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..5be6f447603d --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/037e2af0-df50-11eb-8f2b-753caedf727d.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "Recorded Future indicator type ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "7b2420d3-1149-4f18-a114-e984e3c701f3", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "7b2420d3-1149-4f18-a114-e984e3c701f3": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Recorded Future Indicator Type", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.type" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\" " + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "groups": [ + "7b2420d3-1149-4f18-a114-e984e3c701f3", + "7b2420d3-1149-4f18-a114-e984e3c701f3", + "7b2420d3-1149-4f18-a114-e984e3c701f3" + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", + "legendDisplay": "default", + "metric": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "nestedLegend": false, + "numberDisplay": "percent" + } + ], + "shape": "donut" + } + }, + "title": "Recorded Future Indicator Type [Filebeat Threat Intel]", + "visualizationType": "lnsPie" + }, + "coreMigrationVersion": "8.0.0", + "id": "037e2af0-df50-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/06744e90-df52-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/06744e90-df52-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..b427db18d513 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/06744e90-df52-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Recorded Future IPv6 indicators ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "642d5400-4a72-4116-b752-58df5138392a", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "642d5400-4a72-4116-b752-58df5138392a": { + "customLabel": true, + "dataType": "ip", + "isBucketed": true, + "label": "Recorded Future IPv6 Indicator", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.ip" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\" and threatintel.indicator.type:ipv6-addr" + }, + "visualization": { + "columns": [ + { + "columnId": "642d5400-4a72-4116-b752-58df5138392a", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Recorded Future IPv6 Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "06744e90-df52-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/0db62ee0-72e6-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/0db62ee0-72e6-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..a053c190ada5 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/0db62ee0-72e6-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,171 @@ +{ + "attributes": { + "description": "Abuse malware signatures ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "dff48ab9-4cc8-4744-afe5-ee36a0a2065d": { + "columnOrder": [ + "959db113-1ce6-46fc-97c3-dbf5fd5abb9a", + "de396547-655b-4db2-8a21-e9850acff0b0" + ], + "columns": { + "959db113-1ce6-46fc-97c3-dbf5fd5abb9a": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of threatintel.abusemalware.signature", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "de396547-655b-4db2-8a21-e9850acff0b0", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.abusemalware.signature" + }, + "de396547-655b-4db2-8a21-e9850acff0b0": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "filter-index-pattern-0", + "key": "event.module", + "negate": false, + "params": { + "query": "threatintel" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.module": "threatintel" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "filter-index-pattern-1", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abusemalware" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abusemalware" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.abusemalware.signature" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "filter-index-pattern-2", + "key": "threatintel.abusemalware.signature", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "groups": [ + "959db113-1ce6-46fc-97c3-dbf5fd5abb9a" + ], + "layerId": "dff48ab9-4cc8-4744-afe5-ee36a0a2065d", + "legendDisplay": "default", + "metric": "de396547-655b-4db2-8a21-e9850acff0b0", + "nestedLegend": false, + "numberDisplay": "percent" + } + ], + "shape": "treemap" + } + }, + "title": "Abuse Malware Signature [Filebeat Threat Intel]", + "visualizationType": "lnsPie" + }, + "coreMigrationVersion": "8.0.0", + "id": "0db62ee0-72e6-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-dff48ab9-4cc8-4744-afe5-ee36a0a2065d", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-0", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-1", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-2", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:29.041Z", + "version": "WzQ2MDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/1136ceb0-de95-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/1136ceb0-de95-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..05d17760abc8 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/1136ceb0-de95-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Anomali ThreatStream URI ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "2e21ae71-6d85-4de2-8585-a60933c18f60", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "2e21ae71-6d85-4de2-8585-a60933c18f60": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "ThreatStream URI", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.anomalithreatstream.resource_uri" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "columns": [ + { + "columnId": "2e21ae71-6d85-4de2-8585-a60933c18f60", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Anomali URI [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "1136ceb0-de95-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1OTksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/139c7da0-df51-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/139c7da0-df51-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..d8abec34b65a --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/139c7da0-df51-11eb-8f2b-753caedf727d.json @@ -0,0 +1,93 @@ +{ + "attributes": { + "description": "Recorded Future indicator SHA256 hash ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "ebb0878f-715a-4987-85f1-87420428c88f", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "ebb0878f-715a-4987-85f1-87420428c88f": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Recorded Future SHA256 File Hash", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.file.hash.sha256" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\" " + }, + "visualization": { + "columns": [ + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b" + }, + { + "columnId": "ebb0878f-715a-4987-85f1-87420428c88f", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Recorded Future SHA256 Hash Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "139c7da0-df51-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/176bf800-df58-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/176bf800-df58-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..4460a1bbdb68 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/176bf800-df58-11eb-8f2b-753caedf727d.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "Recorded Future indicators ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "27155b23-ab24-4f18-b7dd-159f339e5e9b": { + "columnOrder": [ + "7a45df79-3fa9-480a-95f4-7f287a386b7d" + ], + "columns": { + "7a45df79-3fa9-480a-95f4-7f287a386b7d": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Recorded Future Indicators", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\" " + }, + "visualization": { + "accessor": "7a45df79-3fa9-480a-95f4-7f287a386b7d", + "layerId": "27155b23-ab24-4f18-b7dd-159f339e5e9b" + } + }, + "title": "Recorded Future Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsMetric" + }, + "coreMigrationVersion": "8.0.0", + "id": "176bf800-df58-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-27155b23-ab24-4f18-b7dd-159f339e5e9b", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/1d7a18c0-df54-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/1d7a18c0-df54-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..c01624dc11c2 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/1d7a18c0-df54-11eb-8f2b-753caedf727d.json @@ -0,0 +1,131 @@ +{ + "attributes": { + "description": null, + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "823b507c-03a2-413b-9fc6-ba86a0160d50": { + "columnOrder": [ + "3da14e5a-0f82-42ce-9bca-cc20ec7f3639", + "1266faef-9fa3-4560-9dd0-7116e8b2a6de", + "43cd0668-5ea3-495f-97a5-1d2ddae02ef6" + ], + "columns": { + "1266faef-9fa3-4560-9dd0-7116e8b2a6de": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "3da14e5a-0f82-42ce-9bca-cc20ec7f3639": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali Feed Source", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "43cd0668-5ea3-495f-97a5-1d2ddae02ef6", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 2 + }, + "scale": "ordinal", + "sourceField": "event.dataset" + }, + "43cd0668-5ea3-495f-97a5-1d2ddae02ef6": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "curveType": "LINEAR", + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "43cd0668-5ea3-495f-97a5-1d2ddae02ef6" + ], + "layerId": "823b507c-03a2-413b-9fc6-ba86a0160d50", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "3da14e5a-0f82-42ce-9bca-cc20ec7f3639", + "xAccessor": "1266faef-9fa3-4560-9dd0-7116e8b2a6de" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "Anomali Data Source [Filebeat Threat Intel]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "1d7a18c0-df54-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-823b507c-03a2-413b-9fc6-ba86a0160d50", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1ODYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/36f61650-de96-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/36f61650-de96-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..e48267b1fd83 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/36f61650-de96-11eb-8f2b-753caedf727d.json @@ -0,0 +1,97 @@ +{ + "attributes": { + "description": "Anomali indicator classification ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "8d7cc68f-5178-40f1-b041-bdb02dea3324", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "8d7cc68f-5178-40f1-b041-bdb02dea3324": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali Indicator Classification", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "threatintel.anomalithreatstream.classification" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "groups": [ + "8d7cc68f-5178-40f1-b041-bdb02dea3324" + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", + "legendDisplay": "default", + "metric": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "nestedLegend": false, + "numberDisplay": "percent" + } + ], + "shape": "donut" + } + }, + "title": "Anomali Indicator Classification [Filebeat Threat Intel]", + "visualizationType": "lnsPie" + }, + "coreMigrationVersion": "8.0.0", + "id": "36f61650-de96-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1ODUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/3c40f4d0-de97-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/3c40f4d0-de97-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..4f33f959e3a8 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/3c40f4d0-de97-11eb-8f2b-753caedf727d.json @@ -0,0 +1,97 @@ +{ + "attributes": { + "description": "Anomali detailed indicator type ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "6a19d4b1-f2d9-4fb8-9970-b7b255f63988", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "6a19d4b1-f2d9-4fb8-9970-b7b255f63988": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali Detailed Indicator Type", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "threatintel.anomalithreatstream.itype" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "groups": [ + "6a19d4b1-f2d9-4fb8-9970-b7b255f63988" + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", + "legendDisplay": "default", + "metric": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "nestedLegend": false, + "numberDisplay": "percent" + } + ], + "shape": "donut" + } + }, + "title": "Anomali Detailed Indicator Type [Filebeat Threat Intel]", + "visualizationType": "lnsPie" + }, + "coreMigrationVersion": "8.0.0", + "id": "3c40f4d0-de97-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1ODEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/3c996410-df52-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/3c996410-df52-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..88c19ed280d8 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/3c996410-df52-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Recorded Future domain indicators ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "642d5400-4a72-4116-b752-58df5138392a", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "642d5400-4a72-4116-b752-58df5138392a": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Recorded Future Domain Indicator", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.domain" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\"" + }, + "visualization": { + "columns": [ + { + "columnId": "642d5400-4a72-4116-b752-58df5138392a", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Recorded Future Domain Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "3c996410-df52-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/4bcc4cb0-df50-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/4bcc4cb0-df50-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..b069d14277de --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/4bcc4cb0-df50-11eb-8f2b-753caedf727d.json @@ -0,0 +1,100 @@ +{ + "attributes": { + "description": "Recorded Future indicator risk score ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "7b2420d3-1149-4f18-a114-e984e3c701f3", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "7b2420d3-1149-4f18-a114-e984e3c701f3": { + "customLabel": true, + "dataType": "number", + "isBucketed": true, + "label": "Recorded Future Risk Score", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "event.risk_score" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\" " + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "groups": [ + "7b2420d3-1149-4f18-a114-e984e3c701f3", + "7b2420d3-1149-4f18-a114-e984e3c701f3", + "7b2420d3-1149-4f18-a114-e984e3c701f3", + "7b2420d3-1149-4f18-a114-e984e3c701f3" + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", + "legendDisplay": "default", + "metric": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "nestedLegend": false, + "numberDisplay": "percent" + } + ], + "shape": "donut" + } + }, + "title": "Recorded Future Risk Score [Filebeat Threat Intel]", + "visualizationType": "lnsPie" + }, + "coreMigrationVersion": "8.0.0", + "id": "4bcc4cb0-df50-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/5e76ef90-df51-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/5e76ef90-df51-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..03bafd193b3e --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/5e76ef90-df51-11eb-8f2b-753caedf727d.json @@ -0,0 +1,93 @@ +{ + "attributes": { + "description": "Recorded Future URL domain indicator ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "ebb0878f-715a-4987-85f1-87420428c88f", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "ebb0878f-715a-4987-85f1-87420428c88f": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Recorded Future URL Domain Indicator", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.url.domain" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\" " + }, + "visualization": { + "columns": [ + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b" + }, + { + "columnId": "ebb0878f-715a-4987-85f1-87420428c88f", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Recorded Future URL Domain Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "5e76ef90-df51-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/5ef7b430-de94-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/5ef7b430-de94-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..88642bb872e3 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/5ef7b430-de94-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Anomali IP indicator ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "f89f3b93-e409-4ed2-b938-4cd31f2b7247", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "f89f3b93-e409-4ed2-b938-4cd31f2b7247": { + "customLabel": true, + "dataType": "ip", + "isBucketed": true, + "label": "Anomali IP Indicator", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.ip" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "columns": [ + { + "columnId": "f89f3b93-e409-4ed2-b938-4cd31f2b7247", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Anomali IP Indicator [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "5ef7b430-de94-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1OTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/790cd040-df51-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/790cd040-df51-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..2abc0bb73163 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/790cd040-df51-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Recorded Future URL original indicator ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "642d5400-4a72-4116-b752-58df5138392a", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "642d5400-4a72-4116-b752-58df5138392a": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Recorded Future URL Original Indicator", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.url.original" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\" " + }, + "visualization": { + "columns": [ + { + "columnId": "642d5400-4a72-4116-b752-58df5138392a", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Recorded Future URL Original Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "790cd040-df51-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/7d9c70f0-de95-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/7d9c70f0-de95-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..dbdc1f05605e --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/7d9c70f0-de95-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Anomali indicator name ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "4cca9b50-a9a4-4cce-ae15-9447a451d8a1", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "4cca9b50-a9a4-4cce-ae15-9447a451d8a1": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali Indicator Name", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.anomali.name" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "columns": [ + { + "columnId": "4cca9b50-a9a4-4cce-ae15-9447a451d8a1", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Anomali Indicator Name [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "7d9c70f0-de95-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1OTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/7ec83f60-de98-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/7ec83f60-de98-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..b321f95bae85 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/7ec83f60-de98-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Anomali indicator SHA256 hash ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "3ae42baf-5685-4f7d-94d3-66ff57b4febd", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "3ae42baf-5685-4f7d-94d3-66ff57b4febd": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali SHA256 File Hash", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.file.hash.sha256" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "columns": [ + { + "columnId": "3ae42baf-5685-4f7d-94d3-66ff57b4febd", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Anomali SHA256 Hash Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "7ec83f60-de98-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1OTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/7ed4ce00-df52-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/7ed4ce00-df52-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..a412cd39fca8 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/7ed4ce00-df52-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Recorded Future intel cards for indicators ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "642d5400-4a72-4116-b752-58df5138392a", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "642d5400-4a72-4116-b752-58df5138392a": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Recorded Future Intel Card", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "event.reference" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\"" + }, + "visualization": { + "columns": [ + { + "columnId": "642d5400-4a72-4116-b752-58df5138392a", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Recorded Future Intel Cards [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "7ed4ce00-df52-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/82fa7420-df58-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/82fa7420-df58-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..76c617548ca1 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/82fa7420-df58-11eb-8f2b-753caedf727d.json @@ -0,0 +1,95 @@ +{ + "attributes": { + "description": "Recorded Future indicators over time ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "98644301-1cd1-4e54-9f5b-71a1cbcdd8c8": { + "columnOrder": [ + "8f48381c-5786-43f4-8602-5c23ba146a60", + "86e20fd3-86a5-4796-b4b8-f2461a9fa922" + ], + "columns": { + "86e20fd3-86a5-4796-b4b8-f2461a9fa922": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "8f48381c-5786-43f4-8602-5c23ba146a60": { + "customLabel": true, + "dataType": "date", + "isBucketed": true, + "label": "Recorded Future Indicators Over Time", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\" " + }, + "visualization": { + "layers": [ + { + "accessors": [ + "86e20fd3-86a5-4796-b4b8-f2461a9fa922" + ], + "layerId": "98644301-1cd1-4e54-9f5b-71a1cbcdd8c8", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "xAccessor": "8f48381c-5786-43f4-8602-5c23ba146a60" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "title": "Empty XY chart", + "valueLabels": "hide" + } + }, + "title": "Recorded Future Indicators Over Time [Filebeat Threat Intel]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "82fa7420-df58-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-98644301-1cd1-4e54-9f5b-71a1cbcdd8c8", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/8a6f7b20-de94-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/8a6f7b20-de94-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..86e2c9697734 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/8a6f7b20-de94-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Anomali URL indicators ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "b42d5573-842d-4494-82d7-c35c9b66b188", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "b42d5573-842d-4494-82d7-c35c9b66b188": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali URL Indicator", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.url.original" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "columns": [ + { + "columnId": "b42d5573-842d-4494-82d7-c35c9b66b188", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Anomali URL Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "8a6f7b20-de94-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1OTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/8fb01a00-df51-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/8fb01a00-df51-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..be51533efa40 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/8fb01a00-df51-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Recorded Future URL path indicator ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "642d5400-4a72-4116-b752-58df5138392a", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "642d5400-4a72-4116-b752-58df5138392a": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Recorded Future URL Path Indicator", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.url.path" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\" " + }, + "visualization": { + "columns": [ + { + "columnId": "642d5400-4a72-4116-b752-58df5138392a", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Recorded Future URL Path Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "8fb01a00-df51-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/9282afc0-72d9-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/9282afc0-72d9-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..42d14abd0ecb --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/9282afc0-72d9-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,150 @@ +{ + "attributes": { + "description": "Total number of indicators by type ingested by the threat intel Filebeat module. Top 10 types.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "9e3d1f18-6e1e-4e13-8b0b-9b17d12a15f2": { + "columnOrder": [ + "a6319ec8-2ec8-4d3a-bc54-efe0a306786f", + "1e5c28a2-6405-44ee-bdf1-8bdd03bdf919" + ], + "columns": { + "1e5c28a2-6405-44ee-bdf1-8bdd03bdf919": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "a6319ec8-2ec8-4d3a-bc54-efe0a306786f": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of threatintel.indicator.type", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "1e5c28a2-6405-44ee-bdf1-8bdd03bdf919", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.type" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "filter-index-pattern-0", + "key": "event.module", + "negate": false, + "params": { + "query": "threatintel" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.module": "threatintel" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.type" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "filter-index-pattern-1", + "key": "threatintel.indicator.type", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "groups": [ + "a6319ec8-2ec8-4d3a-bc54-efe0a306786f" + ], + "layerId": "9e3d1f18-6e1e-4e13-8b0b-9b17d12a15f2", + "legendDisplay": "show", + "metric": "1e5c28a2-6405-44ee-bdf1-8bdd03bdf919", + "nestedLegend": false, + "numberDisplay": "value", + "percentDecimals": 2 + } + ], + "palette": { + "name": "default", + "type": "palette" + }, + "shape": "treemap" + } + }, + "title": "Total Indicators per Type [Filebeat Threat Intel]", + "visualizationType": "lnsPie" + }, + "coreMigrationVersion": "8.0.0", + "id": "9282afc0-72d9-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-9e3d1f18-6e1e-4e13-8b0b-9b17d12a15f2", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-0", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "filter-index-pattern-1", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:32.145Z", + "version": "WzQ2NTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/949bc180-df52-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/949bc180-df52-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..b4784339ef28 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/949bc180-df52-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Recorded Future risk summary for indicators ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "642d5400-4a72-4116-b752-58df5138392a", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "642d5400-4a72-4116-b752-58df5138392a": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Recorded Future Risk Summary", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.recordedfuture.risk.riskSummary" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\"" + }, + "visualization": { + "columns": [ + { + "columnId": "642d5400-4a72-4116-b752-58df5138392a", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Recorded Future Risk Summary [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "949bc180-df52-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/976620a0-de98-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/976620a0-de98-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..b9d9b336d1e5 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/976620a0-de98-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Anomali indicator MD5 hash ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "3ae42baf-5685-4f7d-94d3-66ff57b4febd", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "3ae42baf-5685-4f7d-94d3-66ff57b4febd": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali MD5 File Hash", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.file.hash.md5" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "columns": [ + { + "columnId": "3ae42baf-5685-4f7d-94d3-66ff57b4febd", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Anomali MD5 Hash Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "976620a0-de98-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1OTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/9a61edc0-de93-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/9a61edc0-de93-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..7480a6b8af07 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/9a61edc0-de93-11eb-8f2b-753caedf727d.json @@ -0,0 +1,74 @@ +{ + "attributes": { + "description": "Total number of Anomali indicators ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "15a91057-d730-461d-8510-633a1205b462" + ], + "columns": { + "15a91057-d730-461d-8510-633a1205b462": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Total Anomali Indicators", + "operationType": "count", + "params": { + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "accessor": "15a91057-d730-461d-8510-633a1205b462", + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Anomali Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsMetric" + }, + "coreMigrationVersion": "8.0.0", + "id": "9a61edc0-de93-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1NzksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/9c78ade0-de95-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/9c78ade0-de95-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..cb82ae74ba56 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/9c78ade0-de95-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Anomali indicator description ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "577fd2f3-2a3f-4932-8348-9653e54a61e0", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "577fd2f3-2a3f-4932-8348-9653e54a61e0": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali Indicator Description", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.anomali.description" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "columns": [ + { + "columnId": "577fd2f3-2a3f-4932-8348-9653e54a61e0", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Anomali Indicator Description [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "9c78ade0-de95-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1OTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/a0a31740-df51-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/a0a31740-df51-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..ce6d74b37635 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/a0a31740-df51-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Recorded Future URL scheme indicator ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "642d5400-4a72-4116-b752-58df5138392a", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "642d5400-4a72-4116-b752-58df5138392a": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Recorded Future URL Scheme Indicator", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.url.scheme" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\" " + }, + "visualization": { + "columns": [ + { + "columnId": "642d5400-4a72-4116-b752-58df5138392a", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Recorded Future URL Scheme Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "a0a31740-df51-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/aac00bc0-de98-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/aac00bc0-de98-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..2e80121c2e46 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/aac00bc0-de98-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Anomali indicator SHA1 hash ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "3ae42baf-5685-4f7d-94d3-66ff57b4febd", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "3ae42baf-5685-4f7d-94d3-66ff57b4febd": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali SHA1 File Hash", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.file.hash.sha1" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "columns": [ + { + "columnId": "3ae42baf-5685-4f7d-94d3-66ff57b4febd", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Anomali SHA1 Hash Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "aac00bc0-de98-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1OTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/ae5934e0-de94-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/ae5934e0-de94-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..02719d9dcb0d --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/ae5934e0-de94-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Anomali domain indicators ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "9e23efd8-7ea2-4c0e-af80-99b2f915ae81", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "9e23efd8-7ea2-4c0e-af80-99b2f915ae81": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali Domain Indicators", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.url.domain" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "columns": [ + { + "columnId": "9e23efd8-7ea2-4c0e-af80-99b2f915ae81", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Anomali Domain Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "ae5934e0-de94-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1OTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/b0837690-df52-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/b0837690-df52-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..c75878031077 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/b0837690-df52-11eb-8f2b-753caedf727d.json @@ -0,0 +1,97 @@ +{ + "attributes": { + "description": "Recorded Future risk criticality for indicators ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "642d5400-4a72-4116-b752-58df5138392a", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "642d5400-4a72-4116-b752-58df5138392a": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Recorded Future Risk Criticality", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.recordedfuture.risk.criticalityLabel" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\"" + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "groups": [ + "642d5400-4a72-4116-b752-58df5138392a" + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", + "legendDisplay": "default", + "metric": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "nestedLegend": false, + "numberDisplay": "percent" + } + ], + "shape": "donut" + } + }, + "title": "Recorded Future Risk Criticality [Filebeat Threat Intel]", + "visualizationType": "lnsPie" + }, + "coreMigrationVersion": "8.0.0", + "id": "b0837690-df52-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/bd28cb00-de96-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/bd28cb00-de96-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..ed51bcc85fb6 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/bd28cb00-de96-11eb-8f2b-753caedf727d.json @@ -0,0 +1,101 @@ +{ + "attributes": { + "description": "Anomali indicator severity ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "dde93810-194c-43e5-bf06-31bfba459425", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "dde93810-194c-43e5-bf06-31bfba459425": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali Indicator Severity", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 3 + }, + "scale": "ordinal", + "sourceField": "threatintel.anomalithreatstream.severity" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "groups": [ + "dde93810-194c-43e5-bf06-31bfba459425" + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", + "legendDisplay": "default", + "metric": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "nestedLegend": false, + "numberDisplay": "percent" + } + ], + "palette": { + "name": "default", + "type": "palette" + }, + "shape": "donut" + } + }, + "title": "Anomali Indicator Severity [Filebeat Threat Intel]", + "visualizationType": "lnsPie" + }, + "coreMigrationVersion": "8.0.0", + "id": "bd28cb00-de96-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1ODIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/bfd2bfe0-de97-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/bfd2bfe0-de97-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..0850075db5bd --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/bfd2bfe0-de97-11eb-8f2b-753caedf727d.json @@ -0,0 +1,97 @@ +{ + "attributes": { + "description": "Anomali indicator confidence ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "208779ac-fe5e-4c9b-bfc5-1429ec918089", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "208779ac-fe5e-4c9b-bfc5-1429ec918089": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali Indicator Confidence", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.confidence" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "groups": [ + "208779ac-fe5e-4c9b-bfc5-1429ec918089" + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", + "legendDisplay": "default", + "metric": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "nestedLegend": false, + "numberDisplay": "percent" + } + ], + "shape": "donut" + } + }, + "title": "Anomali Indicator Confidence [Filebeat Threat Intel]", + "visualizationType": "lnsPie" + }, + "coreMigrationVersion": "8.0.0", + "id": "bfd2bfe0-de97-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1NzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/c2a5c180-df51-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/c2a5c180-df51-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..5915a46aca56 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/c2a5c180-df51-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Recorded Future IPv4 indicators ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "642d5400-4a72-4116-b752-58df5138392a", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "642d5400-4a72-4116-b752-58df5138392a": { + "customLabel": true, + "dataType": "ip", + "isBucketed": true, + "label": "Recorded Future IPv4 Indicator", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.ip" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\" and threatintel.indicator.type:ipv4-addr" + }, + "visualization": { + "columns": [ + { + "columnId": "642d5400-4a72-4116-b752-58df5138392a", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Recorded Future IPv4 Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "c2a5c180-df51-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NjksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/c91fcd10-de95-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/c91fcd10-de95-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..63c9a1eebdec --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/c91fcd10-de95-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Anomali indicator provider ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "a5ec41b6-ad59-4c19-8e50-8fca5230931f", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "a5ec41b6-ad59-4c19-8e50-8fca5230931f": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali Indicator Provider", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.provider" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "columns": [ + { + "columnId": "a5ec41b6-ad59-4c19-8e50-8fca5230931f", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Anomali Indicator Provider [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "c91fcd10-de95-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1ODQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/d991e510-de96-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/d991e510-de96-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..f630743094ff --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/d991e510-de96-11eb-8f2b-753caedf727d.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": "Anomali indicator state ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "e5a7fb87-1df1-4b79-b610-1196abdfd499", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "e5a7fb87-1df1-4b79-b610-1196abdfd499": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali Indicator State", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "threatintel.anomalithreatstream.state" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", + "seriesType": "bar_horizontal", + "xAccessor": "e5a7fb87-1df1-4b79-b610-1196abdfd499" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar_horizontal", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "Anomali Indicator State [Filebeat Threat Intel]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "d991e510-de96-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1ODcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/dd4a3da0-df50-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/dd4a3da0-df50-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..b9b2341c0b1c --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/dd4a3da0-df50-11eb-8f2b-753caedf727d.json @@ -0,0 +1,93 @@ +{ + "attributes": { + "description": null, + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "ebb0878f-715a-4987-85f1-87420428c88f", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "ebb0878f-715a-4987-85f1-87420428c88f": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Recorded Future MD5 File Hash", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.file.hash.md5" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\" " + }, + "visualization": { + "columns": [ + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b" + }, + { + "columnId": "ebb0878f-715a-4987-85f1-87420428c88f", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Recorded Future MD5 Hash Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "dd4a3da0-df50-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/e5f07800-de94-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/e5f07800-de94-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..1985a7273804 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/e5f07800-de94-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Anomali indicator ID ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "9e0166f4-d0f0-448c-befa-c07a3e86d69f", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "9e0166f4-d0f0-448c-befa-c07a3e86d69f": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "ThreatStream ID", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.anomalithreatstream.id" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "columns": [ + { + "columnId": "9e0166f4-d0f0-448c-befa-c07a3e86d69f", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Anomali Indicator ID [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "e5f07800-de94-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1OTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/f37f8350-df50-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/f37f8350-df50-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..45745f96eb07 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/f37f8350-df50-11eb-8f2b-753caedf727d.json @@ -0,0 +1,93 @@ +{ + "attributes": { + "description": null, + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "ebb0878f-715a-4987-85f1-87420428c88f", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + }, + "ebb0878f-715a-4987-85f1-87420428c88f": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Recorded Future SHA1 File Hash", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.file.hash.sha1" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:\"threatintel.recordedfuture\" " + }, + "visualization": { + "columns": [ + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b" + }, + { + "columnId": "ebb0878f-715a-4987-85f1-87420428c88f", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Recorded Future SHA1 Hash Indicators [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "f37f8350-df50-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/f52a9720-de93-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/f52a9720-de93-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..a3740f838db9 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/f52a9720-de93-11eb-8f2b-753caedf727d.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "Anomali email indicator ingested by the threat intel Filebeat module.", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "81a03111-2286-4898-aef5-9e8b309b2437", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "81a03111-2286-4898-aef5-9e8b309b2437": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali Email Indicator", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.email.address" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "columns": [ + { + "columnId": "81a03111-2286-4898-aef5-9e8b309b2437", + "isTransposed": false + }, + { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "isTransposed": false + } + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc" + } + }, + "title": "Anomali Email Indicator [Filebeat Threat Intel]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "f52a9720-de93-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1ODksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/f5f18940-de96-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/f5f18940-de96-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..c5c7c021b28a --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/lens/f5f18940-de96-11eb-8f2b-753caedf727d.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": null, + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "41f41086-8875-4d18-8844-b51b9c9cb8bc": { + "columnOrder": [ + "8cd1203c-8d1a-4a49-b97f-bc5a011119b0", + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "columns": { + "8cd1203c-8d1a-4a49-b97f-bc5a011119b0": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Anomali Indicator TLP Marking", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "9afb1b09-0f20-488c-9242-a94f7d11800b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "threatintel.indicator.marking.tlp" + }, + "9afb1b09-0f20-488c-9242-a94f7d11800b": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "scale": "ratio", + "sourceField": "Records" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "event.dataset:(threatintel.anomalithreatstream or threatintel.anomali)" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "9afb1b09-0f20-488c-9242-a94f7d11800b" + ], + "layerId": "41f41086-8875-4d18-8844-b51b9c9cb8bc", + "seriesType": "bar_horizontal", + "xAccessor": "8cd1203c-8d1a-4a49-b97f-bc5a011119b0" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar_horizontal", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "Anomali Indicator TLP Marking [Filebeat Threat Intel]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "f5f18940-de96-11eb-8f2b-753caedf727d", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "filebeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "indexpattern-datasource-layer-41f41086-8875-4d18-8844-b51b9c9cb8bc", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1ODMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/map/63365b50-82aa-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/map/63365b50-82aa-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..a5db3f4515ce --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/map/63365b50-82aa-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,32 @@ +{ + "attributes": { + "description": "Origin country of the indicator ingested by the threat intel Filebeat module.", + "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"ea2479ec-b43e-4377-a068-91d93265081d\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{\"type\":\"TILE\"},\"type\":\"VECTOR_TILE\"},{\"joins\":[{\"leftField\":\"iso2\",\"right\":{\"type\":\"ES_TERM_SOURCE\",\"id\":\"81d209f7-b068-4b0d-90f4-baf9a3eefb55\",\"indexPatternTitle\":\"filebeat-*\",\"term\":\"threatintel.indicator.geo.country_iso_code\",\"metrics\":[{\"type\":\"count\"}],\"applyGlobalQuery\":true,\"applyGlobalTime\":true,\"indexPatternRefName\":\"layer_1_join_0_index_pattern\"}}],\"sourceDescriptor\":{\"type\":\"EMS_FILE\",\"id\":\"world_countries\",\"tooltipProperties\":[\"name\"]},\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"marker\"}},\"fillColor\":{\"type\":\"DYNAMIC\",\"options\":{\"color\":\"Yellow to Red\",\"colorCategory\":\"palette_0\",\"field\":{\"name\":\"__kbnjoin__count__81d209f7-b068-4b0d-90f4-baf9a3eefb55\",\"origin\":\"join\"},\"fieldMetaOptions\":{\"isEnabled\":true,\"sigma\":3},\"type\":\"ORDINAL\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#3d3d3d\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"id\":\"66df8b3a-7f7c-4969-929e-2c1ac5b64584\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"type\":\"VECTOR\"}]", + "mapStateJSON": "{\"zoom\":2.08,\"center\":{\"lon\":0,\"lat\":19.94277},\"timeFilters\":{\"from\":\"now-30d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":true,\"interval\":0},\"query\":{\"query\":\"\",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false,\"backgroundColor\":\"#ffffff\",\"initialLocation\":\"LAST_SAVED_LOCATION\",\"fixedLocation\":{\"lat\":0,\"lon\":0,\"zoom\":2},\"browserLocation\":{\"zoom\":2},\"maxZoom\":24,\"minZoom\":0,\"showSpatialFilters\":true,\"spatialFiltersAlpa\":0.3,\"spatialFiltersFillColor\":\"#DA8B45\",\"spatialFiltersLineColor\":\"#DA8B45\"}}", + "title": "Indicator Origin Country [Filebeat Threat Intel]", + "uiStateJSON": { + "isLayerTOCOpen": true, + "openTOCDetails": [] + } + }, + "coreMigrationVersion": "8.0.0", + "id": "63365b50-82aa-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "map": "7.14.0" + }, + "references": [ + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + }, + { + "id": "filebeat-*", + "name": "layer_1_join_0_index_pattern", + "type": "index-pattern" + } + ], + "type": "map", + "updated_at": "2021-08-04T16:34:30.070Z", + "version": "WzQ2MTksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/map/ec5aa090-df42-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/map/ec5aa090-df42-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..6f7918fe90de --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/map/ec5aa090-df42-11eb-8f2b-753caedf727d.json @@ -0,0 +1,32 @@ +{ + "attributes": { + "description": "Geographic location of Anomali indicators ingested by the threat intel Filebeat module.", + "layerListJSON": "[{\"sourceDescriptor\":{\"type\":\"EMS_TMS\",\"isAutoSelect\":true},\"id\":\"9027343a-f725-4467-9b08-8566ad0b2a52\",\"label\":null,\"minZoom\":0,\"maxZoom\":24,\"alpha\":1,\"visible\":true,\"style\":{\"type\":\"TILE\"},\"type\":\"VECTOR_TILE\"},{\"sourceDescriptor\":{\"geoField\":\"threatintel.indicator.geo.location\",\"filterByMapBounds\":true,\"scalingType\":\"LIMIT\",\"id\":\"a3ecc6af-0299-4cb9-a29c-0b70f666b011\",\"type\":\"ES_SEARCH\",\"applyGlobalQuery\":true,\"applyGlobalTime\":true,\"tooltipProperties\":[\"threatintel.indicator.as.number\",\"threatintel.indicator.as.organization.name\",\"threatintel.indicator.geo.country_iso_code\"],\"sortField\":\"\",\"sortOrder\":\"desc\",\"topHitsSplitField\":\"\",\"topHitsSize\":1,\"indexPatternRefName\":\"layer_1_source_index_pattern\"},\"id\":\"83ede860-fe89-43c9-8e74-fa2703efbb85\",\"label\":\"Indicator Geographic Location\",\"minZoom\":0,\"maxZoom\":24,\"alpha\":0.75,\"visible\":true,\"style\":{\"type\":\"VECTOR\",\"properties\":{\"icon\":{\"type\":\"STATIC\",\"options\":{\"value\":\"danger\"}},\"fillColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#D36086\"}},\"lineColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#41937c\"}},\"lineWidth\":{\"type\":\"STATIC\",\"options\":{\"size\":1}},\"iconSize\":{\"type\":\"STATIC\",\"options\":{\"size\":6}},\"iconOrientation\":{\"type\":\"STATIC\",\"options\":{\"orientation\":0}},\"labelText\":{\"type\":\"STATIC\",\"options\":{\"value\":\"\"}},\"labelColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#000000\"}},\"labelSize\":{\"type\":\"STATIC\",\"options\":{\"size\":14}},\"labelBorderColor\":{\"type\":\"STATIC\",\"options\":{\"color\":\"#FFFFFF\"}},\"symbolizeAs\":{\"options\":{\"value\":\"circle\"}},\"labelBorderSize\":{\"options\":{\"size\":\"SMALL\"}}},\"isTimeAware\":true},\"type\":\"VECTOR\",\"joins\":[]}]", + "mapStateJSON": "{\"zoom\":2.08,\"center\":{\"lon\":0,\"lat\":19.94277},\"timeFilters\":{\"from\":\"now-7d\",\"to\":\"now\"},\"refreshConfig\":{\"isPaused\":true,\"interval\":0},\"query\":{\"query\":\"event.dataset:\\\"threatintel.anomalithreatstream\\\" \",\"language\":\"kuery\"},\"filters\":[],\"settings\":{\"autoFitToDataBounds\":false,\"backgroundColor\":\"#ffffff\",\"disableInteractive\":false,\"disableTooltipControl\":false,\"hideToolbarOverlay\":false,\"hideLayerControl\":false,\"hideViewControl\":false,\"initialLocation\":\"LAST_SAVED_LOCATION\",\"fixedLocation\":{\"lat\":0,\"lon\":0,\"zoom\":2},\"browserLocation\":{\"zoom\":2},\"maxZoom\":24,\"minZoom\":0,\"showScaleControl\":false,\"showSpatialFilters\":true,\"spatialFiltersAlpa\":0.3,\"spatialFiltersFillColor\":\"#DA8B45\",\"spatialFiltersLineColor\":\"#DA8B45\"}}", + "title": "Anomali Indicator Geographic Location [Filebeat Threat Intel]", + "uiStateJSON": { + "isLayerTOCOpen": true, + "openTOCDetails": [] + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ec5aa090-df42-11eb-8f2b-753caedf727d", + "migrationVersion": { + "map": "7.14.0" + }, + "references": [ + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-ref-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + }, + { + "id": "filebeat-*", + "name": "layer_1_source_index_pattern", + "type": "index-pattern" + } + ], + "type": "map", + "updated_at": "2021-08-04T16:34:28.102Z", + "version": "WzQ1ODgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/search/6acbb070-72d0-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/search/6acbb070-72d0-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..f8deba08176c --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/search/6acbb070-72d0-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,144 @@ +{ + "attributes": { + "columns": [ + "_source" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.module", + "negate": false, + "params": { + "query": "threatintel" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.module": "threatintel" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.category", + "negate": false, + "params": { + "query": "threat" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.category": "threat" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "key": "event.kind", + "negate": false, + "params": { + "query": "enrichment" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.kind": "enrichment" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", + "key": "event.type", + "negate": false, + "params": { + "query": "indicator" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.type": "indicator" + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [], + "title": "All Logs [Filebeat Threat Intel] ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[3].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-04T16:34:32.145Z", + "version": "WzQ2NjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/tag/d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/tag/d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..324f14eee149 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/tag/d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,13 @@ +{ + "attributes": { + "color": "#a548ae", + "description": "Tag for indicators ingested by the Threat Intel Filebeat module.", + "name": "threat intel" + }, + "coreMigrationVersion": "8.0.0", + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "references": [], + "type": "tag", + "updated_at": "2021-08-04T16:34:33.127Z", + "version": "WzQ2NzksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/01c261b0-7aa9-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/01c261b0-7aa9-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..93d283d07e01 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/01c261b0-7aa9-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "AlienVault OTX indicator title ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.otx" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.otx" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.otx.title" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.otx.title", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "AlienVault OTX Indicator Title [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "AlienVault OTX Indicator Title", + "field": "threatintel.otx.title", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "AlienVault OTX Indicator Title [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "01c261b0-7aa9-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:27.014Z", + "version": "WzQ1NzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/02294f80-73c7-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/02294f80-73c7-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..822c006ccc2c --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/02294f80-73c7-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "MISP SHA1 hash indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.misp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.misp" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.hash.sha1" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.hash.sha1", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "MISP SHA1 Hash Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "MISP SHA1 Hash Indicator", + "field": "threatintel.indicator.file.hash.sha1", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "MISP SHA1 Hash Indicators [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "02294f80-73c7-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:31.083Z", + "version": "WzQ2NDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/0ccdda50-76ce-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/0ccdda50-76ce-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..1197b8b4a7ea --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/0ccdda50-76ce-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "AlienVault OTX MD5 hash indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.otx" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.otx" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.hash.md5" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.hash.md5", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "AlientVault OTX MD5 Hash Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "AlienVault OTX MD5 Hash Indicator", + "field": "threatintel.indicator.file.hash.md5", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "AlientVault OTX MD5 Hash Indicators [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0ccdda50-76ce-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:27.014Z", + "version": "WzQ1NzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/142fb6c0-82a8-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/142fb6c0-82a8-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..bf55ff3b2377 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/142fb6c0-82a8-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,137 @@ +{ + "attributes": { + "description": "Malware Bazaar malware SHA1 hashes ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.malwarebazaar" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.malwarebazaar" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.hash.sha1" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.hash.sha1", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Malware Bazaar SHA1 Hashes [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 920.6666666666666 + } + ] + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "SHA1 Hash", + "field": "threatintel.indicator.file.hash.sha1", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Malware Bazaar SHA1 Hashes [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "142fb6c0-82a8-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:30.070Z", + "version": "WzQ2MjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1a0d5250-72e5-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1a0d5250-72e5-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..f9fc2390a2b3 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1a0d5250-72e5-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,165 @@ +{ + "attributes": { + "description": "Abuse malware SHA256 hashes ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abusemalware" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abusemalware" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.hash.sha256" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.hash.sha256", + "negate": false, + "type": "exists", + "value": "exists" + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.type" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "key": "threatintel.indicator.type", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse Malware SHA256 Hashes [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "SHA256 Hash", + "field": "threatintel.indicator.file.hash.sha256", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "File Type", + "field": "threatintel.indicator.file.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Abuse Malware SHA256 Hashes [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1a0d5250-72e5-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:29.041Z", + "version": "WzQ2MDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1a1c60c0-72d5-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1a1c60c0-72d5-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..b2e430cff4c5 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1a1c60c0-72d5-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,146 @@ +{ + "attributes": { + "description": "Types of indicators by dataset ingested by the threat intel Filebeat module. Top 10 datasets and top 10 indicator types.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "event.dataset" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "type": "exists", + "value": "exists" + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.type" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.type", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Indicator Type per Dataset [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.dataset", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "threatintel.indicator.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Indicator Type per Dataset [Filebeat Threat Intel]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1a1c60c0-72d5-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:32.145Z", + "version": "WzQ2NDksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1adff580-72ee-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1adff580-72ee-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..711442477602 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1adff580-72ee-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "Abuse URL domain indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abuseurl" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abuseurl" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.domain" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.domain", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse URL Indicator Domain [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Threat Indicator Domain", + "field": "threatintel.indicator.domain", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Abuse URL Indicator Domain [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1adff580-72ee-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:25.974Z", + "version": "WzQ1NTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1c969990-73c7-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1c969990-73c7-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..e2f3d6fda091 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1c969990-73c7-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "MISP SHA256 hash indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.misp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.misp" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.hash.sha256" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.hash.sha256", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "MISP SHA256 Hash Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "MISP SHA256 Hash Indicator", + "field": "threatintel.indicator.file.hash.sha256", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "MISP SHA256 Hash Indicators [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1c969990-73c7-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:31.083Z", + "version": "WzQ2NDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1d8002d0-82a7-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1d8002d0-82a7-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..328a64f0785b --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/1d8002d0-82a7-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,137 @@ +{ + "attributes": { + "description": "Malware Bazaar malware Import Table hashes ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.malwarebazaar" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.malwarebazaar" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.pe.imphash" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.pe.imphash", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Malware Bazaar Import Table Hashes [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 920.6666666666666 + } + ] + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Imphash Hash", + "field": "threatintel.indicator.file.pe.imphash", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Malware Bazaar Import Table Hashes [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1d8002d0-82a7-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:30.070Z", + "version": "WzQ2MjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/21ff17c0-82a6-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/21ff17c0-82a6-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..b3e12fb41934 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/21ff17c0-82a6-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,137 @@ +{ + "attributes": { + "description": "Malware Bazaar malware MD5 hashes ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.malwarebazaar" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.malwarebazaar" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.hash.md5" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.hash.md5", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Malware Bazaar MD5 Hashes [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 920.6666666666666 + } + ] + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "MD5 Hash", + "field": "threatintel.indicator.file.hash.md5", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Malware Bazaar MD5 Hashes [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "21ff17c0-82a6-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:30.070Z", + "version": "WzQ2MjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/302cd5b0-76cd-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/302cd5b0-76cd-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..0e395ef24310 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/302cd5b0-76cd-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "AlienVault OTX IP indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.otx" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.otx" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.ip" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.ip", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "AlientVault OTX IP Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "AlienVault OTX IP Indicator", + "field": "threatintel.indicator.ip", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "AlientVault OTX IP Indicators [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "302cd5b0-76cd-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:27.014Z", + "version": "WzQ1NjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/346136f0-76d5-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/346136f0-76d5-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..3edcd79c797f --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/346136f0-76d5-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "AlienVault OTX URL indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.otx" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.otx" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.url.original" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.url.original", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "AlienVault OTX URL Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "AlienVault OTX URL Indicator", + "field": "threatintel.indicator.url.original", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "AlienVault OTX URL Indicators [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "346136f0-76d5-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:27.014Z", + "version": "WzQ1NjksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/40d61ab0-72e6-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/40d61ab0-72e6-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..f8d2e419a2b5 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/40d61ab0-72e6-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "description": "Abuse malware file types ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse Malware File Types [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "threatintel.indicator.file.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Abuse Malware File Types [Filebeat Threat Intel]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "40d61ab0-72e6-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:29.041Z", + "version": "WzQ2MDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/41100be0-72e5-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/41100be0-72e5-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..d1e07d3fbbbd --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/41100be0-72e5-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,165 @@ +{ + "attributes": { + "description": "Abuse malware ssdeep hashes ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abusemalware" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abusemalware" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.hash.ssdeep" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.hash.ssdeep", + "negate": false, + "type": "exists", + "value": "exists" + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.type" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "key": "threatintel.indicator.type", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse Malware ssdeep Hashes [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "ssdeep Hash", + "field": "threatintel.indicator.file.hash.ssdeep", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "File Type", + "field": "threatintel.indicator.file.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Abuse Malware ssdeep Hashes [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "41100be0-72e5-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:29.041Z", + "version": "WzQ2MDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/418e5a30-73c2-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/418e5a30-73c2-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..9334df552741 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/418e5a30-73c2-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "description": "Total number of Abuse URL indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.misp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.misp" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "MISP Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "MISP Indicators" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "MISP Indicators [Filebeat Threat Intel]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "418e5a30-73c2-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:31.083Z", + "version": "WzQ2MzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/44020830-7394-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/44020830-7394-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..3bbb08046347 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/44020830-7394-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "description": "Total number of Abuse URL indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abuseurl" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abuseurl" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse URL Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Abuse URL Indicators" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Abuse URL Indicators [Filebeat Threat Intel]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "44020830-7394-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:25.974Z", + "version": "WzQ1NTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/49f0c060-76cd-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/49f0c060-76cd-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..79f94d2a0466 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/49f0c060-76cd-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "AlienVault OTX domain indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.otx" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.otx" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.domain" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.domain", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "AlientVault OTX Domain Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "AlienVault OTX IP Indicator", + "field": "threatintel.indicator.domain", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "AlientVault OTX Domain Indicators [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "49f0c060-76cd-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:27.014Z", + "version": "WzQ1NjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/4e5d25c0-76ce-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/4e5d25c0-76ce-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..f44f7a32fa3b --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/4e5d25c0-76ce-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "AlienVault OTX SHA256 hash indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.otx" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.otx" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.hash.sha256" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.hash.sha256", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "AlientVault OTX SHA256 Hash Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "AlienVault OTX SHA256 Hash Indicator", + "field": "threatintel.indicator.file.hash.sha256", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "AlientVault OTX SHA256 Hash Indicators [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4e5d25c0-76ce-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:27.014Z", + "version": "WzQ1NzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/55b5c280-76b7-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/55b5c280-76b7-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..79ea879c3752 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/55b5c280-76b7-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "MISP tags for indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.misp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.misp" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "tags" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "tags", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "MISP Tags [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "MISP Tags", + "field": "tags", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "MISP Tags [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "55b5c280-76b7-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:31.083Z", + "version": "WzQ2MzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/57faae10-73c5-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/57faae10-73c5-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..927f457e351e --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/57faae10-73c5-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,140 @@ +{ + "attributes": { + "description": "MISP provider for indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.misp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.misp" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.provider" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.provider", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "MISP Indicator Provider [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "colors": { + "misp": "#5195CE" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "threatintel.indicator.provider", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "MISP Indicator Provider [Filebeat Threat Intel]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "57faae10-73c5-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:31.083Z", + "version": "WzQ2NDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/5b4877b0-82a6-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/5b4877b0-82a6-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..db8a7fcef7e3 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/5b4877b0-82a6-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,137 @@ +{ + "attributes": { + "description": "Malware Bazaar malware SHA256 hashes ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.malwarebazaar" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.malwarebazaar" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.hash.sha256" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.hash.sha256", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Malware Bazaar SHA256 Hashes [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 920.6666666666666 + } + ] + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "SHA256 Hash", + "field": "threatintel.indicator.file.hash.sha256", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Malware Bazaar SHA256 Hashes [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5b4877b0-82a6-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:30.070Z", + "version": "WzQ2MjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/5f955bb0-7394-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/5f955bb0-7394-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..11b941e1cd70 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/5f955bb0-7394-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "description": "Total number of Abuse Malware indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abusemalware" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abusemalware" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse Malware Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Abuse Malware Indicators" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Abuse Malware Indicators [Filebeat Threat Intel]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5f955bb0-7394-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:29.041Z", + "version": "WzQ2MDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/6077fd00-76d5-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/6077fd00-76d5-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..4e9740c9a101 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/6077fd00-76d5-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "AlienVault OTX URI indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.otx" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.otx" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.url.path" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.url.path", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "AlienVault OTX URI Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "AlienVault OTX URI Indicator", + "field": "threatintel.indicator.url.path", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "AlienVault OTX URI Indicators [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6077fd00-76d5-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:27.014Z", + "version": "WzQ1NzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/62f6daa0-72ee-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/62f6daa0-72ee-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..c0879c8aff75 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/62f6daa0-72ee-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "Abuse URL full URL indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abuseurl" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abuseurl" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.url.full" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.url.full", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse URL Indicator URLs [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Threat Indicator URL", + "field": "threatintel.indicator.url.full", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Abuse URL Indicator URLs [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "62f6daa0-72ee-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:25.974Z", + "version": "WzQ1NTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/6ce04320-72d1-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/6ce04320-72d1-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..fe5223ef2f04 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/6ce04320-72d1-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,104 @@ +{ + "attributes": { + "description": "Total number of indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "event.dataset" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Total Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Total Indicators" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Total Indicators [Filebeat Threat Intel]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6ce04320-72d1-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:32.145Z", + "version": "WzQ2NTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/737d4f30-82ac-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/737d4f30-82ac-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..734dfce2fd9e --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/737d4f30-82ac-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "description": "Total number of Malware Bazaar indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.malwarebazaar" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.malwarebazaar" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Malware Bazaar Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Malware Bazaar Indicators" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Malware Bazaar Indicators [Filebeat Threat Intel]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "737d4f30-82ac-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:30.070Z", + "version": "WzQ2MTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/7546ac40-82a6-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/7546ac40-82a6-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..479d7e408e3c --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/7546ac40-82a6-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,137 @@ +{ + "attributes": { + "description": "Malware Bazaar malware ssdeep hashes ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.malwarebazaar" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.malwarebazaar" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.hash.ssdeep" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.hash.ssdeep", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Malware Bazaar ssdeep Hashes [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 920.6666666666666 + } + ] + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "ssdeep Hash", + "field": "threatintel.indicator.file.hash.ssdeep", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Malware Bazaar ssdeep Hashes [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7546ac40-82a6-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:30.070Z", + "version": "WzQ2MjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/7582b030-73c6-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/7582b030-73c6-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..6767b7e0d19f --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/7582b030-73c6-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "MISP domain indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.misp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.misp" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.domain" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.domain", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "MISP Domain Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "MISP Domain Indicator", + "field": "threatintel.indicator.domain", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "MISP Domain Indicators [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7582b030-73c6-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:31.083Z", + "version": "WzQ2MzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/786546d0-82a5-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/786546d0-82a5-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..bc70c5824daa --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/786546d0-82a5-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,137 @@ +{ + "attributes": { + "description": "Malware Bazaar malware TLSH hashes ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.malwarebazaar" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.malwarebazaar" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.hash.tlsh" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.hash.tlsh", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Malware Bazaar TLSH Hashes [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 920.6666666666666 + } + ] + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "TLSH Hash", + "field": "threatintel.indicator.file.hash.tlsh", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Malware Bazaar TLSH Hashes [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "786546d0-82a5-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:30.070Z", + "version": "WzQ2MjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/79da77d0-72e5-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/79da77d0-72e5-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..50bed6e06e48 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/79da77d0-72e5-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,165 @@ +{ + "attributes": { + "description": "Abuse malware TLSH hashes ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abusemalware" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abusemalware" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.hash.tlsh" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.hash.tlsh", + "negate": false, + "type": "exists", + "value": "exists" + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.type" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "key": "threatintel.indicator.type", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse Malware TLSH Hashes [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "TLSH Hash", + "field": "threatintel.indicator.file.hash.tlsh", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "File Type", + "field": "threatintel.indicator.file.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Abuse Malware TLSH Hashes [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "79da77d0-72e5-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:29.041Z", + "version": "WzQ2MDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/7c7d3750-73c3-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/7c7d3750-73c3-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..6ca2835a167e --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/7c7d3750-73c3-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,134 @@ +{ + "attributes": { + "description": "Types of MISP indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.misp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.misp" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.type" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.type", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "MISP Indicator Type [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "threatintel.indicator.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "MISP Indicator Type [Filebeat Threat Intel]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7c7d3750-73c3-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:31.083Z", + "version": "WzQ2MzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/7cbe5900-82ab-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/7cbe5900-82ab-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..08ea90539c1e --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/7cbe5900-82ab-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,135 @@ +{ + "attributes": { + "description": "First time indicators ingested by the threat intel Filebeat module have been seen by Malware Bazaar", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.malwarebazaar" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.malwarebazaar" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.first_seen" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.first_seen", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Malware Bazaar Indicator First Seen [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": 0, + "direction": "desc" + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Indicator First Seen", + "field": "threatintel.indicator.first_seen", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Malware Bazaar Indicator First Seen [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7cbe5900-82ab-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:30.070Z", + "version": "WzQ2MjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/81f16940-72d3-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/81f16940-72d3-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..237a5a7313fe --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/81f16940-72d3-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "description": "Total number of indicators by dataset ingested by the threat intel Filebeat module. Top 10 datasets.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "event.dataset" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Total Indicators per Dataset [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.dataset", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Total Indicators per Dataset [Filebeat Threat Intel]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "81f16940-72d3-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:32.145Z", + "version": "WzQ2NTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/87980f70-72ec-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/87980f70-72ec-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..3001eca60822 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/87980f70-72ec-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,207 @@ +{ + "attributes": { + "description": "Abuse URL threat of indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abuseurl" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abuseurl" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.abuseurl.threat" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.abuseurl.threat", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse URL Threat [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "colors": { + "Count": "#E24D42" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Abuse URL Threat", + "field": "threatintel.abuseurl.threat", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 200 + }, + "position": "left", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": { + "show": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": true, + "rotate": 75, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "bottom", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Abuse URL Threat [Filebeat Threat Intel]", + "type": "horizontal_bar" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "87980f70-72ec-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:25.974Z", + "version": "WzQ1NTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/8b2a64a0-82a8-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/8b2a64a0-82a8-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..8fd2ef65b070 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/8b2a64a0-82a8-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,134 @@ +{ + "attributes": { + "description": "Malware Bazaar file extensions ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.malwarebazaar" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.malwarebazaar" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.extension" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.extension", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Malware Bazaar File Extensions [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "threatintel.indicator.file.extension", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Malware Bazaar File Extensions [Filebeat Threat Intel]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8b2a64a0-82a8-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:30.070Z", + "version": "WzQ2MTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/9047e8b0-72de-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/9047e8b0-72de-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..cfa8fad37893 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/9047e8b0-72de-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,159 @@ +{ + "attributes": { + "description": "Total number of indicators by provider ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Total Indicators per Provider [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "colors": { + "Count": "#806EB7" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Threat Indicator Provider", + "field": "threatintel.indicator.provider", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 200 + }, + "position": "left", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "valueAxis": "ValueAxis-1" + }, + "isVislibVis": true, + "labels": { + "show": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": true, + "rotate": 75, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "bottom", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Total Indicators per Provider [Filebeat Threat Intel]", + "type": "horizontal_bar" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9047e8b0-72de-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:32.145Z", + "version": "WzQ2NTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/9109e490-76cd-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/9109e490-76cd-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..3e1c8861cedf --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/9109e490-76cd-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "AlienVault OTX URL domain indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.otx" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.otx" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.url.domain" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.url.domain", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "AlienVault OTX URL Domain Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "AlienVault OTX URL Domain Indicator", + "field": "threatintel.indicator.url.domain", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "AlienVault OTX URL Domain Indicators [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9109e490-76cd-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:27.014Z", + "version": "WzQ1NzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/92961600-7621-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/92961600-7621-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..f9a63566f096 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/92961600-7621-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,104 @@ +{ + "attributes": { + "description": "Feed and provider selector for indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Feed and Indicator Selector [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "event.dataset", + "id": "1614117070660", + "indexPatternRefName": "control_0_index_pattern", + "label": "Feed Name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "threatintel.indicator.provider", + "id": "1614117093181", + "indexPatternRefName": "control_1_index_pattern", + "label": "Indicator Provider", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "threatintel.indicator.type", + "id": "1614117117360", + "indexPatternRefName": "control_2_index_pattern", + "label": "Indicator Type", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": false, + "useTimeFilter": false + }, + "title": "Feed and Indicator Selector [Filebeat Threat Intel]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "92961600-7621-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:32.145Z", + "version": "WzQ2NDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/95f384b0-76d8-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/95f384b0-76d8-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..a9c17ee0611b --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/95f384b0-76d8-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,159 @@ +{ + "attributes": { + "description": "AlienVault OTX URL scheme ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "AlientVault OTX URL Scheme [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "colors": { + "http": "#65C5DB", + "https": "#F9934E" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "", + "field": "threatintel.indicator.url.scheme", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 200 + }, + "position": "left", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": true + }, + "isVislibVis": true, + "labels": { + "show": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": true, + "rotate": 75, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "bottom", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "AlientVault OTX URL Scheme [Filebeat Threat Intel]", + "type": "horizontal_bar" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "95f384b0-76d8-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:27.014Z", + "version": "WzQ1NjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/98d42ee0-76b6-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/98d42ee0-76b6-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..0c5102dfd149 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/98d42ee0-76b6-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "Tags for Abuse URL indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abuseurl" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abuseurl" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.abuseurl.tags" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.abuseurl.tags", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse URL Tags [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Abuse URL Tags", + "field": "threatintel.abuseurl.tags", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Abuse URL Tags [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "98d42ee0-76b6-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:25.974Z", + "version": "WzQ1NTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/a09329d0-73c6-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/a09329d0-73c6-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..d81abd72e48e --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/a09329d0-73c6-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "MISP IP indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.misp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.misp" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.ip" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.ip", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "MISP IP Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "MISP IP Indicator", + "field": "threatintel.indicator.ip", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "MISP IP Indicators [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a09329d0-73c6-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:31.083Z", + "version": "WzQ2MzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/a1616dd0-72eb-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/a1616dd0-72eb-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..419dcc323d14 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/a1616dd0-72eb-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,165 @@ +{ + "attributes": { + "description": "Blacklist status of URLs ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abuseurl" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abuseurl" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.abuseurl.blacklists.spamhaus_dbl" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.abuseurl.blacklists.spamhaus_dbl", + "negate": false, + "type": "exists", + "value": "exists" + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.abuseurl.blacklists.surbl" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "key": "threatintel.abuseurl.blacklists.surbl", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse URL Blacklist Status [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Spamhaus DBL Blacklist Status", + "field": "threatintel.abuseurl.blacklists.spamhaus_dbl", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "SURBL Blacklist Status", + "field": "threatintel.abuseurl.blacklists.surbl", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Abuse URL Blacklist Status [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a1616dd0-72eb-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:25.974Z", + "version": "WzQ1NjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/a7b6e910-72ed-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/a7b6e910-72ed-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..007929c6d0aa --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/a7b6e910-72ed-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,223 @@ +{ + "attributes": { + "description": "Abuse URL scheme of indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abuseurl" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abuseurl" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.url.scheme" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.url.scheme", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse URL Scheme [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "colors": { + "http": "#65C5DB", + "https": "#F9934E" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "URL Scheme", + "field": "threatintel.indicator.url.scheme", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "threatintel.indicator.url.scheme", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": { + "show": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Abuse URL Scheme [Filebeat Threat Intel]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a7b6e910-72ed-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:25.974Z", + "version": "WzQ1NTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/ad55b1e0-73c8-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/ad55b1e0-73c8-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..a0719389fc87 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/ad55b1e0-73c8-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,174 @@ +{ + "attributes": { + "description": "TLP of MISP indicators ingested by the threat intel Filebeat module. Top 10 datasets.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "MISP Indicator TLP [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "colors": { + "green": "#7EB26D", + "white": "#E0F9D7" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Indicator Marking TLP", + "field": "threatintel.indicator.marking.tlp", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "threatintel.indicator.marking.tlp", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": { + "show": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "MISP Indicator TLP [Filebeat Threat Intel]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ad55b1e0-73c8-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:31.083Z", + "version": "WzQ2MzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/aebde030-72d2-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/aebde030-72d2-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..0d3c70a156f3 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/aebde030-72d2-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,199 @@ +{ + "attributes": { + "description": "TLP of indicators ingested by the threat intel Filebeat module. Top 10 datasets.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.marking.tlp" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "threatintel.indicator.marking.tlp", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Indicator TLP [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "colors": { + "green": "#7EB26D", + "white": "#E0F9D7" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Indicator Marking TLP", + "field": "threatintel.indicator.marking.tlp", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "threatintel.indicator.marking.tlp", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": { + "show": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Indicator TLP [Filebeat Threat Intel]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "aebde030-72d2-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:32.145Z", + "version": "WzQ2NTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/b5bd3a70-76ce-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/b5bd3a70-76ce-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..2af4a7b8348e --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/b5bd3a70-76ce-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "description": "Total number of AlienVault OTX indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.otx" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.otx" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "AlienVault OTX Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "AlienVault OTX Indicators" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "AlienVault OTX Indicators [Filebeat Threat Intel]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b5bd3a70-76ce-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:27.014Z", + "version": "WzQ1NjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/b9533f50-72e5-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/b9533f50-72e5-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..dd4771dced6a --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/b9533f50-72e5-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,165 @@ +{ + "attributes": { + "description": "Abuse malware import table hash by file type ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abusemalware" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abusemalware" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.pe.imphash" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.pe.imphash", + "negate": false, + "type": "exists", + "value": "exists" + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.type" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "key": "threatintel.indicator.type", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse Malware Import Table Hash [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Imphash Hash", + "field": "threatintel.indicator.file.pe.imphash", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "File Type", + "field": "threatintel.indicator.file.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Abuse Malware Import Table Hash [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b9533f50-72e5-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:29.041Z", + "version": "WzQ2MDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/b9aa1d70-72db-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/b9aa1d70-72db-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..db382a67fac6 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/b9aa1d70-72db-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,195 @@ +{ + "attributes": { + "description": "Timeline of indicators by dataset ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "event.dataset" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Indicator Ingest Timeline per Dataset [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Indicators per Dataset" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Ingest Timestamp", + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "now-90d", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "event.dataset", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": {}, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Indicators per Dataset" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "lineWidth": 2, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "area", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Indicators per Dataset" + }, + "type": "value" + } + ] + }, + "title": "Indicator Ingest Timeline per Dataset [Filebeat Threat Intel]", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b9aa1d70-72db-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:32.145Z", + "version": "WzQ2NTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/bc4790b0-82aa-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/bc4790b0-82aa-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..f1fc5472b6b2 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/bc4790b0-82aa-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,135 @@ +{ + "attributes": { + "description": "Number of times Malware Bazaar indicators ingested by the threat intel Filebeat module have been downloaded.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.malwarebazaar" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.malwarebazaar" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.malwarebazaar.intelligence.downloads" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.malwarebazaar.intelligence.downloads", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Malware Bazaar Downloads [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": 0, + "direction": "desc" + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Malware Bazaar Downloads", + "field": "threatintel.malwarebazaar.intelligence.downloads", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Malware Bazaar Downloads [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bc4790b0-82aa-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:30.070Z", + "version": "WzQ2MjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/bf3dfde0-73c3-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/bf3dfde0-73c3-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..f65bf82d5b37 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/bf3dfde0-73c3-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,140 @@ +{ + "attributes": { + "description": "MISP indicator ingested by the threat intel Filebeat module has been published.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.misp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.misp" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.misp.published" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.misp.published", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "MISP Indicator Published [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "colors": { + "true": "#7EB26D" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "threatintel.misp.published", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 3 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": true, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "MISP Indicator Published [Filebeat Threat Intel]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bf3dfde0-73c3-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:31.083Z", + "version": "WzQ2MzksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c049e1c0-72d5-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c049e1c0-72d5-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..ddaf0b01a6b1 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c049e1c0-72d5-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "Total number of datasets reflected by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "event.dataset" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Total Datasets [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Total Datasets", + "field": "event.dataset" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Total Datasets [Filebeat Threat Intel]", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c049e1c0-72d5-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:32.145Z", + "version": "WzQ2NTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c102b0f0-73c6-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c102b0f0-73c6-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..4ee6602cf678 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c102b0f0-73c6-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "MISP URL indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.misp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.misp" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.url.full" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.url.full", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "MISP URL Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "MISP URL Indicator", + "field": "threatintel.indicator.url.full", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "MISP URL Indicators [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c102b0f0-73c6-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:31.083Z", + "version": "WzQ2MzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c369c190-72e4-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c369c190-72e4-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..5f1626254c43 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c369c190-72e4-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "Abuse malware event references ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abusemalware" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abusemalware" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "event.reference" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "event.reference", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse Malware Event Reference [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Abuse Malware Reference URL", + "field": "event.reference", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Abuse Malware Event Reference [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c369c190-72e4-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:29.041Z", + "version": "WzQ2MDksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c7d5db50-82a8-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c7d5db50-82a8-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..225ca993710b --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c7d5db50-82a8-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,207 @@ +{ + "attributes": { + "description": "Malware Bazaar provider of indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.malwarebazaar" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.malwarebazaar" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.provider" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.provider", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Malware Bazaar Indicator Provider [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "colors": { + "Count": "#705DA0" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Indicator Provider", + "field": "threatintel.indicator.provider", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 200 + }, + "position": "left", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": { + "show": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": true, + "rotate": 75, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "bottom", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Malware Bazaar Indicator Provider [Filebeat Threat Intel]", + "type": "horizontal_bar" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c7d5db50-82a8-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:30.070Z", + "version": "WzQ2MTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c813c5d0-72dd-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c813c5d0-72dd-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..18539863d1ac --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/c813c5d0-72dd-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,195 @@ +{ + "attributes": { + "description": "Timeline of indicators by type ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.type" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "threatintel.indicator.type", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Indicator Ingest Timeline per Type [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Count of Indicator by Type" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Ingest Timestamp", + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "now-90d", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "threatintel.indicator.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": {}, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count of Indicator by Type" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "lineWidth": 2, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "area", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "area", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count of Indicator by Type" + }, + "type": "value" + } + ] + }, + "title": "Indicator Ingest Timeline per Type [Filebeat Threat Intel]", + "type": "area" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c813c5d0-72dd-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:32.145Z", + "version": "WzQ2NTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/d22c1090-82a5-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/d22c1090-82a5-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..107bf321eacc --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/d22c1090-82a5-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,137 @@ +{ + "attributes": { + "description": "Malware Bazaar malware file MIME type ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.malwarebazaar" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.malwarebazaar" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.mime_type" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.mime_type", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Malware Bazaar File MIME Type [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 920.6666666666666 + } + ] + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "File MIME Type", + "field": "threatintel.indicator.file.mime_type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Malware Bazaar File MIME Type [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d22c1090-82a5-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:30.070Z", + "version": "WzQ2MTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/d5d76c60-72ee-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/d5d76c60-72ee-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..26f577c28648 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/d5d76c60-72ee-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "Abuse URL event references ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abuseurl" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abuseurl" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.url.full" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.url.full", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse URL Event Reference [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Abuse URL Reference URL", + "field": "event.reference", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Abuse URL Event Reference [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d5d76c60-72ee-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:25.974Z", + "version": "WzQ1NTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/dbd199d0-82aa-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/dbd199d0-82aa-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..bd6250bdc9b2 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/dbd199d0-82aa-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,135 @@ +{ + "attributes": { + "description": "Number of times Malware Bazaar indicators ingested by the threat intel Filebeat module have been uploaded.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.malwarebazaar" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.malwarebazaar" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.malwarebazaar.intelligence.uploads" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.malwarebazaar.intelligence.uploads", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Malware Bazaar Uploads [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": 0, + "direction": "desc" + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Malware Bazaar Uploads", + "field": "threatintel.malwarebazaar.intelligence.uploads", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Malware Bazaar Uploads [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dbd199d0-82aa-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:30.070Z", + "version": "WzQ2MjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/ea5879c0-72eb-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/ea5879c0-72eb-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..3674297d1586 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/ea5879c0-72eb-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "Status of URLs ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abuseurl" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abuseurl" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.abuseurl.url_status" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.abuseurl.url_status", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse URL URL Status [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "URL Status", + "field": "threatintel.abuseurl.url_status", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Abuse URL URL Status [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ea5879c0-72eb-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:25.974Z", + "version": "WzQ1NTksMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/eba4ec60-72ea-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/eba4ec60-72ea-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..e05220ceeabd --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/eba4ec60-72ea-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,141 @@ +{ + "attributes": { + "description": "Hosting provider notified for indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abuseurl" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abuseurl" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.abuseurl.larted" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.abuseurl.larted", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse URL Hosting Provider Notified [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "colors": { + "false": "#E24D42" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Hosting Provider Notified", + "field": "threatintel.abuseurl.larted", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 2 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Abuse URL Hosting Provider Notified [Filebeat Threat Intel]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "eba4ec60-72ea-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:25.974Z", + "version": "WzQ1NTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/ec68c4a0-73c6-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/ec68c4a0-73c6-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..4a7c4dfa7406 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/ec68c4a0-73c6-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "MISP MD5 hash indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.misp" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.misp" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.file.hash.md5" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.file.hash.md5", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "MISP MD5 Hash Indicators [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "MISP MD5 Hash Indicator", + "field": "threatintel.indicator.file.hash.md5", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "MISP MD5 Hash Indicators [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ec68c4a0-73c6-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:31.083Z", + "version": "WzQ2NDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/ecf74b10-72ec-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/ecf74b10-72ec-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..ea0aef5cb860 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/ecf74b10-72ec-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,206 @@ +{ + "attributes": { + "description": "Abuse URL provider of indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abuseurl" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abuseurl" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.abuseurl.threat" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.abuseurl.threat", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse URL Indicator Provider [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "colors": { + "Count": "#705DA0" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "threatintel.indicator.provider", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 200 + }, + "position": "left", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": { + "show": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": true, + "rotate": 75, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "bottom", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Abuse URL Indicator Provider [Filebeat Threat Intel]", + "type": "horizontal_bar" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ecf74b10-72ec-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:25.974Z", + "version": "WzQ1NTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f13f5650-df5b-11eb-8f2b-753caedf727d.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f13f5650-df5b-11eb-8f2b-753caedf727d.json new file mode 100644 index 000000000000..4b40f60a1594 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f13f5650-df5b-11eb-8f2b-753caedf727d.json @@ -0,0 +1,42 @@ +{ + "attributes": { + "description": "Navigation pane for the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Threat Intel Module Navigation [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "**Filebeat Threat Intel Module Navigation**\n\n[Abuse Malware Overview](#/dashboard/5ba16340-72e6-11eb-a3e3-b3cc7c78a70f) \n[Abuse URL Overview](#/dashboard/65fa6bc0-72f0-11eb-a3e3-b3cc7c78a70f) \n[AlienVault Overview](#/dashboard/53e4e630-76cf-11eb-a3e3-b3cc7c78a70f) \n[Anomali Overview](#/dashboard/68c48a30-739e-11eb-a3e3-b3cc7c78a70f) \n[Malware Bazaar Overview](#/dashboard/dee7be00-82ab-11eb-ac13-d5ca87cb8fa2) \n[MISP Overview](#/dashboard/47e6fdc0-76b9-11eb-a3e3-b3cc7c78a70f) \n[Recorded Future Overview](#/dashboard/894dd3e0-df57-11eb-8f2b-753caedf727d) ", + "openLinksInNewTab": false + }, + "title": "Threat Intel Module Navigation [Filebeat Threat Intel]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f13f5650-df5b-11eb-8f2b-753caedf727d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:32.145Z", + "version": "WzQ2NDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f33125b0-76d8-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f33125b0-76d8-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..3d473b4e17de --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f33125b0-76d8-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,134 @@ +{ + "attributes": { + "description": "AlienVault OTX indicator types ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.otx" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.otx" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.indicator.type" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.indicator.type", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "AlientVault OTX Indicator Types [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "threatintel.indicator.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "AlientVault OTX Indicator Types [Filebeat Threat Intel]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f33125b0-76d8-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:27.014Z", + "version": "WzQ1NjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f91e9620-82a8-11eb-ac13-d5ca87cb8fa2.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f91e9620-82a8-11eb-ac13-d5ca87cb8fa2.json new file mode 100644 index 000000000000..958c15dba69e --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f91e9620-82a8-11eb-ac13-d5ca87cb8fa2.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "description": "Tags for Malware Bazaar indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.malwarebazaar" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.malwarebazaar" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.malwarebazaar.tags" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.malwarebazaar.tags", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Malware Bazaar Tags [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Malware Bazaar Tags", + "field": "threatintel.malwarebazaar.tags", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Malware Bazaar Tags [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f91e9620-82a8-11eb-ac13-d5ca87cb8fa2", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:30.070Z", + "version": "WzQ2MTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f9c6ba80-72e5-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f9c6ba80-72e5-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..21660b248e40 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f9c6ba80-72e5-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,176 @@ +{ + "attributes": { + "description": "Abuse malware VirusTotal references ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "threatintel.abusemalware" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.dataset": "threatintel.abusemalware" + } + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.abusemalware.virustotal.link" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "threatintel.abusemalware.virustotal.link", + "negate": false, + "type": "exists", + "value": "exists" + } + }, + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "threatintel.abusemalware.virustotal.result" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "key": "threatintel.abusemalware.virustotal.result", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Abuse Malware VirusTotal References [Filebeat Threat Intel]", + "uiStateJSON": { + "vis": { + "params": { + "colWidth": [ + { + "colIndex": 0, + "width": 937.6666666666665 + } + ] + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "VirusTotal URL", + "field": "threatintel.abusemalware.virustotal.link", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "VirusTotal Result", + "field": "threatintel.abusemalware.virustotal.result", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": false, + "showTotal": false, + "totalFunc": "sum" + }, + "title": "Abuse Malware VirusTotal References [Filebeat Threat Intel]", + "type": "table" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f9c6ba80-72e5-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + }, + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[2].meta.index", + "type": "index-pattern" + }, + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:29.041Z", + "version": "WzQ2MTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f9f89660-72d9-11eb-a3e3-b3cc7c78a70f.json b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f9f89660-72d9-11eb-a3e3-b3cc7c78a70f.json new file mode 100644 index 000000000000..7c7701140d26 --- /dev/null +++ b/x-pack/filebeat/module/threatintel/_meta/kibana/7/visualization/f9f89660-72d9-11eb-a3e3-b3cc7c78a70f.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "Tags for indicators ingested by the threat intel Filebeat module.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Indicator Tag Cloud [Filebeat Threat Intel]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "exclude": "forwarded|threatintel-anomali|threatintel-otx|threatintel-abuseurls|threatintel-abusemalware", + "field": "tags", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 100 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "maxFontSize": 30, + "minFontSize": 5, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": false + }, + "title": "Indicator Tag Cloud [Filebeat Threat Intel]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f9f89660-72d9-11eb-a3e3-b3cc7c78a70f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "6acbb070-72d0-11eb-a3e3-b3cc7c78a70f", + "name": "search_0", + "type": "search" + }, + { + "id": "d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "name": "tag-d6ef8f20-70a9-11eb-a3e3-b3cc7c78a70f", + "type": "tag" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:34:32.145Z", + "version": "WzQ2NTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/zeek/_meta/kibana/7/dashboard/7cbb5410-3700-11e9-aa6d-ff445a78330c.json b/x-pack/filebeat/module/zeek/_meta/kibana/7/dashboard/7cbb5410-3700-11e9-aa6d-ff445a78330c.json new file mode 100644 index 000000000000..881937ef749f --- /dev/null +++ b/x-pack/filebeat/module/zeek/_meta/kibana/7/dashboard/7cbb5410-3700-11e9-aa6d-ff445a78330c.json @@ -0,0 +1,194 @@ +{ + "attributes": { + "description": "Overview of Zeek", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "1", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_0", + "version": "7.0.0-beta1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2", + "w": 16, + "x": 0, + "y": 20 + }, + "panelIndex": "2", + "panelRefName": "panel_1", + "version": "7.0.0-beta1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 16, + "x": 16, + "y": 20 + }, + "panelIndex": "3", + "panelRefName": "panel_2", + "version": "7.0.0-beta1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "4", + "w": 16, + "x": 32, + "y": 20 + }, + "panelIndex": "4", + "panelRefName": "panel_3", + "version": "7.0.0-beta1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "5", + "w": 16, + "x": 0, + "y": 32 + }, + "panelIndex": "5", + "panelRefName": "panel_4", + "version": "7.0.0-beta1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6", + "w": 16, + "x": 16, + "y": 32 + }, + "panelIndex": "6", + "panelRefName": "panel_5", + "version": "7.0.0-beta1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "7", + "w": 16, + "x": 32, + "y": 32 + }, + "panelIndex": "7", + "panelRefName": "panel_6", + "version": "7.0.0-beta1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "8", + "w": 48, + "x": 0, + "y": 44 + }, + "panelIndex": "8", + "panelRefName": "panel_7", + "version": "7.0.0-beta1" + } + ], + "timeRestore": false, + "title": "[Filebeat Zeek] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "7cbb5410-3700-11e9-aa6d-ff445a78330c", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "f469f230-370c-11e9-aa6d-ff445a78330c", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "1df7ea80-370d-11e9-aa6d-ff445a78330c", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "466e5850-370d-11e9-aa6d-ff445a78330c", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "649acd40-370d-11e9-aa6d-ff445a78330c", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "9436c270-370d-11e9-aa6d-ff445a78330c", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "bec2f0e0-370d-11e9-aa6d-ff445a78330c", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "e042fda0-370d-11e9-aa6d-ff445a78330c", + "name": "panel_6", + "type": "visualization" + }, + { + "id": "f8c40810-370d-11e9-aa6d-ff445a78330c", + "name": "panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:33:52.321Z", + "version": "WzQzMjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/zeek/_meta/kibana/7/dashboard/Filebeat-Zeek-Overview.ndjson b/x-pack/filebeat/module/zeek/_meta/kibana/7/dashboard/Filebeat-Zeek-Overview.ndjson deleted file mode 100644 index 9e1871537d63..000000000000 --- a/x-pack/filebeat/module/zeek/_meta/kibana/7/dashboard/Filebeat-Zeek-Overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Destination Geo [Filebeat Zeek]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"autoPrecision\":true,\"field\":\"destination.geo.location\",\"isFilteredByCollar\":true,\"mapCenter\":[0,0],\"mapZoom\":2,\"precision\":2,\"useGeocentroid\":true},\"schema\":\"segment\",\"type\":\"geohash_grid\"}],\"params\":{\"addTooltip\":true,\"colorSchema\":\"Yellow to Red\",\"dimensions\":{\"geocentroid\":null,\"geohash\":null,\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"heatClusterSize\":1.5,\"isDesaturated\":true,\"legendPosition\":\"bottomright\",\"mapCenter\":[0,0],\"mapType\":\"Scaled Circle Markers\",\"mapZoom\":2,\"wms\":{\"enabled\":false,\"options\":{\"format\":\"image/png\",\"transparent\":true}}},\"title\":\"Destination Geo [Filebeat Zeek]\",\"type\":\"tile_map\"}"},"coreMigrationVersion":"8.0.0","id":"f469f230-370c-11e9-aa6d-ff445a78330c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Network Transport [Filebeat Zeek]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.transport\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Network Transport [Filebeat Zeek]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"1df7ea80-370d-11e9-aa6d-ff445a78330c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Network Application [Filebeat Zeek]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.application\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Network Application [Filebeat Zeek]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"466e5850-370d-11e9-aa6d-ff445a78330c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Network Traffic Direction [Filebeat Zeek]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"network.direction\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Network Traffic Direction [Filebeat Zeek]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"649acd40-370d-11e9-aa6d-ff445a78330c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top DNS Domains [Filebeat Zeek]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"zeek.dns.query\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top DNS Domains [Filebeat Zeek]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"9436c270-370d-11e9-aa6d-ff445a78330c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top URL Domains [Filebeat Zeek]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"url.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top URL Domains [Filebeat Zeek]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"bec2f0e0-370d-11e9-aa6d-ff445a78330c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Top SSL Servers [Filebeat Zeek]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"zeek.ssl.server.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top SSL Servers [Filebeat Zeek]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"e042fda0-370d-11e9-aa6d-ff445a78330c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"filebeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of Sessions Overtime [Filebeat Zeek]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"filebeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Number of Sessions Overtime [Filebeat Zeek]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f8c40810-370d-11e9-aa6d-ff445a78330c","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjgsMV0="} -{"attributes":{"description":"Overview of Zeek","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.0.0-beta1\",\"gridData\":{\"h\":20,\"i\":\"1\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-beta1\",\"gridData\":{\"h\":12,\"i\":\"2\",\"w\":16,\"x\":0,\"y\":20},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-beta1\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":16,\"x\":16,\"y\":20},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-beta1\",\"gridData\":{\"h\":12,\"i\":\"4\",\"w\":16,\"x\":32,\"y\":20},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-beta1\",\"gridData\":{\"h\":12,\"i\":\"5\",\"w\":16,\"x\":0,\"y\":32},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-beta1\",\"gridData\":{\"h\":12,\"i\":\"6\",\"w\":16,\"x\":16,\"y\":32},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-beta1\",\"gridData\":{\"h\":12,\"i\":\"7\",\"w\":16,\"x\":32,\"y\":32},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-beta1\",\"gridData\":{\"h\":12,\"i\":\"8\",\"w\":48,\"x\":0,\"y\":44},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Filebeat Zeek] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"7cbb5410-3700-11e9-aa6d-ff445a78330c","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"f469f230-370c-11e9-aa6d-ff445a78330c","name":"panel_0","type":"visualization"},{"id":"1df7ea80-370d-11e9-aa6d-ff445a78330c","name":"panel_1","type":"visualization"},{"id":"466e5850-370d-11e9-aa6d-ff445a78330c","name":"panel_2","type":"visualization"},{"id":"649acd40-370d-11e9-aa6d-ff445a78330c","name":"panel_3","type":"visualization"},{"id":"9436c270-370d-11e9-aa6d-ff445a78330c","name":"panel_4","type":"visualization"},{"id":"bec2f0e0-370d-11e9-aa6d-ff445a78330c","name":"panel_5","type":"visualization"},{"id":"e042fda0-370d-11e9-aa6d-ff445a78330c","name":"panel_6","type":"visualization"},{"id":"f8c40810-370d-11e9-aa6d-ff445a78330c","name":"panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:33:52.321Z","version":"WzQzMjAsMV0="} diff --git a/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/1df7ea80-370d-11e9-aa6d-ff445a78330c.json b/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/1df7ea80-370d-11e9-aa6d-ff445a78330c.json new file mode 100644 index 000000000000..461bc9dde33d --- /dev/null +++ b/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/1df7ea80-370d-11e9-aa6d-ff445a78330c.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Network Transport [Filebeat Zeek]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "network.transport", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "metric": { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Network Transport [Filebeat Zeek]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1df7ea80-370d-11e9-aa6d-ff445a78330c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:52.321Z", + "version": "WzQzMjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/466e5850-370d-11e9-aa6d-ff445a78330c.json b/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/466e5850-370d-11e9-aa6d-ff445a78330c.json new file mode 100644 index 000000000000..516d5c1baccb --- /dev/null +++ b/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/466e5850-370d-11e9-aa6d-ff445a78330c.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Network Application [Filebeat Zeek]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "network.application", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "metric": { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Network Application [Filebeat Zeek]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "466e5850-370d-11e9-aa6d-ff445a78330c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:52.321Z", + "version": "WzQzMjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/649acd40-370d-11e9-aa6d-ff445a78330c.json b/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/649acd40-370d-11e9-aa6d-ff445a78330c.json new file mode 100644 index 000000000000..9dc9378f673e --- /dev/null +++ b/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/649acd40-370d-11e9-aa6d-ff445a78330c.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Network Traffic Direction [Filebeat Zeek]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "network.direction", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "metric": { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Network Traffic Direction [Filebeat Zeek]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "649acd40-370d-11e9-aa6d-ff445a78330c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:52.321Z", + "version": "WzQzMjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/9436c270-370d-11e9-aa6d-ff445a78330c.json b/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/9436c270-370d-11e9-aa6d-ff445a78330c.json new file mode 100644 index 000000000000..5c41110948d3 --- /dev/null +++ b/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/9436c270-370d-11e9-aa6d-ff445a78330c.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Top DNS Domains [Filebeat Zeek]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "zeek.dns.query", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "metric": { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Top DNS Domains [Filebeat Zeek]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9436c270-370d-11e9-aa6d-ff445a78330c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:52.321Z", + "version": "WzQzMjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/bec2f0e0-370d-11e9-aa6d-ff445a78330c.json b/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/bec2f0e0-370d-11e9-aa6d-ff445a78330c.json new file mode 100644 index 000000000000..d0c4410dbf3f --- /dev/null +++ b/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/bec2f0e0-370d-11e9-aa6d-ff445a78330c.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Top URL Domains [Filebeat Zeek]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "url.domain", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Top URL Domains [Filebeat Zeek]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bec2f0e0-370d-11e9-aa6d-ff445a78330c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:52.321Z", + "version": "WzQzMjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/e042fda0-370d-11e9-aa6d-ff445a78330c.json b/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/e042fda0-370d-11e9-aa6d-ff445a78330c.json new file mode 100644 index 000000000000..3d7abb4d4fd0 --- /dev/null +++ b/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/e042fda0-370d-11e9-aa6d-ff445a78330c.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Top SSL Servers [Filebeat Zeek]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "zeek.ssl.server.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "metric": { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Top SSL Servers [Filebeat Zeek]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e042fda0-370d-11e9-aa6d-ff445a78330c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:52.321Z", + "version": "WzQzMjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/f469f230-370c-11e9-aa6d-ff445a78330c.json b/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/f469f230-370c-11e9-aa6d-ff445a78330c.json new file mode 100644 index 000000000000..26718917aacd --- /dev/null +++ b/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/f469f230-370c-11e9-aa6d-ff445a78330c.json @@ -0,0 +1,96 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Destination Geo [Filebeat Zeek]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "autoPrecision": true, + "field": "destination.geo.location", + "isFilteredByCollar": true, + "mapCenter": [ + 0, + 0 + ], + "mapZoom": 2, + "precision": 2, + "useGeocentroid": true + }, + "schema": "segment", + "type": "geohash_grid" + } + ], + "params": { + "addTooltip": true, + "colorSchema": "Yellow to Red", + "dimensions": { + "geocentroid": null, + "geohash": null, + "metric": { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "heatClusterSize": 1.5, + "isDesaturated": true, + "legendPosition": "bottomright", + "mapCenter": [ + 0, + 0 + ], + "mapType": "Scaled Circle Markers", + "mapZoom": 2, + "wms": { + "enabled": false, + "options": { + "format": "image/png", + "transparent": true + } + } + }, + "title": "Destination Geo [Filebeat Zeek]", + "type": "tile_map" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f469f230-370c-11e9-aa6d-ff445a78330c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "filebeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:33:52.321Z", + "version": "WzQzMjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/f8c40810-370d-11e9-aa6d-ff445a78330c.json b/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/f8c40810-370d-11e9-aa6d-ff445a78330c.json new file mode 100644 index 000000000000..13112e300dae --- /dev/null +++ b/x-pack/filebeat/module/zeek/_meta/kibana/7/visualization/f8c40810-370d-11e9-aa6d-ff445a78330c.json @@ -0,0 +1,60 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Number of Sessions Overtime [Filebeat Zeek]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "filebeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Number of Sessions Overtime [Filebeat Zeek]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f8c40810-370d-11e9-aa6d-ff445a78330c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:33:52.321Z", + "version": "WzQzMjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/filebeat/module/zeek/module.yml b/x-pack/filebeat/module/zeek/module.yml index b654e72843fe..4d55536c0c6f 100644 --- a/x-pack/filebeat/module/zeek/module.yml +++ b/x-pack/filebeat/module/zeek/module.yml @@ -1,3 +1,3 @@ dashboards: - id: 7cbb5410-3700-11e9-aa6d-ff445a78330c - file: Filebeat-Zeek-Overview.ndjson + file: Filebeat-Zeek-Overview.json diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/a8160560-0bd0-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/a8160560-0bd0-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..366a2db779b0 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/a8160560-0bd0-11ea-81bb-cf244189d349.json @@ -0,0 +1,202 @@ +{ + "attributes": { + "description": "The dashboard presents metric data describing ActiveMQ queues. Metrics show statistics of exchanged messages, consumers, producers and memory usage.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "446c6be8-61e2-4c9c-9bfa-8da8879db215", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "446c6be8-61e2-4c9c-9bfa-8da8879db215", + "panelRefName": "panel_446c6be8-61e2-4c9c-9bfa-8da8879db215", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "85158251-14d2-4100-9ce2-1eea4885adf6", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "85158251-14d2-4100-9ce2-1eea4885adf6", + "panelRefName": "panel_85158251-14d2-4100-9ce2-1eea4885adf6", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "e0104818-b373-4a20-990a-aa7558522e9e", + "w": 24, + "x": 0, + "y": 15 + }, + "panelIndex": "e0104818-b373-4a20-990a-aa7558522e9e", + "panelRefName": "panel_e0104818-b373-4a20-990a-aa7558522e9e", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "7b83ee6f-cd69-4748-80c5-305fdf49b9d0", + "w": 24, + "x": 24, + "y": 15 + }, + "panelIndex": "7b83ee6f-cd69-4748-80c5-305fdf49b9d0", + "panelRefName": "panel_7b83ee6f-cd69-4748-80c5-305fdf49b9d0", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "b2cfe5e4-f220-480e-91fa-4088484eda17", + "w": 24, + "x": 0, + "y": 30 + }, + "panelIndex": "b2cfe5e4-f220-480e-91fa-4088484eda17", + "panelRefName": "panel_b2cfe5e4-f220-480e-91fa-4088484eda17", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "5f4b107c-94d0-4bdb-be30-b3cd26257658", + "w": 24, + "x": 24, + "y": 30 + }, + "panelIndex": "5f4b107c-94d0-4bdb-be30-b3cd26257658", + "panelRefName": "panel_5f4b107c-94d0-4bdb-be30-b3cd26257658", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "b5a5ea30-c313-4c80-8e28-2894f292d779", + "w": 24, + "x": 0, + "y": 45 + }, + "panelIndex": "b5a5ea30-c313-4c80-8e28-2894f292d779", + "panelRefName": "panel_b5a5ea30-c313-4c80-8e28-2894f292d779", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "4a004976-426b-445e-9ecf-1f9964074523", + "w": 24, + "x": 24, + "y": 45 + }, + "panelIndex": "4a004976-426b-445e-9ecf-1f9964074523", + "panelRefName": "panel_4a004976-426b-445e-9ecf-1f9964074523", + "type": "visualization", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat ActiveMQ] Queues Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "a8160560-0bd0-11ea-81bb-cf244189d349", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "ad2d4960-0bd4-11ea-81bb-cf244189d349", + "name": "446c6be8-61e2-4c9c-9bfa-8da8879db215:panel_446c6be8-61e2-4c9c-9bfa-8da8879db215", + "type": "visualization" + }, + { + "id": "00e33010-0bd5-11ea-81bb-cf244189d349", + "name": "85158251-14d2-4100-9ce2-1eea4885adf6:panel_85158251-14d2-4100-9ce2-1eea4885adf6", + "type": "visualization" + }, + { + "id": "4a93ef10-0bd5-11ea-81bb-cf244189d349", + "name": "e0104818-b373-4a20-990a-aa7558522e9e:panel_e0104818-b373-4a20-990a-aa7558522e9e", + "type": "visualization" + }, + { + "id": "fab93e30-0bbd-11ea-81bb-cf244189d349", + "name": "7b83ee6f-cd69-4748-80c5-305fdf49b9d0:panel_7b83ee6f-cd69-4748-80c5-305fdf49b9d0", + "type": "visualization" + }, + { + "id": "99f41030-0bd5-11ea-81bb-cf244189d349", + "name": "b2cfe5e4-f220-480e-91fa-4088484eda17:panel_b2cfe5e4-f220-480e-91fa-4088484eda17", + "type": "visualization" + }, + { + "id": "55cc9840-0bd6-11ea-81bb-cf244189d349", + "name": "5f4b107c-94d0-4bdb-be30-b3cd26257658:panel_5f4b107c-94d0-4bdb-be30-b3cd26257658", + "type": "visualization" + }, + { + "id": "8599cea0-0c2e-11ea-81bb-cf244189d349", + "name": "b5a5ea30-c313-4c80-8e28-2894f292d779:panel_b5a5ea30-c313-4c80-8e28-2894f292d779", + "type": "visualization" + }, + { + "id": "a8ac8950-0c2e-11ea-81bb-cf244189d349", + "name": "4a004976-426b-445e-9ecf-1f9964074523:panel_4a004976-426b-445e-9ecf-1f9964074523", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:55.793Z", + "version": "WzQxODUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/d97b7520-0bbe-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/d97b7520-0bbe-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..b2628f2bad80 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/d97b7520-0bbe-11ea-81bb-cf244189d349.json @@ -0,0 +1,202 @@ +{ + "attributes": { + "description": "The dashboard presents metric data describing ActiveMQ topics. Metrics show statistics of exchanged messages, consumers, producers and memory usage.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "099a7d74-8287-4717-b1d1-77f7ed2b67d0", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "099a7d74-8287-4717-b1d1-77f7ed2b67d0", + "panelRefName": "panel_099a7d74-8287-4717-b1d1-77f7ed2b67d0", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "c22e6794-6c79-4f2d-b942-f4a4bb73948e", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "c22e6794-6c79-4f2d-b942-f4a4bb73948e", + "panelRefName": "panel_c22e6794-6c79-4f2d-b942-f4a4bb73948e", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "adb64a5b-bfe9-4225-a712-f51ad30cab9d", + "w": 24, + "x": 0, + "y": 15 + }, + "panelIndex": "adb64a5b-bfe9-4225-a712-f51ad30cab9d", + "panelRefName": "panel_adb64a5b-bfe9-4225-a712-f51ad30cab9d", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8", + "w": 24, + "x": 24, + "y": 30 + }, + "panelIndex": "09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8", + "panelRefName": "panel_09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "43902672-df24-4be2-beb5-34961f190b5c", + "w": 24, + "x": 0, + "y": 30 + }, + "panelIndex": "43902672-df24-4be2-beb5-34961f190b5c", + "panelRefName": "panel_43902672-df24-4be2-beb5-34961f190b5c", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "ddce0ec5-f393-4479-a8a9-e1c7ffc339cb", + "w": 24, + "x": 24, + "y": 45 + }, + "panelIndex": "ddce0ec5-f393-4479-a8a9-e1c7ffc339cb", + "panelRefName": "panel_ddce0ec5-f393-4479-a8a9-e1c7ffc339cb", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "c591ef68-9215-49de-a548-30196faa31bd", + "w": 24, + "x": 0, + "y": 45 + }, + "panelIndex": "c591ef68-9215-49de-a548-30196faa31bd", + "panelRefName": "panel_c591ef68-9215-49de-a548-30196faa31bd", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "88a65079-a0b4-49c7-abbe-6e181c5dbbc3", + "w": 24, + "x": 24, + "y": 15 + }, + "panelIndex": "88a65079-a0b4-49c7-abbe-6e181c5dbbc3", + "panelRefName": "panel_88a65079-a0b4-49c7-abbe-6e181c5dbbc3", + "type": "visualization", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat ActiveMQ] Topics Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "d97b7520-0bbe-11ea-81bb-cf244189d349", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "a85c09b0-0bbd-11ea-81bb-cf244189d349", + "name": "099a7d74-8287-4717-b1d1-77f7ed2b67d0:panel_099a7d74-8287-4717-b1d1-77f7ed2b67d0", + "type": "visualization" + }, + { + "id": "e91f2b80-0bbd-11ea-81bb-cf244189d349", + "name": "c22e6794-6c79-4f2d-b942-f4a4bb73948e:panel_c22e6794-6c79-4f2d-b942-f4a4bb73948e", + "type": "visualization" + }, + { + "id": "d22e5e00-0bbd-11ea-81bb-cf244189d349", + "name": "adb64a5b-bfe9-4225-a712-f51ad30cab9d:panel_adb64a5b-bfe9-4225-a712-f51ad30cab9d", + "type": "visualization" + }, + { + "id": "8ae8aa90-0bc8-11ea-81bb-cf244189d349", + "name": "09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8:panel_09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8", + "type": "visualization" + }, + { + "id": "21fb23a0-0bbe-11ea-81bb-cf244189d349", + "name": "43902672-df24-4be2-beb5-34961f190b5c:panel_43902672-df24-4be2-beb5-34961f190b5c", + "type": "visualization" + }, + { + "id": "89de30b0-0bce-11ea-81bb-cf244189d349", + "name": "ddce0ec5-f393-4479-a8a9-e1c7ffc339cb:panel_ddce0ec5-f393-4479-a8a9-e1c7ffc339cb", + "type": "visualization" + }, + { + "id": "e73c2af0-0bce-11ea-81bb-cf244189d349", + "name": "c591ef68-9215-49de-a548-30196faa31bd:panel_c591ef68-9215-49de-a548-30196faa31bd", + "type": "visualization" + }, + { + "id": "3db29790-0bd7-11ea-81bb-cf244189d349", + "name": "88a65079-a0b4-49c7-abbe-6e181c5dbbc3:panel_88a65079-a0b4-49c7-abbe-6e181c5dbbc3", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:56.871Z", + "version": "WzQxOTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/fc27a270-0b95-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/fc27a270-0b95-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..d829b22ab570 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/fc27a270-0b95-11ea-81bb-cf244189d349.json @@ -0,0 +1,160 @@ +{ + "attributes": { + "description": "The dashboard presents metric data describing ActiveMQ broker. Metrics show statistics of enqueued and dequeued messages, consumers, producers and memory usage (broker, store, temp).", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc", + "panelRefName": "panel_cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "dc086d82-511a-45e3-b20e-6eef48e22ee1", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "dc086d82-511a-45e3-b20e-6eef48e22ee1", + "panelRefName": "panel_dc086d82-511a-45e3-b20e-6eef48e22ee1", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "84a09081-449a-44f8-bc43-7119730dc74b", + "w": 24, + "x": 0, + "y": 15 + }, + "panelIndex": "84a09081-449a-44f8-bc43-7119730dc74b", + "panelRefName": "panel_84a09081-449a-44f8-bc43-7119730dc74b", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "e5e43ead-2ed5-4290-86f3-5dd623500f87", + "w": 24, + "x": 24, + "y": 15 + }, + "panelIndex": "e5e43ead-2ed5-4290-86f3-5dd623500f87", + "panelRefName": "panel_e5e43ead-2ed5-4290-86f3-5dd623500f87", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "f891ea87-7718-4820-a0dc-21b160c1e684", + "w": 24, + "x": 24, + "y": 20 + }, + "panelIndex": "f891ea87-7718-4820-a0dc-21b160c1e684", + "panelRefName": "panel_f891ea87-7718-4820-a0dc-21b160c1e684", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "54a788b6-5ede-4217-a975-ba6bc57f5274", + "w": 24, + "x": 24, + "y": 25 + }, + "panelIndex": "54a788b6-5ede-4217-a975-ba6bc57f5274", + "panelRefName": "panel_54a788b6-5ede-4217-a975-ba6bc57f5274", + "type": "visualization", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat ActiveMQ] Broker Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "fc27a270-0b95-11ea-81bb-cf244189d349", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "55cacee0-0ba7-11ea-81bb-cf244189d349", + "name": "cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc:panel_cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc", + "type": "visualization" + }, + { + "id": "ce456e60-0b99-11ea-81bb-cf244189d349", + "name": "dc086d82-511a-45e3-b20e-6eef48e22ee1:panel_dc086d82-511a-45e3-b20e-6eef48e22ee1", + "type": "visualization" + }, + { + "id": "33cbfa60-0b95-11ea-81bb-cf244189d349", + "name": "84a09081-449a-44f8-bc43-7119730dc74b:panel_84a09081-449a-44f8-bc43-7119730dc74b", + "type": "visualization" + }, + { + "id": "594db510-0b9c-11ea-81bb-cf244189d349", + "name": "e5e43ead-2ed5-4290-86f3-5dd623500f87:panel_e5e43ead-2ed5-4290-86f3-5dd623500f87", + "type": "visualization" + }, + { + "id": "bfad8290-0d22-11ea-ba76-7fb26815d86c", + "name": "f891ea87-7718-4820-a0dc-21b160c1e684:panel_f891ea87-7718-4820-a0dc-21b160c1e684", + "type": "visualization" + }, + { + "id": "cb475400-0d22-11ea-ba76-7fb26815d86c", + "name": "54a788b6-5ede-4217-a975-ba6bc57f5274:panel_54a788b6-5ede-4217-a975-ba6bc57f5274", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:54.803Z", + "version": "WzQxNzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-broker-overview.ndjson b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-broker-overview.ndjson deleted file mode 100644 index ab3168964f86..000000000000 --- a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-broker-overview.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Broker Messages [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"aa435ec0-0ba6-11ea-b0d5-191f327f6941\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Dequeue\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.messages.dequeue.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"03adf430-0ba6-11ea-b0d5-191f327f6941\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"149ece90-0ba6-11ea-b0d5-191f327f6941\",\"label\":\"Enqueue\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.messages.enqueue.count\",\"id\":\"149ef5a0-0ba6-11ea-b0d5-191f327f6941\",\"type\":\"max\"},{\"field\":\"149ef5a0-0ba6-11ea-b0d5-191f327f6941\",\"id\":\"149ef5a1-0ba6-11ea-b0d5-191f327f6941\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"39964ed0-0ba6-11ea-b0d5-191f327f6941\",\"label\":\"Count\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.messages.enqueue.count\",\"id\":\"39964ed1-0ba6-11ea-b0d5-191f327f6941\",\"type\":\"max\"},{\"field\":\"39964ed1-0ba6-11ea-b0d5-191f327f6941\",\"id\":\"8920b440-0ba6-11ea-b0d5-191f327f6941\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Broker Messages [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"55cacee0-0ba7-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:54.803Z","version":"WzQxNzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Broker Consumers/Producers [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"60dba290-0b99-11ea-8e0f-4970006b3ce7\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Consumers\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.consumers.count\",\"id\":\"50a86850-0b98-11ea-8e0f-4970006b3ce7\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"activemq.broker.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(65,157,247,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"9a1e6840-0b98-11ea-8e0f-4970006b3ce7\",\"label\":\"Producers\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.producers.count\",\"id\":\"9a1e6841-0b98-11ea-8e0f-4970006b3ce7\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"activemq.broker.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Broker Consumers/Producers [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ce456e60-0b99-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:54.803Z","version":"WzQxODAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Broker Connections [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"178caf70-0b95-11ea-81df-8dc66a02be3a\"}],\"bar_color_rules\":[{\"id\":\"1996d750-0b95-11ea-81df-8dc66a02be3a\"}],\"gauge_color_rules\":[{\"id\":\"1a5bd500-0b95-11ea-81df-8dc66a02be3a\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Connections\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.connections.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"90525b80-0ba4-11ea-8c5c-257c67a7a008\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"b1b376f0-0b96-11ea-81df-8dc66a02be3a\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"activemq.broker.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Broker Connections [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"33cbfa60-0b95-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:54.803Z","version":"WzQxODEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Broker Memory Usage [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"a19e8b60-0b9b-11ea-8e0f-4970006b3ce7\"}],\"bar_color_rules\":[{\"id\":\"f6955680-0b9b-11ea-8e0f-4970006b3ce7\"}],\"gauge_color_rules\":[{\"id\":\"9acca240-0b9b-11ea-8e0f-4970006b3ce7\"}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Broker Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.broker.pct\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"7716c9c0-0b9b-11ea-8e0f-4970006b3ce7\",\"label\":\"Store Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.store.pct\",\"id\":\"7716c9c1-0b9b-11ea-8e0f-4970006b3ce7\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"13799400-0b9c-11ea-8e0f-4970006b3ce7\",\"label\":\"Temp Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.temp.pct\",\"id\":\"13799401-0b9c-11ea-8e0f-4970006b3ce7\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Broker Memory Usage [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"594db510-0b9c-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:54.803Z","version":"WzQxODIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Broker Temp Memory Usage [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"a19e8b60-0b9b-11ea-8e0f-4970006b3ce7\"}],\"bar_color_rules\":[{\"id\":\"f6955680-0b9b-11ea-8e0f-4970006b3ce7\"}],\"gauge_color_rules\":[{\"id\":\"9acca240-0b9b-11ea-8e0f-4970006b3ce7\"}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Temp Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.temp.pct\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"7716c9c0-0b9b-11ea-8e0f-4970006b3ce7\",\"label\":\"Store Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.store.pct\",\"id\":\"7716c9c1-0b9b-11ea-8e0f-4970006b3ce7\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"13799400-0b9c-11ea-8e0f-4970006b3ce7\",\"label\":\"Temp Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.temp.pct\",\"id\":\"13799401-0b9c-11ea-8e0f-4970006b3ce7\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Broker Temp Memory Usage [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bfad8290-0d22-11ea-ba76-7fb26815d86c","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:54.803Z","version":"WzQxODMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Broker Store Memory Usage [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"a19e8b60-0b9b-11ea-8e0f-4970006b3ce7\"}],\"bar_color_rules\":[{\"id\":\"f6955680-0b9b-11ea-8e0f-4970006b3ce7\"}],\"gauge_color_rules\":[{\"id\":\"9acca240-0b9b-11ea-8e0f-4970006b3ce7\"}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Store Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.store.pct\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"7716c9c0-0b9b-11ea-8e0f-4970006b3ce7\",\"label\":\"Store Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.store.pct\",\"id\":\"7716c9c1-0b9b-11ea-8e0f-4970006b3ce7\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"13799400-0b9c-11ea-8e0f-4970006b3ce7\",\"label\":\"Temp Memory\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.broker.memory.temp.pct\",\"id\":\"13799401-0b9c-11ea-8e0f-4970006b3ce7\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Broker Store Memory Usage [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cb475400-0d22-11ea-ba76-7fb26815d86c","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:54.803Z","version":"WzQxODQsMV0="} -{"attributes":{"description":"The dashboard presents metric data describing ActiveMQ broker. Metrics show statistics of enqueued and dequeued messages, consumers, producers and memory usage (broker, store, temp).","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"dc086d82-511a-45e3-b20e-6eef48e22ee1\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"dc086d82-511a-45e3-b20e-6eef48e22ee1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_dc086d82-511a-45e3-b20e-6eef48e22ee1\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"84a09081-449a-44f8-bc43-7119730dc74b\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"84a09081-449a-44f8-bc43-7119730dc74b\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_84a09081-449a-44f8-bc43-7119730dc74b\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"e5e43ead-2ed5-4290-86f3-5dd623500f87\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"e5e43ead-2ed5-4290-86f3-5dd623500f87\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e5e43ead-2ed5-4290-86f3-5dd623500f87\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"f891ea87-7718-4820-a0dc-21b160c1e684\",\"w\":24,\"x\":24,\"y\":20},\"panelIndex\":\"f891ea87-7718-4820-a0dc-21b160c1e684\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_f891ea87-7718-4820-a0dc-21b160c1e684\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"54a788b6-5ede-4217-a975-ba6bc57f5274\",\"w\":24,\"x\":24,\"y\":25},\"panelIndex\":\"54a788b6-5ede-4217-a975-ba6bc57f5274\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_54a788b6-5ede-4217-a975-ba6bc57f5274\"}]","timeRestore":false,"title":"[Metricbeat ActiveMQ] Broker Overview","version":1},"coreMigrationVersion":"8.0.0","id":"fc27a270-0b95-11ea-81bb-cf244189d349","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"55cacee0-0ba7-11ea-81bb-cf244189d349","name":"cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc:panel_cd2b33a6-3c4c-4d97-9cfb-7c6e47f248dc","type":"visualization"},{"id":"ce456e60-0b99-11ea-81bb-cf244189d349","name":"dc086d82-511a-45e3-b20e-6eef48e22ee1:panel_dc086d82-511a-45e3-b20e-6eef48e22ee1","type":"visualization"},{"id":"33cbfa60-0b95-11ea-81bb-cf244189d349","name":"84a09081-449a-44f8-bc43-7119730dc74b:panel_84a09081-449a-44f8-bc43-7119730dc74b","type":"visualization"},{"id":"594db510-0b9c-11ea-81bb-cf244189d349","name":"e5e43ead-2ed5-4290-86f3-5dd623500f87:panel_e5e43ead-2ed5-4290-86f3-5dd623500f87","type":"visualization"},{"id":"bfad8290-0d22-11ea-ba76-7fb26815d86c","name":"f891ea87-7718-4820-a0dc-21b160c1e684:panel_f891ea87-7718-4820-a0dc-21b160c1e684","type":"visualization"},{"id":"cb475400-0d22-11ea-ba76-7fb26815d86c","name":"54a788b6-5ede-4217-a975-ba6bc57f5274:panel_54a788b6-5ede-4217-a975-ba6bc57f5274","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:54.803Z","version":"WzQxNzgsMV0="} diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-queues-overview.ndjson b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-queues-overview.ndjson deleted file mode 100644 index 6f6b7862f399..000000000000 --- a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-queues-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Queues Messages Dequeue [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Dequeue\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.queue.messages.dequeue.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Queues Messages Dequeue [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ad2d4960-0bd4-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxODYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Queues Messages Enqueue [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Enqueue\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.queue.messages.enqueue.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Queues Messages Enqueue [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"00e33010-0bd5-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxODcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Queues Messages Dispatch [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Dispatch\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.queue.messages.dispatch.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Queues Messages Dispatch [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4a93ef10-0bd5-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxODgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Queues Messages Expired [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Expired\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.queue.messages.expired.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Queues Messages Expired [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fab93e30-0bbd-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxODksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Queues Messages In-flight [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"In-flight\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.queue.messages.inflight.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Queues Messages In-flight [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"99f41030-0bd5-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxOTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Queues Messages Enqueue Time [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":0.5,\"formatter\":\"ms,ms,\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Equeue\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.queue.messages.enqueue.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Queues Messages Enqueue Time [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"55cc9840-0bd6-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxOTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Queues Consumers [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Consumers\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.queue.consumers.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Queues Consumers [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8599cea0-0c2e-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxOTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Queues Producers [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Producers\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.queue.producers.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Queues Producers [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a8ac8950-0c2e-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxOTMsMV0="} -{"attributes":{"description":"The dashboard presents metric data describing ActiveMQ queues. Metrics show statistics of exchanged messages, consumers, producers and memory usage.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"446c6be8-61e2-4c9c-9bfa-8da8879db215\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"446c6be8-61e2-4c9c-9bfa-8da8879db215\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_446c6be8-61e2-4c9c-9bfa-8da8879db215\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"85158251-14d2-4100-9ce2-1eea4885adf6\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"85158251-14d2-4100-9ce2-1eea4885adf6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_85158251-14d2-4100-9ce2-1eea4885adf6\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"e0104818-b373-4a20-990a-aa7558522e9e\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"e0104818-b373-4a20-990a-aa7558522e9e\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e0104818-b373-4a20-990a-aa7558522e9e\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7b83ee6f-cd69-4748-80c5-305fdf49b9d0\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"7b83ee6f-cd69-4748-80c5-305fdf49b9d0\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7b83ee6f-cd69-4748-80c5-305fdf49b9d0\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"b2cfe5e4-f220-480e-91fa-4088484eda17\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"b2cfe5e4-f220-480e-91fa-4088484eda17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_b2cfe5e4-f220-480e-91fa-4088484eda17\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5f4b107c-94d0-4bdb-be30-b3cd26257658\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"5f4b107c-94d0-4bdb-be30-b3cd26257658\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5f4b107c-94d0-4bdb-be30-b3cd26257658\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"b5a5ea30-c313-4c80-8e28-2894f292d779\",\"w\":24,\"x\":0,\"y\":45},\"panelIndex\":\"b5a5ea30-c313-4c80-8e28-2894f292d779\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_b5a5ea30-c313-4c80-8e28-2894f292d779\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4a004976-426b-445e-9ecf-1f9964074523\",\"w\":24,\"x\":24,\"y\":45},\"panelIndex\":\"4a004976-426b-445e-9ecf-1f9964074523\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4a004976-426b-445e-9ecf-1f9964074523\"}]","timeRestore":false,"title":"[Metricbeat ActiveMQ] Queues Overview","version":1},"coreMigrationVersion":"8.0.0","id":"a8160560-0bd0-11ea-81bb-cf244189d349","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"ad2d4960-0bd4-11ea-81bb-cf244189d349","name":"446c6be8-61e2-4c9c-9bfa-8da8879db215:panel_446c6be8-61e2-4c9c-9bfa-8da8879db215","type":"visualization"},{"id":"00e33010-0bd5-11ea-81bb-cf244189d349","name":"85158251-14d2-4100-9ce2-1eea4885adf6:panel_85158251-14d2-4100-9ce2-1eea4885adf6","type":"visualization"},{"id":"4a93ef10-0bd5-11ea-81bb-cf244189d349","name":"e0104818-b373-4a20-990a-aa7558522e9e:panel_e0104818-b373-4a20-990a-aa7558522e9e","type":"visualization"},{"id":"fab93e30-0bbd-11ea-81bb-cf244189d349","name":"7b83ee6f-cd69-4748-80c5-305fdf49b9d0:panel_7b83ee6f-cd69-4748-80c5-305fdf49b9d0","type":"visualization"},{"id":"99f41030-0bd5-11ea-81bb-cf244189d349","name":"b2cfe5e4-f220-480e-91fa-4088484eda17:panel_b2cfe5e4-f220-480e-91fa-4088484eda17","type":"visualization"},{"id":"55cc9840-0bd6-11ea-81bb-cf244189d349","name":"5f4b107c-94d0-4bdb-be30-b3cd26257658:panel_5f4b107c-94d0-4bdb-be30-b3cd26257658","type":"visualization"},{"id":"8599cea0-0c2e-11ea-81bb-cf244189d349","name":"b5a5ea30-c313-4c80-8e28-2894f292d779:panel_b5a5ea30-c313-4c80-8e28-2894f292d779","type":"visualization"},{"id":"a8ac8950-0c2e-11ea-81bb-cf244189d349","name":"4a004976-426b-445e-9ecf-1f9964074523:panel_4a004976-426b-445e-9ecf-1f9964074523","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:55.793Z","version":"WzQxODUsMV0="} diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-topics-overview.ndjson b/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-topics-overview.ndjson deleted file mode 100644 index 2523b4128dd8..000000000000 --- a/x-pack/metricbeat/module/activemq/_meta/kibana/7/dashboard/metricbeat-activemq-topics-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Topics Messages Dequeue [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Dequeue\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.topic.messages.dequeue.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.topic.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Topics Messages Dequeue [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a85c09b0-0bbd-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQxOTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Topics Messages Enqueue [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Enqueue\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.topic.messages.enqueue.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.topic.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Topics Messages Enqueue [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e91f2b80-0bbd-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQxOTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Topics Messages Dispatch [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Dispatch\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.topic.messages.dispatch.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.topic.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Topics Messages Dispatch [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d22e5e00-0bbd-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQxOTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Topics Messages Enqueue Time [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":0.5,\"formatter\":\"ms,ms,\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.topic.messages.enqueue.time.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.topic.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Topics Messages Enqueue Time [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8ae8aa90-0bc8-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQxOTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Topics Messages In-flight [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"In-flight\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.topic.messages.inflight.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.topic.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Topics Messages In-flight [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"21fb23a0-0bbe-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQxOTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Topics Producers [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Producers\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.topic.producers.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.topic.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Topics Producers [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"89de30b0-0bce-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQyMDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Topics Consumers [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Consumers\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.topic.consumers.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.topic.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Topics Consumers [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e73c2af0-0bce-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQyMDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Topics Messages Expired [Metricbeat ActiveMQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(174,161,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Expired\",\"line_width\":1,\"metrics\":[{\"field\":\"activemq.topic.messages.expired.count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4f39bd50-0bbd-11ea-b87b-6d4c24968040\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"activemq.topic.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Topics Messages Expired [Metricbeat ActiveMQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3db29790-0bd7-11ea-81bb-cf244189d349","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQyMDIsMV0="} -{"attributes":{"description":"The dashboard presents metric data describing ActiveMQ topics. Metrics show statistics of exchanged messages, consumers, producers and memory usage.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"099a7d74-8287-4717-b1d1-77f7ed2b67d0\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"099a7d74-8287-4717-b1d1-77f7ed2b67d0\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_099a7d74-8287-4717-b1d1-77f7ed2b67d0\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"c22e6794-6c79-4f2d-b942-f4a4bb73948e\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"c22e6794-6c79-4f2d-b942-f4a4bb73948e\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_c22e6794-6c79-4f2d-b942-f4a4bb73948e\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"adb64a5b-bfe9-4225-a712-f51ad30cab9d\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"adb64a5b-bfe9-4225-a712-f51ad30cab9d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_adb64a5b-bfe9-4225-a712-f51ad30cab9d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"43902672-df24-4be2-beb5-34961f190b5c\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"43902672-df24-4be2-beb5-34961f190b5c\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_43902672-df24-4be2-beb5-34961f190b5c\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ddce0ec5-f393-4479-a8a9-e1c7ffc339cb\",\"w\":24,\"x\":24,\"y\":45},\"panelIndex\":\"ddce0ec5-f393-4479-a8a9-e1c7ffc339cb\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_ddce0ec5-f393-4479-a8a9-e1c7ffc339cb\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"c591ef68-9215-49de-a548-30196faa31bd\",\"w\":24,\"x\":0,\"y\":45},\"panelIndex\":\"c591ef68-9215-49de-a548-30196faa31bd\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_c591ef68-9215-49de-a548-30196faa31bd\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"88a65079-a0b4-49c7-abbe-6e181c5dbbc3\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"88a65079-a0b4-49c7-abbe-6e181c5dbbc3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_88a65079-a0b4-49c7-abbe-6e181c5dbbc3\"}]","timeRestore":false,"title":"[Metricbeat ActiveMQ] Topics Overview","version":1},"coreMigrationVersion":"8.0.0","id":"d97b7520-0bbe-11ea-81bb-cf244189d349","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"a85c09b0-0bbd-11ea-81bb-cf244189d349","name":"099a7d74-8287-4717-b1d1-77f7ed2b67d0:panel_099a7d74-8287-4717-b1d1-77f7ed2b67d0","type":"visualization"},{"id":"e91f2b80-0bbd-11ea-81bb-cf244189d349","name":"c22e6794-6c79-4f2d-b942-f4a4bb73948e:panel_c22e6794-6c79-4f2d-b942-f4a4bb73948e","type":"visualization"},{"id":"d22e5e00-0bbd-11ea-81bb-cf244189d349","name":"adb64a5b-bfe9-4225-a712-f51ad30cab9d:panel_adb64a5b-bfe9-4225-a712-f51ad30cab9d","type":"visualization"},{"id":"8ae8aa90-0bc8-11ea-81bb-cf244189d349","name":"09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8:panel_09ea3c98-d808-4c5f-9d04-7a94fd3cc2c8","type":"visualization"},{"id":"21fb23a0-0bbe-11ea-81bb-cf244189d349","name":"43902672-df24-4be2-beb5-34961f190b5c:panel_43902672-df24-4be2-beb5-34961f190b5c","type":"visualization"},{"id":"89de30b0-0bce-11ea-81bb-cf244189d349","name":"ddce0ec5-f393-4479-a8a9-e1c7ffc339cb:panel_ddce0ec5-f393-4479-a8a9-e1c7ffc339cb","type":"visualization"},{"id":"e73c2af0-0bce-11ea-81bb-cf244189d349","name":"c591ef68-9215-49de-a548-30196faa31bd:panel_c591ef68-9215-49de-a548-30196faa31bd","type":"visualization"},{"id":"3db29790-0bd7-11ea-81bb-cf244189d349","name":"88a65079-a0b4-49c7-abbe-6e181c5dbbc3:panel_88a65079-a0b4-49c7-abbe-6e181c5dbbc3","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:56.871Z","version":"WzQxOTQsMV0="} diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/00e33010-0bd5-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/00e33010-0bd5-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..beb429e07707 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/00e33010-0bd5-11ea-81bb-cf244189d349.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Queues Messages Enqueue [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Enqueue", + "line_width": 1, + "metrics": [ + { + "field": "activemq.queue.messages.enqueue.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "activemq.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Queues Messages Enqueue [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "00e33010-0bd5-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:55.793Z", + "version": "WzQxODcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/21fb23a0-0bbe-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/21fb23a0-0bbe-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..7e03ba0e5de9 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/21fb23a0-0bbe-11ea-81bb-cf244189d349.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Topics Messages In-flight [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "In-flight", + "line_width": 1, + "metrics": [ + { + "field": "activemq.topic.messages.inflight.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "activemq.topic.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Topics Messages In-flight [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "21fb23a0-0bbe-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:56.871Z", + "version": "WzQxOTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/33cbfa60-0b95-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/33cbfa60-0b95-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..70a294dc4f77 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/33cbfa60-0b95-11ea-81bb-cf244189d349.json @@ -0,0 +1,106 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Broker Connections [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "178caf70-0b95-11ea-81df-8dc66a02be3a" + } + ], + "bar_color_rules": [ + { + "id": "1996d750-0b95-11ea-81df-8dc66a02be3a" + } + ], + "gauge_color_rules": [ + { + "id": "1a5bd500-0b95-11ea-81df-8dc66a02be3a" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Connections", + "line_width": 1, + "metrics": [ + { + "field": "activemq.broker.connections.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "90525b80-0ba4-11ea-8c5c-257c67a7a008", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "b1b376f0-0b96-11ea-81df-8dc66a02be3a", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "terms_field": "activemq.broker.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Broker Connections [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "33cbfa60-0b95-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:54.803Z", + "version": "WzQxODEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/3db29790-0bd7-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/3db29790-0bd7-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..3bab8f394508 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/3db29790-0bd7-11ea-81bb-cf244189d349.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Topics Messages Expired [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(174,161,255,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Expired", + "line_width": 1, + "metrics": [ + { + "field": "activemq.topic.messages.expired.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "activemq.topic.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Topics Messages Expired [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3db29790-0bd7-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:56.871Z", + "version": "WzQyMDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/4a93ef10-0bd5-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/4a93ef10-0bd5-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..35e8ce60e59a --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/4a93ef10-0bd5-11ea-81bb-cf244189d349.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Queues Messages Dispatch [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Dispatch", + "line_width": 1, + "metrics": [ + { + "field": "activemq.queue.messages.dispatch.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "activemq.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Queues Messages Dispatch [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4a93ef10-0bd5-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:55.793Z", + "version": "WzQxODgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/55cacee0-0ba7-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/55cacee0-0ba7-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..2bcaa82a6772 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/55cacee0-0ba7-11ea-81bb-cf244189d349.json @@ -0,0 +1,135 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Broker Messages [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "aa435ec0-0ba6-11ea-b0d5-191f327f6941" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Dequeue", + "line_width": 1, + "metrics": [ + { + "field": "activemq.broker.messages.dequeue.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "03adf430-0ba6-11ea-b0d5-191f327f6941", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": 0.5, + "formatter": "number", + "id": "149ece90-0ba6-11ea-b0d5-191f327f6941", + "label": "Enqueue", + "line_width": 1, + "metrics": [ + { + "field": "activemq.broker.messages.enqueue.count", + "id": "149ef5a0-0ba6-11ea-b0d5-191f327f6941", + "type": "max" + }, + { + "field": "149ef5a0-0ba6-11ea-b0d5-191f327f6941", + "id": "149ef5a1-0ba6-11ea-b0d5-191f327f6941", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "39964ed0-0ba6-11ea-b0d5-191f327f6941", + "label": "Count", + "line_width": 1, + "metrics": [ + { + "field": "activemq.broker.messages.enqueue.count", + "id": "39964ed1-0ba6-11ea-b0d5-191f327f6941", + "type": "max" + }, + { + "field": "39964ed1-0ba6-11ea-b0d5-191f327f6941", + "id": "8920b440-0ba6-11ea-b0d5-191f327f6941", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Broker Messages [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "55cacee0-0ba7-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:54.803Z", + "version": "WzQxNzksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/55cc9840-0bd6-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/55cc9840-0bd6-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..bffede169806 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/55cc9840-0bd6-11ea-81bb-cf244189d349.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Queues Messages Enqueue Time [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(226,115,0,1)", + "fill": 0.5, + "formatter": "ms,ms,", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Equeue", + "line_width": 1, + "metrics": [ + { + "field": "activemq.queue.messages.enqueue.time.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "activemq.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Queues Messages Enqueue Time [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "55cc9840-0bd6-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:55.793Z", + "version": "WzQxOTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/594db510-0b9c-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/594db510-0b9c-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..814e2e771b5d --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/594db510-0b9c-11ea-81bb-cf244189d349.json @@ -0,0 +1,134 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Broker Memory Usage [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "a19e8b60-0b9b-11ea-8e0f-4970006b3ce7" + } + ], + "bar_color_rules": [ + { + "id": "f6955680-0b9b-11ea-8e0f-4970006b3ce7" + } + ], + "gauge_color_rules": [ + { + "id": "9acca240-0b9b-11ea-8e0f-4970006b3ce7" + } + ], + "gauge_inner_width": 10, + "gauge_max": "1", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "percent", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Broker Memory", + "line_width": 1, + "metrics": [ + { + "field": "activemq.broker.memory.broker.pct", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": 0.5, + "formatter": "number", + "id": "7716c9c0-0b9b-11ea-8e0f-4970006b3ce7", + "label": "Store Memory", + "line_width": 1, + "metrics": [ + { + "field": "activemq.broker.memory.store.pct", + "id": "7716c9c1-0b9b-11ea-8e0f-4970006b3ce7", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(174,161,255,1)", + "fill": 0.5, + "formatter": "number", + "id": "13799400-0b9c-11ea-8e0f-4970006b3ce7", + "label": "Temp Memory", + "line_width": 1, + "metrics": [ + { + "field": "activemq.broker.memory.temp.pct", + "id": "13799401-0b9c-11ea-8e0f-4970006b3ce7", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Broker Memory Usage [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "594db510-0b9c-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:54.803Z", + "version": "WzQxODIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/8599cea0-0c2e-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/8599cea0-0c2e-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..50a22168f652 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/8599cea0-0c2e-11ea-81bb-cf244189d349.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Queues Consumers [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Consumers", + "line_width": 1, + "metrics": [ + { + "field": "activemq.queue.consumers.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "activemq.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Queues Consumers [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8599cea0-0c2e-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:55.793Z", + "version": "WzQxOTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/89de30b0-0bce-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/89de30b0-0bce-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..f3140b89c8ab --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/89de30b0-0bce-11ea-81bb-cf244189d349.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Topics Producers [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Producers", + "line_width": 1, + "metrics": [ + { + "field": "activemq.topic.producers.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "activemq.topic.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Topics Producers [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "89de30b0-0bce-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:56.871Z", + "version": "WzQyMDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/8ae8aa90-0bc8-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/8ae8aa90-0bc8-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..5d1f29bca1f8 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/8ae8aa90-0bc8-11ea-81bb-cf244189d349.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Topics Messages Enqueue Time [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(226,115,0,1)", + "fill": 0.5, + "formatter": "ms,ms,", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "activemq.topic.messages.enqueue.time.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "activemq.topic.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Topics Messages Enqueue Time [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8ae8aa90-0bc8-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:56.871Z", + "version": "WzQxOTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/99f41030-0bd5-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/99f41030-0bd5-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..ae0c40ad790f --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/99f41030-0bd5-11ea-81bb-cf244189d349.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Queues Messages In-flight [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "In-flight", + "line_width": 1, + "metrics": [ + { + "field": "activemq.queue.messages.inflight.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "activemq.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Queues Messages In-flight [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "99f41030-0bd5-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:55.793Z", + "version": "WzQxOTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/a85c09b0-0bbd-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/a85c09b0-0bbd-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..c9fc58407c8f --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/a85c09b0-0bbd-11ea-81bb-cf244189d349.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Topics Messages Dequeue [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Dequeue", + "line_width": 1, + "metrics": [ + { + "field": "activemq.topic.messages.dequeue.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "activemq.topic.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Topics Messages Dequeue [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a85c09b0-0bbd-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:56.871Z", + "version": "WzQxOTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/a8ac8950-0c2e-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/a8ac8950-0c2e-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..7204c0fc6573 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/a8ac8950-0c2e-11ea-81bb-cf244189d349.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Queues Producers [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Producers", + "line_width": 1, + "metrics": [ + { + "field": "activemq.queue.producers.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "activemq.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Queues Producers [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a8ac8950-0c2e-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:55.793Z", + "version": "WzQxOTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/ad2d4960-0bd4-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/ad2d4960-0bd4-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..7eebb53f7456 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/ad2d4960-0bd4-11ea-81bb-cf244189d349.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Queues Messages Dequeue [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Dequeue", + "line_width": 1, + "metrics": [ + { + "field": "activemq.queue.messages.dequeue.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "activemq.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Queues Messages Dequeue [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ad2d4960-0bd4-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:55.793Z", + "version": "WzQxODYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/bfad8290-0d22-11ea-ba76-7fb26815d86c.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/bfad8290-0d22-11ea-ba76-7fb26815d86c.json new file mode 100644 index 000000000000..318fed7ee613 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/bfad8290-0d22-11ea-ba76-7fb26815d86c.json @@ -0,0 +1,134 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Broker Temp Memory Usage [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "a19e8b60-0b9b-11ea-8e0f-4970006b3ce7" + } + ], + "bar_color_rules": [ + { + "id": "f6955680-0b9b-11ea-8e0f-4970006b3ce7" + } + ], + "gauge_color_rules": [ + { + "id": "9acca240-0b9b-11ea-8e0f-4970006b3ce7" + } + ], + "gauge_inner_width": 10, + "gauge_max": "1", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "percent", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Temp Memory", + "line_width": 1, + "metrics": [ + { + "field": "activemq.broker.memory.temp.pct", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": 0.5, + "formatter": "number", + "id": "7716c9c0-0b9b-11ea-8e0f-4970006b3ce7", + "label": "Store Memory", + "line_width": 1, + "metrics": [ + { + "field": "activemq.broker.memory.store.pct", + "id": "7716c9c1-0b9b-11ea-8e0f-4970006b3ce7", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(174,161,255,1)", + "fill": 0.5, + "formatter": "number", + "id": "13799400-0b9c-11ea-8e0f-4970006b3ce7", + "label": "Temp Memory", + "line_width": 1, + "metrics": [ + { + "field": "activemq.broker.memory.temp.pct", + "id": "13799401-0b9c-11ea-8e0f-4970006b3ce7", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Broker Temp Memory Usage [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bfad8290-0d22-11ea-ba76-7fb26815d86c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:54.803Z", + "version": "WzQxODMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/cb475400-0d22-11ea-ba76-7fb26815d86c.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/cb475400-0d22-11ea-ba76-7fb26815d86c.json new file mode 100644 index 000000000000..84e9348fbdcb --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/cb475400-0d22-11ea-ba76-7fb26815d86c.json @@ -0,0 +1,134 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Broker Store Memory Usage [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "a19e8b60-0b9b-11ea-8e0f-4970006b3ce7" + } + ], + "bar_color_rules": [ + { + "id": "f6955680-0b9b-11ea-8e0f-4970006b3ce7" + } + ], + "gauge_color_rules": [ + { + "id": "9acca240-0b9b-11ea-8e0f-4970006b3ce7" + } + ], + "gauge_inner_width": 10, + "gauge_max": "1", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "percent", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Store Memory", + "line_width": 1, + "metrics": [ + { + "field": "activemq.broker.memory.store.pct", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": 0.5, + "formatter": "number", + "id": "7716c9c0-0b9b-11ea-8e0f-4970006b3ce7", + "label": "Store Memory", + "line_width": 1, + "metrics": [ + { + "field": "activemq.broker.memory.store.pct", + "id": "7716c9c1-0b9b-11ea-8e0f-4970006b3ce7", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(174,161,255,1)", + "fill": 0.5, + "formatter": "number", + "id": "13799400-0b9c-11ea-8e0f-4970006b3ce7", + "label": "Temp Memory", + "line_width": 1, + "metrics": [ + { + "field": "activemq.broker.memory.temp.pct", + "id": "13799401-0b9c-11ea-8e0f-4970006b3ce7", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Broker Store Memory Usage [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "cb475400-0d22-11ea-ba76-7fb26815d86c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:54.803Z", + "version": "WzQxODQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/ce456e60-0b99-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/ce456e60-0b99-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..6ed111781d0e --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/ce456e60-0b99-11ea-81bb-cf244189d349.json @@ -0,0 +1,101 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Broker Consumers/Producers [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [], + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "60dba290-0b99-11ea-8e0f-4970006b3ce7" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Consumers", + "line_width": 1, + "metrics": [ + { + "field": "activemq.broker.consumers.count", + "id": "50a86850-0b98-11ea-8e0f-4970006b3ce7", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "activemq.broker.name", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(65,157,247,1)", + "fill": 0.5, + "formatter": "number", + "id": "9a1e6840-0b98-11ea-8e0f-4970006b3ce7", + "label": "Producers", + "line_width": 1, + "metrics": [ + { + "field": "activemq.broker.producers.count", + "id": "9a1e6841-0b98-11ea-8e0f-4970006b3ce7", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "activemq.broker.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Broker Consumers/Producers [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ce456e60-0b99-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:54.803Z", + "version": "WzQxODAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/d22e5e00-0bbd-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/d22e5e00-0bbd-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..fae2a1479a2a --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/d22e5e00-0bbd-11ea-81bb-cf244189d349.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Topics Messages Dispatch [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Dispatch", + "line_width": 1, + "metrics": [ + { + "field": "activemq.topic.messages.dispatch.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "activemq.topic.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Topics Messages Dispatch [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d22e5e00-0bbd-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:56.871Z", + "version": "WzQxOTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/e73c2af0-0bce-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/e73c2af0-0bce-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..cf00fb04a32c --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/e73c2af0-0bce-11ea-81bb-cf244189d349.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Topics Consumers [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Consumers", + "line_width": 1, + "metrics": [ + { + "field": "activemq.topic.consumers.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "activemq.topic.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Topics Consumers [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e73c2af0-0bce-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:56.871Z", + "version": "WzQyMDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/e91f2b80-0bbd-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/e91f2b80-0bbd-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..62d8a7c807b4 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/e91f2b80-0bbd-11ea-81bb-cf244189d349.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Topics Messages Enqueue [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Enqueue", + "line_width": 1, + "metrics": [ + { + "field": "activemq.topic.messages.enqueue.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "activemq.topic.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Topics Messages Enqueue [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e91f2b80-0bbd-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:56.871Z", + "version": "WzQxOTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/fab93e30-0bbd-11ea-81bb-cf244189d349.json b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/fab93e30-0bbd-11ea-81bb-cf244189d349.json new file mode 100644 index 000000000000..71c59e9fbaf5 --- /dev/null +++ b/x-pack/metricbeat/module/activemq/_meta/kibana/7/visualization/fab93e30-0bbd-11ea-81bb-cf244189d349.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Queues Messages Expired [Metricbeat ActiveMQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(174,161,255,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Expired", + "line_width": 1, + "metrics": [ + { + "field": "activemq.queue.messages.expired.count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "4f39bd50-0bbd-11ea-b87b-6d4c24968040", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "activemq.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Queues Messages Expired [Metricbeat ActiveMQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fab93e30-0bbd-11ea-81bb-cf244189d349", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:55.793Z", + "version": "WzQxODksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/07d67a60-d872-11eb-8220-c9141cc1b15c.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/07d67a60-d872-11eb-8220-c9141cc1b15c.json new file mode 100644 index 000000000000..d9a6eb29d8ac --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/07d67a60-d872-11eb-8220-c9141cc1b15c.json @@ -0,0 +1,264 @@ +{ + "attributes": { + "description": "Overview of Amazon Kinesis Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 5, + "i": "0359194f-01a1-4a5b-8040-c897bdc86638", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "0359194f-01a1-4a5b-8040-c897bdc86638", + "panelRefName": "panel_0359194f-01a1-4a5b-8040-c897bdc86638", + "title": "Filters", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "df2dc50f-c09b-4dcd-96a8-24037c576db3", + "w": 16, + "x": 32, + "y": 5 + }, + "panelIndex": "df2dc50f-c09b-4dcd-96a8-24037c576db3", + "panelRefName": "panel_df2dc50f-c09b-4dcd-96a8-24037c576db3", + "title": "GetRecords Latency", + "type": "lens", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "5f153d11-e84a-4ac5-aec9-4fca79863744", + "w": 16, + "x": 0, + "y": 5 + }, + "panelIndex": "5f153d11-e84a-4ac5-aec9-4fca79863744", + "panelRefName": "panel_5f153d11-e84a-4ac5-aec9-4fca79863744", + "title": "PutRecords Latency", + "type": "lens", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "a7378b79-483c-4e99-97e2-9b49fd9e81da", + "w": 16, + "x": 16, + "y": 5 + }, + "panelIndex": "a7378b79-483c-4e99-97e2-9b49fd9e81da", + "panelRefName": "panel_a7378b79-483c-4e99-97e2-9b49fd9e81da", + "title": "PutRecord Latency", + "type": "lens", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "01a12917-ef1c-47b6-964a-26ef424dd0d3", + "w": 16, + "x": 32, + "y": 20 + }, + "panelIndex": "01a12917-ef1c-47b6-964a-26ef424dd0d3", + "panelRefName": "panel_01a12917-ef1c-47b6-964a-26ef424dd0d3", + "title": "GetRecords Bytes", + "type": "lens", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "7e5774cb-e2e5-4f11-95bc-732ed6600757", + "w": 16, + "x": 0, + "y": 20 + }, + "panelIndex": "7e5774cb-e2e5-4f11-95bc-732ed6600757", + "panelRefName": "panel_7e5774cb-e2e5-4f11-95bc-732ed6600757", + "title": "PutRecords Bytes", + "type": "lens", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "e18e62e5-672a-4939-afe1-68354e76aefc", + "w": 16, + "x": 16, + "y": 20 + }, + "panelIndex": "e18e62e5-672a-4939-afe1-68354e76aefc", + "panelRefName": "panel_e18e62e5-672a-4939-afe1-68354e76aefc", + "title": "PutRecord Bytes", + "type": "lens", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "a1f01da7-4496-4f4e-acc8-9e6efd826f52", + "w": 16, + "x": 32, + "y": 35 + }, + "panelIndex": "a1f01da7-4496-4f4e-acc8-9e6efd826f52", + "panelRefName": "panel_a1f01da7-4496-4f4e-acc8-9e6efd826f52", + "title": "GetRecords Success", + "type": "lens", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "6ddd4401-6625-42b6-9270-9bc17c8408e6", + "w": 16, + "x": 0, + "y": 35 + }, + "panelIndex": "6ddd4401-6625-42b6-9270-9bc17c8408e6", + "panelRefName": "panel_6ddd4401-6625-42b6-9270-9bc17c8408e6", + "title": "PutRecords Success", + "type": "lens", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "fb4e4fb3-91de-46c8-b3f8-ef17ba3c4773", + "w": 16, + "x": 16, + "y": 35 + }, + "panelIndex": "fb4e4fb3-91de-46c8-b3f8-ef17ba3c4773", + "panelRefName": "panel_fb4e4fb3-91de-46c8-b3f8-ef17ba3c4773", + "title": "PutRecord Success", + "type": "lens", + "version": "7.11.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat AWS] Kinesis Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "07d67a60-d872-11eb-8220-c9141cc1b15c", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "3c5d7860-d903-11eb-8220-c9141cc1b15c", + "name": "0359194f-01a1-4a5b-8040-c897bdc86638:panel_0359194f-01a1-4a5b-8040-c897bdc86638", + "type": "visualization" + }, + { + "id": "63aa5990-d86f-11eb-8220-c9141cc1b15c", + "name": "df2dc50f-c09b-4dcd-96a8-24037c576db3:panel_df2dc50f-c09b-4dcd-96a8-24037c576db3", + "type": "lens" + }, + { + "id": "9deb6a80-d870-11eb-8220-c9141cc1b15c", + "name": "5f153d11-e84a-4ac5-aec9-4fca79863744:panel_5f153d11-e84a-4ac5-aec9-4fca79863744", + "type": "lens" + }, + { + "id": "2a711450-d871-11eb-8220-c9141cc1b15c", + "name": "a7378b79-483c-4e99-97e2-9b49fd9e81da:panel_a7378b79-483c-4e99-97e2-9b49fd9e81da", + "type": "lens" + }, + { + "id": "d1468000-d86f-11eb-8220-c9141cc1b15c", + "name": "01a12917-ef1c-47b6-964a-26ef424dd0d3:panel_01a12917-ef1c-47b6-964a-26ef424dd0d3", + "type": "lens" + }, + { + "id": "6d631980-d870-11eb-8220-c9141cc1b15c", + "name": "7e5774cb-e2e5-4f11-95bc-732ed6600757:panel_7e5774cb-e2e5-4f11-95bc-732ed6600757", + "type": "lens" + }, + { + "id": "6d631980-d870-11eb-8220-c9141cc1b15c", + "name": "e18e62e5-672a-4939-afe1-68354e76aefc:panel_e18e62e5-672a-4939-afe1-68354e76aefc", + "type": "lens" + }, + { + "id": "79d713c0-d86f-11eb-8220-c9141cc1b15c", + "name": "a1f01da7-4496-4f4e-acc8-9e6efd826f52:panel_a1f01da7-4496-4f4e-acc8-9e6efd826f52", + "type": "lens" + }, + { + "id": "c68d7c30-d870-11eb-8220-c9141cc1b15c", + "name": "6ddd4401-6625-42b6-9270-9bc17c8408e6:panel_6ddd4401-6625-42b6-9270-9bc17c8408e6", + "type": "lens" + }, + { + "id": "56ac2b40-d871-11eb-8220-c9141cc1b15c", + "name": "fb4e4fb3-91de-46c8-b3f8-ef17ba3c4773:panel_fb4e4fb3-91de-46c8-b3f8-ef17ba3c4773", + "type": "lens" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:30.617Z", + "version": "WzMzNjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/0eb5a6a0-694f-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/0eb5a6a0-694f-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..7cfc129735eb --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/0eb5a6a0-694f-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,232 @@ +{ + "attributes": { + "description": "Overview of AWS Transit Gateway Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "af1453d8-04d3-4b44-a3b0-138111255a23", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "af1453d8-04d3-4b44-a3b0-138111255a23", + "panelRefName": "panel_af1453d8-04d3-4b44-a3b0-138111255a23", + "title": "filters", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "14555108-559d-4c07-b240-6e6b14254f16", + "w": 24, + "x": 0, + "y": 5 + }, + "panelIndex": "14555108-559d-4c07-b240-6e6b14254f16", + "panelRefName": "panel_14555108-559d-4c07-b240-6e6b14254f16", + "title": "Bytes In", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "9c605367-60e3-4e9c-8036-a6191dbafe4a", + "w": 24, + "x": 24, + "y": 5 + }, + "panelIndex": "9c605367-60e3-4e9c-8036-a6191dbafe4a", + "panelRefName": "panel_9c605367-60e3-4e9c-8036-a6191dbafe4a", + "title": "Packets In", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "271558e6-b208-4e2c-abfb-0a6b2dbb0c66", + "w": 24, + "x": 0, + "y": 17 + }, + "panelIndex": "271558e6-b208-4e2c-abfb-0a6b2dbb0c66", + "panelRefName": "panel_271558e6-b208-4e2c-abfb-0a6b2dbb0c66", + "title": "Bytes Out", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "41002ab1-845b-469e-9283-8a46a90e4662", + "w": 24, + "x": 24, + "y": 17 + }, + "panelIndex": "41002ab1-845b-469e-9283-8a46a90e4662", + "panelRefName": "panel_41002ab1-845b-469e-9283-8a46a90e4662", + "title": "Packets Out", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "b141f90b-739e-46f3-83c9-9c4661183837", + "w": 24, + "x": 0, + "y": 29 + }, + "panelIndex": "b141f90b-739e-46f3-83c9-9c4661183837", + "panelRefName": "panel_b141f90b-739e-46f3-83c9-9c4661183837", + "title": "Bytes Dropped - no route", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "c6a76f92-248b-4cae-a03f-7d34d58098ae", + "w": 24, + "x": 24, + "y": 29 + }, + "panelIndex": "c6a76f92-248b-4cae-a03f-7d34d58098ae", + "panelRefName": "panel_c6a76f92-248b-4cae-a03f-7d34d58098ae", + "title": "Packets Dropped - no route", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1d08d3b8-3bd7-4f90-854d-be08cb119273", + "w": 24, + "x": 0, + "y": 41 + }, + "panelIndex": "1d08d3b8-3bd7-4f90-854d-be08cb119273", + "panelRefName": "panel_1d08d3b8-3bd7-4f90-854d-be08cb119273", + "title": "Bytes Dropped - black hole", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "40e82e50-b30c-40eb-bbee-9bbfc3d3311f", + "w": 24, + "x": 24, + "y": 41 + }, + "panelIndex": "40e82e50-b30c-40eb-bbee-9bbfc3d3311f", + "panelRefName": "panel_40e82e50-b30c-40eb-bbee-9bbfc3d3311f", + "title": "Packets Dropped - black hole", + "type": "visualization", + "version": "7.6.1" + } + ], + "timeRestore": false, + "title": "[Metricbeat AWS] TransitGateway Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "0eb5a6a0-694f-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "415fed40-694f-11ea-b0ac-95d4ecb1fecd", + "name": "af1453d8-04d3-4b44-a3b0-138111255a23:panel_af1453d8-04d3-4b44-a3b0-138111255a23", + "type": "visualization" + }, + { + "id": "cd6419c0-6949-11ea-b0ac-95d4ecb1fecd", + "name": "14555108-559d-4c07-b240-6e6b14254f16:panel_14555108-559d-4c07-b240-6e6b14254f16", + "type": "visualization" + }, + { + "id": "0a36b590-694c-11ea-b0ac-95d4ecb1fecd", + "name": "9c605367-60e3-4e9c-8036-a6191dbafe4a:panel_9c605367-60e3-4e9c-8036-a6191dbafe4a", + "type": "visualization" + }, + { + "id": "dc5f65b0-6949-11ea-b0ac-95d4ecb1fecd", + "name": "271558e6-b208-4e2c-abfb-0a6b2dbb0c66:panel_271558e6-b208-4e2c-abfb-0a6b2dbb0c66", + "type": "visualization" + }, + { + "id": "10e0f270-694c-11ea-b0ac-95d4ecb1fecd", + "name": "41002ab1-845b-469e-9283-8a46a90e4662:panel_41002ab1-845b-469e-9283-8a46a90e4662", + "type": "visualization" + }, + { + "id": "01ed5990-694a-11ea-b0ac-95d4ecb1fecd", + "name": "b141f90b-739e-46f3-83c9-9c4661183837:panel_b141f90b-739e-46f3-83c9-9c4661183837", + "type": "visualization" + }, + { + "id": "007ceec0-694c-11ea-b0ac-95d4ecb1fecd", + "name": "c6a76f92-248b-4cae-a03f-7d34d58098ae:panel_c6a76f92-248b-4cae-a03f-7d34d58098ae", + "type": "visualization" + }, + { + "id": "f7c17000-6949-11ea-b0ac-95d4ecb1fecd", + "name": "1d08d3b8-3bd7-4f90-854d-be08cb119273:panel_1d08d3b8-3bd7-4f90-854d-be08cb119273", + "type": "visualization" + }, + { + "id": "c1db9b80-694b-11ea-b0ac-95d4ecb1fecd", + "name": "40e82e50-b30c-40eb-bbee-9bbfc3d3311f:panel_40e82e50-b30c-40eb-bbee-9bbfc3d3311f", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:38.811Z", + "version": "WzM0NTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/234aeda0-43b7-11e9-8697-530f39afc6eb.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/234aeda0-43b7-11e9-8697-530f39afc6eb.json new file mode 100644 index 000000000000..0d3660bb8240 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/234aeda0-43b7-11e9-8697-530f39afc6eb.json @@ -0,0 +1,210 @@ +{ + "attributes": { + "description": "Overview of AWS SQS Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "1", + "w": 12, + "x": 12, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "SQS Messages Visible", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "2", + "w": 12, + "x": 36, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "SQS Oldest Message Age in Seconds", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "3", + "w": 24, + "x": 0, + "y": 8 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "SQS Messages Received", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "4", + "w": 24, + "x": 24, + "y": 8 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "SQS Messages Deleted", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "7", + "w": 24, + "x": 0, + "y": 16 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "title": "SQS Messages Delayed", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "8", + "w": 24, + "x": 24, + "y": 16 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "title": "SQS Messages Sent", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "9", + "w": 12, + "x": 0, + "y": 0 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "title": "SQS Filters", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "10", + "w": 12, + "x": 24, + "y": 0 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "title": "SQS Empty Receives", + "type": "visualization", + "version": "7.6.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat AWS] SQS Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "234aeda0-43b7-11e9-8697-530f39afc6eb", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "f74eb760-41e8-11e9-b7a0-c99d9d127b61", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "53730d20-437e-11e9-8697-530f39afc6eb", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "1235fe50-41e7-11e9-b7a0-c99d9d127b61", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "be6c4180-41e6-11e9-b7a0-c99d9d127b61", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "dcd31cd0-41e5-11e9-b7a0-c99d9d127b61", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "dd2f2a10-41e6-11e9-b7a0-c99d9d127b61", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "b0afd3e0-43b7-11e9-8697-530f39afc6eb", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "bb82c4d0-6c25-11e9-81bc-7f4cd8b3d892", + "name": "10:panel_10", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:37.811Z", + "version": "WzM0NDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/3367c170-921f-11e9-aa19-159bf182e06f.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/3367c170-921f-11e9-aa19-159bf182e06f.json new file mode 100644 index 000000000000..d15b3b2f741a --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/3367c170-921f-11e9-aa19-159bf182e06f.json @@ -0,0 +1,883 @@ +{ + "attributes": { + "description": "Overview of AWS RDS Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "1", + "w": 17, + "x": 7, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Database Connections", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "5", + "w": 17, + "x": 7, + "y": 7 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Transaction Blocked", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "6", + "w": 7, + "x": 0, + "y": 0 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "AWS Region Filter", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "4d89e43f-299c-4f43-bde2-0ada0983ff23", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "4d89e43f-299c-4f43-bde2-0ada0983ff23", + "panelRefName": "panel_4d89e43f-299c-4f43-bde2-0ada0983ff23", + "title": "Free Storage", + "type": "lens", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "d409ab5d-84b5-4ecc-86ae-1f79a882b626", + "w": 24, + "x": 0, + "y": 15 + }, + "panelIndex": "d409ab5d-84b5-4ecc-86ae-1f79a882b626", + "panelRefName": "panel_d409ab5d-84b5-4ecc-86ae-1f79a882b626", + "title": "Read Latency", + "type": "lens", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-75b24975-5ca3-4da5-bc1a-92013a901a21", + "type": "index-pattern" + } + ], + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "75b24975-5ca3-4da5-bc1a-92013a901a21": { + "columnOrder": [ + "bfa06179-6b6f-43e5-a446-f856ff3e51bf", + "af96ca6c-7ab9-47a3-ad8b-29e1578c0076", + "6a87f496-b929-4d24-aede-325d54fedfa1", + "6a87f496-b929-4d24-aede-325d54fedfa1X0" + ], + "columns": { + "6a87f496-b929-4d24-aede-325d54fedfa1": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Write Latency (Milliseconds)", + "operationType": "formula", + "params": { + "formula": "average(aws.rds.latency.write)", + "isFormulaBroken": false + }, + "references": [ + "6a87f496-b929-4d24-aede-325d54fedfa1X0" + ], + "scale": "ratio" + }, + "6a87f496-b929-4d24-aede-325d54fedfa1X0": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Part of average(aws.rds.latency.write)", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.rds.latency.write" + }, + "af96ca6c-7ab9-47a3-ad8b-29e1578c0076": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "bfa06179-6b6f-43e5-a446-f856ff3e51bf": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.rds.db_instance.identifier", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "fallback": true, + "type": "alphabetical" + }, + "orderDirection": "asc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.rds.db_instance.identifier" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "6a87f496-b929-4d24-aede-325d54fedfa1" + ], + "layerId": "75b24975-5ca3-4da5-bc1a-92013a901a21", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "bfa06179-6b6f-43e5-a446-f856ff3e51bf", + "xAccessor": "af96ca6c-7ab9-47a3-ad8b-29e1578c0076" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide", + "yLeftExtent": { + "mode": "full" + }, + "yRightExtent": { + "mode": "full" + } + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {}, + "hidePanelTitles": false, + "type": "lens" + }, + "gridData": { + "h": 15, + "i": "1abf12dc-d009-4a02-acd4-463383d32a63", + "w": 24, + "x": 24, + "y": 15 + }, + "panelIndex": "1abf12dc-d009-4a02-acd4-463383d32a63", + "panelRefName": "panel_1abf12dc-d009-4a02-acd4-463383d32a63", + "title": "Write Latency", + "type": "lens", + "version": "7.14.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "c5476b0e-6a44-43e5-8bb4-0795c4d097c1", + "w": 24, + "x": 0, + "y": 30 + }, + "panelIndex": "c5476b0e-6a44-43e5-8bb4-0795c4d097c1", + "panelRefName": "panel_c5476b0e-6a44-43e5-8bb4-0795c4d097c1", + "title": "Insert Throughput", + "type": "lens", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "bf74bb77-3503-4682-9f0e-6df0994dce5d", + "w": 24, + "x": 24, + "y": 30 + }, + "panelIndex": "bf74bb77-3503-4682-9f0e-6df0994dce5d", + "panelRefName": "panel_bf74bb77-3503-4682-9f0e-6df0994dce5d", + "title": "Select Throughput", + "type": "lens", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-dd0a4706-5286-4976-9bc4-f5e7a4964bf6", + "type": "index-pattern" + } + ], + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "dd0a4706-5286-4976-9bc4-f5e7a4964bf6": { + "columnOrder": [ + "a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc", + "103900c0-dcfa-416f-a272-6efa09c84fce", + "18e6079e-e955-41d0-8196-d2b932cf1fa6", + "18e6079e-e955-41d0-8196-d2b932cf1fa6X0" + ], + "columns": { + "103900c0-dcfa-416f-a272-6efa09c84fce": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "18e6079e-e955-41d0-8196-d2b932cf1fa6": { + "dataType": "number", + "isBucketed": false, + "label": "average(aws.rds.cpu.total.pct)", + "operationType": "formula", + "params": { + "formula": "average(aws.rds.cpu.total.pct)", + "isFormulaBroken": false + }, + "references": [ + "18e6079e-e955-41d0-8196-d2b932cf1fa6X0" + ], + "scale": "ratio" + }, + "18e6079e-e955-41d0-8196-d2b932cf1fa6X0": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Part of average(aws.rds.cpu.total.pct)", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.rds.cpu.total.pct" + }, + "a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.rds.db_instance.identifier", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "fallback": true, + "type": "alphabetical" + }, + "orderDirection": "asc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.rds.db_instance.identifier" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "18e6079e-e955-41d0-8196-d2b932cf1fa6" + ], + "layerId": "dd0a4706-5286-4976-9bc4-f5e7a4964bf6", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc", + "xAccessor": "103900c0-dcfa-416f-a272-6efa09c84fce" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide", + "yLeftExtent": { + "mode": "full" + }, + "yRightExtent": { + "mode": "full" + } + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {}, + "hidePanelTitles": false, + "type": "lens" + }, + "gridData": { + "h": 15, + "i": "249ff0a6-3fd3-4935-85c3-0c3222d3c498", + "w": 24, + "x": 0, + "y": 45 + }, + "panelIndex": "249ff0a6-3fd3-4935-85c3-0c3222d3c498", + "panelRefName": "panel_249ff0a6-3fd3-4935-85c3-0c3222d3c498", + "title": "CPU Total Pct", + "type": "lens", + "version": "7.14.0" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-14d4ba6b-f4e1-4d40-818a-6aa829d90422", + "type": "index-pattern" + } + ], + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "14d4ba6b-f4e1-4d40-818a-6aa829d90422": { + "columnOrder": [ + "8954842c-4056-46ef-adfc-29dfc3b0cbd3", + "40493df1-c805-49eb-8dfa-9ff81f7acd4b", + "c7c3ebb2-d611-40a5-aab3-491fa36fe729", + "c7c3ebb2-d611-40a5-aab3-491fa36fe729X0" + ], + "columns": { + "40493df1-c805-49eb-8dfa-9ff81f7acd4b": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "8954842c-4056-46ef-adfc-29dfc3b0cbd3": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.rds.db_instance.identifier", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "fallback": true, + "type": "alphabetical" + }, + "orderDirection": "asc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.rds.db_instance.identifier" + }, + "c7c3ebb2-d611-40a5-aab3-491fa36fe729": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Queue Depth (Count)", + "operationType": "formula", + "params": { + "formula": "average(aws.rds.disk_queue_depth)", + "isFormulaBroken": false + }, + "references": [ + "c7c3ebb2-d611-40a5-aab3-491fa36fe729X0" + ], + "scale": "ratio" + }, + "c7c3ebb2-d611-40a5-aab3-491fa36fe729X0": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Part of Queue Depth (Count)", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.rds.disk_queue_depth" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "c7c3ebb2-d611-40a5-aab3-491fa36fe729" + ], + "layerId": "14d4ba6b-f4e1-4d40-818a-6aa829d90422", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "8954842c-4056-46ef-adfc-29dfc3b0cbd3", + "xAccessor": "40493df1-c805-49eb-8dfa-9ff81f7acd4b" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide", + "yLeftExtent": { + "mode": "full" + }, + "yRightExtent": { + "mode": "full" + } + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {}, + "hidePanelTitles": false, + "type": "lens" + }, + "gridData": { + "h": 15, + "i": "c28488ce-a20e-447f-9a68-ba49b542ab0a", + "w": 24, + "x": 24, + "y": 45 + }, + "panelIndex": "c28488ce-a20e-447f-9a68-ba49b542ab0a", + "panelRefName": "panel_c28488ce-a20e-447f-9a68-ba49b542ab0a", + "title": "Disk Queue Depth", + "type": "lens", + "version": "7.14.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "29549114-6ebf-4047-aa56-bc035f66d3b4", + "w": 24, + "x": 0, + "y": 60 + }, + "panelIndex": "29549114-6ebf-4047-aa56-bc035f66d3b4", + "panelRefName": "panel_29549114-6ebf-4047-aa56-bc035f66d3b4", + "title": "Write IOPS", + "type": "lens", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-e2611df6-ca73-4d53-b0b5-afd8b718c369", + "type": "index-pattern" + } + ], + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "e2611df6-ca73-4d53-b0b5-afd8b718c369": { + "columnOrder": [ + "53a07fa4-b348-44c7-b644-83f3617e5b5c", + "b9e82720-e098-4dd7-ac5b-f3becccd344a", + "85528f23-48f2-462f-8075-eaddd94b21f2" + ], + "columns": { + "53a07fa4-b348-44c7-b644-83f3617e5b5c": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Read IOPS (Count/Second)", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "85528f23-48f2-462f-8075-eaddd94b21f2", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.rds.db_instance.identifier" + }, + "85528f23-48f2-462f-8075-eaddd94b21f2": { + "dataType": "number", + "isBucketed": false, + "label": "Average of aws.rds.read_io.ops_per_sec", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.rds.read_io.ops_per_sec" + }, + "b9e82720-e098-4dd7-ac5b-f3becccd344a": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "85528f23-48f2-462f-8075-eaddd94b21f2" + ], + "layerId": "e2611df6-ca73-4d53-b0b5-afd8b718c369", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "53a07fa4-b348-44c7-b644-83f3617e5b5c", + "xAccessor": "b9e82720-e098-4dd7-ac5b-f3becccd344a" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide", + "yLeftExtent": { + "mode": "full" + }, + "yRightExtent": { + "mode": "full" + } + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {}, + "hidePanelTitles": false, + "type": "lens" + }, + "gridData": { + "h": 15, + "i": "addd441f-fa2b-4725-8015-619ee176ed0a", + "w": 24, + "x": 24, + "y": 60 + }, + "panelIndex": "addd441f-fa2b-4725-8015-619ee176ed0a", + "panelRefName": "panel_addd441f-fa2b-4725-8015-619ee176ed0a", + "title": "Read IOPS", + "type": "lens", + "version": "7.14.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat AWS] RDS Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "3367c170-921f-11e9-aa19-159bf182e06f", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "17fcda50-921b-11e9-aa19-159bf182e06f", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "00b29040-921d-11e9-aa19-159bf182e06f", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "b5308940-7347-11e9-816b-07687310a99a", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "68f36fb0-f0a0-11eb-b61f-a53cb4913361", + "name": "4d89e43f-299c-4f43-bde2-0ada0983ff23:panel_4d89e43f-299c-4f43-bde2-0ada0983ff23", + "type": "lens" + }, + { + "id": "f9ff3450-f094-11eb-b61f-a53cb4913361", + "name": "d409ab5d-84b5-4ecc-86ae-1f79a882b626:panel_d409ab5d-84b5-4ecc-86ae-1f79a882b626", + "type": "lens" + }, + { + "id": "8560b400-f096-11eb-b61f-a53cb4913361", + "name": "1abf12dc-d009-4a02-acd4-463383d32a63:panel_1abf12dc-d009-4a02-acd4-463383d32a63", + "type": "lens" + }, + { + "id": "metricbeat-*", + "name": "1abf12dc-d009-4a02-acd4-463383d32a63:indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "1abf12dc-d009-4a02-acd4-463383d32a63:indexpattern-datasource-layer-75b24975-5ca3-4da5-bc1a-92013a901a21", + "type": "index-pattern" + }, + { + "id": "b0077d10-f09b-11eb-b61f-a53cb4913361", + "name": "c5476b0e-6a44-43e5-8bb4-0795c4d097c1:panel_c5476b0e-6a44-43e5-8bb4-0795c4d097c1", + "type": "lens" + }, + { + "id": "41e37710-f09d-11eb-b61f-a53cb4913361", + "name": "bf74bb77-3503-4682-9f0e-6df0994dce5d:panel_bf74bb77-3503-4682-9f0e-6df0994dce5d", + "type": "lens" + }, + { + "id": "c4419a90-f091-11eb-b61f-a53cb4913361", + "name": "249ff0a6-3fd3-4935-85c3-0c3222d3c498:panel_249ff0a6-3fd3-4935-85c3-0c3222d3c498", + "type": "lens" + }, + { + "id": "metricbeat-*", + "name": "249ff0a6-3fd3-4935-85c3-0c3222d3c498:indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "249ff0a6-3fd3-4935-85c3-0c3222d3c498:indexpattern-datasource-layer-dd0a4706-5286-4976-9bc4-f5e7a4964bf6", + "type": "index-pattern" + }, + { + "id": "bbc80900-f09e-11eb-b61f-a53cb4913361", + "name": "c28488ce-a20e-447f-9a68-ba49b542ab0a:panel_c28488ce-a20e-447f-9a68-ba49b542ab0a", + "type": "lens" + }, + { + "id": "metricbeat-*", + "name": "c28488ce-a20e-447f-9a68-ba49b542ab0a:indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "c28488ce-a20e-447f-9a68-ba49b542ab0a:indexpattern-datasource-layer-14d4ba6b-f4e1-4d40-818a-6aa829d90422", + "type": "index-pattern" + }, + { + "id": "30fd4e40-f0a1-11eb-b61f-a53cb4913361", + "name": "29549114-6ebf-4047-aa56-bc035f66d3b4:panel_29549114-6ebf-4047-aa56-bc035f66d3b4", + "type": "lens" + }, + { + "id": "f757eba0-f0a0-11eb-b61f-a53cb4913361", + "name": "addd441f-fa2b-4725-8015-619ee176ed0a:panel_addd441f-fa2b-4725-8015-619ee176ed0a", + "type": "lens" + }, + { + "id": "metricbeat-*", + "name": "addd441f-fa2b-4725-8015-619ee176ed0a:indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "addd441f-fa2b-4725-8015-619ee176ed0a:indexpattern-datasource-layer-e2611df6-ca73-4d53-b0b5-afd8b718c369", + "type": "index-pattern" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:34.757Z", + "version": "WzM0MTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/44ce4680-b7ba-11e9-8349-f15f850c5cd0.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/44ce4680-b7ba-11e9-8349-f15f850c5cd0.json new file mode 100644 index 000000000000..0791784312b1 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/44ce4680-b7ba-11e9-8349-f15f850c5cd0.json @@ -0,0 +1,253 @@ +{ + "attributes": { + "description": "[Metricbeat AWS] Overview of EBS Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "1", + "w": 24, + "x": 24, + "y": 10 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Volume Write Ops", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "2", + "w": 24, + "x": 0, + "y": 10 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Volume Read Ops", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "3", + "w": 24, + "x": 24, + "y": 20 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Volume Write Bytes", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "4", + "w": 24, + "x": 0, + "y": 20 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "Volume Read Bytes", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "5", + "w": 19, + "x": 8, + "y": 0 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Volume Queue Length", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "6", + "w": 24, + "x": 24, + "y": 30 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Volume Total Write Time", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "7", + "w": 24, + "x": 0, + "y": 30 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "title": "Volume Total Read Time", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "8", + "w": 21, + "x": 27, + "y": 0 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "title": "Volume Idle Time", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "9", + "w": 8, + "x": 0, + "y": 5 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "title": "EBS Volume ID Filter", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "10", + "w": 8, + "x": 0, + "y": 0 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat AWS] EBS Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "44ce4680-b7ba-11e9-8349-f15f850c5cd0", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "f6831f30-b7b6-11e9-8349-f15f850c5cd0", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "bb3a6cd0-b7b6-11e9-8349-f15f850c5cd0", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "c0e32d50-b7b8-11e9-8349-f15f850c5cd0", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "b00c4390-b7b8-11e9-8349-f15f850c5cd0", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "fe0581b0-b7b8-11e9-8349-f15f850c5cd0", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "25384bf0-b7b9-11e9-8349-f15f850c5cd0", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "12eff7e0-b7b9-11e9-8349-f15f850c5cd0", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "67f43080-b7b9-11e9-8349-f15f850c5cd0", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "d045d120-b7b9-11e9-8349-f15f850c5cd0", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "b5308940-7347-11e9-816b-07687310a99a", + "name": "10:panel_10", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:27.567Z", + "version": "WzMzMzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/67c9f900-693e-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/67c9f900-693e-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..a98ca5e94dac --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/67c9f900-693e-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,188 @@ +{ + "attributes": { + "description": "Overview of AWS VPN Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "8ef52400-6eac-417b-936e-dce159dd5e89", + "w": 8, + "x": 0, + "y": 0 + }, + "panelIndex": "8ef52400-6eac-417b-936e-dce159dd5e89", + "panelRefName": "panel_8ef52400-6eac-417b-936e-dce159dd5e89", + "title": "Filters", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "eb78041b-afc4-458e-af92-0951b1d0cadd", + "w": 20, + "x": 8, + "y": 0 + }, + "panelIndex": "eb78041b-afc4-458e-af92-0951b1d0cadd", + "panelRefName": "panel_eb78041b-afc4-458e-af92-0951b1d0cadd", + "title": "Tunnel State Per VPN ID", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "39a9be08-98c6-470c-b76b-312a57e11e2d", + "w": 20, + "x": 28, + "y": 0 + }, + "panelIndex": "39a9be08-98c6-470c-b76b-312a57e11e2d", + "panelRefName": "panel_39a9be08-98c6-470c-b76b-312a57e11e2d", + "title": "Tunnel State Per Tunnel IP", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "5c8122a2-fbf0-4404-918e-249bf6fd7f07", + "w": 24, + "x": 0, + "y": 14 + }, + "panelIndex": "5c8122a2-fbf0-4404-918e-249bf6fd7f07", + "panelRefName": "panel_5c8122a2-fbf0-4404-918e-249bf6fd7f07", + "title": "Tunnel Data In Per VPN ID", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c", + "w": 24, + "x": 24, + "y": 14 + }, + "panelIndex": "8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c", + "panelRefName": "panel_8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c", + "title": "Tunnel Data In Per Tunnel IP", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "eb10ea7d-ffc9-4c51-9386-6f63be6322aa", + "w": 24, + "x": 0, + "y": 29 + }, + "panelIndex": "eb10ea7d-ffc9-4c51-9386-6f63be6322aa", + "panelRefName": "panel_eb10ea7d-ffc9-4c51-9386-6f63be6322aa", + "title": "Tunnel Data Out Per VPN ID", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7", + "w": 24, + "x": 24, + "y": 29 + }, + "panelIndex": "3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7", + "panelRefName": "panel_3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7", + "title": "Tunnel Data Out Per Tunnel IP", + "type": "visualization", + "version": "7.6.1" + } + ], + "timeRestore": false, + "title": "[Metricbeat AWS] VPN Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "67c9f900-693e-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "fcfc8d80-693e-11ea-b0ac-95d4ecb1fecd", + "name": "8ef52400-6eac-417b-936e-dce159dd5e89:panel_8ef52400-6eac-417b-936e-dce159dd5e89", + "type": "visualization" + }, + { + "id": "142ad600-693b-11ea-b0ac-95d4ecb1fecd", + "name": "eb78041b-afc4-458e-af92-0951b1d0cadd:panel_eb78041b-afc4-458e-af92-0951b1d0cadd", + "type": "visualization" + }, + { + "id": "58f5a3c0-6943-11ea-b0ac-95d4ecb1fecd", + "name": "39a9be08-98c6-470c-b76b-312a57e11e2d:panel_39a9be08-98c6-470c-b76b-312a57e11e2d", + "type": "visualization" + }, + { + "id": "2ee7f420-6943-11ea-b0ac-95d4ecb1fecd", + "name": "5c8122a2-fbf0-4404-918e-249bf6fd7f07:panel_5c8122a2-fbf0-4404-918e-249bf6fd7f07", + "type": "visualization" + }, + { + "id": "ea9e3d40-693a-11ea-b0ac-95d4ecb1fecd", + "name": "8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c:panel_8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c", + "type": "visualization" + }, + { + "id": "26b73e50-6943-11ea-b0ac-95d4ecb1fecd", + "name": "eb10ea7d-ffc9-4c51-9386-6f63be6322aa:panel_eb10ea7d-ffc9-4c51-9386-6f63be6322aa", + "type": "visualization" + }, + { + "id": "f58f99b0-693a-11ea-b0ac-95d4ecb1fecd", + "name": "3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7:panel_3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:40.825Z", + "version": "WzM0NzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/68ba7bd0-20b6-11ea-8f72-2f8d21e50b0c.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/68ba7bd0-20b6-11ea-8f72-2f8d21e50b0c.json new file mode 100644 index 000000000000..ce1d62b30e00 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/68ba7bd0-20b6-11ea-8f72-2f8d21e50b0c.json @@ -0,0 +1,254 @@ +{ + "attributes": { + "description": "Overview of DynamoDB AWS Cloudwatch metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "9642fcd0-464b-46ea-815c-cd2d9efc056d", + "w": 10, + "x": 0, + "y": 0 + }, + "panelIndex": "9642fcd0-464b-46ea-815c-cd2d9efc056d", + "panelRefName": "panel_9642fcd0-464b-46ea-815c-cd2d9efc056d", + "title": "Region/Account Filters", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0", + "w": 14, + "x": 10, + "y": 0 + }, + "panelIndex": "bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0", + "panelRefName": "panel_bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0", + "title": "Consumed Read Capacity Units", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "09bdf20b-43b4-47a3-a113-d34ef3b2596c", + "w": 14, + "x": 24, + "y": 0 + }, + "panelIndex": "09bdf20b-43b4-47a3-a113-d34ef3b2596c", + "panelRefName": "panel_09bdf20b-43b4-47a3-a113-d34ef3b2596c", + "title": "Consumed Write Capacity Units", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "1bd7141d-b410-4ca0-8550-f8f645d97983", + "w": 10, + "x": 38, + "y": 0 + }, + "panelIndex": "1bd7141d-b410-4ca0-8550-f8f645d97983", + "panelRefName": "panel_1bd7141d-b410-4ca0-8550-f8f645d97983", + "title": "Max Read/Write Account Limits", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "073302ad-0e44-4cd1-b16d-58f017a71816", + "w": 17, + "x": 0, + "y": 9 + }, + "panelIndex": "073302ad-0e44-4cd1-b16d-58f017a71816", + "panelRefName": "panel_073302ad-0e44-4cd1-b16d-58f017a71816", + "title": "Successful Request Latency", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "ddcbc858-d2a0-42c3-8074-74f7d08ecb60", + "w": 16, + "x": 17, + "y": 9 + }, + "panelIndex": "ddcbc858-d2a0-42c3-8074-74f7d08ecb60", + "panelRefName": "panel_ddcbc858-d2a0-42c3-8074-74f7d08ecb60", + "title": "Read Throttle Events", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "95ffd42d-b28d-4f40-b3cb-6a6ac52943e1", + "w": 15, + "x": 33, + "y": 9 + }, + "panelIndex": "95ffd42d-b28d-4f40-b3cb-6a6ac52943e1", + "panelRefName": "panel_95ffd42d-b28d-4f40-b3cb-6a6ac52943e1", + "title": "Throttle Requests", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "0a588a08-997a-422f-a5db-e56728bc6702", + "w": 17, + "x": 0, + "y": 19 + }, + "panelIndex": "0a588a08-997a-422f-a5db-e56728bc6702", + "panelRefName": "panel_0a588a08-997a-422f-a5db-e56728bc6702", + "title": "Max Request Latency Per Operation", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "897ae224-d367-4fe0-aa23-5bb13165cc67", + "w": 16, + "x": 17, + "y": 19 + }, + "panelIndex": "897ae224-d367-4fe0-aa23-5bb13165cc67", + "panelRefName": "panel_897ae224-d367-4fe0-aa23-5bb13165cc67", + "title": "Write Throttle Events", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "e81e9817-c971-454b-881a-09cec10da0e9", + "w": 15, + "x": 33, + "y": 19 + }, + "panelIndex": "e81e9817-c971-454b-881a-09cec10da0e9", + "panelRefName": "panel_e81e9817-c971-454b-881a-09cec10da0e9", + "title": "Account Provisioned Write Capacity Utilization", + "type": "visualization", + "version": "7.6.2" + } + ], + "timeRestore": false, + "title": "[Metricbeat AWS] DynamoDB Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "68ba7bd0-20b6-11ea-8f72-2f8d21e50b0c", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "bc8bd8f0-31fd-11ea-bcbf-59cb7eefc1f0", + "name": "9642fcd0-464b-46ea-815c-cd2d9efc056d:panel_9642fcd0-464b-46ea-815c-cd2d9efc056d", + "type": "visualization" + }, + { + "id": "9d284bc0-7b08-11ea-9bb4-e958b64b5685", + "name": "bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0:panel_bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0", + "type": "visualization" + }, + { + "id": "49379b70-7b07-11ea-9bb4-e958b64b5685", + "name": "09bdf20b-43b4-47a3-a113-d34ef3b2596c:panel_09bdf20b-43b4-47a3-a113-d34ef3b2596c", + "type": "visualization" + }, + { + "id": "7d1e0870-7a3f-11ea-bfa4-dfea8c457654", + "name": "1bd7141d-b410-4ca0-8550-f8f645d97983:panel_1bd7141d-b410-4ca0-8550-f8f645d97983", + "type": "visualization" + }, + { + "id": "8cf5fbe0-7b07-11ea-9bb4-e958b64b5685", + "name": "073302ad-0e44-4cd1-b16d-58f017a71816:panel_073302ad-0e44-4cd1-b16d-58f017a71816", + "type": "visualization" + }, + { + "id": "7b93bab0-7b0a-11ea-9bb4-e958b64b5685", + "name": "ddcbc858-d2a0-42c3-8074-74f7d08ecb60:panel_ddcbc858-d2a0-42c3-8074-74f7d08ecb60", + "type": "visualization" + }, + { + "id": "9f0425c0-7b0a-11ea-9bb4-e958b64b5685", + "name": "95ffd42d-b28d-4f40-b3cb-6a6ac52943e1:panel_95ffd42d-b28d-4f40-b3cb-6a6ac52943e1", + "type": "visualization" + }, + { + "id": "3dee68c0-7b0c-11ea-9bb4-e958b64b5685", + "name": "0a588a08-997a-422f-a5db-e56728bc6702:panel_0a588a08-997a-422f-a5db-e56728bc6702", + "type": "visualization" + }, + { + "id": "b403f7b0-7b15-11ea-9bb4-e958b64b5685", + "name": "897ae224-d367-4fe0-aa23-5bb13165cc67:panel_897ae224-d367-4fe0-aa23-5bb13165cc67", + "type": "visualization" + }, + { + "id": "31ad4090-2003-11ea-8f72-2f8d21e50b0c", + "name": "e81e9817-c971-454b-881a-09cec10da0e9:panel_e81e9817-c971-454b-881a-09cec10da0e9", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:26.548Z", + "version": "WzMzMjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/7ac8e1d0-28d2-11ea-ba6c-49a884eb104f.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/7ac8e1d0-28d2-11ea-ba6c-49a884eb104f.json new file mode 100644 index 000000000000..e0666508385c --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/7ac8e1d0-28d2-11ea-ba6c-49a884eb104f.json @@ -0,0 +1,166 @@ +{ + "attributes": { + "description": "Overview of AWS Lambda Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a", + "w": 14, + "x": 0, + "y": 0 + }, + "panelIndex": "8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a", + "panelRefName": "panel_8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a", + "title": "AWS Account Filter", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "443a9699-3451-44f7-8415-99a16c3f45b3", + "w": 34, + "x": 14, + "y": 0 + }, + "panelIndex": "443a9699-3451-44f7-8415-99a16c3f45b3", + "panelRefName": "panel_443a9699-3451-44f7-8415-99a16c3f45b3", + "title": "Top Errors", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "60a16bf0-2979-467a-b30e-05ea29547b41", + "w": 14, + "x": 0, + "y": 5 + }, + "panelIndex": "60a16bf0-2979-467a-b30e-05ea29547b41", + "panelRefName": "panel_60a16bf0-2979-467a-b30e-05ea29547b41", + "title": "AWS Region Filter", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "349ef0d1-fea1-4b91-b95d-7a668914e10b", + "w": 48, + "x": 0, + "y": 10 + }, + "panelIndex": "349ef0d1-fea1-4b91-b95d-7a668914e10b", + "panelRefName": "panel_349ef0d1-fea1-4b91-b95d-7a668914e10b", + "title": "Lambda Function Duration in Milliseconds", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "048b1577-5aed-48e5-8f90-147aa3d56c1a", + "w": 24, + "x": 0, + "y": 24 + }, + "panelIndex": "048b1577-5aed-48e5-8f90-147aa3d56c1a", + "panelRefName": "panel_048b1577-5aed-48e5-8f90-147aa3d56c1a", + "title": "Top Invoked Lambda Functions", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "4c8e471c-45da-47be-a866-c5bfc6d28a05", + "w": 24, + "x": 24, + "y": 24 + }, + "panelIndex": "4c8e471c-45da-47be-a866-c5bfc6d28a05", + "panelRefName": "panel_4c8e471c-45da-47be-a866-c5bfc6d28a05", + "title": "Top Throttled Lambda Functions", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat AWS] Lambda Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "7ac8e1d0-28d2-11ea-ba6c-49a884eb104f", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "deab0260-2981-11e9-86eb-a3a07a77f530", + "name": "8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a:panel_8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a", + "type": "visualization" + }, + { + "id": "4bf0a740-28d1-11ea-ba6c-49a884eb104f", + "name": "443a9699-3451-44f7-8415-99a16c3f45b3:panel_443a9699-3451-44f7-8415-99a16c3f45b3", + "type": "visualization" + }, + { + "id": "b5308940-7347-11e9-816b-07687310a99a", + "name": "60a16bf0-2979-467a-b30e-05ea29547b41:panel_60a16bf0-2979-467a-b30e-05ea29547b41", + "type": "visualization" + }, + { + "id": "39dfc8d0-28cf-11ea-ba6c-49a884eb104f", + "name": "349ef0d1-fea1-4b91-b95d-7a668914e10b:panel_349ef0d1-fea1-4b91-b95d-7a668914e10b", + "type": "visualization" + }, + { + "id": "1f3f00c0-28d1-11ea-ba6c-49a884eb104f", + "name": "048b1577-5aed-48e5-8f90-147aa3d56c1a:panel_048b1577-5aed-48e5-8f90-147aa3d56c1a", + "type": "visualization" + }, + { + "id": "915bcd50-28d1-11ea-ba6c-49a884eb104f", + "name": "4c8e471c-45da-47be-a866-c5bfc6d28a05:panel_4c8e471c-45da-47be-a866-c5bfc6d28a05", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:31.702Z", + "version": "WzMzNzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/917a07b0-178e-11ea-8650-fb606deb5be4.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/917a07b0-178e-11ea-8650-fb606deb5be4.json new file mode 100644 index 000000000000..328564e787db --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/917a07b0-178e-11ea-8650-fb606deb5be4.json @@ -0,0 +1,188 @@ +{ + "attributes": { + "description": "Overview of AWS Usage Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36", + "panelRefName": "panel_2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36", + "title": "AWS Region Filter", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "00c2b1f6-3367-4b6f-ac01-7e48b76c262a", + "w": 20, + "x": 9, + "y": 0 + }, + "panelIndex": "00c2b1f6-3367-4b6f-ac01-7e48b76c262a", + "panelRefName": "panel_00c2b1f6-3367-4b6f-ac01-7e48b76c262a", + "title": "Usage Resource Count", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "fecfe5d4-ef1c-4f38-954a-a2506d72bc5b", + "w": 18, + "x": 30, + "y": 0 + }, + "panelIndex": "fecfe5d4-ef1c-4f38-954a-a2506d72bc5b", + "panelRefName": "panel_fecfe5d4-ef1c-4f38-954a-a2506d72bc5b", + "title": "Usage API Call Count", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "69ce7461-36ad-4e7c-b541-c6a1601bf089", + "w": 9, + "x": 0, + "y": 5 + }, + "panelIndex": "69ce7461-36ad-4e7c-b541-c6a1601bf089", + "panelRefName": "panel_69ce7461-36ad-4e7c-b541-c6a1601bf089", + "title": "AWS Account Filter", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "62e86407-6ae3-47d3-9136-dd61bdf3267a", + "w": 9, + "x": 0, + "y": 10 + }, + "panelIndex": "62e86407-6ae3-47d3-9136-dd61bdf3267a", + "panelRefName": "panel_62e86407-6ae3-47d3-9136-dd61bdf3267a", + "title": "AWS Service Filter", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "196a044c-5c20-4417-8aa0-f60fc502e46c", + "w": 48, + "x": 0, + "y": 15 + }, + "panelIndex": "196a044c-5c20-4417-8aa0-f60fc502e46c", + "panelRefName": "panel_196a044c-5c20-4417-8aa0-f60fc502e46c", + "title": "Usage Resource Count Per Service", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "022941b7-01a1-4570-86e9-d03451d4e102", + "w": 48, + "x": 0, + "y": 25 + }, + "panelIndex": "022941b7-01a1-4570-86e9-d03451d4e102", + "panelRefName": "panel_022941b7-01a1-4570-86e9-d03451d4e102", + "title": "Usage API Call Count Per Service", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat AWS] Usage Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "917a07b0-178e-11ea-8650-fb606deb5be4", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "b5308940-7347-11e9-816b-07687310a99a", + "name": "2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36:panel_2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36", + "type": "visualization" + }, + { + "id": "9202d1a0-178c-11ea-8650-fb606deb5be4", + "name": "00c2b1f6-3367-4b6f-ac01-7e48b76c262a:panel_00c2b1f6-3367-4b6f-ac01-7e48b76c262a", + "type": "visualization" + }, + { + "id": "681aab60-178c-11ea-8650-fb606deb5be4", + "name": "fecfe5d4-ef1c-4f38-954a-a2506d72bc5b:panel_fecfe5d4-ef1c-4f38-954a-a2506d72bc5b", + "type": "visualization" + }, + { + "id": "deab0260-2981-11e9-86eb-a3a07a77f530", + "name": "69ce7461-36ad-4e7c-b541-c6a1601bf089:panel_69ce7461-36ad-4e7c-b541-c6a1601bf089", + "type": "visualization" + }, + { + "id": "2929edb0-178e-11ea-8650-fb606deb5be4", + "name": "62e86407-6ae3-47d3-9136-dd61bdf3267a:panel_62e86407-6ae3-47d3-9136-dd61bdf3267a", + "type": "visualization" + }, + { + "id": "59e2e110-178d-11ea-8650-fb606deb5be4", + "name": "196a044c-5c20-4417-8aa0-f60fc502e46c:panel_196a044c-5c20-4417-8aa0-f60fc502e46c", + "type": "visualization" + }, + { + "id": "75ebfda0-1789-11ea-8650-fb606deb5be4", + "name": "022941b7-01a1-4570-86e9-d03451d4e102:panel_022941b7-01a1-4570-86e9-d03451d4e102", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:39.859Z", + "version": "WzM0NjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-billing-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-billing-overview.ndjson deleted file mode 100644 index 26cef205fb77..000000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-billing-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Account Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.account.name\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"account name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Account Filter [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"deab0260-2981-11e9-86eb-a3a07a77f530","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total Unblended Cost [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cf04e620-e648-11ea-bdad-df8839db1393\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"aws.billing.group_definition.key : \\\"AZ\\\"\"},\"hide_last_value_indicator\":true,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=2d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"aws.billing.group_definition.key : \\\"AZ\\\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total Unblended Cost\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.billing.UnblendedCost.amount\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"override_index_pattern\":1,\"point_size\":1,\"separate_axis\":0,\"series_drop_last_bucket\":0,\"series_index_pattern\":\"metricbeat-*\",\"series_interval\":\">=2d\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"kibana\",\"split_mode\":\"filter\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"tooltip_mode\":\"show_all\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"Total Unblended Cost [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1731c440-e649-11ea-a838-3f4a45f85600","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:25.535Z","version":"WzMzMTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Availability Zone Utilization [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"exclude\":\"NoAZ\",\"field\":\"aws.billing.group_by.AZ\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Availability Zone Utilization [Metricbeat AWS]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"a5670a20-e65a-11ea-a838-3f4a45f85600","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:25.535Z","version":"WzMzMTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total Estimated Charges [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"88a80e30-1530-11ea-961e-c1db9cc6166e\"}],\"bar_color_rules\":[{\"id\":\"ebb52700-1531-11ea-961e-c1db9cc6166e\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"aws.billing.EstimatedCharges : * and not (aws.billing.ServiceName : * )\"},\"gauge_color_rules\":[{\"id\":\"e8a045e0-1531-11ea-961e-c1db9cc6166e\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"hide_last_value_indicator\":true,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"aws.billing.EstimatedCharges : * and not (aws.billing.ServiceName : * )\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total Estimated Charges\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.billing.EstimatedCharges\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"override_index_pattern\":1,\"point_size\":1,\"separate_axis\":0,\"series_drop_last_bucket\":0,\"series_index_pattern\":\"metricbeat-*\",\"series_interval\":\">=1d\",\"series_time_field\":\"@timestamp\",\"split_color_mode\":\"gradient\",\"split_mode\":\"filter\",\"stacked\":\"none\",\"time_range_mode\":\"last_value\",\"value_template\":\"${{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"tooltip_mode\":\"show_all\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"Total Estimated Charges [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"83f08eb0-1532-11ea-841c-01bf20a6c8ba","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:25.535Z","version":"WzMzMTcsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3":{"columnOrder":["5d850e8e-f3e0-4ad2-9697-b8c00c03f753","a1f5b3b8-41da-452b-8683-7a9ca6b6267f","75188758-7734-4fc3-af1d-297c455715f0"],"columns":{"5d850e8e-f3e0-4ad2-9697-b8c00c03f753":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Service Name","operationType":"terms","params":{"orderBy":{"columnId":"75188758-7734-4fc3-af1d-297c455715f0","type":"column"},"orderDirection":"desc","size":5},"scale":"ordinal","sourceField":"aws.billing.group_by.SERVICE"},"75188758-7734-4fc3-af1d-297c455715f0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total Unblended Cost","operationType":"sum","scale":"ratio","sourceField":"aws.billing.UnblendedCost.amount"},"a1f5b3b8-41da-452b-8683-7a9ca6b6267f":{"dataType":"string","isBucketed":true,"label":"Top values of aws.billing.group_by.aws:createdBy","operationType":"terms","params":{"orderBy":{"columnId":"75188758-7734-4fc3-af1d-297c455715f0","type":"column"},"orderDirection":"desc","size":10},"scale":"ordinal","sourceField":"aws.billing.group_by.aws:createdBy"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["75188758-7734-4fc3-af1d-297c455715f0"],"layerId":"cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3","seriesType":"bar_stacked","splitAccessor":"a1f5b3b8-41da-452b-8683-7a9ca6b6267f","xAccessor":"5d850e8e-f3e0-4ad2-9697-b8c00c03f753"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar_stacked"}},"title":"Cost Per Service Per User [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"b3da5ac0-e6f1-11ea-a5b5-d5a0accaec95","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:25.535Z","version":"WzMzMTgsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3":{"columnOrder":["a1f5b3b8-41da-452b-8683-7a9ca6b6267f","75188758-7734-4fc3-af1d-297c455715f0"],"columns":{"75188758-7734-4fc3-af1d-297c455715f0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total Unblended Cost","operationType":"sum","scale":"ratio","sourceField":"aws.billing.UnblendedCost.amount"},"a1f5b3b8-41da-452b-8683-7a9ca6b6267f":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Top Users","operationType":"terms","params":{"orderBy":{"columnId":"75188758-7734-4fc3-af1d-297c455715f0","type":"column"},"orderDirection":"desc","size":10},"scale":"ordinal","sourceField":"aws.billing.group_by.aws:createdBy"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["75188758-7734-4fc3-af1d-297c455715f0"],"layerId":"cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3","seriesType":"bar_horizontal","xAccessor":"a1f5b3b8-41da-452b-8683-7a9ca6b6267f"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar_horizontal"}},"title":"High Spenders [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"d7b399c0-e6f1-11ea-a5b5-d5a0accaec95","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:25.535Z","version":"WzMzMTksMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"dc597043-d867-4f94-ae90-f31ffc0c2674":{"columnOrder":["ea87bf3d-0a35-424b-b00b-3614c431b135","faa5dba4-1fab-4f88-b67f-28bafa26a32d","d54f4e58-d8dd-4404-8da9-12b667dd7910"],"columns":{"d54f4e58-d8dd-4404-8da9-12b667dd7910":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Estimated Charges","operationType":"average","scale":"ratio","sourceField":"aws.billing.EstimatedCharges"},"ea87bf3d-0a35-424b-b00b-3614c431b135":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Service Names","operationType":"terms","params":{"orderBy":{"columnId":"d54f4e58-d8dd-4404-8da9-12b667dd7910","type":"column"},"orderDirection":"desc","size":10},"scale":"ordinal","sourceField":"aws.billing.ServiceName"},"faa5dba4-1fab-4f88-b67f-28bafa26a32d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1d"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["d54f4e58-d8dd-4404-8da9-12b667dd7910"],"layerId":"dc597043-d867-4f94-ae90-f31ffc0c2674","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"ea87bf3d-0a35-424b-b00b-3614c431b135","xAccessor":"faa5dba4-1fab-4f88-b67f-28bafa26a32d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Top 10 Estimated Charges per Service Name [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"cde34840-e6f2-11ea-a5b5-d5a0accaec95","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-dc597043-d867-4f94-ae90-f31ffc0c2674","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:25.535Z","version":"WzMzMjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Daily Unblended Cost [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"aws.billing.group_definition.key : \\\"AZ\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"rgba(118,208,7,1)\",\"fill\":\"1\",\"filter\":{\"language\":\"kuery\",\"query\":\"aws.billing.group_definition.key : \\\"AZ\\\"\"},\"formatter\":\"number\",\"hide_in_legend\":1,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total Unblended Cost\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.billing.UnblendedCost.amount\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"filter\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":0,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Daily Unblended Cost [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3e091620-e64b-11ea-a838-3f4a45f85600","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:25.535Z","version":"WzMzMjEsMV0="} -{"attributes":{"description":"Overview of AWS Billing Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":5,\"i\":\"89dccfe8-a25e-44ea-afdb-ff01ab1f05d6\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"89dccfe8-a25e-44ea-afdb-ff01ab1f05d6\",\"panelRefName\":\"panel_89dccfe8-a25e-44ea-afdb-ff01ab1f05d6\",\"title\":\"AWS Account Filter\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"f1db16b5-ce0a-4f21-885f-434c16346c26\",\"w\":8,\"x\":9,\"y\":0},\"panelIndex\":\"f1db16b5-ce0a-4f21-885f-434c16346c26\",\"panelRefName\":\"panel_f1db16b5-ce0a-4f21-885f-434c16346c26\",\"title\":\"Current Total Unblended Cost\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"57912f48-42ec-4d3e-ba54-bf94757d1eec\",\"w\":31,\"x\":17,\"y\":0},\"panelIndex\":\"57912f48-42ec-4d3e-ba54-bf94757d1eec\",\"panelRefName\":\"panel_57912f48-42ec-4d3e-ba54-bf94757d1eec\",\"title\":\"Availability Zone Utilization\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":13,\"i\":\"221aab02-2747-4d84-9dde-028ccd51bdce\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"221aab02-2747-4d84-9dde-028ccd51bdce\",\"panelRefName\":\"panel_221aab02-2747-4d84-9dde-028ccd51bdce\",\"title\":\"Total Estimated Charges For This Month\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":20,\"i\":\"376f236b-1365-4e80-8076-eec88c1a67bd\",\"w\":24,\"x\":0,\"y\":18},\"panelIndex\":\"376f236b-1365-4e80-8076-eec88c1a67bd\",\"panelRefName\":\"panel_376f236b-1365-4e80-8076-eec88c1a67bd\",\"title\":\"Cost Per Service Per User\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":20,\"i\":\"dd5220c2-dc8a-4d3e-964b-6137d1e447ad\",\"w\":24,\"x\":24,\"y\":18},\"panelIndex\":\"dd5220c2-dc8a-4d3e-964b-6137d1e447ad\",\"panelRefName\":\"panel_dd5220c2-dc8a-4d3e-964b-6137d1e447ad\",\"title\":\"High Spenders\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4\",\"w\":24,\"x\":0,\"y\":38},\"panelIndex\":\"1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4\",\"panelRefName\":\"panel_1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4\",\"title\":\"Top 10 Estimated Charges per Service Name\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":18,\"i\":\"60181fec-fea9-4f99-b5f9-a53ffbc2ac65\",\"w\":24,\"x\":24,\"y\":38},\"panelIndex\":\"60181fec-fea9-4f99-b5f9-a53ffbc2ac65\",\"panelRefName\":\"panel_60181fec-fea9-4f99-b5f9-a53ffbc2ac65\",\"title\":\"Daily Unblended Cost\",\"type\":\"visualization\",\"version\":\"7.11.0\"}]","timeRestore":false,"title":"[Metricbeat AWS] Billing Overview","version":1},"coreMigrationVersion":"8.0.0","id":"e6776b10-1534-11ea-841c-01bf20a6c8ba","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"deab0260-2981-11e9-86eb-a3a07a77f530","name":"89dccfe8-a25e-44ea-afdb-ff01ab1f05d6:panel_89dccfe8-a25e-44ea-afdb-ff01ab1f05d6","type":"visualization"},{"id":"1731c440-e649-11ea-a838-3f4a45f85600","name":"f1db16b5-ce0a-4f21-885f-434c16346c26:panel_f1db16b5-ce0a-4f21-885f-434c16346c26","type":"visualization"},{"id":"a5670a20-e65a-11ea-a838-3f4a45f85600","name":"57912f48-42ec-4d3e-ba54-bf94757d1eec:panel_57912f48-42ec-4d3e-ba54-bf94757d1eec","type":"visualization"},{"id":"83f08eb0-1532-11ea-841c-01bf20a6c8ba","name":"221aab02-2747-4d84-9dde-028ccd51bdce:panel_221aab02-2747-4d84-9dde-028ccd51bdce","type":"visualization"},{"id":"b3da5ac0-e6f1-11ea-a5b5-d5a0accaec95","name":"376f236b-1365-4e80-8076-eec88c1a67bd:panel_376f236b-1365-4e80-8076-eec88c1a67bd","type":"lens"},{"id":"d7b399c0-e6f1-11ea-a5b5-d5a0accaec95","name":"dd5220c2-dc8a-4d3e-964b-6137d1e447ad:panel_dd5220c2-dc8a-4d3e-964b-6137d1e447ad","type":"lens"},{"id":"cde34840-e6f2-11ea-a5b5-d5a0accaec95","name":"1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4:panel_1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4","type":"lens"},{"id":"3e091620-e64b-11ea-a838-3f4a45f85600","name":"60181fec-fea9-4f99-b5f9-a53ffbc2ac65:panel_60181fec-fea9-4f99-b5f9-a53ffbc2ac65","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:25.535Z","version":"WzMzMTMsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-dynamodb-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-dynamodb-overview.ndjson deleted file mode 100644 index 7f9f7acafbed..000000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-dynamodb-overview.ndjson +++ /dev/null @@ -1,11 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Region/Account Filters [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"cloud.account.name\",\"id\":\"1549512126406\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"account name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Region/Account Filters [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"bc8bd8f0-31fd-11ea-bcbf-59cb7eefc1f0","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DynamoDB Consumed Read Capacity Units [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"43e58670-7b05-11ea-8ef8-01625a2f68ac\"}],\"bar_color_rules\":[{\"id\":\"3c733ea0-7b05-11ea-8ef8-01625a2f68ac\"}],\"drop_last_bucket\":1,\"gauge_color_rules\":[{\"id\":\"499c62a0-7b05-11ea-8ef8-01625a2f68ac\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Consumed Read Capacity Units\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.dynamodb.metrics.ConsumedReadCapacityUnits.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"aws.dimensions.TableName\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DynamoDB Consumed Read Capacity Units [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9d284bc0-7b08-11ea-9bb4-e958b64b5685","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DynamoDB Consumed Write Capacity Units [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"43e58670-7b05-11ea-8ef8-01625a2f68ac\"}],\"bar_color_rules\":[{\"id\":\"3c733ea0-7b05-11ea-8ef8-01625a2f68ac\"}],\"drop_last_bucket\":1,\"gauge_color_rules\":[{\"id\":\"499c62a0-7b05-11ea-8ef8-01625a2f68ac\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Consumed Write Capacity Units\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.dynamodb.metrics.ConsumedWriteCapacityUnits.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"aws.dimensions.TableName\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DynamoDB Consumed Write Capacity Units [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"49379b70-7b07-11ea-9bb4-e958b64b5685","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"DynamoDB Max Read/Write Account Limits [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Reads\",\"field\":\"aws.dynamodb.metrics.AccountMaxReads.max\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Table Reads\",\"field\":\"aws.dynamodb.metrics.AccountMaxTableLevelReads.max\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Writes\",\"field\":\"aws.dynamodb.metrics.AccountMaxWrites.max\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Table Writes\",\"field\":\"aws.dynamodb.metrics.AccountMaxTableLevelWrites.max\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"x\":null,\"y\":[{\"accessor\":0,\"aggType\":\"max\",\"format\":{\"id\":\"number\",\"params\":{\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Reads\",\"params\":{}},{\"accessor\":1,\"aggType\":\"max\",\"format\":{\"id\":\"number\",\"params\":{\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Table Reads\",\"params\":{}},{\"accessor\":2,\"aggType\":\"max\",\"format\":{\"id\":\"number\",\"params\":{\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Writes\",\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Reads\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"2\",\"label\":\"Table Reads\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Writes\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"4\",\"label\":\"Table Writes\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Account Max Reads\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"DynamoDB Max Read/Write Account Limits [Metricbeat AWS]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"7d1e0870-7a3f-11ea-bfa4-dfea8c457654","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DynamoDB Successful Request Latency [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"43e58670-7b05-11ea-8ef8-01625a2f68ac\"}],\"bar_color_rules\":[{\"id\":\"3c733ea0-7b05-11ea-8ef8-01625a2f68ac\"}],\"drop_last_bucket\":1,\"gauge_color_rules\":[{\"id\":\"499c62a0-7b05-11ea-8ef8-01625a2f68ac\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Successful Request Latency\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.dynamodb.metrics.SuccessfulRequestLatency.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"aws.dimensions.TableName\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DynamoDB Successful Request Latency [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8cf5fbe0-7b07-11ea-9bb4-e958b64b5685","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DynamoDB Read Throttle Events [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Read Throttle Events\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.dynamodb.metrics.ReadThrottleEvents.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TableName\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DynamoDB Read Throttle Events [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7b93bab0-7b0a-11ea-9bb4-e958b64b5685","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DynamoDB Throttle Requests [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Throttled Requests\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.dynamodb.metrics.ThrottledRequests.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TableName\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DynamoDB Throttle Requests [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9f0425c0-7b0a-11ea-9bb4-e958b64b5685","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DynamoDB Max Request Latency Per Operation [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Max Request Latency Per Operation\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.dynamodb.metrics.SuccessfulRequestLatency.max\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.Operation\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DynamoDB Max Request Latency Per Operation [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3dee68c0-7b0c-11ea-9bb4-e958b64b5685","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DynamoDB Write Throttle Events [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Write Throttle Events\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.dynamodb.metrics.WriteThrottleEvents.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TableName\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DynamoDB Write Throttle Events [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b403f7b0-7b15-11ea-9bb4-e958b64b5685","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"DynamoDB Account Provisioned Capacity Utilization [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Write Utilization\",\"field\":\"aws.dynamodb.metrics.AccountProvisionedWriteCapacityUtilization.avg\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Read Utilization\",\"field\":\"aws.dynamodb.metrics.AccountProvisionedReadCapacityUtilization.avg\"},\"schema\":\"metric\",\"type\":\"max\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"HH:mm:ss\"}},\"label\":\"@timestamp per 30 seconds\",\"params\":{\"bounds\":{\"max\":\"2020-04-10T10:29:58.462Z\",\"min\":\"2020-04-10T10:14:58.462Z\"},\"date\":true,\"format\":\"HH:mm:ss\",\"interval\":\"PT30S\",\"intervalESUnit\":\"s\",\"intervalESValue\":30}},\"y\":[{\"accessor\":1,\"aggType\":\"max\",\"format\":{\"id\":\"number\",\"params\":{\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Write Utilization\",\"params\":{}},{\"accessor\":2,\"aggType\":\"max\",\"format\":{\"id\":\"number\",\"params\":{\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Read Utilization\",\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Write Utilization\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Read Utilization\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#34130C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Write Utilization\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"DynamoDB Account Provisioned Capacity Utilization [Metricbeat AWS]\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"31ad4090-2003-11ea-8f72-2f8d21e50b0c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMzIsMV0="} -{"attributes":{"description":"Overview of DynamoDB AWS Cloudwatch metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"9642fcd0-464b-46ea-815c-cd2d9efc056d\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"9642fcd0-464b-46ea-815c-cd2d9efc056d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Region/Account Filters\",\"panelRefName\":\"panel_9642fcd0-464b-46ea-815c-cd2d9efc056d\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0\",\"w\":14,\"x\":10,\"y\":0},\"panelIndex\":\"bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Consumed Read Capacity Units\",\"panelRefName\":\"panel_bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"09bdf20b-43b4-47a3-a113-d34ef3b2596c\",\"w\":14,\"x\":24,\"y\":0},\"panelIndex\":\"09bdf20b-43b4-47a3-a113-d34ef3b2596c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Consumed Write Capacity Units\",\"panelRefName\":\"panel_09bdf20b-43b4-47a3-a113-d34ef3b2596c\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1bd7141d-b410-4ca0-8550-f8f645d97983\",\"w\":10,\"x\":38,\"y\":0},\"panelIndex\":\"1bd7141d-b410-4ca0-8550-f8f645d97983\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Max Read/Write Account Limits\",\"panelRefName\":\"panel_1bd7141d-b410-4ca0-8550-f8f645d97983\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"073302ad-0e44-4cd1-b16d-58f017a71816\",\"w\":17,\"x\":0,\"y\":9},\"panelIndex\":\"073302ad-0e44-4cd1-b16d-58f017a71816\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Successful Request Latency\",\"panelRefName\":\"panel_073302ad-0e44-4cd1-b16d-58f017a71816\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"ddcbc858-d2a0-42c3-8074-74f7d08ecb60\",\"w\":16,\"x\":17,\"y\":9},\"panelIndex\":\"ddcbc858-d2a0-42c3-8074-74f7d08ecb60\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Read Throttle Events\",\"panelRefName\":\"panel_ddcbc858-d2a0-42c3-8074-74f7d08ecb60\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"95ffd42d-b28d-4f40-b3cb-6a6ac52943e1\",\"w\":15,\"x\":33,\"y\":9},\"panelIndex\":\"95ffd42d-b28d-4f40-b3cb-6a6ac52943e1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Throttle Requests\",\"panelRefName\":\"panel_95ffd42d-b28d-4f40-b3cb-6a6ac52943e1\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"0a588a08-997a-422f-a5db-e56728bc6702\",\"w\":17,\"x\":0,\"y\":19},\"panelIndex\":\"0a588a08-997a-422f-a5db-e56728bc6702\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Max Request Latency Per Operation\",\"panelRefName\":\"panel_0a588a08-997a-422f-a5db-e56728bc6702\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"897ae224-d367-4fe0-aa23-5bb13165cc67\",\"w\":16,\"x\":17,\"y\":19},\"panelIndex\":\"897ae224-d367-4fe0-aa23-5bb13165cc67\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Write Throttle Events\",\"panelRefName\":\"panel_897ae224-d367-4fe0-aa23-5bb13165cc67\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"e81e9817-c971-454b-881a-09cec10da0e9\",\"w\":15,\"x\":33,\"y\":19},\"panelIndex\":\"e81e9817-c971-454b-881a-09cec10da0e9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Account Provisioned Write Capacity Utilization\",\"panelRefName\":\"panel_e81e9817-c971-454b-881a-09cec10da0e9\"}]","timeRestore":false,"title":"[Metricbeat AWS] DynamoDB Overview","version":1},"coreMigrationVersion":"8.0.0","id":"68ba7bd0-20b6-11ea-8f72-2f8d21e50b0c","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"bc8bd8f0-31fd-11ea-bcbf-59cb7eefc1f0","name":"9642fcd0-464b-46ea-815c-cd2d9efc056d:panel_9642fcd0-464b-46ea-815c-cd2d9efc056d","type":"visualization"},{"id":"9d284bc0-7b08-11ea-9bb4-e958b64b5685","name":"bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0:panel_bb4b0cfa-7d6f-48e3-913e-2713c5aa3fe0","type":"visualization"},{"id":"49379b70-7b07-11ea-9bb4-e958b64b5685","name":"09bdf20b-43b4-47a3-a113-d34ef3b2596c:panel_09bdf20b-43b4-47a3-a113-d34ef3b2596c","type":"visualization"},{"id":"7d1e0870-7a3f-11ea-bfa4-dfea8c457654","name":"1bd7141d-b410-4ca0-8550-f8f645d97983:panel_1bd7141d-b410-4ca0-8550-f8f645d97983","type":"visualization"},{"id":"8cf5fbe0-7b07-11ea-9bb4-e958b64b5685","name":"073302ad-0e44-4cd1-b16d-58f017a71816:panel_073302ad-0e44-4cd1-b16d-58f017a71816","type":"visualization"},{"id":"7b93bab0-7b0a-11ea-9bb4-e958b64b5685","name":"ddcbc858-d2a0-42c3-8074-74f7d08ecb60:panel_ddcbc858-d2a0-42c3-8074-74f7d08ecb60","type":"visualization"},{"id":"9f0425c0-7b0a-11ea-9bb4-e958b64b5685","name":"95ffd42d-b28d-4f40-b3cb-6a6ac52943e1:panel_95ffd42d-b28d-4f40-b3cb-6a6ac52943e1","type":"visualization"},{"id":"3dee68c0-7b0c-11ea-9bb4-e958b64b5685","name":"0a588a08-997a-422f-a5db-e56728bc6702:panel_0a588a08-997a-422f-a5db-e56728bc6702","type":"visualization"},{"id":"b403f7b0-7b15-11ea-9bb4-e958b64b5685","name":"897ae224-d367-4fe0-aa23-5bb13165cc67:panel_897ae224-d367-4fe0-aa23-5bb13165cc67","type":"visualization"},{"id":"31ad4090-2003-11ea-8f72-2f8d21e50b0c","name":"e81e9817-c971-454b-881a-09cec10da0e9:panel_e81e9817-c971-454b-881a-09cec10da0e9","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:26.548Z","version":"WzMzMjIsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ebs-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ebs-overview.ndjson deleted file mode 100644 index ad19caa05dc0..000000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ebs-overview.ndjson +++ /dev/null @@ -1,11 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EBS Volume Write Ops [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of Write Operation\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ebs.metrics.VolumeWriteOps.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VolumeId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EBS Volume Write Ops [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f6831f30-b7b6-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzMzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EBS Volume Read Ops [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of Read Operation\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ebs.metrics.VolumeReadOps.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VolumeId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EBS Volume Read Ops [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bb3a6cd0-b7b6-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzMzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EBS Volume Write Bytes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Volume Write Bytes\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ebs.metrics.VolumeWriteBytes.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VolumeId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EBS Volume Write Bytes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c0e32d50-b7b8-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzMzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EBS Volume Read Bytes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Volume Read Bytes\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ebs.metrics.VolumeReadBytes.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VolumeId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EBS Volume Read Bytes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b00c4390-b7b8-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzMzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EBS Volume Queue Length [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Volume Queue Length\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ebs.metrics.VolumeQueueLength.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VolumeId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EBS Volume Queue Length [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fe0581b0-b7b8-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzMzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EBS Volume Total Write Time [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Volume Total Write Time\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ebs.metrics.VolumeTotalWriteTime.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VolumeId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EBS Volume Total Write Time [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"25384bf0-b7b9-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzMzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EBS Volume Total Read Time [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Volume Total Read Time\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ebs.metrics.VolumeTotalReadTime.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VolumeId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EBS Volume Total Read Time [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"12eff7e0-b7b9-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzNDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EBS Volume Idle Time [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_min\":\"0\",\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,1\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Volume Idle Time\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ebs.metrics.VolumeIdleTime.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VolumeId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EBS Volume Idle Time [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"67f43080-b7b9-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzNDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"EBS Volume ID Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"aws.dimensions.VolumeId\",\"id\":\"1565034367477\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"volume id\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"EBS Volume ID Filter [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"d045d120-b7b9-11e9-8349-f15f850c5cd0","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzNDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Region Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Region Filter\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b5308940-7347-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjMsMV0="} -{"attributes":{"description":"[Metricbeat AWS] Overview of EBS Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":24,\"x\":24,\"y\":10},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Volume Write Ops\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":24,\"x\":0,\"y\":10},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Volume Read Ops\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":20},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Volume Write Bytes\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"4\",\"w\":24,\"x\":0,\"y\":20},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Volume Read Bytes\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5\",\"w\":19,\"x\":8,\"y\":0},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Volume Queue Length\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Volume Total Write Time\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"7\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Volume Total Read Time\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"8\",\"w\":21,\"x\":27,\"y\":0},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Volume Idle Time\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"9\",\"w\":8,\"x\":0,\"y\":5},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"EBS Volume ID Filter\",\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"10\",\"w\":8,\"x\":0,\"y\":0},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"}]","timeRestore":false,"title":"[Metricbeat AWS] EBS Overview","version":1},"coreMigrationVersion":"8.0.0","id":"44ce4680-b7ba-11e9-8349-f15f850c5cd0","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"f6831f30-b7b6-11e9-8349-f15f850c5cd0","name":"1:panel_1","type":"visualization"},{"id":"bb3a6cd0-b7b6-11e9-8349-f15f850c5cd0","name":"2:panel_2","type":"visualization"},{"id":"c0e32d50-b7b8-11e9-8349-f15f850c5cd0","name":"3:panel_3","type":"visualization"},{"id":"b00c4390-b7b8-11e9-8349-f15f850c5cd0","name":"4:panel_4","type":"visualization"},{"id":"fe0581b0-b7b8-11e9-8349-f15f850c5cd0","name":"5:panel_5","type":"visualization"},{"id":"25384bf0-b7b9-11e9-8349-f15f850c5cd0","name":"6:panel_6","type":"visualization"},{"id":"12eff7e0-b7b9-11e9-8349-f15f850c5cd0","name":"7:panel_7","type":"visualization"},{"id":"67f43080-b7b9-11e9-8349-f15f850c5cd0","name":"8:panel_8","type":"visualization"},{"id":"d045d120-b7b9-11e9-8349-f15f850c5cd0","name":"9:panel_9","type":"visualization"},{"id":"b5308940-7347-11e9-816b-07687310a99a","name":"10:panel_10","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:27.567Z","version":"WzMzMzMsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ec2-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ec2-overview.ndjson deleted file mode 100644 index 838761b02804..000000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-ec2-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EC2 DiskIO Write Bytes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"23428b30-f7f2-11e8-bff8-21537b07dd44\"}],\"bar_color_rules\":[{\"id\":\"2592bcc0-f7f2-11e8-bff8-21537b07dd44\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS EC2 DiskIO Write Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.ec2.diskio.write.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloud.instance.id\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"10\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EC2 DiskIO Write Bytes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fed59380-f7f8-11e8-af03-c999c9dea608-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:28.616Z","version":"WzMzNDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EC2 Status Check Failed [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"d13f6b50-f7f6-11e8-bff8-21537b07dd44\"}],\"bar_color_rules\":[{\"id\":\"ad6d62d0-f7f7-11e8-bff8-21537b07dd44\"}],\"gauge_color_rules\":[{\"id\":\"b0c5b590-f7f7-11e8-bff8-21537b07dd44\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"EC2 Status Check Failed\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ec2.status.check_failed\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.id\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS EC2 Status Check Failed\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9e8c6030-f7f8-11e8-af03-c999c9dea608-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:28.616Z","version":"WzMzNDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EC2 Network In Bytes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"23428b30-f7f2-11e8-bff8-21537b07dd44\"}],\"bar_color_rules\":[{\"id\":\"2592bcc0-f7f2-11e8-bff8-21537b07dd44\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS EC2 Network In Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.ec2.network.in.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloud.instance.id\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"10\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EC2 Network In Bytes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"15818fd0-f7f9-11e8-af03-c999c9dea608-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:28.616Z","version":"WzMzNDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EC2 Network Out Bytes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"23428b30-f7f2-11e8-bff8-21537b07dd44\"}],\"bar_color_rules\":[{\"id\":\"2592bcc0-f7f2-11e8-bff8-21537b07dd44\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS EC2 Network Out Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.ec2.network.out.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloud.instance.id\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"10\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EC2 Network Out Bytes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"233b3400-f7f9-11e8-af03-c999c9dea608-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:28.616Z","version":"WzMzNDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EC2 DiskIO Read Bytes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"23428b30-f7f2-11e8-bff8-21537b07dd44\"}],\"bar_color_rules\":[{\"id\":\"2592bcc0-f7f2-11e8-bff8-21537b07dd44\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS EC2 DiskIO Read Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.ec2.diskio.read.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloud.instance.id\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"10\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"EC2 DiskIO Read Bytes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f1db6ec0-f7f8-11e8-af03-c999c9dea608-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:28.616Z","version":"WzMzNDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EC2 CPU Utilization [Metricbeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"23428b30-f7f2-11e8-bff8-21537b07dd44\"}],\"bar_color_rules\":[{\"id\":\"2592bcc0-f7f2-11e8-bff8-21537b07dd44\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS EC2 CPU Utilization ECS\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ec2.cpu.total.pct\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloud.instance.id\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"AWS EC2 CPU Utilization ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"be8828d0-f7f6-11e8-af03-c999c9dea608-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzMzOTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Account Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.account.name\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"account name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Account Filter [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"deab0260-2981-11e9-86eb-a3a07a77f530","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"EC2 Instance State [Metricbeat AWS] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"16\": \"#629E51\", \"272\": \"#DEDAF7\", \"80\": \"#E24D42\", \"running\": \"#7EB26D\", \"stopped\": \"#E24D42\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"EC2 Instance State\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"\",\"field\":\"aws.ec2.instance.state.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"EC2 Instance State [Metricbeat AWS] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"09db13f0-2bdd-11e9-9fe1-cde861544141","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzMzOTYsMV0="} -{"attributes":{"description":"Overview of AWS EC2 Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":24,\"x\":24,\"y\":16},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"DiskIO Write Bytes\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"5\",\"w\":18,\"x\":6,\"y\":11},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Status Check\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"11\",\"w\":24,\"x\":0,\"y\":31},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Network In Bytes\",\"panelRefName\":\"panel_11\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"12\",\"w\":24,\"x\":24,\"y\":31},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Network Out Bytes\",\"panelRefName\":\"panel_12\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"15\",\"w\":24,\"x\":0,\"y\":16},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"DiskIO Read Bytes\",\"panelRefName\":\"panel_15\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"17\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"CPU Utilization\",\"panelRefName\":\"panel_17\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"18\",\"w\":6,\"x\":0,\"y\":0},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_18\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"19\",\"w\":18,\"x\":6,\"y\":0},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Instance State\",\"panelRefName\":\"panel_19\"}]","timeRestore":false,"title":"[Metricbeat AWS] EC2 Overview","version":1},"coreMigrationVersion":"8.0.0","id":"c5846400-f7fb-11e8-af03-c999c9dea608-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"fed59380-f7f8-11e8-af03-c999c9dea608-ecs","name":"3:panel_3","type":"visualization"},{"id":"9e8c6030-f7f8-11e8-af03-c999c9dea608-ecs","name":"5:panel_5","type":"visualization"},{"id":"15818fd0-f7f9-11e8-af03-c999c9dea608-ecs","name":"11:panel_11","type":"visualization"},{"id":"233b3400-f7f9-11e8-af03-c999c9dea608-ecs","name":"12:panel_12","type":"visualization"},{"id":"f1db6ec0-f7f8-11e8-af03-c999c9dea608-ecs","name":"15:panel_15","type":"visualization"},{"id":"be8828d0-f7f6-11e8-af03-c999c9dea608-ecs","name":"17:panel_17","type":"visualization"},{"id":"deab0260-2981-11e9-86eb-a3a07a77f530","name":"18:panel_18","type":"visualization"},{"id":"09db13f0-2bdd-11e9-9fe1-cde861544141","name":"19:panel_19","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:28.616Z","version":"WzMzNDQsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-elb-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-elb-overview.ndjson deleted file mode 100644 index c8d5751f2f58..000000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-elb-overview.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB HTTP 5XX Errors [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"7e66beb0-b3c6-11e9-af6e-ef22c5680226\"}],\"bar_color_rules\":[{\"id\":\"7db91990-b3c6-11e9-af6e-ef22c5680226\"}],\"filter\":\"\",\"gauge_color_rules\":[{\"id\":\"7d0b9b80-b3c6-11e9-af6e-ef22c5680226\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971\",\"label\":\"HTTP 5XX Errors\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.elb.metrics.HTTPCode_ELB_5XX.sum\",\"id\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_order_by\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB HTTP 5XX Errors [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b9703dd0-b3c9-11e9-87a4-078dbbae220d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Request Count [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"7e66beb0-b3c6-11e9-af6e-ef22c5680226\"}],\"bar_color_rules\":[{\"id\":\"7db91990-b3c6-11e9-af6e-ef22c5680226\"}],\"filter\":\"\",\"gauge_color_rules\":[{\"id\":\"7d0b9b80-b3c6-11e9-af6e-ef22c5680226\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971\",\"label\":\"Request Count\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.elb.metrics.RequestCount.sum\",\"id\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_order_by\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB Request Count [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d560de70-b3c7-11e9-87a4-078dbbae220d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Unhealthy Host Count [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"7e66beb0-b3c6-11e9-af6e-ef22c5680226\",\"operator\":\"gt\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"7db91990-b3c6-11e9-af6e-ef22c5680226\"}],\"filter\":\"\",\"gauge_color_rules\":[{\"id\":\"7d0b9b80-b3c6-11e9-af6e-ef22c5680226\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971\",\"label\":\"Unhealthy Host Count\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.elb.metrics.UnHealthyHostCount.max\",\"id\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.AvailabilityZone\",\"terms_order_by\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ELB Unhealthy Host Count [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6fc1efd0-b3c9-11e9-87a4-078dbbae220d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Healthy Host Count [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"7e66beb0-b3c6-11e9-af6e-ef22c5680226\",\"operator\":\"gt\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"7db91990-b3c6-11e9-af6e-ef22c5680226\"}],\"filter\":\"\",\"gauge_color_rules\":[{\"id\":\"7d0b9b80-b3c6-11e9-af6e-ef22c5680226\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971\",\"label\":\"Healthy Host Count\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.elb.metrics.HealthyHostCount.max\",\"id\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.AvailabilityZone\",\"terms_order_by\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ELB Healthy Host Count [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6392bc30-b3c9-11e9-87a4-078dbbae220d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Latency in Seconds [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"7e66beb0-b3c6-11e9-af6e-ef22c5680226\"}],\"bar_color_rules\":[{\"id\":\"7db91990-b3c6-11e9-af6e-ef22c5680226\"}],\"filter\":\"\",\"gauge_color_rules\":[{\"id\":\"7d0b9b80-b3c6-11e9-af6e-ef22c5680226\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"s,s,3\",\"id\":\"35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971\",\"label\":\"Latency in seconds\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.elb.metrics.Latency.avg\",\"id\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_order_by\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB Latency in Seconds [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b2ea15a0-b3c7-11e9-87a4-078dbbae220d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB HTTP Backend 4XX Errors [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"7e66beb0-b3c6-11e9-af6e-ef22c5680226\"}],\"bar_color_rules\":[{\"id\":\"7db91990-b3c6-11e9-af6e-ef22c5680226\"}],\"filter\":\"\",\"gauge_color_rules\":[{\"id\":\"7d0b9b80-b3c6-11e9-af6e-ef22c5680226\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971\",\"label\":\"HTTP Backend 4XX Errors\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.elb.metrics.HTTPCode_Backend_4XX.sum\",\"id\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_order_by\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB HTTP Backend 4XX Errors [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"21f30090-b3ca-11e9-87a4-078dbbae220d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB Backend Connection Errors [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"7e66beb0-b3c6-11e9-af6e-ef22c5680226\"}],\"bar_color_rules\":[{\"id\":\"7db91990-b3c6-11e9-af6e-ef22c5680226\"}],\"filter\":\"\",\"gauge_color_rules\":[{\"id\":\"7d0b9b80-b3c6-11e9-af6e-ef22c5680226\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"00\",\"formatter\":\"number\",\"id\":\"35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971\",\"label\":\"Backend Connection Errors\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.elb.metrics.BackendConnectionErrors.sum\",\"id\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_order_by\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB Backend Connection Errors [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"572d40e0-b3ca-11e9-87a4-078dbbae220d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Region Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Region Filter\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b5308940-7347-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ELB HTTP Backend 2XX [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"7e66beb0-b3c6-11e9-af6e-ef22c5680226\"}],\"bar_color_rules\":[{\"id\":\"7db91990-b3c6-11e9-af6e-ef22c5680226\"}],\"filter\":\"\",\"gauge_color_rules\":[{\"id\":\"7d0b9b80-b3c6-11e9-af6e-ef22c5680226\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971\",\"label\":\"HTTP Backend 2XX\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.elb.metrics.HTTPCode_Backend_2XX.sum\",\"id\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_order_by\":\"35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ELB HTTP Backend 2XX [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1f528f50-b3ce-11e9-87a4-078dbbae220d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNjIsMV0="} -{"attributes":{"description":"Overview of AWS ELB Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"2\",\"w\":25,\"x\":23,\"y\":32},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"HTTP 5XX Errors\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"3\",\"w\":37,\"x\":11,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Request Count\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"4\",\"w\":11,\"x\":0,\"y\":15},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Unhealthy Host Count\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"5\",\"w\":11,\"x\":0,\"y\":7},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Healthy Host Count\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6\",\"w\":37,\"x\":11,\"y\":11},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Latency in Seconds\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"7\",\"w\":23,\"x\":0,\"y\":32},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"HTTP Backend 4XX Errors\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"8\",\"w\":23,\"x\":0,\"y\":23},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Backend Connection Errors\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"9\",\"w\":11,\"x\":0,\"y\":0},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"10\",\"w\":25,\"x\":23,\"y\":23},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"HTTP Backend 2XX\",\"panelRefName\":\"panel_10\"}]","timeRestore":false,"title":"[Metricbeat AWS] ELB Overview","version":1},"coreMigrationVersion":"8.0.0","id":"e74bf320-b3ce-11e9-87a4-078dbbae220d","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"b9703dd0-b3c9-11e9-87a4-078dbbae220d","name":"2:panel_2","type":"visualization"},{"id":"d560de70-b3c7-11e9-87a4-078dbbae220d","name":"3:panel_3","type":"visualization"},{"id":"6fc1efd0-b3c9-11e9-87a4-078dbbae220d","name":"4:panel_4","type":"visualization"},{"id":"6392bc30-b3c9-11e9-87a4-078dbbae220d","name":"5:panel_5","type":"visualization"},{"id":"b2ea15a0-b3c7-11e9-87a4-078dbbae220d","name":"6:panel_6","type":"visualization"},{"id":"21f30090-b3ca-11e9-87a4-078dbbae220d","name":"7:panel_7","type":"visualization"},{"id":"572d40e0-b3ca-11e9-87a4-078dbbae220d","name":"8:panel_8","type":"visualization"},{"id":"b5308940-7347-11e9-816b-07687310a99a","name":"9:panel_9","type":"visualization"},{"id":"1f528f50-b3ce-11e9-87a4-078dbbae220d","name":"10:panel_10","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:29.650Z","version":"WzMzNTMsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-kinesis-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-kinesis-overview.ndjson deleted file mode 100644 index fb1c915ea9ee..000000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-kinesis-overview.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Kinesis Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"aws.dimensions.StreamName\",\"id\":\"1624989316975\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"stream name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Kinesis Filter [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"3c5d7860-d903-11eb-8220-c9141cc1b15c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNjQsMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"fa1d3f51-58b9-4971-a28d-40616cfceb01":{"columnOrder":["19e03939-49d0-48f7-b76c-d70142001365","8c750b7f-30c5-4d35-93f7-dbea0067dca4","092aa8e6-3739-49c1-ac6c-ec67956dec97"],"columns":{"092aa8e6-3739-49c1-ac6c-ec67956dec97":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"GetRecords Latency","operationType":"median","scale":"ratio","sourceField":"aws.kinesis.metrics.GetRecords_Latency.avg"},"19e03939-49d0-48f7-b76c-d70142001365":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"8c750b7f-30c5-4d35-93f7-dbea0067dca4":{"dataType":"string","isBucketed":true,"label":"Top values of aws.dimensions.StreamName","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"092aa8e6-3739-49c1-ac6c-ec67956dec97","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.dimensions.StreamName"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["092aa8e6-3739-49c1-ac6c-ec67956dec97"],"layerId":"fa1d3f51-58b9-4971-a28d-40616cfceb01","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"8c750b7f-30c5-4d35-93f7-dbea0067dca4","xAccessor":"19e03939-49d0-48f7-b76c-d70142001365"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"AWS GetRecords Latency [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"63aa5990-d86f-11eb-8220-c9141cc1b15c","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNjUsMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"fa1d3f51-58b9-4971-a28d-40616cfceb01":{"columnOrder":["19e03939-49d0-48f7-b76c-d70142001365","8c750b7f-30c5-4d35-93f7-dbea0067dca4","092aa8e6-3739-49c1-ac6c-ec67956dec97"],"columns":{"092aa8e6-3739-49c1-ac6c-ec67956dec97":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"PutRecords Latency","operationType":"average","scale":"ratio","sourceField":"aws.kinesis.metrics.PutRecords_Bytes.avg"},"19e03939-49d0-48f7-b76c-d70142001365":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"8c750b7f-30c5-4d35-93f7-dbea0067dca4":{"dataType":"string","isBucketed":true,"label":"Top values of aws.dimensions.StreamName","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"092aa8e6-3739-49c1-ac6c-ec67956dec97","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.dimensions.StreamName"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["092aa8e6-3739-49c1-ac6c-ec67956dec97"],"layerId":"fa1d3f51-58b9-4971-a28d-40616cfceb01","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"8c750b7f-30c5-4d35-93f7-dbea0067dca4","xAccessor":"19e03939-49d0-48f7-b76c-d70142001365"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"AWS PutRecords Latency [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"9deb6a80-d870-11eb-8220-c9141cc1b15c","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNjYsMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"fa1d3f51-58b9-4971-a28d-40616cfceb01":{"columnOrder":["19e03939-49d0-48f7-b76c-d70142001365","8c750b7f-30c5-4d35-93f7-dbea0067dca4","092aa8e6-3739-49c1-ac6c-ec67956dec97"],"columns":{"092aa8e6-3739-49c1-ac6c-ec67956dec97":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"PutRecord Latency","operationType":"average","scale":"ratio","sourceField":"aws.kinesis.metrics.PutRecord_Latency.avg"},"19e03939-49d0-48f7-b76c-d70142001365":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"8c750b7f-30c5-4d35-93f7-dbea0067dca4":{"dataType":"string","isBucketed":true,"label":"Top values of aws.dimensions.StreamName","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"092aa8e6-3739-49c1-ac6c-ec67956dec97","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.dimensions.StreamName"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["092aa8e6-3739-49c1-ac6c-ec67956dec97"],"layerId":"fa1d3f51-58b9-4971-a28d-40616cfceb01","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"8c750b7f-30c5-4d35-93f7-dbea0067dca4","xAccessor":"19e03939-49d0-48f7-b76c-d70142001365"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"AWS PutRecord Latency [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"2a711450-d871-11eb-8220-c9141cc1b15c","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNjcsMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"fa1d3f51-58b9-4971-a28d-40616cfceb01":{"columnOrder":["19e03939-49d0-48f7-b76c-d70142001365","7cd103e8-3dd3-4fa2-8c13-bc9f80617367","36345734-4c23-4815-8a5e-b63c20cac94d"],"columns":{"19e03939-49d0-48f7-b76c-d70142001365":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"36345734-4c23-4815-8a5e-b63c20cac94d":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"GetRecords Bytes","operationType":"median","scale":"ratio","sourceField":"aws.kinesis.metrics.GetRecords_Bytes.avg"},"7cd103e8-3dd3-4fa2-8c13-bc9f80617367":{"dataType":"string","isBucketed":true,"label":"Top values of aws.dimensions.StreamName","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"36345734-4c23-4815-8a5e-b63c20cac94d","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.dimensions.StreamName"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["36345734-4c23-4815-8a5e-b63c20cac94d"],"layerId":"fa1d3f51-58b9-4971-a28d-40616cfceb01","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"7cd103e8-3dd3-4fa2-8c13-bc9f80617367","xAccessor":"19e03939-49d0-48f7-b76c-d70142001365"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"AWS GetRecords Bytes [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"d1468000-d86f-11eb-8220-c9141cc1b15c","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNjgsMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"fa1d3f51-58b9-4971-a28d-40616cfceb01":{"columnOrder":["19e03939-49d0-48f7-b76c-d70142001365","7cd103e8-3dd3-4fa2-8c13-bc9f80617367","36345734-4c23-4815-8a5e-b63c20cac94d"],"columns":{"19e03939-49d0-48f7-b76c-d70142001365":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"36345734-4c23-4815-8a5e-b63c20cac94d":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"PutRecord Bytes","operationType":"average","scale":"ratio","sourceField":"aws.kinesis.metrics.PutRecords_Bytes.avg"},"7cd103e8-3dd3-4fa2-8c13-bc9f80617367":{"dataType":"string","isBucketed":true,"label":"Top values of aws.dimensions.StreamName","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"36345734-4c23-4815-8a5e-b63c20cac94d","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.dimensions.StreamName"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["36345734-4c23-4815-8a5e-b63c20cac94d"],"layerId":"fa1d3f51-58b9-4971-a28d-40616cfceb01","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"7cd103e8-3dd3-4fa2-8c13-bc9f80617367","xAccessor":"19e03939-49d0-48f7-b76c-d70142001365"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"AWS PutRecords Bytes [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"6d631980-d870-11eb-8220-c9141cc1b15c","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNjksMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"fa1d3f51-58b9-4971-a28d-40616cfceb01":{"columnOrder":["19e03939-49d0-48f7-b76c-d70142001365","a077ea8a-21dd-4bfe-b146-6d6425f7a14f","6117c588-4178-4597-b6da-e0277ec0d410"],"columns":{"19e03939-49d0-48f7-b76c-d70142001365":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"6117c588-4178-4597-b6da-e0277ec0d410":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"GetRecords Success","operationType":"average","scale":"ratio","sourceField":"aws.kinesis.metrics.GetRecords_Success.sum"},"a077ea8a-21dd-4bfe-b146-6d6425f7a14f":{"dataType":"string","isBucketed":true,"label":"Top values of aws.dimensions.StreamName","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"6117c588-4178-4597-b6da-e0277ec0d410","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.dimensions.StreamName"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["6117c588-4178-4597-b6da-e0277ec0d410"],"layerId":"fa1d3f51-58b9-4971-a28d-40616cfceb01","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"a077ea8a-21dd-4bfe-b146-6d6425f7a14f","xAccessor":"19e03939-49d0-48f7-b76c-d70142001365"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"AWS GetRecords Success [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"79d713c0-d86f-11eb-8220-c9141cc1b15c","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNzAsMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"fa1d3f51-58b9-4971-a28d-40616cfceb01":{"columnOrder":["19e03939-49d0-48f7-b76c-d70142001365","a077ea8a-21dd-4bfe-b146-6d6425f7a14f","6117c588-4178-4597-b6da-e0277ec0d410"],"columns":{"19e03939-49d0-48f7-b76c-d70142001365":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"6117c588-4178-4597-b6da-e0277ec0d410":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"PutRecords Success","operationType":"average","scale":"ratio","sourceField":"aws.kinesis.metrics.PutRecords_Success.avg"},"a077ea8a-21dd-4bfe-b146-6d6425f7a14f":{"dataType":"string","isBucketed":true,"label":"Top values of aws.dimensions.StreamName","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"6117c588-4178-4597-b6da-e0277ec0d410","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.dimensions.StreamName"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["6117c588-4178-4597-b6da-e0277ec0d410"],"layerId":"fa1d3f51-58b9-4971-a28d-40616cfceb01","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"a077ea8a-21dd-4bfe-b146-6d6425f7a14f","xAccessor":"19e03939-49d0-48f7-b76c-d70142001365"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"AWS PutRecords Success [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"c68d7c30-d870-11eb-8220-c9141cc1b15c","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNzEsMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"fa1d3f51-58b9-4971-a28d-40616cfceb01":{"columnOrder":["19e03939-49d0-48f7-b76c-d70142001365","a077ea8a-21dd-4bfe-b146-6d6425f7a14f","6117c588-4178-4597-b6da-e0277ec0d410"],"columns":{"19e03939-49d0-48f7-b76c-d70142001365":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"6117c588-4178-4597-b6da-e0277ec0d410":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"PutRecord Success","operationType":"average","scale":"ratio","sourceField":"aws.kinesis.metrics.PutRecord_Success.avg"},"a077ea8a-21dd-4bfe-b146-6d6425f7a14f":{"dataType":"string","isBucketed":true,"label":"Top values of aws.dimensions.StreamName","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"6117c588-4178-4597-b6da-e0277ec0d410","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.dimensions.StreamName"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["6117c588-4178-4597-b6da-e0277ec0d410"],"layerId":"fa1d3f51-58b9-4971-a28d-40616cfceb01","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"a077ea8a-21dd-4bfe-b146-6d6425f7a14f","xAccessor":"19e03939-49d0-48f7-b76c-d70142001365"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide"}},"title":"AWS PutRecord Success [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"56ac2b40-d871-11eb-8220-c9141cc1b15c","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNzIsMV0="} -{"attributes":{"description":"Overview of Amazon Kinesis Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":5,\"i\":\"0359194f-01a1-4a5b-8040-c897bdc86638\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"0359194f-01a1-4a5b-8040-c897bdc86638\",\"panelRefName\":\"panel_0359194f-01a1-4a5b-8040-c897bdc86638\",\"title\":\"Filters\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"df2dc50f-c09b-4dcd-96a8-24037c576db3\",\"w\":16,\"x\":32,\"y\":5},\"panelIndex\":\"df2dc50f-c09b-4dcd-96a8-24037c576db3\",\"panelRefName\":\"panel_df2dc50f-c09b-4dcd-96a8-24037c576db3\",\"title\":\"GetRecords Latency\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"5f153d11-e84a-4ac5-aec9-4fca79863744\",\"w\":16,\"x\":0,\"y\":5},\"panelIndex\":\"5f153d11-e84a-4ac5-aec9-4fca79863744\",\"panelRefName\":\"panel_5f153d11-e84a-4ac5-aec9-4fca79863744\",\"title\":\"PutRecords Latency\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"a7378b79-483c-4e99-97e2-9b49fd9e81da\",\"w\":16,\"x\":16,\"y\":5},\"panelIndex\":\"a7378b79-483c-4e99-97e2-9b49fd9e81da\",\"panelRefName\":\"panel_a7378b79-483c-4e99-97e2-9b49fd9e81da\",\"title\":\"PutRecord Latency\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"01a12917-ef1c-47b6-964a-26ef424dd0d3\",\"w\":16,\"x\":32,\"y\":20},\"panelIndex\":\"01a12917-ef1c-47b6-964a-26ef424dd0d3\",\"panelRefName\":\"panel_01a12917-ef1c-47b6-964a-26ef424dd0d3\",\"title\":\"GetRecords Bytes\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"7e5774cb-e2e5-4f11-95bc-732ed6600757\",\"w\":16,\"x\":0,\"y\":20},\"panelIndex\":\"7e5774cb-e2e5-4f11-95bc-732ed6600757\",\"panelRefName\":\"panel_7e5774cb-e2e5-4f11-95bc-732ed6600757\",\"title\":\"PutRecords Bytes\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"e18e62e5-672a-4939-afe1-68354e76aefc\",\"w\":16,\"x\":16,\"y\":20},\"panelIndex\":\"e18e62e5-672a-4939-afe1-68354e76aefc\",\"panelRefName\":\"panel_e18e62e5-672a-4939-afe1-68354e76aefc\",\"title\":\"PutRecord Bytes\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"a1f01da7-4496-4f4e-acc8-9e6efd826f52\",\"w\":16,\"x\":32,\"y\":35},\"panelIndex\":\"a1f01da7-4496-4f4e-acc8-9e6efd826f52\",\"panelRefName\":\"panel_a1f01da7-4496-4f4e-acc8-9e6efd826f52\",\"title\":\"GetRecords Success\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"6ddd4401-6625-42b6-9270-9bc17c8408e6\",\"w\":16,\"x\":0,\"y\":35},\"panelIndex\":\"6ddd4401-6625-42b6-9270-9bc17c8408e6\",\"panelRefName\":\"panel_6ddd4401-6625-42b6-9270-9bc17c8408e6\",\"title\":\"PutRecords Success\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"fb4e4fb3-91de-46c8-b3f8-ef17ba3c4773\",\"w\":16,\"x\":16,\"y\":35},\"panelIndex\":\"fb4e4fb3-91de-46c8-b3f8-ef17ba3c4773\",\"panelRefName\":\"panel_fb4e4fb3-91de-46c8-b3f8-ef17ba3c4773\",\"title\":\"PutRecord Success\",\"type\":\"lens\",\"version\":\"7.11.0\"}]","timeRestore":false,"title":"[Metricbeat AWS] Kinesis Overview","version":1},"coreMigrationVersion":"8.0.0","id":"07d67a60-d872-11eb-8220-c9141cc1b15c","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"3c5d7860-d903-11eb-8220-c9141cc1b15c","name":"0359194f-01a1-4a5b-8040-c897bdc86638:panel_0359194f-01a1-4a5b-8040-c897bdc86638","type":"visualization"},{"id":"63aa5990-d86f-11eb-8220-c9141cc1b15c","name":"df2dc50f-c09b-4dcd-96a8-24037c576db3:panel_df2dc50f-c09b-4dcd-96a8-24037c576db3","type":"lens"},{"id":"9deb6a80-d870-11eb-8220-c9141cc1b15c","name":"5f153d11-e84a-4ac5-aec9-4fca79863744:panel_5f153d11-e84a-4ac5-aec9-4fca79863744","type":"lens"},{"id":"2a711450-d871-11eb-8220-c9141cc1b15c","name":"a7378b79-483c-4e99-97e2-9b49fd9e81da:panel_a7378b79-483c-4e99-97e2-9b49fd9e81da","type":"lens"},{"id":"d1468000-d86f-11eb-8220-c9141cc1b15c","name":"01a12917-ef1c-47b6-964a-26ef424dd0d3:panel_01a12917-ef1c-47b6-964a-26ef424dd0d3","type":"lens"},{"id":"6d631980-d870-11eb-8220-c9141cc1b15c","name":"7e5774cb-e2e5-4f11-95bc-732ed6600757:panel_7e5774cb-e2e5-4f11-95bc-732ed6600757","type":"lens"},{"id":"6d631980-d870-11eb-8220-c9141cc1b15c","name":"e18e62e5-672a-4939-afe1-68354e76aefc:panel_e18e62e5-672a-4939-afe1-68354e76aefc","type":"lens"},{"id":"79d713c0-d86f-11eb-8220-c9141cc1b15c","name":"a1f01da7-4496-4f4e-acc8-9e6efd826f52:panel_a1f01da7-4496-4f4e-acc8-9e6efd826f52","type":"lens"},{"id":"c68d7c30-d870-11eb-8220-c9141cc1b15c","name":"6ddd4401-6625-42b6-9270-9bc17c8408e6:panel_6ddd4401-6625-42b6-9270-9bc17c8408e6","type":"lens"},{"id":"56ac2b40-d871-11eb-8220-c9141cc1b15c","name":"fb4e4fb3-91de-46c8-b3f8-ef17ba3c4773:panel_fb4e4fb3-91de-46c8-b3f8-ef17ba3c4773","type":"lens"}],"type":"dashboard","updated_at":"2021-08-04T16:30:30.617Z","version":"WzMzNjMsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-lambda-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-lambda-overview.ndjson deleted file mode 100644 index 3f897938a166..000000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-lambda-overview.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Account Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.account.name\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"account name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Account Filter [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"deab0260-2981-11e9-86eb-a3a07a77f530","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Lambda Top Errors [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"fbf0eac0-28d0-11ea-8789-f72e3366fb25\"}],\"bar_color_rules\":[{\"id\":\"f679afa0-28d0-11ea-8789-f72e3366fb25\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"3eabbde0-28d1-11ea-8789-f72e3366fb25\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"ca2e4c60-28cd-11ea-822d-3ba2c0089081\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"ca2e4c61-28cd-11ea-822d-3ba2c0089081\",\"label\":\"avg(aws.metrics.Duration.avg)\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.lambda.metrics.Errors.avg\",\"id\":\"ca2e4c62-28cd-11ea-822d-3ba2c0089081\",\"type\":\"max\"}],\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.FunctionName\",\"terms_order_by\":\"ca2e4c62-28cd-11ea-822d-3ba2c0089081\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Lambda Top Errors [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4bf0a740-28d1-11ea-ba6c-49a884eb104f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:31.702Z","version":"WzMzNzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Region Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Region Filter\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b5308940-7347-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Lambda Duration in Milliseconds [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"ca2e4c60-28cd-11ea-822d-3ba2c0089081\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"ca2e4c61-28cd-11ea-822d-3ba2c0089081\",\"label\":\"avg(aws.metrics.Duration.avg)\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.lambda.metrics.Duration.avg\",\"id\":\"ca2e4c62-28cd-11ea-822d-3ba2c0089081\",\"type\":\"avg\"}],\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.FunctionName\",\"terms_order_by\":\"ca2e4c62-28cd-11ea-822d-3ba2c0089081\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Lambda Duration in Milliseconds [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"39dfc8d0-28cf-11ea-ba6c-49a884eb104f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:31.702Z","version":"WzMzNzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Lambda Top Invoked Functions [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"fbf0eac0-28d0-11ea-8789-f72e3366fb25\"}],\"bar_color_rules\":[{\"id\":\"f679afa0-28d0-11ea-8789-f72e3366fb25\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"ca2e4c60-28cd-11ea-822d-3ba2c0089081\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"ca2e4c61-28cd-11ea-822d-3ba2c0089081\",\"label\":\"avg(aws.metrics.Duration.avg)\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.lambda.metrics.Invocations.avg\",\"id\":\"ca2e4c62-28cd-11ea-822d-3ba2c0089081\",\"type\":\"max\"}],\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.FunctionName\",\"terms_order_by\":\"ca2e4c62-28cd-11ea-822d-3ba2c0089081\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Lambda Top Invoked Functions [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1f3f00c0-28d1-11ea-ba6c-49a884eb104f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:31.702Z","version":"WzMzNzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Lambda Top Throttles [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"fbf0eac0-28d0-11ea-8789-f72e3366fb25\"}],\"bar_color_rules\":[{\"id\":\"f679afa0-28d0-11ea-8789-f72e3366fb25\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"3eabbde0-28d1-11ea-8789-f72e3366fb25\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"ca2e4c60-28cd-11ea-822d-3ba2c0089081\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"ca2e4c61-28cd-11ea-822d-3ba2c0089081\",\"label\":\"avg(aws.metrics.Duration.avg)\",\"line_width\":2,\"metrics\":[{\"field\":\"aws.lambda.metrics.Duration.avg\",\"id\":\"ca2e4c62-28cd-11ea-822d-3ba2c0089081\",\"type\":\"max\"}],\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.FunctionName\",\"terms_order_by\":\"ca2e4c62-28cd-11ea-822d-3ba2c0089081\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Lambda Top Throttles [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"915bcd50-28d1-11ea-ba6c-49a884eb104f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:31.702Z","version":"WzMzNzksMV0="} -{"attributes":{"description":"Overview of AWS Lambda Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a\",\"w\":14,\"x\":0,\"y\":0},\"panelIndex\":\"8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"AWS Account Filter\",\"panelRefName\":\"panel_8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"443a9699-3451-44f7-8415-99a16c3f45b3\",\"w\":34,\"x\":14,\"y\":0},\"panelIndex\":\"443a9699-3451-44f7-8415-99a16c3f45b3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Errors\",\"panelRefName\":\"panel_443a9699-3451-44f7-8415-99a16c3f45b3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"60a16bf0-2979-467a-b30e-05ea29547b41\",\"w\":14,\"x\":0,\"y\":5},\"panelIndex\":\"60a16bf0-2979-467a-b30e-05ea29547b41\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"AWS Region Filter\",\"panelRefName\":\"panel_60a16bf0-2979-467a-b30e-05ea29547b41\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"349ef0d1-fea1-4b91-b95d-7a668914e10b\",\"w\":48,\"x\":0,\"y\":10},\"panelIndex\":\"349ef0d1-fea1-4b91-b95d-7a668914e10b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Lambda Function Duration in Milliseconds\",\"panelRefName\":\"panel_349ef0d1-fea1-4b91-b95d-7a668914e10b\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"048b1577-5aed-48e5-8f90-147aa3d56c1a\",\"w\":24,\"x\":0,\"y\":24},\"panelIndex\":\"048b1577-5aed-48e5-8f90-147aa3d56c1a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Invoked Lambda Functions\",\"panelRefName\":\"panel_048b1577-5aed-48e5-8f90-147aa3d56c1a\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"4c8e471c-45da-47be-a866-c5bfc6d28a05\",\"w\":24,\"x\":24,\"y\":24},\"panelIndex\":\"4c8e471c-45da-47be-a866-c5bfc6d28a05\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top Throttled Lambda Functions\",\"panelRefName\":\"panel_4c8e471c-45da-47be-a866-c5bfc6d28a05\"}]","timeRestore":false,"title":"[Metricbeat AWS] Lambda Overview","version":1},"coreMigrationVersion":"8.0.0","id":"7ac8e1d0-28d2-11ea-ba6c-49a884eb104f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"deab0260-2981-11e9-86eb-a3a07a77f530","name":"8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a:panel_8f2d1b8f-fef3-4a9a-9cc8-7f0e2c65e35a","type":"visualization"},{"id":"4bf0a740-28d1-11ea-ba6c-49a884eb104f","name":"443a9699-3451-44f7-8415-99a16c3f45b3:panel_443a9699-3451-44f7-8415-99a16c3f45b3","type":"visualization"},{"id":"b5308940-7347-11e9-816b-07687310a99a","name":"60a16bf0-2979-467a-b30e-05ea29547b41:panel_60a16bf0-2979-467a-b30e-05ea29547b41","type":"visualization"},{"id":"39dfc8d0-28cf-11ea-ba6c-49a884eb104f","name":"349ef0d1-fea1-4b91-b95d-7a668914e10b:panel_349ef0d1-fea1-4b91-b95d-7a668914e10b","type":"visualization"},{"id":"1f3f00c0-28d1-11ea-ba6c-49a884eb104f","name":"048b1577-5aed-48e5-8f90-147aa3d56c1a:panel_048b1577-5aed-48e5-8f90-147aa3d56c1a","type":"visualization"},{"id":"915bcd50-28d1-11ea-ba6c-49a884eb104f","name":"4c8e471c-45da-47be-a866-c5bfc6d28a05:panel_4c8e471c-45da-47be-a866-c5bfc6d28a05","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:31.702Z","version":"WzMzNzMsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-natgateway-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-natgateway-overview.ndjson deleted file mode 100644 index 025c41691f73..000000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-natgateway-overview.ndjson +++ /dev/null @@ -1,14 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"NATGateway Filters [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.account.name\",\"id\":\"1565034367477\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"account name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"cloud.region\",\"id\":\"1584478324642\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"aws.dimensions.NatGatewayId\",\"id\":\"1584479118709\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"NATGateway ID\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"NATGateway Filters [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"8345d580-6891-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Error Port Allocation [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total Error of Port Allocation\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.ErrorPortAllocation.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"NATGateway Error Port Allocation [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ce7445c0-688f-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Packet Drop [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"f444c0e0-688f-11ea-8b7d-fd9d15a13cd0\",\"label\":\"Total Packets Drop\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.PacketsDropCount.sum\",\"id\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"sum\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"NATGateway Packet Drop [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9bf8e1e0-6890-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Connection Established [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"f444c0e0-688f-11ea-8b7d-fd9d15a13cd0\",\"label\":\"Total Connections Established\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.ConnectionEstablishedCount.sum\",\"id\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"sum\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"NATGateway Connection Established [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"68970b10-6890-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Active Connection Count Top10 [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\"}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"3\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.ActiveConnectionCount.max\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"NATGateway Active Connection Count Top10 [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c186b610-688d-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Bytes In From Destination [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\"}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.BytesInFromDestination.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"NATGateway Bytes In From Destination [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b36532e0-688e-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Bytes In From Source [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\"}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.BytesInFromSource.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"NATGateway Bytes In From Source [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bc5dcc90-688e-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Bytes Out To Destination [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\"}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.BytesOutToDestination.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"NATGateway Bytes Out To Destination [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e0e65e60-688e-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Bytes Out To Source [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\"}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.BytesOutToSource.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"NATGateway Bytes Out To Source [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c7d6cf90-688e-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Packet In From Destination [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"f444c0e0-688f-11ea-8b7d-fd9d15a13cd0\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.PacketsInFromDestination.sum\",\"id\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"NATGateway Packet In From Destination [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bdb8ddd0-6890-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzOTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Packet In From Source [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"f444c0e0-688f-11ea-8b7d-fd9d15a13cd0\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.PacketsInFromSource.sum\",\"id\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"NATGateway Packet In From Source [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c84ed3d0-6890-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzOTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Packet Out To Destination [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"f444c0e0-688f-11ea-8b7d-fd9d15a13cd0\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.PacketsOutToDestination.sum\",\"id\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"NATGateway Packet Out To Destination [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"08645080-6891-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzOTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"NATGateway Packet Out To Source [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"688b0480-688d-11ea-8b7d-fd9d15a13cd0\",\"value\":0}],\"bar_color_rules\":[{\"id\":\"6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"f444c0e0-688f-11ea-8b7d-fd9d15a13cd0\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.natgateway.metrics.PacketsOutToSource.sum\",\"id\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.NatGatewayId\",\"terms_order_by\":\"f444c0e1-688f-11ea-8b7d-fd9d15a13cd0\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"NATGateway Packet Out To Source [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fd915180-6890-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzOTMsMV0="} -{"attributes":{"description":"Overview of AWS NAT Gateway Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"346ce7bf-e1af-4e0d-856b-5aa412903167\",\"w\":7,\"x\":0,\"y\":0},\"panelIndex\":\"346ce7bf-e1af-4e0d-856b-5aa412903167\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_346ce7bf-e1af-4e0d-856b-5aa412903167\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"19a9f053-a548-4e9d-a257-45932c3b73a5\",\"w\":8,\"x\":7,\"y\":0},\"panelIndex\":\"19a9f053-a548-4e9d-a257-45932c3b73a5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Error Port Allocation\",\"panelRefName\":\"panel_19a9f053-a548-4e9d-a257-45932c3b73a5\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3\",\"w\":8,\"x\":15,\"y\":0},\"panelIndex\":\"a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets Drop\",\"panelRefName\":\"panel_a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"b5fe853e-d5b0-4918-93ec-8be70f2881a8\",\"w\":8,\"x\":23,\"y\":0},\"panelIndex\":\"b5fe853e-d5b0-4918-93ec-8be70f2881a8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Connection Established\",\"panelRefName\":\"panel_b5fe853e-d5b0-4918-93ec-8be70f2881a8\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"33663eae-1bc3-47d4-a9fc-3cd2b43c66ef\",\"w\":17,\"x\":31,\"y\":0},\"panelIndex\":\"33663eae-1bc3-47d4-a9fc-3cd2b43c66ef\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Active Connection Count\",\"panelRefName\":\"panel_33663eae-1bc3-47d4-a9fc-3cd2b43c66ef\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"4e454740-281a-43b1-92f4-8dd2e37e184f\",\"w\":24,\"x\":0,\"y\":11},\"panelIndex\":\"4e454740-281a-43b1-92f4-8dd2e37e184f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes In From Destination\",\"panelRefName\":\"panel_4e454740-281a-43b1-92f4-8dd2e37e184f\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"f40587a4-47f1-494a-b8b9-33365ce34d2f\",\"w\":24,\"x\":24,\"y\":11},\"panelIndex\":\"f40587a4-47f1-494a-b8b9-33365ce34d2f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes In From Source\",\"panelRefName\":\"panel_f40587a4-47f1-494a-b8b9-33365ce34d2f\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"00075068-bf27-49e1-8beb-d5572500205b\",\"w\":24,\"x\":0,\"y\":24},\"panelIndex\":\"00075068-bf27-49e1-8beb-d5572500205b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Out To Destination\",\"panelRefName\":\"panel_00075068-bf27-49e1-8beb-d5572500205b\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"c95ab156-9118-4c3c-94ee-55b4c9f5589c\",\"w\":24,\"x\":24,\"y\":24},\"panelIndex\":\"c95ab156-9118-4c3c-94ee-55b4c9f5589c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Out To Source\",\"panelRefName\":\"panel_c95ab156-9118-4c3c-94ee-55b4c9f5589c\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"f7c6e3f7-419d-43ff-a2bb-d5931371f347\",\"w\":24,\"x\":0,\"y\":37},\"panelIndex\":\"f7c6e3f7-419d-43ff-a2bb-d5931371f347\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets In From Destination\",\"panelRefName\":\"panel_f7c6e3f7-419d-43ff-a2bb-d5931371f347\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"dcc56438-240a-45a4-81ec-a54be3d27c43\",\"w\":24,\"x\":24,\"y\":37},\"panelIndex\":\"dcc56438-240a-45a4-81ec-a54be3d27c43\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets In From Source\",\"panelRefName\":\"panel_dcc56438-240a-45a4-81ec-a54be3d27c43\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"db77d690-f343-4dc2-8695-d45a03361e01\",\"w\":24,\"x\":0,\"y\":50},\"panelIndex\":\"db77d690-f343-4dc2-8695-d45a03361e01\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets Out To Destination\",\"panelRefName\":\"panel_db77d690-f343-4dc2-8695-d45a03361e01\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"d882a862-87aa-4169-9dc3-0591252fa736\",\"w\":24,\"x\":24,\"y\":50},\"panelIndex\":\"d882a862-87aa-4169-9dc3-0591252fa736\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets Out To Source\",\"panelRefName\":\"panel_d882a862-87aa-4169-9dc3-0591252fa736\"}]","timeRestore":false,"title":"[Metricbeat AWS] NATGateway Overview","version":1},"coreMigrationVersion":"8.0.0","id":"c2b1cbc0-6891-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"8345d580-6891-11ea-b0ac-95d4ecb1fecd","name":"346ce7bf-e1af-4e0d-856b-5aa412903167:panel_346ce7bf-e1af-4e0d-856b-5aa412903167","type":"visualization"},{"id":"ce7445c0-688f-11ea-b0ac-95d4ecb1fecd","name":"19a9f053-a548-4e9d-a257-45932c3b73a5:panel_19a9f053-a548-4e9d-a257-45932c3b73a5","type":"visualization"},{"id":"9bf8e1e0-6890-11ea-b0ac-95d4ecb1fecd","name":"a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3:panel_a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3","type":"visualization"},{"id":"68970b10-6890-11ea-b0ac-95d4ecb1fecd","name":"b5fe853e-d5b0-4918-93ec-8be70f2881a8:panel_b5fe853e-d5b0-4918-93ec-8be70f2881a8","type":"visualization"},{"id":"c186b610-688d-11ea-b0ac-95d4ecb1fecd","name":"33663eae-1bc3-47d4-a9fc-3cd2b43c66ef:panel_33663eae-1bc3-47d4-a9fc-3cd2b43c66ef","type":"visualization"},{"id":"b36532e0-688e-11ea-b0ac-95d4ecb1fecd","name":"4e454740-281a-43b1-92f4-8dd2e37e184f:panel_4e454740-281a-43b1-92f4-8dd2e37e184f","type":"visualization"},{"id":"bc5dcc90-688e-11ea-b0ac-95d4ecb1fecd","name":"f40587a4-47f1-494a-b8b9-33365ce34d2f:panel_f40587a4-47f1-494a-b8b9-33365ce34d2f","type":"visualization"},{"id":"e0e65e60-688e-11ea-b0ac-95d4ecb1fecd","name":"00075068-bf27-49e1-8beb-d5572500205b:panel_00075068-bf27-49e1-8beb-d5572500205b","type":"visualization"},{"id":"c7d6cf90-688e-11ea-b0ac-95d4ecb1fecd","name":"c95ab156-9118-4c3c-94ee-55b4c9f5589c:panel_c95ab156-9118-4c3c-94ee-55b4c9f5589c","type":"visualization"},{"id":"bdb8ddd0-6890-11ea-b0ac-95d4ecb1fecd","name":"f7c6e3f7-419d-43ff-a2bb-d5931371f347:panel_f7c6e3f7-419d-43ff-a2bb-d5931371f347","type":"visualization"},{"id":"c84ed3d0-6890-11ea-b0ac-95d4ecb1fecd","name":"dcc56438-240a-45a4-81ec-a54be3d27c43:panel_dcc56438-240a-45a4-81ec-a54be3d27c43","type":"visualization"},{"id":"08645080-6891-11ea-b0ac-95d4ecb1fecd","name":"db77d690-f343-4dc2-8695-d45a03361e01:panel_db77d690-f343-4dc2-8695-d45a03361e01","type":"visualization"},{"id":"fd915180-6890-11ea-b0ac-95d4ecb1fecd","name":"d882a862-87aa-4169-9dc3-0591252fa736:panel_d882a862-87aa-4169-9dc3-0591252fa736","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:32.666Z","version":"WzMzODAsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-overview.ndjson deleted file mode 100644 index 038449be9038..000000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-overview.ndjson +++ /dev/null @@ -1,16 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Region Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Region Filter\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b5308940-7347-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"EC2 Instance State [Metricbeat AWS] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"16\": \"#629E51\", \"272\": \"#DEDAF7\", \"80\": \"#E24D42\", \"running\": \"#7EB26D\", \"stopped\": \"#E24D42\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"EC2 Instance State\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"\",\"field\":\"aws.ec2.instance.state.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"EC2 Instance State [Metricbeat AWS] ECS\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"09db13f0-2bdd-11e9-9fe1-cde861544141","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzMzOTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"EC2 CPU Utilization [Metricbeat AWS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"23428b30-f7f2-11e8-bff8-21537b07dd44\"}],\"bar_color_rules\":[{\"id\":\"2592bcc0-f7f2-11e8-bff8-21537b07dd44\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS EC2 CPU Utilization ECS\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ec2.cpu.total.pct\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloud.instance.id\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"AWS EC2 CPU Utilization ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"be8828d0-f7f6-11e8-af03-c999c9dea608-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzMzOTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"S3 Total Error 4xx [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"59207fe0-4762-11e9-bf81-69a4e579cab5\"}],\"bar_color_rules\":[{\"id\":\"5ad9a190-4762-11e9-bf81-69a4e579cab5\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total # of HTTP 4xx Errors\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.s3_request.errors.4xx\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS S3 Total Error 4xx\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"81d83c70-4762-11e9-8062-c98a86cb6f94","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"S3 Total Error 5xx [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"59207fe0-4762-11e9-bf81-69a4e579cab5\"}],\"bar_color_rules\":[{\"id\":\"5ad9a190-4762-11e9-bf81-69a4e579cab5\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total # of HTTP 5xx Errors\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.s3_request.errors.5xx\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS S3 Total Error 5xx\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"58e17c10-7349-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzMzOTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Empty Receives Top5 [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"23be77d0-734a-11e9-a683-47ca322fa6f9\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS SQS Empty Receives\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.empty_receives\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS SQS Empty Receives Top5\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4658f540-734a-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Messages Delayed Top5 [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"23be77d0-734a-11e9-a683-47ca322fa6f9\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS SQS Messages Delayed\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.messages.delayed\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS SQS Messages Delayed Top5\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"95b322f0-734a-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cloudwatch ELB Request Count Top5 [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"94f2ce40-734c-11e9-a683-47ca322fa6f9\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"ELB Request Count Top5\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.elb.metrics.RequestCount\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS Cloudwatch ELB Request Count Top5\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b2191dd0-734c-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cloudwatch ELB Latency [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"23428b30-f7f2-11e8-bff8-21537b07dd44\"}],\"bar_color_rules\":[{\"id\":\"2592bcc0-f7f2-11e8-bff8-21537b07dd44\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS Cloudwatch ELB Latency\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.elb.metrics.Latency\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"AWS Cloudwatch ELB Latency\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"42016bf0-728f-11e9-9a7b-4d62d5bcf4fc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cloudwatch ELB Unhealthy Host Count [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cbb498f0-734c-11e9-a683-47ca322fa6f9\"}],\"bar_color_rules\":[{\"id\":\"94f2ce40-734c-11e9-a683-47ca322fa6f9\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"ELB Unhealthy Host Count\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.elb.metrics.UnHealthyHostCount\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.LoadBalancerName\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS Cloudwatch ELB Unhealthy Host Count\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9121ac90-734d-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cloudwatch Lambda Invocations Top5 [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cbb498f0-734c-11e9-a683-47ca322fa6f9\"}],\"bar_color_rules\":[{\"id\":\"94f2ce40-734c-11e9-a683-47ca322fa6f9\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Lambda Invocations\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.lambda.metrics.Invocations\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.FunctionName\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS Cloudwatch Lambda Invocations Top5\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"128fd450-734e-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cloudwatch Lambda Errors Top5 [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cbb498f0-734c-11e9-a683-47ca322fa6f9\"}],\"bar_color_rules\":[{\"id\":\"94f2ce40-734c-11e9-a683-47ca322fa6f9\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Lambda Errors\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.lambda.metrics.Errors\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.FunctionName\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS Cloudwatch Lambda Errors Top5\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"54e88a40-734e-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cloudwatch Lambda Throttles Top5 [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cbb498f0-734c-11e9-a683-47ca322fa6f9\"}],\"bar_color_rules\":[{\"id\":\"94f2ce40-734c-11e9-a683-47ca322fa6f9\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Lambda Throttles\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.lambda.metrics.Throttles\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.FunctionName\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS Cloudwatch Lambda Throttles Top5\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"398d12d0-7352-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cloudwatch ECS CPU Available [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"bb21d180-830d-11e9-9c4c-391fa0a2e15f\"}],\"filter\":\"\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"query\":\"(aws.cloudwatch.namespace:\\\"AWS/ECS\\\") AND (_exists_: aws.ecs.metrics.CPUReservation) AND (_exists_: aws.ecs.metrics.CPUUtilization)\",\"language\":\"lucene\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ecs.metrics.CPUUtilization\",\"id\":\"17f8ddf0-830d-11e9-9f3d-ed346f48a007\",\"type\":\"sum\"},{\"field\":\"aws.ecs.metrics.CPUReservation\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"id\":\"68a93050-830e-11e9-9c4c-391fa0a2e15f\",\"script\":\"(params.res - params.util) / 100\",\"type\":\"math\",\"variables\":[{\"field\":\"17f8ddf0-830d-11e9-9f3d-ed346f48a007\",\"id\":\"6f338920-830e-11e9-9c4c-391fa0a2e15f\",\"name\":\"util\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"7ab9f9a0-830e-11e9-9c4c-391fa0a2e15f\",\"name\":\"res\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.ClusterName\",\"terms_order_by\":\"_key\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"AWS Cloudwatch ECS CPU Available\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4bf62a10-8310-11e9-ac83-47df3568ff90","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cloudwatch ECS Memory Available [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"bb21d180-830d-11e9-9c4c-391fa0a2e15f\"}],\"filter\":\"\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"query\":\"(aws.cloudwatch.namespace:\\\"AWS/ECS\\\") AND (_exists_: aws.ecs.metrics.MemoryReservation) AND (_exists_: aws.ecs.metrics.MemoryUtilization)\",\"language\":\"lucene\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.ecs.metrics.MemoryUtilization\",\"id\":\"17f8ddf0-830d-11e9-9f3d-ed346f48a007\",\"type\":\"sum\"},{\"field\":\"aws.ecs.metrics.MemoryReservation\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"id\":\"68a93050-830e-11e9-9c4c-391fa0a2e15f\",\"script\":\"(params.res - params.util) / 100\",\"type\":\"math\",\"variables\":[{\"field\":\"17f8ddf0-830d-11e9-9f3d-ed346f48a007\",\"id\":\"6f338920-830e-11e9-9c4c-391fa0a2e15f\",\"name\":\"util\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"7ab9f9a0-830e-11e9-9c4c-391fa0a2e15f\",\"name\":\"res\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.ClusterName\",\"terms_order_by\":\"_key\",\"terms_size\":\"5\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"AWS Cloudwatch ECS Memory Available\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d2f46190-830f-11e9-ac83-47df3568ff90","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:33.734Z","version":"WzM0MDksMV0="} -{"attributes":{"description":"Overview of AWS Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"2\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"3\",\"w\":10,\"x\":9,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"4\",\"w\":29,\"x\":19,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"6\",\"w\":9,\"x\":0,\"y\":7},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"7\",\"w\":9,\"x\":9,\"y\":7},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"9\",\"w\":15,\"x\":18,\"y\":7},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"10\",\"w\":15,\"x\":33,\"y\":7},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"12\",\"w\":13,\"x\":0,\"y\":14},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"14\",\"w\":20,\"x\":13,\"y\":14},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"15\",\"w\":15,\"x\":33,\"y\":14},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"17\",\"w\":16,\"x\":15,\"y\":21},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"18\",\"w\":15,\"x\":0,\"y\":21},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"19\",\"w\":17,\"x\":31,\"y\":21},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"24\",\"w\":24,\"x\":0,\"y\":28},\"panelIndex\":\"24\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_24\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"25\",\"w\":24,\"x\":24,\"y\":28},\"panelIndex\":\"25\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_25\"}]","timeRestore":false,"title":"[Metricbeat AWS] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"fac28650-7349-11e9-816b-07687310a99a","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"b5308940-7347-11e9-816b-07687310a99a","name":"2:panel_2","type":"visualization"},{"id":"09db13f0-2bdd-11e9-9fe1-cde861544141","name":"3:panel_3","type":"visualization"},{"id":"be8828d0-f7f6-11e8-af03-c999c9dea608-ecs","name":"4:panel_4","type":"visualization"},{"id":"81d83c70-4762-11e9-8062-c98a86cb6f94","name":"6:panel_6","type":"visualization"},{"id":"58e17c10-7349-11e9-816b-07687310a99a","name":"7:panel_7","type":"visualization"},{"id":"4658f540-734a-11e9-816b-07687310a99a","name":"9:panel_9","type":"visualization"},{"id":"95b322f0-734a-11e9-816b-07687310a99a","name":"10:panel_10","type":"visualization"},{"id":"b2191dd0-734c-11e9-816b-07687310a99a","name":"12:panel_12","type":"visualization"},{"id":"42016bf0-728f-11e9-9a7b-4d62d5bcf4fc","name":"14:panel_14","type":"visualization"},{"id":"9121ac90-734d-11e9-816b-07687310a99a","name":"15:panel_15","type":"visualization"},{"id":"128fd450-734e-11e9-816b-07687310a99a","name":"17:panel_17","type":"visualization"},{"id":"54e88a40-734e-11e9-816b-07687310a99a","name":"18:panel_18","type":"visualization"},{"id":"398d12d0-7352-11e9-816b-07687310a99a","name":"19:panel_19","type":"visualization"},{"id":"4bf62a10-8310-11e9-ac83-47df3568ff90","name":"24:panel_24","type":"visualization"},{"id":"d2f46190-830f-11e9-ac83-47df3568ff90","name":"25:panel_25","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:33.734Z","version":"WzMzOTQsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-rds-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-rds-overview.ndjson deleted file mode 100644 index 4fdc2bd9b993..000000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-rds-overview.ndjson +++ /dev/null @@ -1,13 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"RDS Database Connections [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"10bc2760-d978-11e9-aff2-99c15d8b7da1\"}],\"bar_color_rules\":[{\"id\":\"f8196690-921a-11e9-badf-4b42bd1ef543\"}],\"hide_last_value_indicator\":true,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Database Connections\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.rds.database_connections\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.rds.db_instance.identifier\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"RDS Database Connections [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"17fcda50-921b-11e9-aa19-159bf182e06f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"RDS Transaction Blocked [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(164,221,0,1)\",\"id\":\"27aaf910-d978-11e9-aff2-99c15d8b7da1\",\"operator\":\"lte\",\"value\":0},{\"color\":\"rgba(244,78,59,1)\",\"id\":\"3526a9e0-d978-11e9-aff2-99c15d8b7da1\",\"operator\":\"gt\",\"value\":0},{\"background_color\":\"rgba(164,221,0,1)\",\"id\":\"50a46c15-ab5f-41d6-83de-b988ab7f4149\",\"operator\":\"empty\",\"value\":null},{\"background_color\":\"rgba(164,221,0,1)\",\"id\":\"6bb4d634-1d42-47fc-9c42-3f8269c8f509\",\"operator\":\"empty\",\"value\":null}],\"bar_color_rules\":[{\"bar_color\":\"rgba(211,49,21,1)\",\"id\":\"f8196690-921a-11e9-badf-4b42bd1ef543\",\"operator\":\"gt\",\"value\":0}],\"drilldown_url\":\"\",\"filter\":\"\",\"hide_last_value_indicator\":true,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Transaction Blocked\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.rds.transactions.blocked\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"aws.rds.db_instance.identifier\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"metric\",\"use_kibana_indexes\":false},\"title\":\"RDS Transaction Blocked [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"00b29040-921d-11e9-aa19-159bf182e06f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Region Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Region Filter\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b5308940-7347-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjMsMV0="} -{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"c6ed7acb-d119-41cc-99ce-cca114d1f1cb":{"columnOrder":["1bfe525f-e68d-4504-86bc-e80fb154192c","08fe8b96-3fe0-410f-8ee3-3ca1379bea49","08fe8b96-3fe0-410f-8ee3-3ca1379bea49X0"],"columns":{"08fe8b96-3fe0-410f-8ee3-3ca1379bea49":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Free Storage Bytes","operationType":"formula","params":{"formula":"average(aws.rds.free_storage.bytes)","isFormulaBroken":false},"references":["08fe8b96-3fe0-410f-8ee3-3ca1379bea49X0"],"scale":"ratio"},"08fe8b96-3fe0-410f-8ee3-3ca1379bea49X0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Part of average(aws.rds.free_storage.bytes)","operationType":"average","scale":"ratio","sourceField":"aws.rds.free_storage.bytes"},"1bfe525f-e68d-4504-86bc-e80fb154192c":{"dataType":"string","isBucketed":true,"label":"Top values of aws.rds.db_instance.identifier","operationType":"terms","params":{"missingBucket":false,"orderBy":{"fallback":true,"type":"alphabetical"},"orderDirection":"asc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"columns":[{"columnId":"08fe8b96-3fe0-410f-8ee3-3ca1379bea49","isTransposed":false},{"columnId":"1bfe525f-e68d-4504-86bc-e80fb154192c","isTransposed":false}],"layerId":"c6ed7acb-d119-41cc-99ce-cca114d1f1cb"}},"title":"RDS Free Storage Bytes [Metricbeat AWS]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"68f36fb0-f0a0-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-c6ed7acb-d119-41cc-99ce-cca114d1f1cb","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTQsMV0="} -{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"5a1e8135-28e5-4e15-a675-bf9f840fca1c":{"columnOrder":["748501ab-c222-4695-9062-93c70e72a864","191b027e-d3d1-41da-b3fb-29315f99f4ee","98446733-f0c0-4666-8491-52b6eae923ed","98446733-f0c0-4666-8491-52b6eae923edX0"],"columns":{"191b027e-d3d1-41da-b3fb-29315f99f4ee":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"748501ab-c222-4695-9062-93c70e72a864":{"dataType":"string","isBucketed":true,"label":"Top values of aws.rds.db_instance.identifier","operationType":"terms","params":{"missingBucket":false,"orderBy":{"fallback":true,"type":"alphabetical"},"orderDirection":"asc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"},"98446733-f0c0-4666-8491-52b6eae923ed":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Read Latency (Milliseconds)","operationType":"formula","params":{"formula":"average(aws.rds.latency.read)","isFormulaBroken":false},"references":["98446733-f0c0-4666-8491-52b6eae923edX0"],"scale":"ratio"},"98446733-f0c0-4666-8491-52b6eae923edX0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Part of average(aws.rds.latency.read)","operationType":"average","scale":"ratio","sourceField":"aws.rds.latency.read"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["98446733-f0c0-4666-8491-52b6eae923ed"],"layerId":"5a1e8135-28e5-4e15-a675-bf9f840fca1c","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"748501ab-c222-4695-9062-93c70e72a864","xAccessor":"191b027e-d3d1-41da-b3fb-29315f99f4ee"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide","yLeftExtent":{"mode":"full"},"yRightExtent":{"mode":"full"}}},"title":"RDS Read Latency in Milliseconds [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"f9ff3450-f094-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-5a1e8135-28e5-4e15-a675-bf9f840fca1c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTUsMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"75b24975-5ca3-4da5-bc1a-92013a901a21":{"columnOrder":["bfa06179-6b6f-43e5-a446-f856ff3e51bf","af96ca6c-7ab9-47a3-ad8b-29e1578c0076","6a87f496-b929-4d24-aede-325d54fedfa1","6a87f496-b929-4d24-aede-325d54fedfa1X0"],"columns":{"6a87f496-b929-4d24-aede-325d54fedfa1":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Write Latency (Milliseconds)","operationType":"formula","params":{"formula":"average(aws.rds.latency.write)","isFormulaBroken":false},"references":["6a87f496-b929-4d24-aede-325d54fedfa1X0"],"scale":"ratio"},"6a87f496-b929-4d24-aede-325d54fedfa1X0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Part of average(aws.rds.latency.write)","operationType":"average","scale":"ratio","sourceField":"aws.rds.latency.write"},"af96ca6c-7ab9-47a3-ad8b-29e1578c0076":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"bfa06179-6b6f-43e5-a446-f856ff3e51bf":{"dataType":"string","isBucketed":true,"label":"Top values of aws.rds.db_instance.identifier","operationType":"terms","params":{"missingBucket":false,"orderBy":{"fallback":true,"type":"alphabetical"},"orderDirection":"asc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["6a87f496-b929-4d24-aede-325d54fedfa1"],"layerId":"75b24975-5ca3-4da5-bc1a-92013a901a21","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"bfa06179-6b6f-43e5-a446-f856ff3e51bf","xAccessor":"af96ca6c-7ab9-47a3-ad8b-29e1578c0076"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide","yLeftExtent":{"mode":"full"},"yRightExtent":{"mode":"full"}}},"title":"RDS Write Latency in Milliseconds [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"8560b400-f096-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-75b24975-5ca3-4da5-bc1a-92013a901a21","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTYsMV0="} -{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"b8d09be0-e20a-4f42-b08e-1da4c3cc8efd":{"columnOrder":["e676afd3-ebd5-434a-85d7-a1a708b9a32f","545fe110-3ab4-4a3d-99d9-9eae69d6ff07","8293fc99-aed6-44a3-83ee-a498d2200a46"],"columns":{"545fe110-3ab4-4a3d-99d9-9eae69d6ff07":{"dataType":"string","isBucketed":true,"label":"Top values of aws.rds.db_instance.identifier","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"8293fc99-aed6-44a3-83ee-a498d2200a46","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"},"8293fc99-aed6-44a3-83ee-a498d2200a46":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Insert Throughput Count/Second","operationType":"average","scale":"ratio","sourceField":"aws.rds.throughput.insert"},"e676afd3-ebd5-434a-85d7-a1a708b9a32f":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["8293fc99-aed6-44a3-83ee-a498d2200a46"],"layerId":"b8d09be0-e20a-4f42-b08e-1da4c3cc8efd","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"545fe110-3ab4-4a3d-99d9-9eae69d6ff07","xAccessor":"e676afd3-ebd5-434a-85d7-a1a708b9a32f"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide","yLeftExtent":{"mode":"full"},"yRightExtent":{"mode":"full"}}},"title":"RDS Insert Throughput [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"b0077d10-f09b-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-b8d09be0-e20a-4f42-b08e-1da4c3cc8efd","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTcsMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"8682174a-4cff-4d95-b719-1fc306f5b33a":{"columnOrder":["bc08fa3e-ce15-4acd-a0fd-c5c5c5452441","f45a0753-4e23-43c4-80f7-4a9aa9548a6e","85980678-0e26-4f77-b735-7ec5ebbc472e","85980678-0e26-4f77-b735-7ec5ebbc472eX0"],"columns":{"85980678-0e26-4f77-b735-7ec5ebbc472e":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Select Throughput Count/Second","operationType":"formula","params":{"formula":"average(aws.rds.throughput.select)","isFormulaBroken":false},"references":["85980678-0e26-4f77-b735-7ec5ebbc472eX0"],"scale":"ratio"},"85980678-0e26-4f77-b735-7ec5ebbc472eX0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Part of Select Throughput Count/Second","operationType":"average","scale":"ratio","sourceField":"aws.rds.throughput.select"},"bc08fa3e-ce15-4acd-a0fd-c5c5c5452441":{"dataType":"string","isBucketed":true,"label":"Top values of aws.rds.db_instance.identifier","operationType":"terms","params":{"missingBucket":false,"orderBy":{"fallback":true,"type":"alphabetical"},"orderDirection":"asc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"},"f45a0753-4e23-43c4-80f7-4a9aa9548a6e":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["85980678-0e26-4f77-b735-7ec5ebbc472e"],"layerId":"8682174a-4cff-4d95-b719-1fc306f5b33a","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"bc08fa3e-ce15-4acd-a0fd-c5c5c5452441","xAccessor":"f45a0753-4e23-43c4-80f7-4a9aa9548a6e"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide","yLeftExtent":{"mode":"full"},"yRightExtent":{"mode":"full"}}},"title":"RDS Select Throughput[Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"41e37710-f09d-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-8682174a-4cff-4d95-b719-1fc306f5b33a","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTgsMV0="} -{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"dd0a4706-5286-4976-9bc4-f5e7a4964bf6":{"columnOrder":["a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc","103900c0-dcfa-416f-a272-6efa09c84fce","18e6079e-e955-41d0-8196-d2b932cf1fa6","18e6079e-e955-41d0-8196-d2b932cf1fa6X0"],"columns":{"103900c0-dcfa-416f-a272-6efa09c84fce":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"18e6079e-e955-41d0-8196-d2b932cf1fa6":{"customLabel":true,"dataType":"number","isBucketed":false,"label":" average(aws.rds.cpu.total.pct)","operationType":"formula","params":{"formula":"average(aws.rds.cpu.total.pct)","isFormulaBroken":false},"references":["18e6079e-e955-41d0-8196-d2b932cf1fa6X0"],"scale":"ratio"},"18e6079e-e955-41d0-8196-d2b932cf1fa6X0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Part of ","operationType":"average","scale":"ratio","sourceField":"aws.rds.cpu.total.pct"},"a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc":{"dataType":"string","isBucketed":true,"label":"Top values of aws.rds.db_instance.identifier","operationType":"terms","params":{"missingBucket":false,"orderBy":{"fallback":true,"type":"alphabetical"},"orderDirection":"asc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["18e6079e-e955-41d0-8196-d2b932cf1fa6"],"layerId":"dd0a4706-5286-4976-9bc4-f5e7a4964bf6","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc","xAccessor":"103900c0-dcfa-416f-a272-6efa09c84fce"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide","yLeftExtent":{"mode":"full"},"yRightExtent":{"mode":"full"}}},"title":"RDS CPU Total Pct [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"c4419a90-f091-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-dd0a4706-5286-4976-9bc4-f5e7a4964bf6","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTksMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"14d4ba6b-f4e1-4d40-818a-6aa829d90422":{"columnOrder":["8954842c-4056-46ef-adfc-29dfc3b0cbd3","40493df1-c805-49eb-8dfa-9ff81f7acd4b","c7c3ebb2-d611-40a5-aab3-491fa36fe729","c7c3ebb2-d611-40a5-aab3-491fa36fe729X0"],"columns":{"40493df1-c805-49eb-8dfa-9ff81f7acd4b":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"8954842c-4056-46ef-adfc-29dfc3b0cbd3":{"dataType":"string","isBucketed":true,"label":"Top values of aws.rds.db_instance.identifier","operationType":"terms","params":{"missingBucket":false,"orderBy":{"fallback":true,"type":"alphabetical"},"orderDirection":"asc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"},"c7c3ebb2-d611-40a5-aab3-491fa36fe729":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Queue Depth (Count)","operationType":"formula","params":{"formula":"average(aws.rds.disk_queue_depth)","isFormulaBroken":false},"references":["c7c3ebb2-d611-40a5-aab3-491fa36fe729X0"],"scale":"ratio"},"c7c3ebb2-d611-40a5-aab3-491fa36fe729X0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Part of Queue Depth (Count)","operationType":"average","scale":"ratio","sourceField":"aws.rds.disk_queue_depth"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["c7c3ebb2-d611-40a5-aab3-491fa36fe729"],"layerId":"14d4ba6b-f4e1-4d40-818a-6aa829d90422","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"8954842c-4056-46ef-adfc-29dfc3b0cbd3","xAccessor":"40493df1-c805-49eb-8dfa-9ff81f7acd4b"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide","yLeftExtent":{"mode":"full"},"yRightExtent":{"mode":"full"}}},"title":"RDS Disk Queue Depth [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"bbc80900-f09e-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-14d4ba6b-f4e1-4d40-818a-6aa829d90422","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MjAsMV0="} -{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"94e6f698-4af3-4acd-a018-867330b4e0de":{"columnOrder":["ba1bdf55-b2f8-4bb4-b78c-caab170367e0","98b1c682-acf5-4331-8129-62177616a221","c7534b00-fa2b-4633-84da-83d71de297f8","c7534b00-fa2b-4633-84da-83d71de297f8X0"],"columns":{"98b1c682-acf5-4331-8129-62177616a221":{"dataType":"string","isBucketed":true,"label":"Top values of aws.rds.db_instance.identifier","operationType":"terms","params":{"missingBucket":false,"orderBy":{"fallback":true,"type":"alphabetical"},"orderDirection":"asc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"},"ba1bdf55-b2f8-4bb4-b78c-caab170367e0":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"c7534b00-fa2b-4633-84da-83d71de297f8":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Write IOPS (Count/Second)","operationType":"formula","params":{"formula":"average(aws.rds.write_io.ops_per_sec)","isFormulaBroken":false},"references":["c7534b00-fa2b-4633-84da-83d71de297f8X0"],"scale":"ratio"},"c7534b00-fa2b-4633-84da-83d71de297f8X0":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Part of Write IOPS (Count/Second)","operationType":"average","scale":"ratio","sourceField":"aws.rds.write_io.ops_per_sec"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["c7534b00-fa2b-4633-84da-83d71de297f8"],"layerId":"94e6f698-4af3-4acd-a018-867330b4e0de","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"98b1c682-acf5-4331-8129-62177616a221","xAccessor":"ba1bdf55-b2f8-4bb4-b78c-caab170367e0"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide","yLeftExtent":{"mode":"full"},"yRightExtent":{"mode":"full"}}},"title":"RDS Write IOPS [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"30fd4e40-f0a1-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-94e6f698-4af3-4acd-a018-867330b4e0de","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MjEsMV0="} -{"attributes":{"description":null,"state":{"datasourceStates":{"indexpattern":{"layers":{"e2611df6-ca73-4d53-b0b5-afd8b718c369":{"columnOrder":["53a07fa4-b348-44c7-b644-83f3617e5b5c","b9e82720-e098-4dd7-ac5b-f3becccd344a","85528f23-48f2-462f-8075-eaddd94b21f2"],"columns":{"53a07fa4-b348-44c7-b644-83f3617e5b5c":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Read IOPS (Count/Second)","operationType":"terms","params":{"missingBucket":false,"orderBy":{"columnId":"85528f23-48f2-462f-8075-eaddd94b21f2","type":"column"},"orderDirection":"desc","otherBucket":true,"size":10},"scale":"ordinal","sourceField":"aws.rds.db_instance.identifier"},"85528f23-48f2-462f-8075-eaddd94b21f2":{"dataType":"number","isBucketed":false,"label":"Average of aws.rds.read_io.ops_per_sec","operationType":"average","scale":"ratio","sourceField":"aws.rds.read_io.ops_per_sec"},"b9e82720-e098-4dd7-ac5b-f3becccd344a":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}},"incompleteColumns":{}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["85528f23-48f2-462f-8075-eaddd94b21f2"],"layerId":"e2611df6-ca73-4d53-b0b5-afd8b718c369","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"53a07fa4-b348-44c7-b644-83f3617e5b5c","xAccessor":"b9e82720-e098-4dd7-ac5b-f3becccd344a"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"valueLabels":"hide","yLeftExtent":{"mode":"full"},"yRightExtent":{"mode":"full"}}},"title":"RDS Read IOPS [Metricbeat AWS]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"f757eba0-f0a0-11eb-b61f-a53cb4913361","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-e2611df6-ca73-4d53-b0b5-afd8b718c369","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MjIsMV0="} -{"attributes":{"description":"Overview of AWS RDS Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":7,\"i\":\"1\",\"w\":17,\"x\":7,\"y\":0},\"panelIndex\":\"1\",\"panelRefName\":\"panel_1\",\"title\":\"Database Connections\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":8,\"i\":\"5\",\"w\":17,\"x\":7,\"y\":7},\"panelIndex\":\"5\",\"panelRefName\":\"panel_5\",\"title\":\"Transaction Blocked\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"6\",\"w\":7,\"x\":0,\"y\":0},\"panelIndex\":\"6\",\"panelRefName\":\"panel_6\",\"title\":\"AWS Region Filter\",\"type\":\"visualization\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"4d89e43f-299c-4f43-bde2-0ada0983ff23\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"4d89e43f-299c-4f43-bde2-0ada0983ff23\",\"panelRefName\":\"panel_4d89e43f-299c-4f43-bde2-0ada0983ff23\",\"title\":\"Free Storage\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"d409ab5d-84b5-4ecc-86ae-1f79a882b626\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"d409ab5d-84b5-4ecc-86ae-1f79a882b626\",\"panelRefName\":\"panel_d409ab5d-84b5-4ecc-86ae-1f79a882b626\",\"title\":\"Read Latency\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"1abf12dc-d009-4a02-acd4-463383d32a63\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"1abf12dc-d009-4a02-acd4-463383d32a63\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"metricbeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"metricbeat-*\",\"name\":\"indexpattern-datasource-layer-75b24975-5ca3-4da5-bc1a-92013a901a21\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"75b24975-5ca3-4da5-bc1a-92013a901a21\":{\"columnOrder\":[\"bfa06179-6b6f-43e5-a446-f856ff3e51bf\",\"af96ca6c-7ab9-47a3-ad8b-29e1578c0076\",\"6a87f496-b929-4d24-aede-325d54fedfa1\",\"6a87f496-b929-4d24-aede-325d54fedfa1X0\"],\"columns\":{\"6a87f496-b929-4d24-aede-325d54fedfa1\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Write Latency (Milliseconds)\",\"operationType\":\"formula\",\"params\":{\"formula\":\"average(aws.rds.latency.write)\",\"isFormulaBroken\":false},\"references\":[\"6a87f496-b929-4d24-aede-325d54fedfa1X0\"],\"scale\":\"ratio\"},\"6a87f496-b929-4d24-aede-325d54fedfa1X0\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Part of average(aws.rds.latency.write)\",\"operationType\":\"average\",\"scale\":\"ratio\",\"sourceField\":\"aws.rds.latency.write\"},\"af96ca6c-7ab9-47a3-ad8b-29e1578c0076\":{\"dataType\":\"date\",\"isBucketed\":true,\"label\":\"@timestamp\",\"operationType\":\"date_histogram\",\"params\":{\"interval\":\"auto\"},\"scale\":\"interval\",\"sourceField\":\"@timestamp\"},\"bfa06179-6b6f-43e5-a446-f856ff3e51bf\":{\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Top values of aws.rds.db_instance.identifier\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"fallback\":true,\"type\":\"alphabetical\"},\"orderDirection\":\"asc\",\"otherBucket\":true,\"size\":10},\"scale\":\"ordinal\",\"sourceField\":\"aws.rds.db_instance.identifier\"}},\"incompleteColumns\":{}}}}},\"filters\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"axisTitlesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"fittingFunction\":\"None\",\"gridlinesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"layers\":[{\"accessors\":[\"6a87f496-b929-4d24-aede-325d54fedfa1\"],\"layerId\":\"75b24975-5ca3-4da5-bc1a-92013a901a21\",\"position\":\"top\",\"seriesType\":\"line\",\"showGridlines\":false,\"splitAccessor\":\"bfa06179-6b6f-43e5-a446-f856ff3e51bf\",\"xAccessor\":\"af96ca6c-7ab9-47a3-ad8b-29e1578c0076\"}],\"legend\":{\"isVisible\":true,\"position\":\"right\"},\"preferredSeriesType\":\"line\",\"tickLabelsVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"valueLabels\":\"hide\",\"yLeftExtent\":{\"mode\":\"full\"},\"yRightExtent\":{\"mode\":\"full\"}}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsXY\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Write Latency\",\"panelRefName\":\"panel_1abf12dc-d009-4a02-acd4-463383d32a63\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"c5476b0e-6a44-43e5-8bb4-0795c4d097c1\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"c5476b0e-6a44-43e5-8bb4-0795c4d097c1\",\"panelRefName\":\"panel_c5476b0e-6a44-43e5-8bb4-0795c4d097c1\",\"title\":\"Insert Throughput\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"bf74bb77-3503-4682-9f0e-6df0994dce5d\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"bf74bb77-3503-4682-9f0e-6df0994dce5d\",\"panelRefName\":\"panel_bf74bb77-3503-4682-9f0e-6df0994dce5d\",\"title\":\"Select Throughput\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"249ff0a6-3fd3-4935-85c3-0c3222d3c498\",\"w\":24,\"x\":0,\"y\":45},\"panelIndex\":\"249ff0a6-3fd3-4935-85c3-0c3222d3c498\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"metricbeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"metricbeat-*\",\"name\":\"indexpattern-datasource-layer-dd0a4706-5286-4976-9bc4-f5e7a4964bf6\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"dd0a4706-5286-4976-9bc4-f5e7a4964bf6\":{\"columnOrder\":[\"a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc\",\"103900c0-dcfa-416f-a272-6efa09c84fce\",\"18e6079e-e955-41d0-8196-d2b932cf1fa6\",\"18e6079e-e955-41d0-8196-d2b932cf1fa6X0\"],\"columns\":{\"103900c0-dcfa-416f-a272-6efa09c84fce\":{\"dataType\":\"date\",\"isBucketed\":true,\"label\":\"@timestamp\",\"operationType\":\"date_histogram\",\"params\":{\"interval\":\"auto\"},\"scale\":\"interval\",\"sourceField\":\"@timestamp\"},\"18e6079e-e955-41d0-8196-d2b932cf1fa6\":{\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"average(aws.rds.cpu.total.pct)\",\"operationType\":\"formula\",\"params\":{\"formula\":\"average(aws.rds.cpu.total.pct)\",\"isFormulaBroken\":false},\"references\":[\"18e6079e-e955-41d0-8196-d2b932cf1fa6X0\"],\"scale\":\"ratio\"},\"18e6079e-e955-41d0-8196-d2b932cf1fa6X0\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Part of average(aws.rds.cpu.total.pct)\",\"operationType\":\"average\",\"scale\":\"ratio\",\"sourceField\":\"aws.rds.cpu.total.pct\"},\"a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc\":{\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Top values of aws.rds.db_instance.identifier\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"fallback\":true,\"type\":\"alphabetical\"},\"orderDirection\":\"asc\",\"otherBucket\":true,\"size\":10},\"scale\":\"ordinal\",\"sourceField\":\"aws.rds.db_instance.identifier\"}},\"incompleteColumns\":{}}}}},\"filters\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"axisTitlesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"fittingFunction\":\"None\",\"gridlinesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"layers\":[{\"accessors\":[\"18e6079e-e955-41d0-8196-d2b932cf1fa6\"],\"layerId\":\"dd0a4706-5286-4976-9bc4-f5e7a4964bf6\",\"position\":\"top\",\"seriesType\":\"line\",\"showGridlines\":false,\"splitAccessor\":\"a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc\",\"xAccessor\":\"103900c0-dcfa-416f-a272-6efa09c84fce\"}],\"legend\":{\"isVisible\":true,\"position\":\"right\"},\"preferredSeriesType\":\"line\",\"tickLabelsVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"valueLabels\":\"hide\",\"yLeftExtent\":{\"mode\":\"full\"},\"yRightExtent\":{\"mode\":\"full\"}}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsXY\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"CPU Total Pct\",\"panelRefName\":\"panel_249ff0a6-3fd3-4935-85c3-0c3222d3c498\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"c28488ce-a20e-447f-9a68-ba49b542ab0a\",\"w\":24,\"x\":24,\"y\":45},\"panelIndex\":\"c28488ce-a20e-447f-9a68-ba49b542ab0a\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"metricbeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"metricbeat-*\",\"name\":\"indexpattern-datasource-layer-14d4ba6b-f4e1-4d40-818a-6aa829d90422\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"14d4ba6b-f4e1-4d40-818a-6aa829d90422\":{\"columnOrder\":[\"8954842c-4056-46ef-adfc-29dfc3b0cbd3\",\"40493df1-c805-49eb-8dfa-9ff81f7acd4b\",\"c7c3ebb2-d611-40a5-aab3-491fa36fe729\",\"c7c3ebb2-d611-40a5-aab3-491fa36fe729X0\"],\"columns\":{\"40493df1-c805-49eb-8dfa-9ff81f7acd4b\":{\"dataType\":\"date\",\"isBucketed\":true,\"label\":\"@timestamp\",\"operationType\":\"date_histogram\",\"params\":{\"interval\":\"auto\"},\"scale\":\"interval\",\"sourceField\":\"@timestamp\"},\"8954842c-4056-46ef-adfc-29dfc3b0cbd3\":{\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Top values of aws.rds.db_instance.identifier\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"fallback\":true,\"type\":\"alphabetical\"},\"orderDirection\":\"asc\",\"otherBucket\":true,\"size\":10},\"scale\":\"ordinal\",\"sourceField\":\"aws.rds.db_instance.identifier\"},\"c7c3ebb2-d611-40a5-aab3-491fa36fe729\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Queue Depth (Count)\",\"operationType\":\"formula\",\"params\":{\"formula\":\"average(aws.rds.disk_queue_depth)\",\"isFormulaBroken\":false},\"references\":[\"c7c3ebb2-d611-40a5-aab3-491fa36fe729X0\"],\"scale\":\"ratio\"},\"c7c3ebb2-d611-40a5-aab3-491fa36fe729X0\":{\"customLabel\":true,\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Part of Queue Depth (Count)\",\"operationType\":\"average\",\"scale\":\"ratio\",\"sourceField\":\"aws.rds.disk_queue_depth\"}},\"incompleteColumns\":{}}}}},\"filters\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"axisTitlesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"fittingFunction\":\"None\",\"gridlinesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"layers\":[{\"accessors\":[\"c7c3ebb2-d611-40a5-aab3-491fa36fe729\"],\"layerId\":\"14d4ba6b-f4e1-4d40-818a-6aa829d90422\",\"position\":\"top\",\"seriesType\":\"line\",\"showGridlines\":false,\"splitAccessor\":\"8954842c-4056-46ef-adfc-29dfc3b0cbd3\",\"xAccessor\":\"40493df1-c805-49eb-8dfa-9ff81f7acd4b\"}],\"legend\":{\"isVisible\":true,\"position\":\"right\"},\"preferredSeriesType\":\"line\",\"tickLabelsVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"valueLabels\":\"hide\",\"yLeftExtent\":{\"mode\":\"full\"},\"yRightExtent\":{\"mode\":\"full\"}}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsXY\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Disk Queue Depth\",\"panelRefName\":\"panel_c28488ce-a20e-447f-9a68-ba49b542ab0a\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"29549114-6ebf-4047-aa56-bc035f66d3b4\",\"w\":24,\"x\":0,\"y\":60},\"panelIndex\":\"29549114-6ebf-4047-aa56-bc035f66d3b4\",\"panelRefName\":\"panel_29549114-6ebf-4047-aa56-bc035f66d3b4\",\"title\":\"Write IOPS\",\"type\":\"lens\",\"version\":\"7.11.0\"},{\"version\":\"7.14.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"addd441f-fa2b-4725-8015-619ee176ed0a\",\"w\":24,\"x\":24,\"y\":60},\"panelIndex\":\"addd441f-fa2b-4725-8015-619ee176ed0a\",\"embeddableConfig\":{\"attributes\":{\"references\":[{\"id\":\"metricbeat-*\",\"name\":\"indexpattern-datasource-current-indexpattern\",\"type\":\"index-pattern\"},{\"id\":\"metricbeat-*\",\"name\":\"indexpattern-datasource-layer-e2611df6-ca73-4d53-b0b5-afd8b718c369\",\"type\":\"index-pattern\"}],\"state\":{\"datasourceStates\":{\"indexpattern\":{\"layers\":{\"e2611df6-ca73-4d53-b0b5-afd8b718c369\":{\"columnOrder\":[\"53a07fa4-b348-44c7-b644-83f3617e5b5c\",\"b9e82720-e098-4dd7-ac5b-f3becccd344a\",\"85528f23-48f2-462f-8075-eaddd94b21f2\"],\"columns\":{\"53a07fa4-b348-44c7-b644-83f3617e5b5c\":{\"customLabel\":true,\"dataType\":\"string\",\"isBucketed\":true,\"label\":\"Read IOPS (Count/Second)\",\"operationType\":\"terms\",\"params\":{\"missingBucket\":false,\"orderBy\":{\"columnId\":\"85528f23-48f2-462f-8075-eaddd94b21f2\",\"type\":\"column\"},\"orderDirection\":\"desc\",\"otherBucket\":true,\"size\":10},\"scale\":\"ordinal\",\"sourceField\":\"aws.rds.db_instance.identifier\"},\"85528f23-48f2-462f-8075-eaddd94b21f2\":{\"dataType\":\"number\",\"isBucketed\":false,\"label\":\"Average of aws.rds.read_io.ops_per_sec\",\"operationType\":\"average\",\"scale\":\"ratio\",\"sourceField\":\"aws.rds.read_io.ops_per_sec\"},\"b9e82720-e098-4dd7-ac5b-f3becccd344a\":{\"dataType\":\"date\",\"isBucketed\":true,\"label\":\"@timestamp\",\"operationType\":\"date_histogram\",\"params\":{\"interval\":\"auto\"},\"scale\":\"interval\",\"sourceField\":\"@timestamp\"}},\"incompleteColumns\":{}}}}},\"filters\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"visualization\":{\"axisTitlesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"fittingFunction\":\"None\",\"gridlinesVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"layers\":[{\"accessors\":[\"85528f23-48f2-462f-8075-eaddd94b21f2\"],\"layerId\":\"e2611df6-ca73-4d53-b0b5-afd8b718c369\",\"position\":\"top\",\"seriesType\":\"line\",\"showGridlines\":false,\"splitAccessor\":\"53a07fa4-b348-44c7-b644-83f3617e5b5c\",\"xAccessor\":\"b9e82720-e098-4dd7-ac5b-f3becccd344a\"}],\"legend\":{\"isVisible\":true,\"position\":\"right\"},\"preferredSeriesType\":\"line\",\"tickLabelsVisibilitySettings\":{\"x\":true,\"yLeft\":true,\"yRight\":true},\"valueLabels\":\"hide\",\"yLeftExtent\":{\"mode\":\"full\"},\"yRightExtent\":{\"mode\":\"full\"}}},\"title\":\"\",\"type\":\"lens\",\"visualizationType\":\"lnsXY\"},\"enhancements\":{},\"hidePanelTitles\":false,\"type\":\"lens\"},\"title\":\"Read IOPS\",\"panelRefName\":\"panel_addd441f-fa2b-4725-8015-619ee176ed0a\"}]","timeRestore":false,"title":"[Metricbeat AWS] RDS Overview","version":1},"coreMigrationVersion":"8.0.0","id":"3367c170-921f-11e9-aa19-159bf182e06f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"17fcda50-921b-11e9-aa19-159bf182e06f","name":"1:panel_1","type":"visualization"},{"id":"00b29040-921d-11e9-aa19-159bf182e06f","name":"5:panel_5","type":"visualization"},{"id":"b5308940-7347-11e9-816b-07687310a99a","name":"6:panel_6","type":"visualization"},{"id":"68f36fb0-f0a0-11eb-b61f-a53cb4913361","name":"4d89e43f-299c-4f43-bde2-0ada0983ff23:panel_4d89e43f-299c-4f43-bde2-0ada0983ff23","type":"lens"},{"id":"f9ff3450-f094-11eb-b61f-a53cb4913361","name":"d409ab5d-84b5-4ecc-86ae-1f79a882b626:panel_d409ab5d-84b5-4ecc-86ae-1f79a882b626","type":"lens"},{"id":"8560b400-f096-11eb-b61f-a53cb4913361","name":"1abf12dc-d009-4a02-acd4-463383d32a63:panel_1abf12dc-d009-4a02-acd4-463383d32a63","type":"lens"},{"id":"metricbeat-*","name":"1abf12dc-d009-4a02-acd4-463383d32a63:indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"1abf12dc-d009-4a02-acd4-463383d32a63:indexpattern-datasource-layer-75b24975-5ca3-4da5-bc1a-92013a901a21","type":"index-pattern"},{"id":"b0077d10-f09b-11eb-b61f-a53cb4913361","name":"c5476b0e-6a44-43e5-8bb4-0795c4d097c1:panel_c5476b0e-6a44-43e5-8bb4-0795c4d097c1","type":"lens"},{"id":"41e37710-f09d-11eb-b61f-a53cb4913361","name":"bf74bb77-3503-4682-9f0e-6df0994dce5d:panel_bf74bb77-3503-4682-9f0e-6df0994dce5d","type":"lens"},{"id":"c4419a90-f091-11eb-b61f-a53cb4913361","name":"249ff0a6-3fd3-4935-85c3-0c3222d3c498:panel_249ff0a6-3fd3-4935-85c3-0c3222d3c498","type":"lens"},{"id":"metricbeat-*","name":"249ff0a6-3fd3-4935-85c3-0c3222d3c498:indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"249ff0a6-3fd3-4935-85c3-0c3222d3c498:indexpattern-datasource-layer-dd0a4706-5286-4976-9bc4-f5e7a4964bf6","type":"index-pattern"},{"id":"bbc80900-f09e-11eb-b61f-a53cb4913361","name":"c28488ce-a20e-447f-9a68-ba49b542ab0a:panel_c28488ce-a20e-447f-9a68-ba49b542ab0a","type":"lens"},{"id":"metricbeat-*","name":"c28488ce-a20e-447f-9a68-ba49b542ab0a:indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"c28488ce-a20e-447f-9a68-ba49b542ab0a:indexpattern-datasource-layer-14d4ba6b-f4e1-4d40-818a-6aa829d90422","type":"index-pattern"},{"id":"30fd4e40-f0a1-11eb-b61f-a53cb4913361","name":"29549114-6ebf-4047-aa56-bc035f66d3b4:panel_29549114-6ebf-4047-aa56-bc035f66d3b4","type":"lens"},{"id":"f757eba0-f0a0-11eb-b61f-a53cb4913361","name":"addd441f-fa2b-4725-8015-619ee176ed0a:panel_addd441f-fa2b-4725-8015-619ee176ed0a","type":"lens"},{"id":"metricbeat-*","name":"addd441f-fa2b-4725-8015-619ee176ed0a:indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"addd441f-fa2b-4725-8015-619ee176ed0a:indexpattern-datasource-layer-e2611df6-ca73-4d53-b0b5-afd8b718c369","type":"index-pattern"}],"type":"dashboard","updated_at":"2021-08-04T16:30:34.757Z","version":"WzM0MTAsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-s3-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-s3-overview.ndjson deleted file mode 100644 index 2b6e87034927..000000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-s3-overview.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"S3 Daily Storage Bucket Size in Bytes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"f679e680-475f-11e9-a9de-e776805ecfc9\"}],\"bar_color_rules\":[{\"id\":\"f703aff0-475f-11e9-a9de-e776805ecfc9\"}],\"drop_last_bucket\":0,\"gauge_color_rules\":[{\"id\":\"f8388670-475f-11e9-a9de-e776805ecfc9\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.s3_daily_storage.bucket.size.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.s3.bucket.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"20\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"S3 Daily Storage Bucket Size in Bytes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2dbb8f90-4760-11e9-8062-c98a86cb6f94","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"S3 Daily Storage Number of Objects [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"167ea870-4761-11e9-bf81-69a4e579cab5\"}],\"bar_color_rules\":[{\"id\":\"01dad830-4761-11e9-bf81-69a4e579cab5\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.s3_daily_storage.number_of_objects\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.s3.bucket.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"20\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"S3 Daily Storage Number of Objects [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3a3914d0-4761-11e9-8062-c98a86cb6f94","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"S3 Request Latency Total Request in ms [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"c0d11b00-4761-11e9-bf81-69a4e579cab5\"}],\"bar_color_rules\":[{\"id\":\"67cb0930-4761-11e9-bf81-69a4e579cab5\"}],\"drop_last_bucket\":0,\"gauge_color_rules\":[{\"id\":\"6eafde10-4761-11e9-bf81-69a4e579cab5\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1d\",\"isModelInvalid\":false,\"pivot_id\":\"aws.s3.bucket.name\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"color_rules\":[{\"id\":\"ac2ef870-4761-11e9-bf81-69a4e579cab5\"}],\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Latency in ms\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.s3_request.latency.total_request.ms\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.s3.bucket.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"S3 Request Latency Total Request in ms [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2b2d58b0-4762-11e9-8062-c98a86cb6f94","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"S3 Total Error 4xx [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"59207fe0-4762-11e9-bf81-69a4e579cab5\"}],\"bar_color_rules\":[{\"id\":\"5ad9a190-4762-11e9-bf81-69a4e579cab5\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total # of HTTP 4xx Errors\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.s3_request.errors.4xx\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS S3 Total Error 4xx\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"81d83c70-4762-11e9-8062-c98a86cb6f94","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"S3 Total Error 5xx [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"59207fe0-4762-11e9-bf81-69a4e579cab5\"}],\"bar_color_rules\":[{\"id\":\"5ad9a190-4762-11e9-bf81-69a4e579cab5\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total # of HTTP 5xx Errors\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.s3_request.errors.5xx\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"AWS S3 Total Error 5xx\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8b34a100-4762-11e9-8062-c98a86cb6f94","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"S3 Filters [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPattern\":\"metricbeat-*\",\"label\":\"region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"aws.s3.bucket.name\",\"id\":\"1549512142947\",\"indexPattern\":\"metricbeat-*\",\"label\":\"s3 bucket name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS S3 Filters\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"6e3285d0-4763-11e9-8062-c98a86cb6f94","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"S3 Total Requests [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"c03c4320-4763-11e9-b811-fd5d24a641d7\"}],\"bar_color_rules\":[{\"id\":\"c7b9fca0-4763-11e9-b811-fd5d24a641d7\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.s3_request.requests.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.s3.bucket.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"S3 Total Requests [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d186fd50-4763-11e9-8062-c98a86cb6f94","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MzAsMV0="} -{"attributes":{"description":"Overview of AWS S3 Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":6},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"S3 Daily Storage Bucket Size in Bytes\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":6},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"S3 Daily Storage Number of Objects\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":13},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"S3 Request Latency Total Request in ms\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"4\",\"w\":13,\"x\":24,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"S3 Total Error 4xx\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"5\",\"w\":11,\"x\":37,\"y\":0},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"S3 Total Error 5xx\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"S3 Filters\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":13},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"S3 Total Requests\",\"panelRefName\":\"panel_7\"}]","refreshInterval":{"pause":true,"value":0},"timeFrom":"now-1d","timeRestore":true,"timeTo":"now","title":"[Metricbeat AWS] S3 Overview","version":1},"coreMigrationVersion":"8.0.0","id":"a096b830-4762-11e9-8062-c98a86cb6f94","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"2dbb8f90-4760-11e9-8062-c98a86cb6f94","name":"1:panel_1","type":"visualization"},{"id":"3a3914d0-4761-11e9-8062-c98a86cb6f94","name":"2:panel_2","type":"visualization"},{"id":"2b2d58b0-4762-11e9-8062-c98a86cb6f94","name":"3:panel_3","type":"visualization"},{"id":"81d83c70-4762-11e9-8062-c98a86cb6f94","name":"4:panel_4","type":"visualization"},{"id":"8b34a100-4762-11e9-8062-c98a86cb6f94","name":"5:panel_5","type":"visualization"},{"id":"6e3285d0-4763-11e9-8062-c98a86cb6f94","name":"6:panel_6","type":"visualization"},{"id":"d186fd50-4763-11e9-8062-c98a86cb6f94","name":"7:panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:35.750Z","version":"WzM0MjMsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sns-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sns-overview.ndjson deleted file mode 100644 index 83fe9fcaef76..000000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sns-overview.ndjson +++ /dev/null @@ -1,12 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Region Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Region Filter\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b5308940-7347-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS Messages and Notifications [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Messages Published\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.NumberOfMessagesPublished.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"204ff2b0-1b77-11ea-9357-231d0e09a8a9\",\"label\":\"Notifications Delivered\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.NumberOfNotificationsDelivered.sum\",\"id\":\"204ff2b1-1b77-11ea-9357-231d0e09a8a9\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"204ff2b1-1b77-11ea-9357-231d0e09a8a9\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"32e925e0-1b77-11ea-9357-231d0e09a8a9\",\"label\":\"Notifications Failed\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.NumberOfNotificationsFailed.sum\",\"id\":\"32e925e1-1b77-11ea-9357-231d0e09a8a9\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"32e925e1-1b77-11ea-9357-231d0e09a8a9\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS Messages and Notifications [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"13e624c0-180e-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0MzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"SNS Topic Name Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"aws.dimensions.TopicName\",\"id\":\"1565034367477\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"topic name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"SNS Topic Name Filter [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"59defc90-17a5-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0MzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS Publish Size [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Publish Size\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.PublishSize.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS Publish Size [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6f7f7680-180c-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0MzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS Notifications Filtered Out [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Notifications Filtered Out\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.NumberOfNotificationsFilteredOut.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS Notifications Filtered Out [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bf81e030-180e-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0MzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS Notifications Filtered Out Invalid Attributes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Notifications Filtered Out Invalid Attributes\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.NumberOfNotificationsFilteredOut-InvalidAttributes.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS Notifications Filtered Out Invalid Attributes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d19a71b0-180e-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0MzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS Notifications Filtered Out No Message Attributes [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Notifications Filtered Out No Message Attributes\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.NumberOfNotificationsFilteredOut-NoMessageAttributes.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS Notifications Filtered Out No Message Attributes [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"dffa19e0-180e-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0MzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS Notifications Failed To Redrive To DLQ [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Notifications Failed To Redrive To DLQ\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.NumberOfNotificationsFailedToRedriveToDlq.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS Notifications Failed To Redrive To DLQ [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"09857a20-180f-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0MzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS SMS Success Rate [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"SMS Success Rate\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.SMSSuccessRate.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS SMS Success Rate [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"abdc7480-180b-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0NDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS Notifications Redriven To DLQ [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Notifications Redriven To DLQ\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.NumberOfNotificationsRedrivenToDlq.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS Notifications Redriven To DLQ [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fc0869c0-180e-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0NDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SNS SMS Month To Date Spent USD [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"s,s,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"SMS Month To Date Spent USD\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sns.metrics.SMSMonthToDateSpentUSD.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SNS SMS Month To Date Spent USD [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b7f8bf90-180f-11ea-8e91-03c7047cbb9d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0NDIsMV0="} -{"attributes":{"description":"Overview of AWS SNS Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.dataset\", \"negate\": false, \"params\": {\"query\": \"aws.sns\"}, \"type\": \"phrase\", \"value\": \"aws.sns\"}, \"query\": {\"match\": {\"event.dataset\": {\"query\": \"aws.sns\", \"type\": \"phrase\"}}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"3b9b0cee-b175-4268-8c5b-4ce869a09caf\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"3b9b0cee-b175-4268-8c5b-4ce869a09caf\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3b9b0cee-b175-4268-8c5b-4ce869a09caf\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5f0d72c5-0f28-449f-9c93-3b4074f068f7\",\"w\":39,\"x\":9,\"y\":0},\"panelIndex\":\"5f0d72c5-0f28-449f-9c93-3b4074f068f7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS Messages and Notifications\",\"panelRefName\":\"panel_5f0d72c5-0f28-449f-9c93-3b4074f068f7\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"5a9d5f2f-b075-4892-8188-c6e808a1163d\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"5a9d5f2f-b075-4892-8188-c6e808a1163d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5a9d5f2f-b075-4892-8188-c6e808a1163d\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f\",\"w\":16,\"x\":0,\"y\":10},\"panelIndex\":\"c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS Publish Size\",\"panelRefName\":\"panel_c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"0684c25d-34e8-425e-9069-dd8364e6325b\",\"w\":16,\"x\":16,\"y\":10},\"panelIndex\":\"0684c25d-34e8-425e-9069-dd8364e6325b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS Notifications Filtered Out\",\"panelRefName\":\"panel_0684c25d-34e8-425e-9069-dd8364e6325b\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"72e987da-9a49-4dd4-99c4-4acbc49a0e0b\",\"w\":16,\"x\":32,\"y\":10},\"panelIndex\":\"72e987da-9a49-4dd4-99c4-4acbc49a0e0b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS Notifications Filtered Out Invalid Attributes\",\"panelRefName\":\"panel_72e987da-9a49-4dd4-99c4-4acbc49a0e0b\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"923bd4cd-d8fe-47b5-afcf-577bf2c5987c\",\"w\":16,\"x\":0,\"y\":20},\"panelIndex\":\"923bd4cd-d8fe-47b5-afcf-577bf2c5987c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS Notifications Filtered Out No Message Attributes\",\"panelRefName\":\"panel_923bd4cd-d8fe-47b5-afcf-577bf2c5987c\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"f176153f-4588-42f9-a7bb-3015909d5610\",\"w\":16,\"x\":32,\"y\":20},\"panelIndex\":\"f176153f-4588-42f9-a7bb-3015909d5610\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS Notifications Failed to Redrive to DLQ\",\"panelRefName\":\"panel_f176153f-4588-42f9-a7bb-3015909d5610\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"f3c5915b-6848-4950-afca-53653d13d6af\",\"w\":16,\"x\":0,\"y\":30},\"panelIndex\":\"f3c5915b-6848-4950-afca-53653d13d6af\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS SMS Success Rate\",\"panelRefName\":\"panel_f3c5915b-6848-4950-afca-53653d13d6af\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3b3cc747-b57c-44e0-a18c-77155072bee4\",\"w\":16,\"x\":16,\"y\":20},\"panelIndex\":\"3b3cc747-b57c-44e0-a18c-77155072bee4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS Notifications Redriven To DLQ\",\"panelRefName\":\"panel_3b3cc747-b57c-44e0-a18c-77155072bee4\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"ee130150-c1de-465b-8a8e-013f466528bf\",\"w\":16,\"x\":16,\"y\":30},\"panelIndex\":\"ee130150-c1de-465b-8a8e-013f466528bf\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SNS SMS Month To Date Spent USD\",\"panelRefName\":\"panel_ee130150-c1de-465b-8a8e-013f466528bf\"}]","timeRestore":false,"title":"[Metricbeat AWS] SNS Overview","version":1},"coreMigrationVersion":"8.0.0","id":"d17b1000-17a4-11ea-8e91-03c7047cbb9d","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"b5308940-7347-11e9-816b-07687310a99a","name":"3b9b0cee-b175-4268-8c5b-4ce869a09caf:panel_3b9b0cee-b175-4268-8c5b-4ce869a09caf","type":"visualization"},{"id":"13e624c0-180e-11ea-8e91-03c7047cbb9d","name":"5f0d72c5-0f28-449f-9c93-3b4074f068f7:panel_5f0d72c5-0f28-449f-9c93-3b4074f068f7","type":"visualization"},{"id":"59defc90-17a5-11ea-8e91-03c7047cbb9d","name":"5a9d5f2f-b075-4892-8188-c6e808a1163d:panel_5a9d5f2f-b075-4892-8188-c6e808a1163d","type":"visualization"},{"id":"6f7f7680-180c-11ea-8e91-03c7047cbb9d","name":"c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f:panel_c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f","type":"visualization"},{"id":"bf81e030-180e-11ea-8e91-03c7047cbb9d","name":"0684c25d-34e8-425e-9069-dd8364e6325b:panel_0684c25d-34e8-425e-9069-dd8364e6325b","type":"visualization"},{"id":"d19a71b0-180e-11ea-8e91-03c7047cbb9d","name":"72e987da-9a49-4dd4-99c4-4acbc49a0e0b:panel_72e987da-9a49-4dd4-99c4-4acbc49a0e0b","type":"visualization"},{"id":"dffa19e0-180e-11ea-8e91-03c7047cbb9d","name":"923bd4cd-d8fe-47b5-afcf-577bf2c5987c:panel_923bd4cd-d8fe-47b5-afcf-577bf2c5987c","type":"visualization"},{"id":"09857a20-180f-11ea-8e91-03c7047cbb9d","name":"f176153f-4588-42f9-a7bb-3015909d5610:panel_f176153f-4588-42f9-a7bb-3015909d5610","type":"visualization"},{"id":"abdc7480-180b-11ea-8e91-03c7047cbb9d","name":"f3c5915b-6848-4950-afca-53653d13d6af:panel_f3c5915b-6848-4950-afca-53653d13d6af","type":"visualization"},{"id":"fc0869c0-180e-11ea-8e91-03c7047cbb9d","name":"3b3cc747-b57c-44e0-a18c-77155072bee4:panel_3b3cc747-b57c-44e0-a18c-77155072bee4","type":"visualization"},{"id":"b7f8bf90-180f-11ea-8e91-03c7047cbb9d","name":"ee130150-c1de-465b-8a8e-013f466528bf:panel_ee130150-c1de-465b-8a8e-013f466528bf","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:36.824Z","version":"WzM0MzEsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sqs-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sqs-overview.ndjson deleted file mode 100644 index 007ccdf0d178..000000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-sqs-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Messages Visible [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"d5b83c70-41e8-11e9-9e94-11d4d21d3f4b\"}],\"bar_color_rules\":[{\"id\":\"d2d14920-41e8-11e9-9e94-11d4d21d3f4b\"}],\"drop_last_bucket\":0,\"gauge_color_rules\":[{\"id\":\"d2163680-41e8-11e9-9e94-11d4d21d3f4b\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"SQS Message Visible\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.messages.visible\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"SQS Messages Visible [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f74eb760-41e8-11e9-b7a0-c99d9d127b61","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Oldest Message Age in Seconds [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"3e3d3610-437e-11e9-a35d-972620e4f790\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"AWS SQS Oldest Message Age in Seconds\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.oldest_message_age.sec\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"SQS Oldest Message Age in Seconds [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"53730d20-437e-11e9-8697-530f39afc6eb","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Messages Received [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"1ccb6710-43b3-11e9-8c70-d17a67455a84\"}],\"bar_color_rules\":[{\"id\":\"57cc0200-43b5-11e9-84e9-a97a63579915\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.messages.received\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"series_drop_last_bucket\":1,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQS Messages Received [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1235fe50-41e7-11e9-b7a0-c99d9d127b61","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Messages Deleted [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.messages.deleted\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQS Messages Deleted [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"be6c4180-41e6-11e9-b7a0-c99d9d127b61","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Messages Delayed [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.messages.delayed\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQS Messages Delayed [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"dcd31cd0-41e5-11e9-b7a0-c99d9d127b61","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Messages Sent [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"d95adba0-6b8a-11e9-98b0-9b2c3d14a4c1\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.messages.sent\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQS Messages Sent [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"dd2f2a10-41e6-11e9-b7a0-c99d9d127b61","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"SQS Filters [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"aws.sqs.queue.name\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"queue name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS SQS Filters\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b0afd3e0-43b7-11e9-8697-530f39afc6eb","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQS Empty Receives [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"d95adba0-6b8a-11e9-98b0-9b2c3d14a4c1\"}],\"bar_color_rules\":[{\"id\":\"a7e8c370-6c25-11e9-9cd1-3bdb0c7db024\"}],\"drop_last_bucket\":0,\"gauge_color_rules\":[{\"id\":\"a778eaa0-6c25-11e9-9cd1-3bdb0c7db024\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"line_width\":1,\"metrics\":[{\"field\":\"aws.sqs.empty_receives\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"numerator\":\"\",\"percentiles\":[{\"id\":\"74323cf0-6c25-11e9-9cd1-3bdb0c7db024\",\"mode\":\"line\",\"shade\":0.2,\"value\":50}],\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.sqs.queue.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"terms_size\":\"5\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"SQS Empty Receives [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bb82c4d0-6c25-11e9-81bc-7f4cd8b3d892","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NTEsMV0="} -{"attributes":{"description":"Overview of AWS SQS Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1\",\"w\":12,\"x\":12,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQS Messages Visible\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"2\",\"w\":12,\"x\":36,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQS Oldest Message Age in Seconds\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"3\",\"w\":24,\"x\":0,\"y\":8},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQS Messages Received\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"4\",\"w\":24,\"x\":24,\"y\":8},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQS Messages Deleted\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"7\",\"w\":24,\"x\":0,\"y\":16},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQS Messages Delayed\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"8\",\"w\":24,\"x\":24,\"y\":16},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQS Messages Sent\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"9\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQS Filters\",\"panelRefName\":\"panel_9\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"10\",\"w\":12,\"x\":24,\"y\":0},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQS Empty Receives\",\"panelRefName\":\"panel_10\"}]","timeRestore":false,"title":"[Metricbeat AWS] SQS Overview","version":1},"coreMigrationVersion":"8.0.0","id":"234aeda0-43b7-11e9-8697-530f39afc6eb","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"f74eb760-41e8-11e9-b7a0-c99d9d127b61","name":"1:panel_1","type":"visualization"},{"id":"53730d20-437e-11e9-8697-530f39afc6eb","name":"2:panel_2","type":"visualization"},{"id":"1235fe50-41e7-11e9-b7a0-c99d9d127b61","name":"3:panel_3","type":"visualization"},{"id":"be6c4180-41e6-11e9-b7a0-c99d9d127b61","name":"4:panel_4","type":"visualization"},{"id":"dcd31cd0-41e5-11e9-b7a0-c99d9d127b61","name":"7:panel_7","type":"visualization"},{"id":"dd2f2a10-41e6-11e9-b7a0-c99d9d127b61","name":"8:panel_8","type":"visualization"},{"id":"b0afd3e0-43b7-11e9-8697-530f39afc6eb","name":"9:panel_9","type":"visualization"},{"id":"bb82c4d0-6c25-11e9-81bc-7f4cd8b3d892","name":"10:panel_10","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:37.811Z","version":"WzM0NDMsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-trasitgateway-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-trasitgateway-overview.ndjson deleted file mode 100644 index 83eb4bd08319..000000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-trasitgateway-overview.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"TransitGateway Filters [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.account.name\",\"id\":\"1565034367477\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"account name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"cloud.region\",\"id\":\"1584478324642\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"aws.dimensions.TransitGateway\",\"id\":\"1584479118709\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"transit gateway\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"TransitGateway Filters [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"415fed40-694f-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transit Gateway Bytes In [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.transitgateway.metrics.BytesIn.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TransitGateway\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transit Gateway Bytes In [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cd6419c0-6949-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transit Gateway Packets In [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.transitgateway.metrics.PacketsIn.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TransitGateway\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transit Gateway Packets In [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0a36b590-694c-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transit Gateway Bytes Out [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.transitgateway.metrics.BytesOut.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TransitGateway\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transit Gateway Bytes Out [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"dc5f65b0-6949-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transit Gateway Packets Out [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.transitgateway.metrics.PacketsOut.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TransitGateway\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transit Gateway Packets Out [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"10e0f270-694c-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transit Gateway Bytes Drop Count No Route [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.transitgateway.metrics.BytesDropCountNoRoute.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TransitGateway\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transit Gateway Bytes Drop Count No Route [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"01ed5990-694a-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transit Gateway Packets Drop Count No Route [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.transitgateway.metrics.PacketDropCountNoRoute.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TransitGateway\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transit Gateway Packets Drop Count No Route [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"007ceec0-694c-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transit Gateway Bytes Drop Count Blackhole [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.transitgateway.metrics.BytesDropCountBlackhole.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TransitGateway\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transit Gateway Bytes Drop Count Blackhole [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f7c17000-6949-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transit Gateway Packets Drop Count Blackhole [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.transitgateway.metrics.PacketDropCountBlackhole.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TransitGateway\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transit Gateway Packets Drop Count Blackhole [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c1db9b80-694b-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NjEsMV0="} -{"attributes":{"description":"Overview of AWS Transit Gateway Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"af1453d8-04d3-4b44-a3b0-138111255a23\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"af1453d8-04d3-4b44-a3b0-138111255a23\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"filters\",\"panelRefName\":\"panel_af1453d8-04d3-4b44-a3b0-138111255a23\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"14555108-559d-4c07-b240-6e6b14254f16\",\"w\":24,\"x\":0,\"y\":5},\"panelIndex\":\"14555108-559d-4c07-b240-6e6b14254f16\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes In\",\"panelRefName\":\"panel_14555108-559d-4c07-b240-6e6b14254f16\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"9c605367-60e3-4e9c-8036-a6191dbafe4a\",\"w\":24,\"x\":24,\"y\":5},\"panelIndex\":\"9c605367-60e3-4e9c-8036-a6191dbafe4a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets In\",\"panelRefName\":\"panel_9c605367-60e3-4e9c-8036-a6191dbafe4a\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"271558e6-b208-4e2c-abfb-0a6b2dbb0c66\",\"w\":24,\"x\":0,\"y\":17},\"panelIndex\":\"271558e6-b208-4e2c-abfb-0a6b2dbb0c66\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Out\",\"panelRefName\":\"panel_271558e6-b208-4e2c-abfb-0a6b2dbb0c66\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"41002ab1-845b-469e-9283-8a46a90e4662\",\"w\":24,\"x\":24,\"y\":17},\"panelIndex\":\"41002ab1-845b-469e-9283-8a46a90e4662\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets Out\",\"panelRefName\":\"panel_41002ab1-845b-469e-9283-8a46a90e4662\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"b141f90b-739e-46f3-83c9-9c4661183837\",\"w\":24,\"x\":0,\"y\":29},\"panelIndex\":\"b141f90b-739e-46f3-83c9-9c4661183837\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Dropped - no route\",\"panelRefName\":\"panel_b141f90b-739e-46f3-83c9-9c4661183837\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"c6a76f92-248b-4cae-a03f-7d34d58098ae\",\"w\":24,\"x\":24,\"y\":29},\"panelIndex\":\"c6a76f92-248b-4cae-a03f-7d34d58098ae\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets Dropped - no route\",\"panelRefName\":\"panel_c6a76f92-248b-4cae-a03f-7d34d58098ae\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"1d08d3b8-3bd7-4f90-854d-be08cb119273\",\"w\":24,\"x\":0,\"y\":41},\"panelIndex\":\"1d08d3b8-3bd7-4f90-854d-be08cb119273\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Dropped - black hole\",\"panelRefName\":\"panel_1d08d3b8-3bd7-4f90-854d-be08cb119273\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"40e82e50-b30c-40eb-bbee-9bbfc3d3311f\",\"w\":24,\"x\":24,\"y\":41},\"panelIndex\":\"40e82e50-b30c-40eb-bbee-9bbfc3d3311f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Packets Dropped - black hole\",\"panelRefName\":\"panel_40e82e50-b30c-40eb-bbee-9bbfc3d3311f\"}]","timeRestore":false,"title":"[Metricbeat AWS] TransitGateway Overview","version":1},"coreMigrationVersion":"8.0.0","id":"0eb5a6a0-694f-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"415fed40-694f-11ea-b0ac-95d4ecb1fecd","name":"af1453d8-04d3-4b44-a3b0-138111255a23:panel_af1453d8-04d3-4b44-a3b0-138111255a23","type":"visualization"},{"id":"cd6419c0-6949-11ea-b0ac-95d4ecb1fecd","name":"14555108-559d-4c07-b240-6e6b14254f16:panel_14555108-559d-4c07-b240-6e6b14254f16","type":"visualization"},{"id":"0a36b590-694c-11ea-b0ac-95d4ecb1fecd","name":"9c605367-60e3-4e9c-8036-a6191dbafe4a:panel_9c605367-60e3-4e9c-8036-a6191dbafe4a","type":"visualization"},{"id":"dc5f65b0-6949-11ea-b0ac-95d4ecb1fecd","name":"271558e6-b208-4e2c-abfb-0a6b2dbb0c66:panel_271558e6-b208-4e2c-abfb-0a6b2dbb0c66","type":"visualization"},{"id":"10e0f270-694c-11ea-b0ac-95d4ecb1fecd","name":"41002ab1-845b-469e-9283-8a46a90e4662:panel_41002ab1-845b-469e-9283-8a46a90e4662","type":"visualization"},{"id":"01ed5990-694a-11ea-b0ac-95d4ecb1fecd","name":"b141f90b-739e-46f3-83c9-9c4661183837:panel_b141f90b-739e-46f3-83c9-9c4661183837","type":"visualization"},{"id":"007ceec0-694c-11ea-b0ac-95d4ecb1fecd","name":"c6a76f92-248b-4cae-a03f-7d34d58098ae:panel_c6a76f92-248b-4cae-a03f-7d34d58098ae","type":"visualization"},{"id":"f7c17000-6949-11ea-b0ac-95d4ecb1fecd","name":"1d08d3b8-3bd7-4f90-854d-be08cb119273:panel_1d08d3b8-3bd7-4f90-854d-be08cb119273","type":"visualization"},{"id":"c1db9b80-694b-11ea-b0ac-95d4ecb1fecd","name":"40e82e50-b30c-40eb-bbee-9bbfc3d3311f:panel_40e82e50-b30c-40eb-bbee-9bbfc3d3311f","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:38.811Z","version":"WzM0NTIsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-usage-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-usage-overview.ndjson deleted file mode 100644 index 67ce02b93366..000000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-usage-overview.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Region Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"region name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Region Filter\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b5308940-7347-11e9-816b-07687310a99a","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Usage ResourceCount [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"aws.usage.metrics.ResourceCount.sum\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"aws.dimensions.Type : \\\"Resource\\\" \"},\"label\":\"\"}],\"row\":true},\"schema\":\"split\",\"type\":\"filters\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"aws.dimensions.Service\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"aws.dimensions.Resource\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":4,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":3,\"aggType\":\"sum\",\"format\":{\"id\":\"number\"},\"params\":{}},\"splitRow\":[{\"accessor\":0,\"aggType\":\"filters\",\"format\":{},\"params\":{}}]},\"isDonut\":true,\"labels\":{\"last_level\":false,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Usage ResourceCount [Metricbeat AWS]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"9202d1a0-178c-11ea-8650-fb606deb5be4","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Usage CallCount [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"aws.usage.metrics.CallCount.sum\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"aws.dimensions.Type : \\\"API\\\" \"},\"label\":\"\"}],\"row\":true},\"schema\":\"split\",\"type\":\"filters\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"aws.dimensions.Service\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"aws.dimensions.Resource\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":true,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":4,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metric\":{\"accessor\":3,\"aggType\":\"sum\",\"format\":{\"id\":\"number\"},\"params\":{}},\"splitRow\":[{\"accessor\":0,\"aggType\":\"filters\",\"format\":{},\"params\":{}}]},\"isDonut\":true,\"labels\":{\"last_level\":false,\"show\":true,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Usage CallCount [Metricbeat AWS]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"681aab60-178c-11ea-8650-fb606deb5be4","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Account Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.account.name\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"account name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Account Filter [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"deab0260-2981-11e9-86eb-a3a07a77f530","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"AWS Service Filter [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"aws.dimensions.Service\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"service name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"AWS Service Filter [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"2929edb0-178e-11ea-8650-fb606deb5be4","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Usage Resource Count Per Service [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"aws.dimensions.Type : \\\"Resource\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.usage.metrics.ResourceCount.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.Service\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Usage Resource Count Per Service [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"59e2e110-178d-11ea-8650-fb606deb5be4","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Usage Call Count Per Service [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"aws.dimensions.Type : \\\"API\\\" \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.usage.metrics.CallCount.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.Service\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Usage Call Count Per Service [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"75ebfda0-1789-11ea-8650-fb606deb5be4","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjksMV0="} -{"attributes":{"description":"Overview of AWS Usage Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"AWS Region Filter\",\"panelRefName\":\"panel_2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"00c2b1f6-3367-4b6f-ac01-7e48b76c262a\",\"w\":20,\"x\":9,\"y\":0},\"panelIndex\":\"00c2b1f6-3367-4b6f-ac01-7e48b76c262a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Usage Resource Count\",\"panelRefName\":\"panel_00c2b1f6-3367-4b6f-ac01-7e48b76c262a\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"fecfe5d4-ef1c-4f38-954a-a2506d72bc5b\",\"w\":18,\"x\":30,\"y\":0},\"panelIndex\":\"fecfe5d4-ef1c-4f38-954a-a2506d72bc5b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Usage API Call Count\",\"panelRefName\":\"panel_fecfe5d4-ef1c-4f38-954a-a2506d72bc5b\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"69ce7461-36ad-4e7c-b541-c6a1601bf089\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"69ce7461-36ad-4e7c-b541-c6a1601bf089\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"AWS Account Filter\",\"panelRefName\":\"panel_69ce7461-36ad-4e7c-b541-c6a1601bf089\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"62e86407-6ae3-47d3-9136-dd61bdf3267a\",\"w\":9,\"x\":0,\"y\":10},\"panelIndex\":\"62e86407-6ae3-47d3-9136-dd61bdf3267a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"AWS Service Filter\",\"panelRefName\":\"panel_62e86407-6ae3-47d3-9136-dd61bdf3267a\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"196a044c-5c20-4417-8aa0-f60fc502e46c\",\"w\":48,\"x\":0,\"y\":15},\"panelIndex\":\"196a044c-5c20-4417-8aa0-f60fc502e46c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Usage Resource Count Per Service\",\"panelRefName\":\"panel_196a044c-5c20-4417-8aa0-f60fc502e46c\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"022941b7-01a1-4570-86e9-d03451d4e102\",\"w\":48,\"x\":0,\"y\":25},\"panelIndex\":\"022941b7-01a1-4570-86e9-d03451d4e102\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Usage API Call Count Per Service\",\"panelRefName\":\"panel_022941b7-01a1-4570-86e9-d03451d4e102\"}]","timeRestore":false,"title":"[Metricbeat AWS] Usage Overview","version":1},"coreMigrationVersion":"8.0.0","id":"917a07b0-178e-11ea-8650-fb606deb5be4","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"b5308940-7347-11e9-816b-07687310a99a","name":"2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36:panel_2ea7bd59-d748-4e4a-889d-f7e2ca1cfe36","type":"visualization"},{"id":"9202d1a0-178c-11ea-8650-fb606deb5be4","name":"00c2b1f6-3367-4b6f-ac01-7e48b76c262a:panel_00c2b1f6-3367-4b6f-ac01-7e48b76c262a","type":"visualization"},{"id":"681aab60-178c-11ea-8650-fb606deb5be4","name":"fecfe5d4-ef1c-4f38-954a-a2506d72bc5b:panel_fecfe5d4-ef1c-4f38-954a-a2506d72bc5b","type":"visualization"},{"id":"deab0260-2981-11e9-86eb-a3a07a77f530","name":"69ce7461-36ad-4e7c-b541-c6a1601bf089:panel_69ce7461-36ad-4e7c-b541-c6a1601bf089","type":"visualization"},{"id":"2929edb0-178e-11ea-8650-fb606deb5be4","name":"62e86407-6ae3-47d3-9136-dd61bdf3267a:panel_62e86407-6ae3-47d3-9136-dd61bdf3267a","type":"visualization"},{"id":"59e2e110-178d-11ea-8650-fb606deb5be4","name":"196a044c-5c20-4417-8aa0-f60fc502e46c:panel_196a044c-5c20-4417-8aa0-f60fc502e46c","type":"visualization"},{"id":"75ebfda0-1789-11ea-8650-fb606deb5be4","name":"022941b7-01a1-4570-86e9-d03451d4e102:panel_022941b7-01a1-4570-86e9-d03451d4e102","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:39.859Z","version":"WzM0NjIsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-vpn-overview.ndjson b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-vpn-overview.ndjson deleted file mode 100644 index 2f1b1a3575c2..000000000000 --- a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/Metricbeat-aws-vpn-overview.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"VPN Filters [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.account.name\",\"id\":\"1565034367477\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"account name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"cloud.region\",\"id\":\"1584478324642\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"region\",\"options\":{\"dynamicOptions\":false,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"aws.dimensions.VpnId\",\"id\":\"1584552913938\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"VPN ID\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"aws.dimensions.TunnelIpAddress\",\"id\":\"1584552958445\",\"indexPatternRefName\":\"control_3_index_pattern\",\"label\":\"Tunnel IP\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":true},\"title\":\"VPN Filters [Metricbeat AWS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"fcfc8d80-693e-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_3_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:40.825Z","version":"WzM0NzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VPN Tunnel Data State [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"05e19c00-693b-11ea-8bb6-25461aeac3d5\"}],\"bar_color_rules\":[{\"id\":\"fdd5ac40-693a-11ea-8bb6-25461aeac3d5\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.vpn.metrics.TunnelState.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VpnId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"VPN Tunnel Data State [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"142ad600-693b-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:40.825Z","version":"WzM0NzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VPN Tunnel Data State Per Tunnel IP [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"05e19c00-693b-11ea-8bb6-25461aeac3d5\"}],\"bar_color_rules\":[{\"id\":\"fdd5ac40-693a-11ea-8bb6-25461aeac3d5\"}],\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.vpn.metrics.TunnelState.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TunnelIpAddress\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"VPN Tunnel Data State Per Tunnel IP [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"58f5a3c0-6943-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:40.825Z","version":"WzM0NzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VPN Tunnel Data In Per VPN ID [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.vpn.metrics.TunnelDataIn.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VpnId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VPN Tunnel Data In Per VPN ID [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2ee7f420-6943-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:40.825Z","version":"WzM0NzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VPN Tunnel Data In [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.vpn.metrics.TunnelDataIn.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TunnelIpAddress\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VPN Tunnel Data In [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ea9e3d40-693a-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:40.825Z","version":"WzM0NzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VPN Tunnel Data Out Per VPN ID [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.vpn.metrics.TunnelDataOut.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.VpnId\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VPN Tunnel Data Out Per VPN ID [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"26b73e50-6943-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:40.825Z","version":"WzM0NzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VPN Tunnel Data Out [Metricbeat AWS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"aws.vpn.metrics.TunnelDataOut.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"aws.dimensions.TunnelIpAddress\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VPN Tunnel Data Out [Metricbeat AWS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f58f99b0-693a-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:40.825Z","version":"WzM0NzcsMV0="} -{"attributes":{"description":"Overview of AWS VPN Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"8ef52400-6eac-417b-936e-dce159dd5e89\",\"w\":8,\"x\":0,\"y\":0},\"panelIndex\":\"8ef52400-6eac-417b-936e-dce159dd5e89\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_8ef52400-6eac-417b-936e-dce159dd5e89\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"eb78041b-afc4-458e-af92-0951b1d0cadd\",\"w\":20,\"x\":8,\"y\":0},\"panelIndex\":\"eb78041b-afc4-458e-af92-0951b1d0cadd\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Tunnel State Per VPN ID\",\"panelRefName\":\"panel_eb78041b-afc4-458e-af92-0951b1d0cadd\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"39a9be08-98c6-470c-b76b-312a57e11e2d\",\"w\":20,\"x\":28,\"y\":0},\"panelIndex\":\"39a9be08-98c6-470c-b76b-312a57e11e2d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Tunnel State Per Tunnel IP\",\"panelRefName\":\"panel_39a9be08-98c6-470c-b76b-312a57e11e2d\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5c8122a2-fbf0-4404-918e-249bf6fd7f07\",\"w\":24,\"x\":0,\"y\":14},\"panelIndex\":\"5c8122a2-fbf0-4404-918e-249bf6fd7f07\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Tunnel Data In Per VPN ID\",\"panelRefName\":\"panel_5c8122a2-fbf0-4404-918e-249bf6fd7f07\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c\",\"w\":24,\"x\":24,\"y\":14},\"panelIndex\":\"8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Tunnel Data In Per Tunnel IP\",\"panelRefName\":\"panel_8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"eb10ea7d-ffc9-4c51-9386-6f63be6322aa\",\"w\":24,\"x\":0,\"y\":29},\"panelIndex\":\"eb10ea7d-ffc9-4c51-9386-6f63be6322aa\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Tunnel Data Out Per VPN ID\",\"panelRefName\":\"panel_eb10ea7d-ffc9-4c51-9386-6f63be6322aa\"},{\"version\":\"7.6.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7\",\"w\":24,\"x\":24,\"y\":29},\"panelIndex\":\"3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Tunnel Data Out Per Tunnel IP\",\"panelRefName\":\"panel_3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7\"}]","timeRestore":false,"title":"[Metricbeat AWS] VPN Overview","version":1},"coreMigrationVersion":"8.0.0","id":"67c9f900-693e-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"fcfc8d80-693e-11ea-b0ac-95d4ecb1fecd","name":"8ef52400-6eac-417b-936e-dce159dd5e89:panel_8ef52400-6eac-417b-936e-dce159dd5e89","type":"visualization"},{"id":"142ad600-693b-11ea-b0ac-95d4ecb1fecd","name":"eb78041b-afc4-458e-af92-0951b1d0cadd:panel_eb78041b-afc4-458e-af92-0951b1d0cadd","type":"visualization"},{"id":"58f5a3c0-6943-11ea-b0ac-95d4ecb1fecd","name":"39a9be08-98c6-470c-b76b-312a57e11e2d:panel_39a9be08-98c6-470c-b76b-312a57e11e2d","type":"visualization"},{"id":"2ee7f420-6943-11ea-b0ac-95d4ecb1fecd","name":"5c8122a2-fbf0-4404-918e-249bf6fd7f07:panel_5c8122a2-fbf0-4404-918e-249bf6fd7f07","type":"visualization"},{"id":"ea9e3d40-693a-11ea-b0ac-95d4ecb1fecd","name":"8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c:panel_8ecd0f73-146f-4aed-bfd1-5c236c5dfe8c","type":"visualization"},{"id":"26b73e50-6943-11ea-b0ac-95d4ecb1fecd","name":"eb10ea7d-ffc9-4c51-9386-6f63be6322aa:panel_eb10ea7d-ffc9-4c51-9386-6f63be6322aa","type":"visualization"},{"id":"f58f99b0-693a-11ea-b0ac-95d4ecb1fecd","name":"3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7:panel_3b01a7e9-eb8b-43bb-977d-53d8bc9d21b7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:40.825Z","version":"WzM0NzAsMV0="} diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/a096b830-4762-11e9-8062-c98a86cb6f94.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/a096b830-4762-11e9-8062-c98a86cb6f94.json new file mode 100644 index 000000000000..d2a2a7561173 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/a096b830-4762-11e9-8062-c98a86cb6f94.json @@ -0,0 +1,194 @@ +{ + "attributes": { + "description": "Overview of AWS S3 Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "1", + "w": 24, + "x": 0, + "y": 6 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "S3 Daily Storage Bucket Size in Bytes", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "2", + "w": 24, + "x": 24, + "y": 6 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "S3 Daily Storage Number of Objects", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "3", + "w": 24, + "x": 0, + "y": 13 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "S3 Request Latency Total Request in ms", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "4", + "w": 13, + "x": 24, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "S3 Total Error 4xx", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "5", + "w": 11, + "x": 37, + "y": 0 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "S3 Total Error 5xx", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "6", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "S3 Filters", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "7", + "w": 24, + "x": 24, + "y": 13 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "title": "S3 Total Requests", + "type": "visualization", + "version": "7.7.0" + } + ], + "refreshInterval": { + "pause": true, + "value": 0 + }, + "timeFrom": "now-1d", + "timeRestore": true, + "timeTo": "now", + "title": "[Metricbeat AWS] S3 Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "a096b830-4762-11e9-8062-c98a86cb6f94", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "2dbb8f90-4760-11e9-8062-c98a86cb6f94", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "3a3914d0-4761-11e9-8062-c98a86cb6f94", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "2b2d58b0-4762-11e9-8062-c98a86cb6f94", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "81d83c70-4762-11e9-8062-c98a86cb6f94", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "8b34a100-4762-11e9-8062-c98a86cb6f94", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "6e3285d0-4763-11e9-8062-c98a86cb6f94", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "d186fd50-4763-11e9-8062-c98a86cb6f94", + "name": "7:panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:35.750Z", + "version": "WzM0MjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/c2b1cbc0-6891-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/c2b1cbc0-6891-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..a0144a961f5d --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/c2b1cbc0-6891-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,320 @@ +{ + "attributes": { + "description": "Overview of AWS NAT Gateway Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "346ce7bf-e1af-4e0d-856b-5aa412903167", + "w": 7, + "x": 0, + "y": 0 + }, + "panelIndex": "346ce7bf-e1af-4e0d-856b-5aa412903167", + "panelRefName": "panel_346ce7bf-e1af-4e0d-856b-5aa412903167", + "title": "Filters", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "19a9f053-a548-4e9d-a257-45932c3b73a5", + "w": 8, + "x": 7, + "y": 0 + }, + "panelIndex": "19a9f053-a548-4e9d-a257-45932c3b73a5", + "panelRefName": "panel_19a9f053-a548-4e9d-a257-45932c3b73a5", + "title": "Error Port Allocation", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3", + "w": 8, + "x": 15, + "y": 0 + }, + "panelIndex": "a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3", + "panelRefName": "panel_a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3", + "title": "Packets Drop", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "b5fe853e-d5b0-4918-93ec-8be70f2881a8", + "w": 8, + "x": 23, + "y": 0 + }, + "panelIndex": "b5fe853e-d5b0-4918-93ec-8be70f2881a8", + "panelRefName": "panel_b5fe853e-d5b0-4918-93ec-8be70f2881a8", + "title": "Total Connection Established", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "33663eae-1bc3-47d4-a9fc-3cd2b43c66ef", + "w": 17, + "x": 31, + "y": 0 + }, + "panelIndex": "33663eae-1bc3-47d4-a9fc-3cd2b43c66ef", + "panelRefName": "panel_33663eae-1bc3-47d4-a9fc-3cd2b43c66ef", + "title": "Active Connection Count", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "4e454740-281a-43b1-92f4-8dd2e37e184f", + "w": 24, + "x": 0, + "y": 11 + }, + "panelIndex": "4e454740-281a-43b1-92f4-8dd2e37e184f", + "panelRefName": "panel_4e454740-281a-43b1-92f4-8dd2e37e184f", + "title": "Bytes In From Destination", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "f40587a4-47f1-494a-b8b9-33365ce34d2f", + "w": 24, + "x": 24, + "y": 11 + }, + "panelIndex": "f40587a4-47f1-494a-b8b9-33365ce34d2f", + "panelRefName": "panel_f40587a4-47f1-494a-b8b9-33365ce34d2f", + "title": "Bytes In From Source", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "00075068-bf27-49e1-8beb-d5572500205b", + "w": 24, + "x": 0, + "y": 24 + }, + "panelIndex": "00075068-bf27-49e1-8beb-d5572500205b", + "panelRefName": "panel_00075068-bf27-49e1-8beb-d5572500205b", + "title": "Bytes Out To Destination", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "c95ab156-9118-4c3c-94ee-55b4c9f5589c", + "w": 24, + "x": 24, + "y": 24 + }, + "panelIndex": "c95ab156-9118-4c3c-94ee-55b4c9f5589c", + "panelRefName": "panel_c95ab156-9118-4c3c-94ee-55b4c9f5589c", + "title": "Bytes Out To Source", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "f7c6e3f7-419d-43ff-a2bb-d5931371f347", + "w": 24, + "x": 0, + "y": 37 + }, + "panelIndex": "f7c6e3f7-419d-43ff-a2bb-d5931371f347", + "panelRefName": "panel_f7c6e3f7-419d-43ff-a2bb-d5931371f347", + "title": "Packets In From Destination", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "dcc56438-240a-45a4-81ec-a54be3d27c43", + "w": 24, + "x": 24, + "y": 37 + }, + "panelIndex": "dcc56438-240a-45a4-81ec-a54be3d27c43", + "panelRefName": "panel_dcc56438-240a-45a4-81ec-a54be3d27c43", + "title": "Packets In From Source", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "db77d690-f343-4dc2-8695-d45a03361e01", + "w": 24, + "x": 0, + "y": 50 + }, + "panelIndex": "db77d690-f343-4dc2-8695-d45a03361e01", + "panelRefName": "panel_db77d690-f343-4dc2-8695-d45a03361e01", + "title": "Packets Out To Destination", + "type": "visualization", + "version": "7.6.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "d882a862-87aa-4169-9dc3-0591252fa736", + "w": 24, + "x": 24, + "y": 50 + }, + "panelIndex": "d882a862-87aa-4169-9dc3-0591252fa736", + "panelRefName": "panel_d882a862-87aa-4169-9dc3-0591252fa736", + "title": "Packets Out To Source", + "type": "visualization", + "version": "7.6.1" + } + ], + "timeRestore": false, + "title": "[Metricbeat AWS] NATGateway Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "c2b1cbc0-6891-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "8345d580-6891-11ea-b0ac-95d4ecb1fecd", + "name": "346ce7bf-e1af-4e0d-856b-5aa412903167:panel_346ce7bf-e1af-4e0d-856b-5aa412903167", + "type": "visualization" + }, + { + "id": "ce7445c0-688f-11ea-b0ac-95d4ecb1fecd", + "name": "19a9f053-a548-4e9d-a257-45932c3b73a5:panel_19a9f053-a548-4e9d-a257-45932c3b73a5", + "type": "visualization" + }, + { + "id": "9bf8e1e0-6890-11ea-b0ac-95d4ecb1fecd", + "name": "a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3:panel_a7a70775-f4ad-4323-b13c-9c9a3bf1bdf3", + "type": "visualization" + }, + { + "id": "68970b10-6890-11ea-b0ac-95d4ecb1fecd", + "name": "b5fe853e-d5b0-4918-93ec-8be70f2881a8:panel_b5fe853e-d5b0-4918-93ec-8be70f2881a8", + "type": "visualization" + }, + { + "id": "c186b610-688d-11ea-b0ac-95d4ecb1fecd", + "name": "33663eae-1bc3-47d4-a9fc-3cd2b43c66ef:panel_33663eae-1bc3-47d4-a9fc-3cd2b43c66ef", + "type": "visualization" + }, + { + "id": "b36532e0-688e-11ea-b0ac-95d4ecb1fecd", + "name": "4e454740-281a-43b1-92f4-8dd2e37e184f:panel_4e454740-281a-43b1-92f4-8dd2e37e184f", + "type": "visualization" + }, + { + "id": "bc5dcc90-688e-11ea-b0ac-95d4ecb1fecd", + "name": "f40587a4-47f1-494a-b8b9-33365ce34d2f:panel_f40587a4-47f1-494a-b8b9-33365ce34d2f", + "type": "visualization" + }, + { + "id": "e0e65e60-688e-11ea-b0ac-95d4ecb1fecd", + "name": "00075068-bf27-49e1-8beb-d5572500205b:panel_00075068-bf27-49e1-8beb-d5572500205b", + "type": "visualization" + }, + { + "id": "c7d6cf90-688e-11ea-b0ac-95d4ecb1fecd", + "name": "c95ab156-9118-4c3c-94ee-55b4c9f5589c:panel_c95ab156-9118-4c3c-94ee-55b4c9f5589c", + "type": "visualization" + }, + { + "id": "bdb8ddd0-6890-11ea-b0ac-95d4ecb1fecd", + "name": "f7c6e3f7-419d-43ff-a2bb-d5931371f347:panel_f7c6e3f7-419d-43ff-a2bb-d5931371f347", + "type": "visualization" + }, + { + "id": "c84ed3d0-6890-11ea-b0ac-95d4ecb1fecd", + "name": "dcc56438-240a-45a4-81ec-a54be3d27c43:panel_dcc56438-240a-45a4-81ec-a54be3d27c43", + "type": "visualization" + }, + { + "id": "08645080-6891-11ea-b0ac-95d4ecb1fecd", + "name": "db77d690-f343-4dc2-8695-d45a03361e01:panel_db77d690-f343-4dc2-8695-d45a03361e01", + "type": "visualization" + }, + { + "id": "fd915180-6890-11ea-b0ac-95d4ecb1fecd", + "name": "d882a862-87aa-4169-9dc3-0591252fa736:panel_d882a862-87aa-4169-9dc3-0591252fa736", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:32.666Z", + "version": "WzMzODAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/c5846400-f7fb-11e8-af03-c999c9dea608-ecs.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/c5846400-f7fb-11e8-af03-c999c9dea608-ecs.json new file mode 100644 index 000000000000..caed64cb1cba --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/c5846400-f7fb-11e8-af03-c999c9dea608-ecs.json @@ -0,0 +1,211 @@ +{ + "attributes": { + "description": "Overview of AWS EC2 Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "3", + "w": 24, + "x": 24, + "y": 16 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "DiskIO Write Bytes", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "5", + "w": 18, + "x": 6, + "y": 11 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Status Check", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "11", + "w": 24, + "x": 0, + "y": 31 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "title": "Network In Bytes", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "12", + "w": 24, + "x": 24, + "y": 31 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "title": "Network Out Bytes", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "15", + "w": 24, + "x": 0, + "y": 16 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "title": "DiskIO Read Bytes", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "17", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "17", + "panelRefName": "panel_17", + "title": "CPU Utilization", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "18", + "w": 6, + "x": 0, + "y": 0 + }, + "panelIndex": "18", + "panelRefName": "panel_18", + "title": "Filters", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "19", + "w": 18, + "x": 6, + "y": 0 + }, + "panelIndex": "19", + "panelRefName": "panel_19", + "title": "Instance State", + "type": "visualization", + "version": "7.9.1" + } + ], + "timeRestore": false, + "title": "[Metricbeat AWS] EC2 Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "c5846400-f7fb-11e8-af03-c999c9dea608-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "fed59380-f7f8-11e8-af03-c999c9dea608-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "9e8c6030-f7f8-11e8-af03-c999c9dea608-ecs", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "15818fd0-f7f9-11e8-af03-c999c9dea608-ecs", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "233b3400-f7f9-11e8-af03-c999c9dea608-ecs", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "f1db6ec0-f7f8-11e8-af03-c999c9dea608-ecs", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "be8828d0-f7f6-11e8-af03-c999c9dea608-ecs", + "name": "17:panel_17", + "type": "visualization" + }, + { + "id": "deab0260-2981-11e9-86eb-a3a07a77f530", + "name": "18:panel_18", + "type": "visualization" + }, + { + "id": "09db13f0-2bdd-11e9-9fe1-cde861544141", + "name": "19:panel_19", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:28.616Z", + "version": "WzMzNDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/d17b1000-17a4-11ea-8e91-03c7047cbb9d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/d17b1000-17a4-11ea-8e91-03c7047cbb9d.json new file mode 100644 index 000000000000..76715a9aed26 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/d17b1000-17a4-11ea-8e91-03c7047cbb9d.json @@ -0,0 +1,305 @@ +{ + "attributes": { + "description": "Overview of AWS SNS Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.dataset", + "negate": false, + "params": { + "query": "aws.sns" + }, + "type": "phrase", + "value": "aws.sns" + }, + "query": { + "match": { + "event.dataset": { + "query": "aws.sns", + "type": "phrase" + } + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "3b9b0cee-b175-4268-8c5b-4ce869a09caf", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "3b9b0cee-b175-4268-8c5b-4ce869a09caf", + "panelRefName": "panel_3b9b0cee-b175-4268-8c5b-4ce869a09caf", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "5f0d72c5-0f28-449f-9c93-3b4074f068f7", + "w": 39, + "x": 9, + "y": 0 + }, + "panelIndex": "5f0d72c5-0f28-449f-9c93-3b4074f068f7", + "panelRefName": "panel_5f0d72c5-0f28-449f-9c93-3b4074f068f7", + "title": "SNS Messages and Notifications", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "5a9d5f2f-b075-4892-8188-c6e808a1163d", + "w": 9, + "x": 0, + "y": 5 + }, + "panelIndex": "5a9d5f2f-b075-4892-8188-c6e808a1163d", + "panelRefName": "panel_5a9d5f2f-b075-4892-8188-c6e808a1163d", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f", + "w": 16, + "x": 0, + "y": 10 + }, + "panelIndex": "c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f", + "panelRefName": "panel_c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f", + "title": "SNS Publish Size", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "0684c25d-34e8-425e-9069-dd8364e6325b", + "w": 16, + "x": 16, + "y": 10 + }, + "panelIndex": "0684c25d-34e8-425e-9069-dd8364e6325b", + "panelRefName": "panel_0684c25d-34e8-425e-9069-dd8364e6325b", + "title": "SNS Notifications Filtered Out", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "72e987da-9a49-4dd4-99c4-4acbc49a0e0b", + "w": 16, + "x": 32, + "y": 10 + }, + "panelIndex": "72e987da-9a49-4dd4-99c4-4acbc49a0e0b", + "panelRefName": "panel_72e987da-9a49-4dd4-99c4-4acbc49a0e0b", + "title": "SNS Notifications Filtered Out Invalid Attributes", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "923bd4cd-d8fe-47b5-afcf-577bf2c5987c", + "w": 16, + "x": 0, + "y": 20 + }, + "panelIndex": "923bd4cd-d8fe-47b5-afcf-577bf2c5987c", + "panelRefName": "panel_923bd4cd-d8fe-47b5-afcf-577bf2c5987c", + "title": "SNS Notifications Filtered Out No Message Attributes", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "f176153f-4588-42f9-a7bb-3015909d5610", + "w": 16, + "x": 32, + "y": 20 + }, + "panelIndex": "f176153f-4588-42f9-a7bb-3015909d5610", + "panelRefName": "panel_f176153f-4588-42f9-a7bb-3015909d5610", + "title": "SNS Notifications Failed to Redrive to DLQ", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "f3c5915b-6848-4950-afca-53653d13d6af", + "w": 16, + "x": 0, + "y": 30 + }, + "panelIndex": "f3c5915b-6848-4950-afca-53653d13d6af", + "panelRefName": "panel_f3c5915b-6848-4950-afca-53653d13d6af", + "title": "SNS SMS Success Rate", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "3b3cc747-b57c-44e0-a18c-77155072bee4", + "w": 16, + "x": 16, + "y": 20 + }, + "panelIndex": "3b3cc747-b57c-44e0-a18c-77155072bee4", + "panelRefName": "panel_3b3cc747-b57c-44e0-a18c-77155072bee4", + "title": "SNS Notifications Redriven To DLQ", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "ee130150-c1de-465b-8a8e-013f466528bf", + "w": 16, + "x": 16, + "y": 30 + }, + "panelIndex": "ee130150-c1de-465b-8a8e-013f466528bf", + "panelRefName": "panel_ee130150-c1de-465b-8a8e-013f466528bf", + "title": "SNS SMS Month To Date Spent USD", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat AWS] SNS Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "d17b1000-17a4-11ea-8e91-03c7047cbb9d", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "b5308940-7347-11e9-816b-07687310a99a", + "name": "3b9b0cee-b175-4268-8c5b-4ce869a09caf:panel_3b9b0cee-b175-4268-8c5b-4ce869a09caf", + "type": "visualization" + }, + { + "id": "13e624c0-180e-11ea-8e91-03c7047cbb9d", + "name": "5f0d72c5-0f28-449f-9c93-3b4074f068f7:panel_5f0d72c5-0f28-449f-9c93-3b4074f068f7", + "type": "visualization" + }, + { + "id": "59defc90-17a5-11ea-8e91-03c7047cbb9d", + "name": "5a9d5f2f-b075-4892-8188-c6e808a1163d:panel_5a9d5f2f-b075-4892-8188-c6e808a1163d", + "type": "visualization" + }, + { + "id": "6f7f7680-180c-11ea-8e91-03c7047cbb9d", + "name": "c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f:panel_c6d5a54d-61a4-470b-8769-c5b6d6ab6c0f", + "type": "visualization" + }, + { + "id": "bf81e030-180e-11ea-8e91-03c7047cbb9d", + "name": "0684c25d-34e8-425e-9069-dd8364e6325b:panel_0684c25d-34e8-425e-9069-dd8364e6325b", + "type": "visualization" + }, + { + "id": "d19a71b0-180e-11ea-8e91-03c7047cbb9d", + "name": "72e987da-9a49-4dd4-99c4-4acbc49a0e0b:panel_72e987da-9a49-4dd4-99c4-4acbc49a0e0b", + "type": "visualization" + }, + { + "id": "dffa19e0-180e-11ea-8e91-03c7047cbb9d", + "name": "923bd4cd-d8fe-47b5-afcf-577bf2c5987c:panel_923bd4cd-d8fe-47b5-afcf-577bf2c5987c", + "type": "visualization" + }, + { + "id": "09857a20-180f-11ea-8e91-03c7047cbb9d", + "name": "f176153f-4588-42f9-a7bb-3015909d5610:panel_f176153f-4588-42f9-a7bb-3015909d5610", + "type": "visualization" + }, + { + "id": "abdc7480-180b-11ea-8e91-03c7047cbb9d", + "name": "f3c5915b-6848-4950-afca-53653d13d6af:panel_f3c5915b-6848-4950-afca-53653d13d6af", + "type": "visualization" + }, + { + "id": "fc0869c0-180e-11ea-8e91-03c7047cbb9d", + "name": "3b3cc747-b57c-44e0-a18c-77155072bee4:panel_3b3cc747-b57c-44e0-a18c-77155072bee4", + "type": "visualization" + }, + { + "id": "b7f8bf90-180f-11ea-8e91-03c7047cbb9d", + "name": "ee130150-c1de-465b-8a8e-013f466528bf:panel_ee130150-c1de-465b-8a8e-013f466528bf", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:36.824Z", + "version": "WzM0MzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/e6776b10-1534-11ea-841c-01bf20a6c8ba.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/e6776b10-1534-11ea-841c-01bf20a6c8ba.json new file mode 100644 index 000000000000..36acb052e4a4 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/e6776b10-1534-11ea-841c-01bf20a6c8ba.json @@ -0,0 +1,210 @@ +{ + "attributes": { + "description": "Overview of AWS Billing Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "89dccfe8-a25e-44ea-afdb-ff01ab1f05d6", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "89dccfe8-a25e-44ea-afdb-ff01ab1f05d6", + "panelRefName": "panel_89dccfe8-a25e-44ea-afdb-ff01ab1f05d6", + "title": "AWS Account Filter", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "f1db16b5-ce0a-4f21-885f-434c16346c26", + "w": 8, + "x": 9, + "y": 0 + }, + "panelIndex": "f1db16b5-ce0a-4f21-885f-434c16346c26", + "panelRefName": "panel_f1db16b5-ce0a-4f21-885f-434c16346c26", + "title": "Current Total Unblended Cost", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "57912f48-42ec-4d3e-ba54-bf94757d1eec", + "w": 31, + "x": 17, + "y": 0 + }, + "panelIndex": "57912f48-42ec-4d3e-ba54-bf94757d1eec", + "panelRefName": "panel_57912f48-42ec-4d3e-ba54-bf94757d1eec", + "title": "Availability Zone Utilization", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "221aab02-2747-4d84-9dde-028ccd51bdce", + "w": 9, + "x": 0, + "y": 5 + }, + "panelIndex": "221aab02-2747-4d84-9dde-028ccd51bdce", + "panelRefName": "panel_221aab02-2747-4d84-9dde-028ccd51bdce", + "title": "Total Estimated Charges For This Month", + "type": "visualization", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "376f236b-1365-4e80-8076-eec88c1a67bd", + "w": 24, + "x": 0, + "y": 18 + }, + "panelIndex": "376f236b-1365-4e80-8076-eec88c1a67bd", + "panelRefName": "panel_376f236b-1365-4e80-8076-eec88c1a67bd", + "title": "Cost Per Service Per User", + "type": "lens", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "dd5220c2-dc8a-4d3e-964b-6137d1e447ad", + "w": 24, + "x": 24, + "y": 18 + }, + "panelIndex": "dd5220c2-dc8a-4d3e-964b-6137d1e447ad", + "panelRefName": "panel_dd5220c2-dc8a-4d3e-964b-6137d1e447ad", + "title": "High Spenders", + "type": "lens", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4", + "w": 24, + "x": 0, + "y": 38 + }, + "panelIndex": "1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4", + "panelRefName": "panel_1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4", + "title": "Top 10 Estimated Charges per Service Name", + "type": "lens", + "version": "7.11.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "60181fec-fea9-4f99-b5f9-a53ffbc2ac65", + "w": 24, + "x": 24, + "y": 38 + }, + "panelIndex": "60181fec-fea9-4f99-b5f9-a53ffbc2ac65", + "panelRefName": "panel_60181fec-fea9-4f99-b5f9-a53ffbc2ac65", + "title": "Daily Unblended Cost", + "type": "visualization", + "version": "7.11.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat AWS] Billing Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "e6776b10-1534-11ea-841c-01bf20a6c8ba", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "deab0260-2981-11e9-86eb-a3a07a77f530", + "name": "89dccfe8-a25e-44ea-afdb-ff01ab1f05d6:panel_89dccfe8-a25e-44ea-afdb-ff01ab1f05d6", + "type": "visualization" + }, + { + "id": "1731c440-e649-11ea-a838-3f4a45f85600", + "name": "f1db16b5-ce0a-4f21-885f-434c16346c26:panel_f1db16b5-ce0a-4f21-885f-434c16346c26", + "type": "visualization" + }, + { + "id": "a5670a20-e65a-11ea-a838-3f4a45f85600", + "name": "57912f48-42ec-4d3e-ba54-bf94757d1eec:panel_57912f48-42ec-4d3e-ba54-bf94757d1eec", + "type": "visualization" + }, + { + "id": "83f08eb0-1532-11ea-841c-01bf20a6c8ba", + "name": "221aab02-2747-4d84-9dde-028ccd51bdce:panel_221aab02-2747-4d84-9dde-028ccd51bdce", + "type": "visualization" + }, + { + "id": "b3da5ac0-e6f1-11ea-a5b5-d5a0accaec95", + "name": "376f236b-1365-4e80-8076-eec88c1a67bd:panel_376f236b-1365-4e80-8076-eec88c1a67bd", + "type": "lens" + }, + { + "id": "d7b399c0-e6f1-11ea-a5b5-d5a0accaec95", + "name": "dd5220c2-dc8a-4d3e-964b-6137d1e447ad:panel_dd5220c2-dc8a-4d3e-964b-6137d1e447ad", + "type": "lens" + }, + { + "id": "cde34840-e6f2-11ea-a5b5-d5a0accaec95", + "name": "1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4:panel_1de716e2-bad9-4fe3-ba49-0e2ea2a59bb4", + "type": "lens" + }, + { + "id": "3e091620-e64b-11ea-a838-3f4a45f85600", + "name": "60181fec-fea9-4f99-b5f9-a53ffbc2ac65:panel_60181fec-fea9-4f99-b5f9-a53ffbc2ac65", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:25.535Z", + "version": "WzMzMTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/e74bf320-b3ce-11e9-87a4-078dbbae220d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/e74bf320-b3ce-11e9-87a4-078dbbae220d.json new file mode 100644 index 000000000000..1e0ec54bd124 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/e74bf320-b3ce-11e9-87a4-078dbbae220d.json @@ -0,0 +1,231 @@ +{ + "attributes": { + "description": "Overview of AWS ELB Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "2", + "w": 25, + "x": 23, + "y": 32 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "HTTP 5XX Errors", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "3", + "w": 37, + "x": 11, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Request Count", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "4", + "w": 11, + "x": 0, + "y": 15 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "Unhealthy Host Count", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "5", + "w": 11, + "x": 0, + "y": 7 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Healthy Host Count", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6", + "w": 37, + "x": 11, + "y": 11 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Latency in Seconds", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "7", + "w": 23, + "x": 0, + "y": 32 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "title": "HTTP Backend 4XX Errors", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "8", + "w": 23, + "x": 0, + "y": 23 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "title": "Backend Connection Errors", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "9", + "w": 11, + "x": 0, + "y": 0 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "10", + "w": 25, + "x": 23, + "y": 23 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "title": "HTTP Backend 2XX", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat AWS] ELB Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "e74bf320-b3ce-11e9-87a4-078dbbae220d", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "b9703dd0-b3c9-11e9-87a4-078dbbae220d", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "d560de70-b3c7-11e9-87a4-078dbbae220d", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "6fc1efd0-b3c9-11e9-87a4-078dbbae220d", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "6392bc30-b3c9-11e9-87a4-078dbbae220d", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "b2ea15a0-b3c7-11e9-87a4-078dbbae220d", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "21f30090-b3ca-11e9-87a4-078dbbae220d", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "572d40e0-b3ca-11e9-87a4-078dbbae220d", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "b5308940-7347-11e9-816b-07687310a99a", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "1f528f50-b3ce-11e9-87a4-078dbbae220d", + "name": "10:panel_10", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:29.650Z", + "version": "WzMzNTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/fac28650-7349-11e9-816b-07687310a99a.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/fac28650-7349-11e9-816b-07687310a99a.json new file mode 100644 index 000000000000..e89b3e989988 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/dashboard/fac28650-7349-11e9-816b-07687310a99a.json @@ -0,0 +1,349 @@ +{ + "attributes": { + "description": "Overview of AWS Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "2", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "3", + "w": 10, + "x": 9, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "4", + "w": 29, + "x": 19, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "6", + "w": 9, + "x": 0, + "y": 7 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "7", + "w": 9, + "x": 9, + "y": 7 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "9", + "w": 15, + "x": 18, + "y": 7 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "10", + "w": 15, + "x": 33, + "y": 7 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "12", + "w": 13, + "x": 0, + "y": 14 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "14", + "w": 20, + "x": 13, + "y": 14 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "15", + "w": 15, + "x": 33, + "y": 14 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "17", + "w": 16, + "x": 15, + "y": 21 + }, + "panelIndex": "17", + "panelRefName": "panel_17", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "18", + "w": 15, + "x": 0, + "y": 21 + }, + "panelIndex": "18", + "panelRefName": "panel_18", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "19", + "w": 17, + "x": 31, + "y": 21 + }, + "panelIndex": "19", + "panelRefName": "panel_19", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "24", + "w": 24, + "x": 0, + "y": 28 + }, + "panelIndex": "24", + "panelRefName": "panel_24", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "25", + "w": 24, + "x": 24, + "y": 28 + }, + "panelIndex": "25", + "panelRefName": "panel_25", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat AWS] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "fac28650-7349-11e9-816b-07687310a99a", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "b5308940-7347-11e9-816b-07687310a99a", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "09db13f0-2bdd-11e9-9fe1-cde861544141", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "be8828d0-f7f6-11e8-af03-c999c9dea608-ecs", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "81d83c70-4762-11e9-8062-c98a86cb6f94", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "58e17c10-7349-11e9-816b-07687310a99a", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "4658f540-734a-11e9-816b-07687310a99a", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "95b322f0-734a-11e9-816b-07687310a99a", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "b2191dd0-734c-11e9-816b-07687310a99a", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "42016bf0-728f-11e9-9a7b-4d62d5bcf4fc", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "9121ac90-734d-11e9-816b-07687310a99a", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "128fd450-734e-11e9-816b-07687310a99a", + "name": "17:panel_17", + "type": "visualization" + }, + { + "id": "54e88a40-734e-11e9-816b-07687310a99a", + "name": "18:panel_18", + "type": "visualization" + }, + { + "id": "398d12d0-7352-11e9-816b-07687310a99a", + "name": "19:panel_19", + "type": "visualization" + }, + { + "id": "4bf62a10-8310-11e9-ac83-47df3568ff90", + "name": "24:panel_24", + "type": "visualization" + }, + { + "id": "d2f46190-830f-11e9-ac83-47df3568ff90", + "name": "25:panel_25", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:33.734Z", + "version": "WzMzOTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/2a711450-d871-11eb-8220-c9141cc1b15c.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/2a711450-d871-11eb-8220-c9141cc1b15c.json new file mode 100644 index 000000000000..787d7a27503c --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/2a711450-d871-11eb-8220-c9141cc1b15c.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "fa1d3f51-58b9-4971-a28d-40616cfceb01": { + "columnOrder": [ + "19e03939-49d0-48f7-b76c-d70142001365", + "8c750b7f-30c5-4d35-93f7-dbea0067dca4", + "092aa8e6-3739-49c1-ac6c-ec67956dec97" + ], + "columns": { + "092aa8e6-3739-49c1-ac6c-ec67956dec97": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "PutRecord Latency", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.kinesis.metrics.PutRecord_Latency.avg" + }, + "19e03939-49d0-48f7-b76c-d70142001365": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "8c750b7f-30c5-4d35-93f7-dbea0067dca4": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.dimensions.StreamName", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "092aa8e6-3739-49c1-ac6c-ec67956dec97", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.dimensions.StreamName" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "092aa8e6-3739-49c1-ac6c-ec67956dec97" + ], + "layerId": "fa1d3f51-58b9-4971-a28d-40616cfceb01", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "8c750b7f-30c5-4d35-93f7-dbea0067dca4", + "xAccessor": "19e03939-49d0-48f7-b76c-d70142001365" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "AWS PutRecord Latency [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "2a711450-d871-11eb-8220-c9141cc1b15c", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:30.617Z", + "version": "WzMzNjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/30fd4e40-f0a1-11eb-b61f-a53cb4913361.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/30fd4e40-f0a1-11eb-b61f-a53cb4913361.json new file mode 100644 index 000000000000..20096caf1ede --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/30fd4e40-f0a1-11eb-b61f-a53cb4913361.json @@ -0,0 +1,147 @@ +{ + "attributes": { + "description": null, + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "94e6f698-4af3-4acd-a018-867330b4e0de": { + "columnOrder": [ + "ba1bdf55-b2f8-4bb4-b78c-caab170367e0", + "98b1c682-acf5-4331-8129-62177616a221", + "c7534b00-fa2b-4633-84da-83d71de297f8", + "c7534b00-fa2b-4633-84da-83d71de297f8X0" + ], + "columns": { + "98b1c682-acf5-4331-8129-62177616a221": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.rds.db_instance.identifier", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "fallback": true, + "type": "alphabetical" + }, + "orderDirection": "asc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.rds.db_instance.identifier" + }, + "ba1bdf55-b2f8-4bb4-b78c-caab170367e0": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "c7534b00-fa2b-4633-84da-83d71de297f8": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Write IOPS (Count/Second)", + "operationType": "formula", + "params": { + "formula": "average(aws.rds.write_io.ops_per_sec)", + "isFormulaBroken": false + }, + "references": [ + "c7534b00-fa2b-4633-84da-83d71de297f8X0" + ], + "scale": "ratio" + }, + "c7534b00-fa2b-4633-84da-83d71de297f8X0": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Part of Write IOPS (Count/Second)", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.rds.write_io.ops_per_sec" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "c7534b00-fa2b-4633-84da-83d71de297f8" + ], + "layerId": "94e6f698-4af3-4acd-a018-867330b4e0de", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "98b1c682-acf5-4331-8129-62177616a221", + "xAccessor": "ba1bdf55-b2f8-4bb4-b78c-caab170367e0" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide", + "yLeftExtent": { + "mode": "full" + }, + "yRightExtent": { + "mode": "full" + } + } + }, + "title": "RDS Write IOPS [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "30fd4e40-f0a1-11eb-b61f-a53cb4913361", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-94e6f698-4af3-4acd-a018-867330b4e0de", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:34.757Z", + "version": "WzM0MjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/41e37710-f09d-11eb-b61f-a53cb4913361.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/41e37710-f09d-11eb-b61f-a53cb4913361.json new file mode 100644 index 000000000000..f9de1b6663af --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/41e37710-f09d-11eb-b61f-a53cb4913361.json @@ -0,0 +1,147 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "8682174a-4cff-4d95-b719-1fc306f5b33a": { + "columnOrder": [ + "bc08fa3e-ce15-4acd-a0fd-c5c5c5452441", + "f45a0753-4e23-43c4-80f7-4a9aa9548a6e", + "85980678-0e26-4f77-b735-7ec5ebbc472e", + "85980678-0e26-4f77-b735-7ec5ebbc472eX0" + ], + "columns": { + "85980678-0e26-4f77-b735-7ec5ebbc472e": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Select Throughput Count/Second", + "operationType": "formula", + "params": { + "formula": "average(aws.rds.throughput.select)", + "isFormulaBroken": false + }, + "references": [ + "85980678-0e26-4f77-b735-7ec5ebbc472eX0" + ], + "scale": "ratio" + }, + "85980678-0e26-4f77-b735-7ec5ebbc472eX0": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Part of Select Throughput Count/Second", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.rds.throughput.select" + }, + "bc08fa3e-ce15-4acd-a0fd-c5c5c5452441": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.rds.db_instance.identifier", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "fallback": true, + "type": "alphabetical" + }, + "orderDirection": "asc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.rds.db_instance.identifier" + }, + "f45a0753-4e23-43c4-80f7-4a9aa9548a6e": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "85980678-0e26-4f77-b735-7ec5ebbc472e" + ], + "layerId": "8682174a-4cff-4d95-b719-1fc306f5b33a", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "bc08fa3e-ce15-4acd-a0fd-c5c5c5452441", + "xAccessor": "f45a0753-4e23-43c4-80f7-4a9aa9548a6e" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide", + "yLeftExtent": { + "mode": "full" + }, + "yRightExtent": { + "mode": "full" + } + } + }, + "title": "RDS Select Throughput[Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "41e37710-f09d-11eb-b61f-a53cb4913361", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-8682174a-4cff-4d95-b719-1fc306f5b33a", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:34.757Z", + "version": "WzM0MTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/56ac2b40-d871-11eb-8220-c9141cc1b15c.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/56ac2b40-d871-11eb-8220-c9141cc1b15c.json new file mode 100644 index 000000000000..00b7581adacf --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/56ac2b40-d871-11eb-8220-c9141cc1b15c.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "fa1d3f51-58b9-4971-a28d-40616cfceb01": { + "columnOrder": [ + "19e03939-49d0-48f7-b76c-d70142001365", + "a077ea8a-21dd-4bfe-b146-6d6425f7a14f", + "6117c588-4178-4597-b6da-e0277ec0d410" + ], + "columns": { + "19e03939-49d0-48f7-b76c-d70142001365": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "6117c588-4178-4597-b6da-e0277ec0d410": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "PutRecord Success", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.kinesis.metrics.PutRecord_Success.avg" + }, + "a077ea8a-21dd-4bfe-b146-6d6425f7a14f": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.dimensions.StreamName", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "6117c588-4178-4597-b6da-e0277ec0d410", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.dimensions.StreamName" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "6117c588-4178-4597-b6da-e0277ec0d410" + ], + "layerId": "fa1d3f51-58b9-4971-a28d-40616cfceb01", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "a077ea8a-21dd-4bfe-b146-6d6425f7a14f", + "xAccessor": "19e03939-49d0-48f7-b76c-d70142001365" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "AWS PutRecord Success [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "56ac2b40-d871-11eb-8220-c9141cc1b15c", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:30.617Z", + "version": "WzMzNzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/63aa5990-d86f-11eb-8220-c9141cc1b15c.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/63aa5990-d86f-11eb-8220-c9141cc1b15c.json new file mode 100644 index 000000000000..f364c9d24ae5 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/63aa5990-d86f-11eb-8220-c9141cc1b15c.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "fa1d3f51-58b9-4971-a28d-40616cfceb01": { + "columnOrder": [ + "19e03939-49d0-48f7-b76c-d70142001365", + "8c750b7f-30c5-4d35-93f7-dbea0067dca4", + "092aa8e6-3739-49c1-ac6c-ec67956dec97" + ], + "columns": { + "092aa8e6-3739-49c1-ac6c-ec67956dec97": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "GetRecords Latency", + "operationType": "median", + "scale": "ratio", + "sourceField": "aws.kinesis.metrics.GetRecords_Latency.avg" + }, + "19e03939-49d0-48f7-b76c-d70142001365": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "8c750b7f-30c5-4d35-93f7-dbea0067dca4": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.dimensions.StreamName", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "092aa8e6-3739-49c1-ac6c-ec67956dec97", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.dimensions.StreamName" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "092aa8e6-3739-49c1-ac6c-ec67956dec97" + ], + "layerId": "fa1d3f51-58b9-4971-a28d-40616cfceb01", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "8c750b7f-30c5-4d35-93f7-dbea0067dca4", + "xAccessor": "19e03939-49d0-48f7-b76c-d70142001365" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "AWS GetRecords Latency [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "63aa5990-d86f-11eb-8220-c9141cc1b15c", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:30.617Z", + "version": "WzMzNjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/68f36fb0-f0a0-11eb-b61f-a53cb4913361.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/68f36fb0-f0a0-11eb-b61f-a53cb4913361.json new file mode 100644 index 000000000000..4f60c819e780 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/68f36fb0-f0a0-11eb-b61f-a53cb4913361.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": null, + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "c6ed7acb-d119-41cc-99ce-cca114d1f1cb": { + "columnOrder": [ + "1bfe525f-e68d-4504-86bc-e80fb154192c", + "08fe8b96-3fe0-410f-8ee3-3ca1379bea49", + "08fe8b96-3fe0-410f-8ee3-3ca1379bea49X0" + ], + "columns": { + "08fe8b96-3fe0-410f-8ee3-3ca1379bea49": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Free Storage Bytes", + "operationType": "formula", + "params": { + "formula": "average(aws.rds.free_storage.bytes)", + "isFormulaBroken": false + }, + "references": [ + "08fe8b96-3fe0-410f-8ee3-3ca1379bea49X0" + ], + "scale": "ratio" + }, + "08fe8b96-3fe0-410f-8ee3-3ca1379bea49X0": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Part of average(aws.rds.free_storage.bytes)", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.rds.free_storage.bytes" + }, + "1bfe525f-e68d-4504-86bc-e80fb154192c": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.rds.db_instance.identifier", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "fallback": true, + "type": "alphabetical" + }, + "orderDirection": "asc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.rds.db_instance.identifier" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "columns": [ + { + "columnId": "08fe8b96-3fe0-410f-8ee3-3ca1379bea49", + "isTransposed": false + }, + { + "columnId": "1bfe525f-e68d-4504-86bc-e80fb154192c", + "isTransposed": false + } + ], + "layerId": "c6ed7acb-d119-41cc-99ce-cca114d1f1cb" + } + }, + "title": "RDS Free Storage Bytes [Metricbeat AWS]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "68f36fb0-f0a0-11eb-b61f-a53cb4913361", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-c6ed7acb-d119-41cc-99ce-cca114d1f1cb", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:34.757Z", + "version": "WzM0MTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/6d631980-d870-11eb-8220-c9141cc1b15c.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/6d631980-d870-11eb-8220-c9141cc1b15c.json new file mode 100644 index 000000000000..b17a0d353000 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/6d631980-d870-11eb-8220-c9141cc1b15c.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "fa1d3f51-58b9-4971-a28d-40616cfceb01": { + "columnOrder": [ + "19e03939-49d0-48f7-b76c-d70142001365", + "7cd103e8-3dd3-4fa2-8c13-bc9f80617367", + "36345734-4c23-4815-8a5e-b63c20cac94d" + ], + "columns": { + "19e03939-49d0-48f7-b76c-d70142001365": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "36345734-4c23-4815-8a5e-b63c20cac94d": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "PutRecord Bytes", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.kinesis.metrics.PutRecords_Bytes.avg" + }, + "7cd103e8-3dd3-4fa2-8c13-bc9f80617367": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.dimensions.StreamName", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "36345734-4c23-4815-8a5e-b63c20cac94d", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.dimensions.StreamName" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "36345734-4c23-4815-8a5e-b63c20cac94d" + ], + "layerId": "fa1d3f51-58b9-4971-a28d-40616cfceb01", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "7cd103e8-3dd3-4fa2-8c13-bc9f80617367", + "xAccessor": "19e03939-49d0-48f7-b76c-d70142001365" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "AWS PutRecords Bytes [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "6d631980-d870-11eb-8220-c9141cc1b15c", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:30.617Z", + "version": "WzMzNjksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/79d713c0-d86f-11eb-8220-c9141cc1b15c.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/79d713c0-d86f-11eb-8220-c9141cc1b15c.json new file mode 100644 index 000000000000..5c7d04d6c2d1 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/79d713c0-d86f-11eb-8220-c9141cc1b15c.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "fa1d3f51-58b9-4971-a28d-40616cfceb01": { + "columnOrder": [ + "19e03939-49d0-48f7-b76c-d70142001365", + "a077ea8a-21dd-4bfe-b146-6d6425f7a14f", + "6117c588-4178-4597-b6da-e0277ec0d410" + ], + "columns": { + "19e03939-49d0-48f7-b76c-d70142001365": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "6117c588-4178-4597-b6da-e0277ec0d410": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "GetRecords Success", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.kinesis.metrics.GetRecords_Success.sum" + }, + "a077ea8a-21dd-4bfe-b146-6d6425f7a14f": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.dimensions.StreamName", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "6117c588-4178-4597-b6da-e0277ec0d410", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.dimensions.StreamName" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "6117c588-4178-4597-b6da-e0277ec0d410" + ], + "layerId": "fa1d3f51-58b9-4971-a28d-40616cfceb01", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "a077ea8a-21dd-4bfe-b146-6d6425f7a14f", + "xAccessor": "19e03939-49d0-48f7-b76c-d70142001365" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "AWS GetRecords Success [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "79d713c0-d86f-11eb-8220-c9141cc1b15c", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:30.617Z", + "version": "WzMzNzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/8560b400-f096-11eb-b61f-a53cb4913361.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/8560b400-f096-11eb-b61f-a53cb4913361.json new file mode 100644 index 000000000000..cdf5eeb78fc7 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/8560b400-f096-11eb-b61f-a53cb4913361.json @@ -0,0 +1,147 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "75b24975-5ca3-4da5-bc1a-92013a901a21": { + "columnOrder": [ + "bfa06179-6b6f-43e5-a446-f856ff3e51bf", + "af96ca6c-7ab9-47a3-ad8b-29e1578c0076", + "6a87f496-b929-4d24-aede-325d54fedfa1", + "6a87f496-b929-4d24-aede-325d54fedfa1X0" + ], + "columns": { + "6a87f496-b929-4d24-aede-325d54fedfa1": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Write Latency (Milliseconds)", + "operationType": "formula", + "params": { + "formula": "average(aws.rds.latency.write)", + "isFormulaBroken": false + }, + "references": [ + "6a87f496-b929-4d24-aede-325d54fedfa1X0" + ], + "scale": "ratio" + }, + "6a87f496-b929-4d24-aede-325d54fedfa1X0": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Part of average(aws.rds.latency.write)", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.rds.latency.write" + }, + "af96ca6c-7ab9-47a3-ad8b-29e1578c0076": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "bfa06179-6b6f-43e5-a446-f856ff3e51bf": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.rds.db_instance.identifier", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "fallback": true, + "type": "alphabetical" + }, + "orderDirection": "asc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.rds.db_instance.identifier" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "6a87f496-b929-4d24-aede-325d54fedfa1" + ], + "layerId": "75b24975-5ca3-4da5-bc1a-92013a901a21", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "bfa06179-6b6f-43e5-a446-f856ff3e51bf", + "xAccessor": "af96ca6c-7ab9-47a3-ad8b-29e1578c0076" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide", + "yLeftExtent": { + "mode": "full" + }, + "yRightExtent": { + "mode": "full" + } + } + }, + "title": "RDS Write Latency in Milliseconds [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "8560b400-f096-11eb-b61f-a53cb4913361", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-75b24975-5ca3-4da5-bc1a-92013a901a21", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:34.757Z", + "version": "WzM0MTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/9deb6a80-d870-11eb-8220-c9141cc1b15c.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/9deb6a80-d870-11eb-8220-c9141cc1b15c.json new file mode 100644 index 000000000000..5cdb61fe8122 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/9deb6a80-d870-11eb-8220-c9141cc1b15c.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "fa1d3f51-58b9-4971-a28d-40616cfceb01": { + "columnOrder": [ + "19e03939-49d0-48f7-b76c-d70142001365", + "8c750b7f-30c5-4d35-93f7-dbea0067dca4", + "092aa8e6-3739-49c1-ac6c-ec67956dec97" + ], + "columns": { + "092aa8e6-3739-49c1-ac6c-ec67956dec97": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "PutRecords Latency", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.kinesis.metrics.PutRecords_Bytes.avg" + }, + "19e03939-49d0-48f7-b76c-d70142001365": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "8c750b7f-30c5-4d35-93f7-dbea0067dca4": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.dimensions.StreamName", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "092aa8e6-3739-49c1-ac6c-ec67956dec97", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.dimensions.StreamName" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "092aa8e6-3739-49c1-ac6c-ec67956dec97" + ], + "layerId": "fa1d3f51-58b9-4971-a28d-40616cfceb01", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "8c750b7f-30c5-4d35-93f7-dbea0067dca4", + "xAccessor": "19e03939-49d0-48f7-b76c-d70142001365" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "AWS PutRecords Latency [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "9deb6a80-d870-11eb-8220-c9141cc1b15c", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:30.617Z", + "version": "WzMzNjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/b0077d10-f09b-11eb-b61f-a53cb4913361.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/b0077d10-f09b-11eb-b61f-a53cb4913361.json new file mode 100644 index 000000000000..aaf3627aeece --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/b0077d10-f09b-11eb-b61f-a53cb4913361.json @@ -0,0 +1,131 @@ +{ + "attributes": { + "description": null, + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "b8d09be0-e20a-4f42-b08e-1da4c3cc8efd": { + "columnOrder": [ + "e676afd3-ebd5-434a-85d7-a1a708b9a32f", + "545fe110-3ab4-4a3d-99d9-9eae69d6ff07", + "8293fc99-aed6-44a3-83ee-a498d2200a46" + ], + "columns": { + "545fe110-3ab4-4a3d-99d9-9eae69d6ff07": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.rds.db_instance.identifier", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "8293fc99-aed6-44a3-83ee-a498d2200a46", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.rds.db_instance.identifier" + }, + "8293fc99-aed6-44a3-83ee-a498d2200a46": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Insert Throughput Count/Second", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.rds.throughput.insert" + }, + "e676afd3-ebd5-434a-85d7-a1a708b9a32f": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "8293fc99-aed6-44a3-83ee-a498d2200a46" + ], + "layerId": "b8d09be0-e20a-4f42-b08e-1da4c3cc8efd", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "545fe110-3ab4-4a3d-99d9-9eae69d6ff07", + "xAccessor": "e676afd3-ebd5-434a-85d7-a1a708b9a32f" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide", + "yLeftExtent": { + "mode": "full" + }, + "yRightExtent": { + "mode": "full" + } + } + }, + "title": "RDS Insert Throughput [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "b0077d10-f09b-11eb-b61f-a53cb4913361", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-b8d09be0-e20a-4f42-b08e-1da4c3cc8efd", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:34.757Z", + "version": "WzM0MTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/b3da5ac0-e6f1-11ea-a5b5-d5a0accaec95.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/b3da5ac0-e6f1-11ea-a5b5-d5a0accaec95.json new file mode 100644 index 000000000000..f35ac6101711 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/b3da5ac0-e6f1-11ea-a5b5-d5a0accaec95.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3": { + "columnOrder": [ + "5d850e8e-f3e0-4ad2-9697-b8c00c03f753", + "a1f5b3b8-41da-452b-8683-7a9ca6b6267f", + "75188758-7734-4fc3-af1d-297c455715f0" + ], + "columns": { + "5d850e8e-f3e0-4ad2-9697-b8c00c03f753": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Service Name", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "75188758-7734-4fc3-af1d-297c455715f0", + "type": "column" + }, + "orderDirection": "desc", + "size": 5 + }, + "scale": "ordinal", + "sourceField": "aws.billing.group_by.SERVICE" + }, + "75188758-7734-4fc3-af1d-297c455715f0": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Total Unblended Cost", + "operationType": "sum", + "scale": "ratio", + "sourceField": "aws.billing.UnblendedCost.amount" + }, + "a1f5b3b8-41da-452b-8683-7a9ca6b6267f": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.billing.group_by.aws:createdBy", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "75188758-7734-4fc3-af1d-297c455715f0", + "type": "column" + }, + "orderDirection": "desc", + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.billing.group_by.aws:createdBy" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "75188758-7734-4fc3-af1d-297c455715f0" + ], + "layerId": "cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3", + "seriesType": "bar_stacked", + "splitAccessor": "a1f5b3b8-41da-452b-8683-7a9ca6b6267f", + "xAccessor": "5d850e8e-f3e0-4ad2-9697-b8c00c03f753" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar_stacked" + } + }, + "title": "Cost Per Service Per User [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "b3da5ac0-e6f1-11ea-a5b5-d5a0accaec95", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:25.535Z", + "version": "WzMzMTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/bbc80900-f09e-11eb-b61f-a53cb4913361.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/bbc80900-f09e-11eb-b61f-a53cb4913361.json new file mode 100644 index 000000000000..3854dbb889b3 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/bbc80900-f09e-11eb-b61f-a53cb4913361.json @@ -0,0 +1,147 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "14d4ba6b-f4e1-4d40-818a-6aa829d90422": { + "columnOrder": [ + "8954842c-4056-46ef-adfc-29dfc3b0cbd3", + "40493df1-c805-49eb-8dfa-9ff81f7acd4b", + "c7c3ebb2-d611-40a5-aab3-491fa36fe729", + "c7c3ebb2-d611-40a5-aab3-491fa36fe729X0" + ], + "columns": { + "40493df1-c805-49eb-8dfa-9ff81f7acd4b": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "8954842c-4056-46ef-adfc-29dfc3b0cbd3": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.rds.db_instance.identifier", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "fallback": true, + "type": "alphabetical" + }, + "orderDirection": "asc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.rds.db_instance.identifier" + }, + "c7c3ebb2-d611-40a5-aab3-491fa36fe729": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Queue Depth (Count)", + "operationType": "formula", + "params": { + "formula": "average(aws.rds.disk_queue_depth)", + "isFormulaBroken": false + }, + "references": [ + "c7c3ebb2-d611-40a5-aab3-491fa36fe729X0" + ], + "scale": "ratio" + }, + "c7c3ebb2-d611-40a5-aab3-491fa36fe729X0": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Part of Queue Depth (Count)", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.rds.disk_queue_depth" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "c7c3ebb2-d611-40a5-aab3-491fa36fe729" + ], + "layerId": "14d4ba6b-f4e1-4d40-818a-6aa829d90422", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "8954842c-4056-46ef-adfc-29dfc3b0cbd3", + "xAccessor": "40493df1-c805-49eb-8dfa-9ff81f7acd4b" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide", + "yLeftExtent": { + "mode": "full" + }, + "yRightExtent": { + "mode": "full" + } + } + }, + "title": "RDS Disk Queue Depth [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "bbc80900-f09e-11eb-b61f-a53cb4913361", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-14d4ba6b-f4e1-4d40-818a-6aa829d90422", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:34.757Z", + "version": "WzM0MjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/c4419a90-f091-11eb-b61f-a53cb4913361.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/c4419a90-f091-11eb-b61f-a53cb4913361.json new file mode 100644 index 000000000000..9934a3313cc6 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/c4419a90-f091-11eb-b61f-a53cb4913361.json @@ -0,0 +1,147 @@ +{ + "attributes": { + "description": null, + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "dd0a4706-5286-4976-9bc4-f5e7a4964bf6": { + "columnOrder": [ + "a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc", + "103900c0-dcfa-416f-a272-6efa09c84fce", + "18e6079e-e955-41d0-8196-d2b932cf1fa6", + "18e6079e-e955-41d0-8196-d2b932cf1fa6X0" + ], + "columns": { + "103900c0-dcfa-416f-a272-6efa09c84fce": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "18e6079e-e955-41d0-8196-d2b932cf1fa6": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": " average(aws.rds.cpu.total.pct)", + "operationType": "formula", + "params": { + "formula": "average(aws.rds.cpu.total.pct)", + "isFormulaBroken": false + }, + "references": [ + "18e6079e-e955-41d0-8196-d2b932cf1fa6X0" + ], + "scale": "ratio" + }, + "18e6079e-e955-41d0-8196-d2b932cf1fa6X0": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Part of ", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.rds.cpu.total.pct" + }, + "a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.rds.db_instance.identifier", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "fallback": true, + "type": "alphabetical" + }, + "orderDirection": "asc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.rds.db_instance.identifier" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "18e6079e-e955-41d0-8196-d2b932cf1fa6" + ], + "layerId": "dd0a4706-5286-4976-9bc4-f5e7a4964bf6", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "a2bb9c7a-0ddc-4bf7-ae24-98a535a916cc", + "xAccessor": "103900c0-dcfa-416f-a272-6efa09c84fce" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide", + "yLeftExtent": { + "mode": "full" + }, + "yRightExtent": { + "mode": "full" + } + } + }, + "title": "RDS CPU Total Pct [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "c4419a90-f091-11eb-b61f-a53cb4913361", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-dd0a4706-5286-4976-9bc4-f5e7a4964bf6", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:34.757Z", + "version": "WzM0MTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/c68d7c30-d870-11eb-8220-c9141cc1b15c.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/c68d7c30-d870-11eb-8220-c9141cc1b15c.json new file mode 100644 index 000000000000..525d56c47973 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/c68d7c30-d870-11eb-8220-c9141cc1b15c.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "fa1d3f51-58b9-4971-a28d-40616cfceb01": { + "columnOrder": [ + "19e03939-49d0-48f7-b76c-d70142001365", + "a077ea8a-21dd-4bfe-b146-6d6425f7a14f", + "6117c588-4178-4597-b6da-e0277ec0d410" + ], + "columns": { + "19e03939-49d0-48f7-b76c-d70142001365": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "6117c588-4178-4597-b6da-e0277ec0d410": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "PutRecords Success", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.kinesis.metrics.PutRecords_Success.avg" + }, + "a077ea8a-21dd-4bfe-b146-6d6425f7a14f": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.dimensions.StreamName", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "6117c588-4178-4597-b6da-e0277ec0d410", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.dimensions.StreamName" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "6117c588-4178-4597-b6da-e0277ec0d410" + ], + "layerId": "fa1d3f51-58b9-4971-a28d-40616cfceb01", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "a077ea8a-21dd-4bfe-b146-6d6425f7a14f", + "xAccessor": "19e03939-49d0-48f7-b76c-d70142001365" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "AWS PutRecords Success [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "c68d7c30-d870-11eb-8220-c9141cc1b15c", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:30.617Z", + "version": "WzMzNzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/cde34840-e6f2-11ea-a5b5-d5a0accaec95.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/cde34840-e6f2-11ea-a5b5-d5a0accaec95.json new file mode 100644 index 000000000000..52feb56f7721 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/cde34840-e6f2-11ea-a5b5-d5a0accaec95.json @@ -0,0 +1,106 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "dc597043-d867-4f94-ae90-f31ffc0c2674": { + "columnOrder": [ + "ea87bf3d-0a35-424b-b00b-3614c431b135", + "faa5dba4-1fab-4f88-b67f-28bafa26a32d", + "d54f4e58-d8dd-4404-8da9-12b667dd7910" + ], + "columns": { + "d54f4e58-d8dd-4404-8da9-12b667dd7910": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Estimated Charges", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.billing.EstimatedCharges" + }, + "ea87bf3d-0a35-424b-b00b-3614c431b135": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Service Names", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "d54f4e58-d8dd-4404-8da9-12b667dd7910", + "type": "column" + }, + "orderDirection": "desc", + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.billing.ServiceName" + }, + "faa5dba4-1fab-4f88-b67f-28bafa26a32d": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "1d" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "d54f4e58-d8dd-4404-8da9-12b667dd7910" + ], + "layerId": "dc597043-d867-4f94-ae90-f31ffc0c2674", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "ea87bf3d-0a35-424b-b00b-3614c431b135", + "xAccessor": "faa5dba4-1fab-4f88-b67f-28bafa26a32d" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line" + } + }, + "title": "Top 10 Estimated Charges per Service Name [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "cde34840-e6f2-11ea-a5b5-d5a0accaec95", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-dc597043-d867-4f94-ae90-f31ffc0c2674", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:25.535Z", + "version": "WzMzMjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/d1468000-d86f-11eb-8220-c9141cc1b15c.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/d1468000-d86f-11eb-8220-c9141cc1b15c.json new file mode 100644 index 000000000000..6790594aa221 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/d1468000-d86f-11eb-8220-c9141cc1b15c.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "fa1d3f51-58b9-4971-a28d-40616cfceb01": { + "columnOrder": [ + "19e03939-49d0-48f7-b76c-d70142001365", + "7cd103e8-3dd3-4fa2-8c13-bc9f80617367", + "36345734-4c23-4815-8a5e-b63c20cac94d" + ], + "columns": { + "19e03939-49d0-48f7-b76c-d70142001365": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "36345734-4c23-4815-8a5e-b63c20cac94d": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "GetRecords Bytes", + "operationType": "median", + "scale": "ratio", + "sourceField": "aws.kinesis.metrics.GetRecords_Bytes.avg" + }, + "7cd103e8-3dd3-4fa2-8c13-bc9f80617367": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.dimensions.StreamName", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "36345734-4c23-4815-8a5e-b63c20cac94d", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.dimensions.StreamName" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "36345734-4c23-4815-8a5e-b63c20cac94d" + ], + "layerId": "fa1d3f51-58b9-4971-a28d-40616cfceb01", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "7cd103e8-3dd3-4fa2-8c13-bc9f80617367", + "xAccessor": "19e03939-49d0-48f7-b76c-d70142001365" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "AWS GetRecords Bytes [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "d1468000-d86f-11eb-8220-c9141cc1b15c", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-fa1d3f51-58b9-4971-a28d-40616cfceb01", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:30.617Z", + "version": "WzMzNjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/d7b399c0-e6f1-11ea-a5b5-d5a0accaec95.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/d7b399c0-e6f1-11ea-a5b5-d5a0accaec95.json new file mode 100644 index 000000000000..5a370a356b0a --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/d7b399c0-e6f1-11ea-a5b5-d5a0accaec95.json @@ -0,0 +1,91 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3": { + "columnOrder": [ + "a1f5b3b8-41da-452b-8683-7a9ca6b6267f", + "75188758-7734-4fc3-af1d-297c455715f0" + ], + "columns": { + "75188758-7734-4fc3-af1d-297c455715f0": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Total Unblended Cost", + "operationType": "sum", + "scale": "ratio", + "sourceField": "aws.billing.UnblendedCost.amount" + }, + "a1f5b3b8-41da-452b-8683-7a9ca6b6267f": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Top Users", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "75188758-7734-4fc3-af1d-297c455715f0", + "type": "column" + }, + "orderDirection": "desc", + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.billing.group_by.aws:createdBy" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "75188758-7734-4fc3-af1d-297c455715f0" + ], + "layerId": "cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3", + "seriesType": "bar_horizontal", + "xAccessor": "a1f5b3b8-41da-452b-8683-7a9ca6b6267f" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar_horizontal" + } + }, + "title": "High Spenders [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "d7b399c0-e6f1-11ea-a5b5-d5a0accaec95", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-cbffa0b1-50bb-40fe-bd8d-6a26d2b58fb3", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:25.535Z", + "version": "WzMzMTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/f757eba0-f0a0-11eb-b61f-a53cb4913361.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/f757eba0-f0a0-11eb-b61f-a53cb4913361.json new file mode 100644 index 000000000000..e3587494777c --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/f757eba0-f0a0-11eb-b61f-a53cb4913361.json @@ -0,0 +1,131 @@ +{ + "attributes": { + "description": null, + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "e2611df6-ca73-4d53-b0b5-afd8b718c369": { + "columnOrder": [ + "53a07fa4-b348-44c7-b644-83f3617e5b5c", + "b9e82720-e098-4dd7-ac5b-f3becccd344a", + "85528f23-48f2-462f-8075-eaddd94b21f2" + ], + "columns": { + "53a07fa4-b348-44c7-b644-83f3617e5b5c": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Read IOPS (Count/Second)", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "columnId": "85528f23-48f2-462f-8075-eaddd94b21f2", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.rds.db_instance.identifier" + }, + "85528f23-48f2-462f-8075-eaddd94b21f2": { + "dataType": "number", + "isBucketed": false, + "label": "Average of aws.rds.read_io.ops_per_sec", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.rds.read_io.ops_per_sec" + }, + "b9e82720-e098-4dd7-ac5b-f3becccd344a": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "85528f23-48f2-462f-8075-eaddd94b21f2" + ], + "layerId": "e2611df6-ca73-4d53-b0b5-afd8b718c369", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "53a07fa4-b348-44c7-b644-83f3617e5b5c", + "xAccessor": "b9e82720-e098-4dd7-ac5b-f3becccd344a" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide", + "yLeftExtent": { + "mode": "full" + }, + "yRightExtent": { + "mode": "full" + } + } + }, + "title": "RDS Read IOPS [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "f757eba0-f0a0-11eb-b61f-a53cb4913361", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-e2611df6-ca73-4d53-b0b5-afd8b718c369", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:34.757Z", + "version": "WzM0MjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/f9ff3450-f094-11eb-b61f-a53cb4913361.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/f9ff3450-f094-11eb-b61f-a53cb4913361.json new file mode 100644 index 000000000000..c03c905c8ed8 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/lens/f9ff3450-f094-11eb-b61f-a53cb4913361.json @@ -0,0 +1,147 @@ +{ + "attributes": { + "description": null, + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "5a1e8135-28e5-4e15-a675-bf9f840fca1c": { + "columnOrder": [ + "748501ab-c222-4695-9062-93c70e72a864", + "191b027e-d3d1-41da-b3fb-29315f99f4ee", + "98446733-f0c0-4666-8491-52b6eae923ed", + "98446733-f0c0-4666-8491-52b6eae923edX0" + ], + "columns": { + "191b027e-d3d1-41da-b3fb-29315f99f4ee": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "748501ab-c222-4695-9062-93c70e72a864": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of aws.rds.db_instance.identifier", + "operationType": "terms", + "params": { + "missingBucket": false, + "orderBy": { + "fallback": true, + "type": "alphabetical" + }, + "orderDirection": "asc", + "otherBucket": true, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "aws.rds.db_instance.identifier" + }, + "98446733-f0c0-4666-8491-52b6eae923ed": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Read Latency (Milliseconds)", + "operationType": "formula", + "params": { + "formula": "average(aws.rds.latency.read)", + "isFormulaBroken": false + }, + "references": [ + "98446733-f0c0-4666-8491-52b6eae923edX0" + ], + "scale": "ratio" + }, + "98446733-f0c0-4666-8491-52b6eae923edX0": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Part of average(aws.rds.latency.read)", + "operationType": "average", + "scale": "ratio", + "sourceField": "aws.rds.latency.read" + } + }, + "incompleteColumns": {} + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "98446733-f0c0-4666-8491-52b6eae923ed" + ], + "layerId": "5a1e8135-28e5-4e15-a675-bf9f840fca1c", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "748501ab-c222-4695-9062-93c70e72a864", + "xAccessor": "191b027e-d3d1-41da-b3fb-29315f99f4ee" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide", + "yLeftExtent": { + "mode": "full" + }, + "yRightExtent": { + "mode": "full" + } + } + }, + "title": "RDS Read Latency in Milliseconds [Metricbeat AWS]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "f9ff3450-f094-11eb-b61f-a53cb4913361", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-5a1e8135-28e5-4e15-a675-bf9f840fca1c", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:34.757Z", + "version": "WzM0MTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/007ceec0-694c-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/007ceec0-694c-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..310bbcf19420 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/007ceec0-694c-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Transit Gateway Packets Drop Count No Route [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.transitgateway.metrics.PacketDropCountNoRoute.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.TransitGateway", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Transit Gateway Packets Drop Count No Route [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "007ceec0-694c-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:38.811Z", + "version": "WzM0NTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/00b29040-921d-11e9-aa19-159bf182e06f.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/00b29040-921d-11e9-aa19-159bf182e06f.json new file mode 100644 index 000000000000..ed0363b97494 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/00b29040-921d-11e9-aa19-159bf182e06f.json @@ -0,0 +1,103 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "RDS Transaction Blocked [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(164,221,0,1)", + "id": "27aaf910-d978-11e9-aff2-99c15d8b7da1", + "operator": "lte", + "value": 0 + }, + { + "color": "rgba(244,78,59,1)", + "id": "3526a9e0-d978-11e9-aff2-99c15d8b7da1", + "operator": "gt", + "value": 0 + }, + { + "background_color": "rgba(164,221,0,1)", + "id": "50a46c15-ab5f-41d6-83de-b988ab7f4149", + "operator": "empty", + "value": null + }, + { + "background_color": "rgba(164,221,0,1)", + "id": "6bb4d634-1d42-47fc-9c42-3f8269c8f509", + "operator": "empty", + "value": null + } + ], + "bar_color_rules": [ + { + "bar_color": "rgba(211,49,21,1)", + "id": "f8196690-921a-11e9-badf-4b42bd1ef543", + "operator": "gt", + "value": 0 + } + ], + "drilldown_url": "", + "filter": "", + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "hide_in_legend": 0, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Transaction Blocked", + "line_width": 1, + "metrics": [ + { + "field": "aws.rds.transactions.blocked", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "aws.rds.db_instance.identifier", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "RDS Transaction Blocked [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "00b29040-921d-11e9-aa19-159bf182e06f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:34.757Z", + "version": "WzM0MTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/01ed5990-694a-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/01ed5990-694a-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..f1337ef80017 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/01ed5990-694a-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Transit Gateway Bytes Drop Count No Route [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.transitgateway.metrics.BytesDropCountNoRoute.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.TransitGateway", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Transit Gateway Bytes Drop Count No Route [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "01ed5990-694a-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:38.811Z", + "version": "WzM0NTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/08645080-6891-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/08645080-6891-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..15cf4876b970 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/08645080-6891-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "NATGateway Packet Out To Destination [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0", + "value": 0 + } + ], + "bar_color_rules": [ + { + "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "f444c0e0-688f-11ea-8b7d-fd9d15a13cd0", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.natgateway.metrics.PacketsOutToDestination.sum", + "id": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.NatGatewayId", + "terms_order_by": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "time_range_mode": "last_value", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "NATGateway Packet Out To Destination [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "08645080-6891-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:32.666Z", + "version": "WzMzOTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/09857a20-180f-11ea-8e91-03c7047cbb9d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/09857a20-180f-11ea-8e91-03c7047cbb9d.json new file mode 100644 index 000000000000..9b3d38e4ec20 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/09857a20-180f-11ea-8e91-03c7047cbb9d.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SNS Notifications Failed To Redrive To DLQ [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "s,s,3", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Notifications Failed To Redrive To DLQ", + "line_width": 1, + "metrics": [ + { + "field": "aws.sns.metrics.NumberOfNotificationsFailedToRedriveToDlq.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SNS Notifications Failed To Redrive To DLQ [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "09857a20-180f-11ea-8e91-03c7047cbb9d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:36.824Z", + "version": "WzM0MzksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/09db13f0-2bdd-11e9-9fe1-cde861544141.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/09db13f0-2bdd-11e9-9fe1-cde861544141.json new file mode 100644 index 000000000000..9067fe316079 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/09db13f0-2bdd-11e9-9fe1-cde861544141.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "EC2 Instance State [Metricbeat AWS] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "16": "#629E51", + "272": "#DEDAF7", + "80": "#E24D42", + "running": "#7EB26D", + "stopped": "#E24D42" + }, + "legendOpen": true + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "EC2 Instance State" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "", + "field": "aws.ec2.instance.state.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": true, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "EC2 Instance State [Metricbeat AWS] ECS", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "09db13f0-2bdd-11e9-9fe1-cde861544141", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:33.734Z", + "version": "WzMzOTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/0a36b590-694c-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/0a36b590-694c-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..f25a6bd7669c --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/0a36b590-694c-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Transit Gateway Packets In [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.transitgateway.metrics.PacketsIn.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.TransitGateway", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Transit Gateway Packets In [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0a36b590-694c-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:38.811Z", + "version": "WzM0NTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/10e0f270-694c-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/10e0f270-694c-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..9ad6d39dd55d --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/10e0f270-694c-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Transit Gateway Packets Out [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.transitgateway.metrics.PacketsOut.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.TransitGateway", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Transit Gateway Packets Out [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "10e0f270-694c-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:38.811Z", + "version": "WzM0NTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/1235fe50-41e7-11e9-b7a0-c99d9d127b61.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/1235fe50-41e7-11e9-b7a0-c99d9d127b61.json new file mode 100644 index 000000000000..f3a31b51adf6 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/1235fe50-41e7-11e9-b7a0-c99d9d127b61.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SQS Messages Received [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "1ccb6710-43b3-11e9-8c70-d17a67455a84" + } + ], + "bar_color_rules": [ + { + "id": "57cc0200-43b5-11e9-84e9-a97a63579915" + } + ], + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "field": "aws.sqs.messages.received", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "series_drop_last_bucket": 1, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.sqs.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SQS Messages Received [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1235fe50-41e7-11e9-b7a0-c99d9d127b61", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:37.811Z", + "version": "WzM0NDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/128fd450-734e-11e9-816b-07687310a99a.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/128fd450-734e-11e9-816b-07687310a99a.json new file mode 100644 index 000000000000..7a22555d79a9 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/128fd450-734e-11e9-816b-07687310a99a.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Cloudwatch Lambda Invocations Top5 [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "cbb498f0-734c-11e9-a683-47ca322fa6f9" + } + ], + "bar_color_rules": [ + { + "id": "94f2ce40-734c-11e9-a683-47ca322fa6f9" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Lambda Invocations", + "line_width": 1, + "metrics": [ + { + "field": "aws.lambda.metrics.Invocations", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.FunctionName", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "AWS Cloudwatch Lambda Invocations Top5", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "128fd450-734e-11e9-816b-07687310a99a", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:33.734Z", + "version": "WzM0MDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/12eff7e0-b7b9-11e9-8349-f15f850c5cd0.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/12eff7e0-b7b9-11e9-8349-f15f850c5cd0.json new file mode 100644 index 000000000000..5469023242a5 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/12eff7e0-b7b9-11e9-8349-f15f850c5cd0.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "EBS Volume Total Read Time [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "s,s,3", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Volume Total Read Time", + "line_width": 1, + "metrics": [ + { + "field": "aws.ebs.metrics.VolumeTotalReadTime.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.VolumeId", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "EBS Volume Total Read Time [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "12eff7e0-b7b9-11e9-8349-f15f850c5cd0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:27.567Z", + "version": "WzMzNDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/13e624c0-180e-11ea-8e91-03c7047cbb9d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/13e624c0-180e-11ea-8e91-03c7047cbb9d.json new file mode 100644 index 000000000000..66b9ecd8da81 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/13e624c0-180e-11ea-8e91-03c7047cbb9d.json @@ -0,0 +1,118 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SNS Messages and Notifications [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "s,s,3", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Messages Published", + "line_width": 1, + "metrics": [ + { + "field": "aws.sns.metrics.NumberOfMessagesPublished.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0", + "formatter": "s,s,3", + "id": "204ff2b0-1b77-11ea-9357-231d0e09a8a9", + "label": "Notifications Delivered", + "line_width": 1, + "metrics": [ + { + "field": "aws.sns.metrics.NumberOfNotificationsDelivered.sum", + "id": "204ff2b1-1b77-11ea-9357-231d0e09a8a9", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_order_by": "204ff2b1-1b77-11ea-9357-231d0e09a8a9", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": "0", + "formatter": "s,s,3", + "id": "32e925e0-1b77-11ea-9357-231d0e09a8a9", + "label": "Notifications Failed", + "line_width": 1, + "metrics": [ + { + "field": "aws.sns.metrics.NumberOfNotificationsFailed.sum", + "id": "32e925e1-1b77-11ea-9357-231d0e09a8a9", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_order_by": "32e925e1-1b77-11ea-9357-231d0e09a8a9", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SNS Messages and Notifications [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "13e624c0-180e-11ea-8e91-03c7047cbb9d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:36.824Z", + "version": "WzM0MzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/142ad600-693b-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/142ad600-693b-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..a86b632d6eaa --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/142ad600-693b-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VPN Tunnel Data State [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "05e19c00-693b-11ea-8bb6-25461aeac3d5" + } + ], + "bar_color_rules": [ + { + "id": "fdd5ac40-693a-11ea-8bb6-25461aeac3d5" + } + ], + "drop_last_bucket": 0, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.vpn.metrics.TunnelState.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.VpnId", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "VPN Tunnel Data State [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "142ad600-693b-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:40.825Z", + "version": "WzM0NzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/15818fd0-f7f9-11e8-af03-c999c9dea608-ecs.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/15818fd0-f7f9-11e8-af03-c999c9dea608-ecs.json new file mode 100644 index 000000000000..670c31181bf2 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/15818fd0-f7f9-11e8-af03-c999c9dea608-ecs.json @@ -0,0 +1,81 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "EC2 Network In Bytes [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [], + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "23428b30-f7f2-11e8-bff8-21537b07dd44" + } + ], + "bar_color_rules": [ + { + "id": "2592bcc0-f7f2-11e8-bff8-21537b07dd44" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": "", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "AWS EC2 Network In Bytes", + "line_width": "2", + "metrics": [ + { + "field": "aws.ec2.network.in.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "series_drop_last_bucket": 1, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "cloud.instance.id", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "10" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "EC2 Network In Bytes [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "15818fd0-f7f9-11e8-af03-c999c9dea608-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:28.616Z", + "version": "WzMzNDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/1731c440-e649-11ea-a838-3f4a45f85600.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/1731c440-e649-11ea-a838-3f4a45f85600.json new file mode 100644 index 000000000000..603e45f1f243 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/1731c440-e649-11ea-a838-3f4a45f85600.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Total Unblended Cost [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "cf04e620-e648-11ea-bdad-df8839db1393" + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "aws.billing.group_definition.key : \"AZ\"" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=2d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "aws.billing.group_definition.key : \"AZ\"" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Total Unblended Cost", + "line_width": 1, + "metrics": [ + { + "field": "aws.billing.UnblendedCost.amount", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "override_index_pattern": 1, + "point_size": 1, + "separate_axis": 0, + "series_drop_last_bucket": 0, + "series_index_pattern": "metricbeat-*", + "series_interval": ">=2d", + "series_time_field": "@timestamp", + "split_color_mode": "kibana", + "split_mode": "filter", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "last_value", + "tooltip_mode": "show_all", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Total Unblended Cost [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1731c440-e649-11ea-a838-3f4a45f85600", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:25.535Z", + "version": "WzMzMTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/17fcda50-921b-11e9-aa19-159bf182e06f.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/17fcda50-921b-11e9-aa19-159bf182e06f.json new file mode 100644 index 000000000000..812d634472c4 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/17fcda50-921b-11e9-aa19-159bf182e06f.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "RDS Database Connections [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "10bc2760-d978-11e9-aff2-99c15d8b7da1" + } + ], + "bar_color_rules": [ + { + "id": "f8196690-921a-11e9-badf-4b42bd1ef543" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "hide_in_legend": 0, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Database Connections", + "line_width": 1, + "metrics": [ + { + "field": "aws.rds.database_connections", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "aws.rds.db_instance.identifier", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "RDS Database Connections [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "17fcda50-921b-11e9-aa19-159bf182e06f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:34.757Z", + "version": "WzM0MTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/1f3f00c0-28d1-11ea-ba6c-49a884eb104f.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/1f3f00c0-28d1-11ea-ba6c-49a884eb104f.json new file mode 100644 index 000000000000..5c0ef8838254 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/1f3f00c0-28d1-11ea-ba6c-49a884eb104f.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Lambda Top Invoked Functions [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "fbf0eac0-28d0-11ea-8789-f72e3366fb25" + } + ], + "bar_color_rules": [ + { + "id": "f679afa0-28d0-11ea-8789-f72e3366fb25" + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "hide_last_value_indicator": true, + "id": "ca2e4c60-28cd-11ea-822d-3ba2c0089081", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "ca2e4c61-28cd-11ea-822d-3ba2c0089081", + "label": "avg(aws.metrics.Duration.avg)", + "line_width": 2, + "metrics": [ + { + "field": "aws.lambda.metrics.Invocations.avg", + "id": "ca2e4c62-28cd-11ea-822d-3ba2c0089081", + "type": "max" + } + ], + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.FunctionName", + "terms_order_by": "ca2e4c62-28cd-11ea-822d-3ba2c0089081", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Lambda Top Invoked Functions [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1f3f00c0-28d1-11ea-ba6c-49a884eb104f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:31.702Z", + "version": "WzMzNzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/1f528f50-b3ce-11e9-87a4-078dbbae220d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/1f528f50-b3ce-11e9-87a4-078dbbae220d.json new file mode 100644 index 000000000000..e19e90b3aa76 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/1f528f50-b3ce-11e9-87a4-078dbbae220d.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ELB HTTP Backend 2XX [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "7e66beb0-b3c6-11e9-af6e-ef22c5680226" + } + ], + "bar_color_rules": [ + { + "id": "7db91990-b3c6-11e9-af6e-ef22c5680226" + } + ], + "filter": "", + "gauge_color_rules": [ + { + "id": "7d0b9b80-b3c6-11e9-af6e-ef22c5680226" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "number", + "id": "35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971", + "label": "HTTP Backend 2XX", + "line_width": 2, + "metrics": [ + { + "field": "aws.elb.metrics.HTTPCode_Backend_2XX.sum", + "id": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.LoadBalancerName", + "terms_order_by": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "ELB HTTP Backend 2XX [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1f528f50-b3ce-11e9-87a4-078dbbae220d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:29.650Z", + "version": "WzMzNjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/21f30090-b3ca-11e9-87a4-078dbbae220d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/21f30090-b3ca-11e9-87a4-078dbbae220d.json new file mode 100644 index 000000000000..74ea36e23d61 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/21f30090-b3ca-11e9-87a4-078dbbae220d.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ELB HTTP Backend 4XX Errors [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "7e66beb0-b3c6-11e9-af6e-ef22c5680226" + } + ], + "bar_color_rules": [ + { + "id": "7db91990-b3c6-11e9-af6e-ef22c5680226" + } + ], + "filter": "", + "gauge_color_rules": [ + { + "id": "7d0b9b80-b3c6-11e9-af6e-ef22c5680226" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": "0", + "formatter": "number", + "id": "35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971", + "label": "HTTP Backend 4XX Errors", + "line_width": 2, + "metrics": [ + { + "field": "aws.elb.metrics.HTTPCode_Backend_4XX.sum", + "id": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.LoadBalancerName", + "terms_order_by": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "ELB HTTP Backend 4XX Errors [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "21f30090-b3ca-11e9-87a4-078dbbae220d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:29.650Z", + "version": "WzMzNTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/233b3400-f7f9-11e8-af03-c999c9dea608-ecs.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/233b3400-f7f9-11e8-af03-c999c9dea608-ecs.json new file mode 100644 index 000000000000..be71f39e84c2 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/233b3400-f7f9-11e8-af03-c999c9dea608-ecs.json @@ -0,0 +1,81 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "EC2 Network Out Bytes [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [], + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "23428b30-f7f2-11e8-bff8-21537b07dd44" + } + ], + "bar_color_rules": [ + { + "id": "2592bcc0-f7f2-11e8-bff8-21537b07dd44" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": "", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "AWS EC2 Network Out Bytes", + "line_width": "2", + "metrics": [ + { + "field": "aws.ec2.network.out.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "series_drop_last_bucket": 1, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "cloud.instance.id", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "10" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "EC2 Network Out Bytes [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "233b3400-f7f9-11e8-af03-c999c9dea608-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:28.616Z", + "version": "WzMzNDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/25384bf0-b7b9-11e9-8349-f15f850c5cd0.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/25384bf0-b7b9-11e9-8349-f15f850c5cd0.json new file mode 100644 index 000000000000..bef1946c297e --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/25384bf0-b7b9-11e9-8349-f15f850c5cd0.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "EBS Volume Total Write Time [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "s,s,3", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Volume Total Write Time", + "line_width": 1, + "metrics": [ + { + "field": "aws.ebs.metrics.VolumeTotalWriteTime.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.VolumeId", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "EBS Volume Total Write Time [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "25384bf0-b7b9-11e9-8349-f15f850c5cd0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:27.567Z", + "version": "WzMzMzksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/26b73e50-6943-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/26b73e50-6943-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..2c3813a4ed7b --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/26b73e50-6943-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VPN Tunnel Data Out Per VPN ID [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.vpn.metrics.TunnelDataOut.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.VpnId", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VPN Tunnel Data Out Per VPN ID [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "26b73e50-6943-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:40.825Z", + "version": "WzM0NzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/2929edb0-178e-11ea-8650-fb606deb5be4.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/2929edb0-178e-11ea-8650-fb606deb5be4.json new file mode 100644 index 000000000000..944eb709c98a --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/2929edb0-178e-11ea-8650-fb606deb5be4.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "AWS Service Filter [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "aws.dimensions.Service", + "id": "1549397251041", + "indexPatternRefName": "control_0_index_pattern", + "label": "service name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "AWS Service Filter [Metricbeat AWS]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2929edb0-178e-11ea-8650-fb606deb5be4", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:39.859Z", + "version": "WzM0NjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/2b2d58b0-4762-11e9-8062-c98a86cb6f94.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/2b2d58b0-4762-11e9-8062-c98a86cb6f94.json new file mode 100644 index 000000000000..c4e21c8dbcb6 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/2b2d58b0-4762-11e9-8062-c98a86cb6f94.json @@ -0,0 +1,92 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "S3 Request Latency Total Request in ms [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "c0d11b00-4761-11e9-bf81-69a4e579cab5" + } + ], + "bar_color_rules": [ + { + "id": "67cb0930-4761-11e9-bf81-69a4e579cab5" + } + ], + "drop_last_bucket": 0, + "gauge_color_rules": [ + { + "id": "6eafde10-4761-11e9-bf81-69a4e579cab5" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1d", + "isModelInvalid": false, + "pivot_id": "aws.s3.bucket.name", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "color_rules": [ + { + "id": "ac2ef870-4761-11e9-bf81-69a4e579cab5" + } + ], + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Latency in ms", + "line_width": 1, + "metrics": [ + { + "field": "aws.s3_request.latency.total_request.ms", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.s3.bucket.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "S3 Request Latency Total Request in ms [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2b2d58b0-4762-11e9-8062-c98a86cb6f94", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:35.750Z", + "version": "WzM0MjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/2dbb8f90-4760-11e9-8062-c98a86cb6f94.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/2dbb8f90-4760-11e9-8062-c98a86cb6f94.json new file mode 100644 index 000000000000..5728653680f0 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/2dbb8f90-4760-11e9-8062-c98a86cb6f94.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "S3 Daily Storage Bucket Size in Bytes [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "f679e680-475f-11e9-a9de-e776805ecfc9" + } + ], + "bar_color_rules": [ + { + "id": "f703aff0-475f-11e9-a9de-e776805ecfc9" + } + ], + "drop_last_bucket": 0, + "gauge_color_rules": [ + { + "id": "f8388670-475f-11e9-a9de-e776805ecfc9" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=1d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "field": "aws.s3_daily_storage.bucket.size.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.s3.bucket.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "20" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "tooltip_mode": "show_all", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "S3 Daily Storage Bucket Size in Bytes [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2dbb8f90-4760-11e9-8062-c98a86cb6f94", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:35.750Z", + "version": "WzM0MjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/2ee7f420-6943-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/2ee7f420-6943-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..05d5358d5b3c --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/2ee7f420-6943-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VPN Tunnel Data In Per VPN ID [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.vpn.metrics.TunnelDataIn.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.VpnId", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VPN Tunnel Data In Per VPN ID [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2ee7f420-6943-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:40.825Z", + "version": "WzM0NzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/31ad4090-2003-11ea-8f72-2f8d21e50b0c.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/31ad4090-2003-11ea-8f72-2f8d21e50b0c.json new file mode 100644 index 000000000000..1e9d4214b369 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/31ad4090-2003-11ea-8f72-2f8d21e50b0c.json @@ -0,0 +1,229 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "DynamoDB Account Provisioned Capacity Utilization [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Write Utilization", + "field": "aws.dynamodb.metrics.AccountProvisionedWriteCapacityUtilization.avg" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "now-15m", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Read Utilization", + "field": "aws.dynamodb.metrics.AccountProvisionedReadCapacityUtilization.avg" + }, + "schema": "metric", + "type": "max" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "dimensions": { + "x": { + "accessor": 0, + "aggType": "date_histogram", + "format": { + "id": "date", + "params": { + "pattern": "HH:mm:ss" + } + }, + "label": "@timestamp per 30 seconds", + "params": { + "bounds": { + "max": "2020-04-10T10:29:58.462Z", + "min": "2020-04-10T10:14:58.462Z" + }, + "date": true, + "format": "HH:mm:ss", + "interval": "PT30S", + "intervalESUnit": "s", + "intervalESValue": 30 + } + }, + "y": [ + { + "accessor": 1, + "aggType": "max", + "format": { + "id": "number", + "params": { + "parsedUrl": { + "basePath": "", + "origin": "http://localhost:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "Write Utilization", + "params": {} + }, + { + "accessor": 2, + "aggType": "max", + "format": { + "id": "number", + "params": { + "parsedUrl": { + "basePath": "", + "origin": "http://localhost:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "Read Utilization", + "params": {} + } + ] + }, + "fittingFunction": "zero", + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": {}, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Write Utilization" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + }, + { + "data": { + "id": "3", + "label": "Read Utilization" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#34130C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Write Utilization" + }, + "type": "value" + } + ] + }, + "title": "DynamoDB Account Provisioned Capacity Utilization [Metricbeat AWS]", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "31ad4090-2003-11ea-8f72-2f8d21e50b0c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:26.548Z", + "version": "WzMzMzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/398d12d0-7352-11e9-816b-07687310a99a.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/398d12d0-7352-11e9-816b-07687310a99a.json new file mode 100644 index 000000000000..1bacbf170dfe --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/398d12d0-7352-11e9-816b-07687310a99a.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Cloudwatch Lambda Throttles Top5 [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "cbb498f0-734c-11e9-a683-47ca322fa6f9" + } + ], + "bar_color_rules": [ + { + "id": "94f2ce40-734c-11e9-a683-47ca322fa6f9" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Lambda Throttles", + "line_width": 1, + "metrics": [ + { + "field": "aws.lambda.metrics.Throttles", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.FunctionName", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "AWS Cloudwatch Lambda Throttles Top5", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "398d12d0-7352-11e9-816b-07687310a99a", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:33.734Z", + "version": "WzM0MDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/39dfc8d0-28cf-11ea-ba6c-49a884eb104f.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/39dfc8d0-28cf-11ea-ba6c-49a884eb104f.json new file mode 100644 index 000000000000..2f7981731811 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/39dfc8d0-28cf-11ea-ba6c-49a884eb104f.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Lambda Duration in Milliseconds [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "ca2e4c60-28cd-11ea-822d-3ba2c0089081", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "ca2e4c61-28cd-11ea-822d-3ba2c0089081", + "label": "avg(aws.metrics.Duration.avg)", + "line_width": 2, + "metrics": [ + { + "field": "aws.lambda.metrics.Duration.avg", + "id": "ca2e4c62-28cd-11ea-822d-3ba2c0089081", + "type": "avg" + } + ], + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.FunctionName", + "terms_order_by": "ca2e4c62-28cd-11ea-822d-3ba2c0089081", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Lambda Duration in Milliseconds [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "39dfc8d0-28cf-11ea-ba6c-49a884eb104f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:31.702Z", + "version": "WzMzNzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/3a3914d0-4761-11e9-8062-c98a86cb6f94.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/3a3914d0-4761-11e9-8062-c98a86cb6f94.json new file mode 100644 index 000000000000..2a8cd4d7c331 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/3a3914d0-4761-11e9-8062-c98a86cb6f94.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "S3 Daily Storage Number of Objects [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "167ea870-4761-11e9-bf81-69a4e579cab5" + } + ], + "bar_color_rules": [ + { + "id": "01dad830-4761-11e9-bf81-69a4e579cab5" + } + ], + "drop_last_bucket": 0, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=1d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "field": "aws.s3_daily_storage.number_of_objects", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.s3.bucket.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "20" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "tooltip_mode": "show_all", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "S3 Daily Storage Number of Objects [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3a3914d0-4761-11e9-8062-c98a86cb6f94", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:35.750Z", + "version": "WzM0MjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/3c5d7860-d903-11eb-8220-c9141cc1b15c.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/3c5d7860-d903-11eb-8220-c9141cc1b15c.json new file mode 100644 index 000000000000..5b38cba66455 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/3c5d7860-d903-11eb-8220-c9141cc1b15c.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "AWS Kinesis Filter [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "cloud.region", + "id": "1549397251041", + "indexPatternRefName": "control_0_index_pattern", + "label": "region name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "aws.dimensions.StreamName", + "id": "1624989316975", + "indexPatternRefName": "control_1_index_pattern", + "label": "stream name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "AWS Kinesis Filter [Metricbeat AWS]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3c5d7860-d903-11eb-8220-c9141cc1b15c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:30.617Z", + "version": "WzMzNjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/3dee68c0-7b0c-11ea-9bb4-e958b64b5685.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/3dee68c0-7b0c-11ea-9bb4-e958b64b5685.json new file mode 100644 index 000000000000..b52b003832b3 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/3dee68c0-7b0c-11ea-9bb4-e958b64b5685.json @@ -0,0 +1,65 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "DynamoDB Max Request Latency Per Operation [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0.1", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Max Request Latency Per Operation", + "line_width": 1, + "metrics": [ + { + "field": "aws.dynamodb.metrics.SuccessfulRequestLatency.max", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.Operation", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "DynamoDB Max Request Latency Per Operation [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3dee68c0-7b0c-11ea-9bb4-e958b64b5685", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:26.548Z", + "version": "WzMzMzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/3e091620-e64b-11ea-a838-3f4a45f85600.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/3e091620-e64b-11ea-a838-3f4a45f85600.json new file mode 100644 index 000000000000..d7db80e1a144 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/3e091620-e64b-11ea-a838-3f4a45f85600.json @@ -0,0 +1,75 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Daily Unblended Cost [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "aws.billing.group_definition.key : \"AZ\"" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=1d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "rgba(118,208,7,1)", + "fill": "1", + "filter": { + "language": "kuery", + "query": "aws.billing.group_definition.key : \"AZ\"" + }, + "formatter": "number", + "hide_in_legend": 1, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Total Unblended Cost", + "line_width": 1, + "metrics": [ + { + "field": "aws.billing.UnblendedCost.amount", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "filter", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 0, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Daily Unblended Cost [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3e091620-e64b-11ea-a838-3f4a45f85600", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:25.535Z", + "version": "WzMzMjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/415fed40-694f-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/415fed40-694f-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..d7b5ec4999d4 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/415fed40-694f-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "TransitGateway Filters [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "cloud.account.name", + "id": "1565034367477", + "indexPatternRefName": "control_0_index_pattern", + "label": "account name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "cloud.region", + "id": "1584478324642", + "indexPatternRefName": "control_1_index_pattern", + "label": "region", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "aws.dimensions.TransitGateway", + "id": "1584479118709", + "indexPatternRefName": "control_2_index_pattern", + "label": "transit gateway", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": true + }, + "title": "TransitGateway Filters [Metricbeat AWS]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "415fed40-694f-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:38.811Z", + "version": "WzM0NTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/42016bf0-728f-11e9-9a7b-4d62d5bcf4fc.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/42016bf0-728f-11e9-9a7b-4d62d5bcf4fc.json new file mode 100644 index 000000000000..7e7f31383e59 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/42016bf0-728f-11e9-9a7b-4d62d5bcf4fc.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Cloudwatch ELB Latency [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [], + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "23428b30-f7f2-11e8-bff8-21537b07dd44" + } + ], + "bar_color_rules": [ + { + "id": "2592bcc0-f7f2-11e8-bff8-21537b07dd44" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": "", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "AWS Cloudwatch ELB Latency", + "line_width": 1, + "metrics": [ + { + "field": "aws.elb.metrics.Latency", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "series_drop_last_bucket": 1, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "aws.dimensions.LoadBalancerName", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "AWS Cloudwatch ELB Latency", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "42016bf0-728f-11e9-9a7b-4d62d5bcf4fc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:33.734Z", + "version": "WzM0MDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/4658f540-734a-11e9-816b-07687310a99a.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/4658f540-734a-11e9-816b-07687310a99a.json new file mode 100644 index 000000000000..82d3bf10ed49 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/4658f540-734a-11e9-816b-07687310a99a.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SQS Empty Receives Top5 [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "23be77d0-734a-11e9-a683-47ca322fa6f9" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "AWS SQS Empty Receives", + "line_width": 1, + "metrics": [ + { + "field": "aws.sqs.empty_receives", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.sqs.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "AWS SQS Empty Receives Top5", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4658f540-734a-11e9-816b-07687310a99a", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:33.734Z", + "version": "WzM0MDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/49379b70-7b07-11ea-9bb4-e958b64b5685.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/49379b70-7b07-11ea-9bb4-e958b64b5685.json new file mode 100644 index 000000000000..45d7bd94cb99 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/49379b70-7b07-11ea-9bb4-e958b64b5685.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "DynamoDB Consumed Write Capacity Units [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "43e58670-7b05-11ea-8ef8-01625a2f68ac" + } + ], + "bar_color_rules": [ + { + "id": "3c733ea0-7b05-11ea-8ef8-01625a2f68ac" + } + ], + "drop_last_bucket": 1, + "gauge_color_rules": [ + { + "id": "499c62a0-7b05-11ea-8ef8-01625a2f68ac" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0.1", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Consumed Write Capacity Units", + "line_width": 1, + "metrics": [ + { + "field": "aws.dynamodb.metrics.ConsumedWriteCapacityUnits.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "offset_time": "", + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "aws.dimensions.TableName", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "DynamoDB Consumed Write Capacity Units [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "49379b70-7b07-11ea-9bb4-e958b64b5685", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:26.548Z", + "version": "WzMzMjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/4bf0a740-28d1-11ea-ba6c-49a884eb104f.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/4bf0a740-28d1-11ea-ba6c-49a884eb104f.json new file mode 100644 index 000000000000..159a47bf8649 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/4bf0a740-28d1-11ea-ba6c-49a884eb104f.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Lambda Top Errors [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "fbf0eac0-28d0-11ea-8789-f72e3366fb25" + } + ], + "bar_color_rules": [ + { + "id": "f679afa0-28d0-11ea-8789-f72e3366fb25" + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "3eabbde0-28d1-11ea-8789-f72e3366fb25" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "ca2e4c60-28cd-11ea-822d-3ba2c0089081", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "ca2e4c61-28cd-11ea-822d-3ba2c0089081", + "label": "avg(aws.metrics.Duration.avg)", + "line_width": 2, + "metrics": [ + { + "field": "aws.lambda.metrics.Errors.avg", + "id": "ca2e4c62-28cd-11ea-822d-3ba2c0089081", + "type": "max" + } + ], + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.FunctionName", + "terms_order_by": "ca2e4c62-28cd-11ea-822d-3ba2c0089081", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Lambda Top Errors [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4bf0a740-28d1-11ea-ba6c-49a884eb104f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:31.702Z", + "version": "WzMzNzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/4bf62a10-8310-11e9-ac83-47df3568ff90.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/4bf62a10-8310-11e9-ac83-47df3568ff90.json new file mode 100644 index 000000000000..1a1d3bc47dff --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/4bf62a10-8310-11e9-ac83-47df3568ff90.json @@ -0,0 +1,97 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Cloudwatch ECS CPU Available [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "bb21d180-830d-11e9-9c4c-391fa0a2e15f" + } + ], + "filter": "", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "lucene", + "query": "(aws.cloudwatch.namespace:\"AWS/ECS\") AND (_exists_: aws.ecs.metrics.CPUReservation) AND (_exists_: aws.ecs.metrics.CPUUtilization)" + }, + "formatter": "percent", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "aws.ecs.metrics.CPUUtilization", + "id": "17f8ddf0-830d-11e9-9f3d-ed346f48a007", + "type": "sum" + }, + { + "field": "aws.ecs.metrics.CPUReservation", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + }, + { + "id": "68a93050-830e-11e9-9c4c-391fa0a2e15f", + "script": "(params.res - params.util) / 100", + "type": "math", + "variables": [ + { + "field": "17f8ddf0-830d-11e9-9f3d-ed346f48a007", + "id": "6f338920-830e-11e9-9c4c-391fa0a2e15f", + "name": "util" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "7ab9f9a0-830e-11e9-9c4c-391fa0a2e15f", + "name": "res" + } + ] + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.ClusterName", + "terms_order_by": "_key", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "AWS Cloudwatch ECS CPU Available", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4bf62a10-8310-11e9-ac83-47df3568ff90", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:33.734Z", + "version": "WzM0MDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/53730d20-437e-11e9-8697-530f39afc6eb.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/53730d20-437e-11e9-8697-530f39afc6eb.json new file mode 100644 index 000000000000..e005da8011fb --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/53730d20-437e-11e9-8697-530f39afc6eb.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SQS Oldest Message Age in Seconds [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "3e3d3610-437e-11e9-a35d-972620e4f790" + } + ], + "drop_last_bucket": 0, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "AWS SQS Oldest Message Age in Seconds", + "line_width": 1, + "metrics": [ + { + "field": "aws.sqs.oldest_message_age.sec", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.sqs.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "SQS Oldest Message Age in Seconds [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "53730d20-437e-11e9-8697-530f39afc6eb", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:37.811Z", + "version": "WzM0NDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/54e88a40-734e-11e9-816b-07687310a99a.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/54e88a40-734e-11e9-816b-07687310a99a.json new file mode 100644 index 000000000000..5d1fdca83e28 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/54e88a40-734e-11e9-816b-07687310a99a.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Cloudwatch Lambda Errors Top5 [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "cbb498f0-734c-11e9-a683-47ca322fa6f9" + } + ], + "bar_color_rules": [ + { + "id": "94f2ce40-734c-11e9-a683-47ca322fa6f9" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Lambda Errors", + "line_width": 1, + "metrics": [ + { + "field": "aws.lambda.metrics.Errors", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.FunctionName", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "AWS Cloudwatch Lambda Errors Top5", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "54e88a40-734e-11e9-816b-07687310a99a", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:33.734Z", + "version": "WzM0MDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/572d40e0-b3ca-11e9-87a4-078dbbae220d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/572d40e0-b3ca-11e9-87a4-078dbbae220d.json new file mode 100644 index 000000000000..f921abb68b50 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/572d40e0-b3ca-11e9-87a4-078dbbae220d.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ELB Backend Connection Errors [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "7e66beb0-b3c6-11e9-af6e-ef22c5680226" + } + ], + "bar_color_rules": [ + { + "id": "7db91990-b3c6-11e9-af6e-ef22c5680226" + } + ], + "filter": "", + "gauge_color_rules": [ + { + "id": "7d0b9b80-b3c6-11e9-af6e-ef22c5680226" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": "00", + "formatter": "number", + "id": "35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971", + "label": "Backend Connection Errors", + "line_width": 2, + "metrics": [ + { + "field": "aws.elb.metrics.BackendConnectionErrors.sum", + "id": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "aws.dimensions.LoadBalancerName", + "terms_order_by": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "ELB Backend Connection Errors [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "572d40e0-b3ca-11e9-87a4-078dbbae220d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:29.650Z", + "version": "WzMzNjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/58e17c10-7349-11e9-816b-07687310a99a.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/58e17c10-7349-11e9-816b-07687310a99a.json new file mode 100644 index 000000000000..7267f77cd488 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/58e17c10-7349-11e9-816b-07687310a99a.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "S3 Total Error 5xx [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "59207fe0-4762-11e9-bf81-69a4e579cab5" + } + ], + "bar_color_rules": [ + { + "id": "5ad9a190-4762-11e9-bf81-69a4e579cab5" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Total # of HTTP 5xx Errors", + "line_width": 1, + "metrics": [ + { + "field": "aws.s3_request.errors.5xx", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "AWS S3 Total Error 5xx", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "58e17c10-7349-11e9-816b-07687310a99a", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:33.734Z", + "version": "WzMzOTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/58f5a3c0-6943-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/58f5a3c0-6943-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..ca9ec9100347 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/58f5a3c0-6943-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VPN Tunnel Data State Per Tunnel IP [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "05e19c00-693b-11ea-8bb6-25461aeac3d5" + } + ], + "bar_color_rules": [ + { + "id": "fdd5ac40-693a-11ea-8bb6-25461aeac3d5" + } + ], + "drop_last_bucket": 0, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.vpn.metrics.TunnelState.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.TunnelIpAddress", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "VPN Tunnel Data State Per Tunnel IP [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "58f5a3c0-6943-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:40.825Z", + "version": "WzM0NzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/59defc90-17a5-11ea-8e91-03c7047cbb9d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/59defc90-17a5-11ea-8e91-03c7047cbb9d.json new file mode 100644 index 000000000000..c94120cc2672 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/59defc90-17a5-11ea-8e91-03c7047cbb9d.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "SNS Topic Name Filter [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "aws.dimensions.TopicName", + "id": "1565034367477", + "indexPatternRefName": "control_0_index_pattern", + "label": "topic name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": true + }, + "title": "SNS Topic Name Filter [Metricbeat AWS]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "59defc90-17a5-11ea-8e91-03c7047cbb9d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:36.824Z", + "version": "WzM0MzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/59e2e110-178d-11ea-8650-fb606deb5be4.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/59e2e110-178d-11ea-8650-fb606deb5be4.json new file mode 100644 index 000000000000..6b2aa3e17d17 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/59e2e110-178d-11ea-8650-fb606deb5be4.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Usage Resource Count Per Service [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "aws.dimensions.Type : \"Resource\" " + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.usage.metrics.ResourceCount.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.Service", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Usage Resource Count Per Service [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "59e2e110-178d-11ea-8650-fb606deb5be4", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:39.859Z", + "version": "WzM0NjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/6392bc30-b3c9-11e9-87a4-078dbbae220d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/6392bc30-b3c9-11e9-87a4-078dbbae220d.json new file mode 100644 index 000000000000..badf726d0d0e --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/6392bc30-b3c9-11e9-87a4-078dbbae220d.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ELB Healthy Host Count [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(104,188,0,1)", + "color": "rgba(255,255,255,1)", + "id": "7e66beb0-b3c6-11e9-af6e-ef22c5680226", + "operator": "gt", + "value": 0 + } + ], + "bar_color_rules": [ + { + "id": "7db91990-b3c6-11e9-af6e-ef22c5680226" + } + ], + "filter": "", + "gauge_color_rules": [ + { + "id": "7d0b9b80-b3c6-11e9-af6e-ef22c5680226" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "number", + "id": "35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971", + "label": "Healthy Host Count", + "line_width": 2, + "metrics": [ + { + "field": "aws.elb.metrics.HealthyHostCount.max", + "id": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "everything", + "stacked": "none", + "terms_field": "aws.dimensions.AvailabilityZone", + "terms_order_by": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "ELB Healthy Host Count [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6392bc30-b3c9-11e9-87a4-078dbbae220d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:29.650Z", + "version": "WzMzNTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/67f43080-b7b9-11e9-8349-f15f850c5cd0.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/67f43080-b7b9-11e9-8349-f15f850c5cd0.json new file mode 100644 index 000000000000..69c7f9ae369f --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/67f43080-b7b9-11e9-8349-f15f850c5cd0.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "EBS Volume Idle Time [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "series": [ + { + "axis_min": "0", + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "s,s,1", + "hide_in_legend": 0, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Volume Idle Time", + "line_width": 1, + "metrics": [ + { + "field": "aws.ebs.metrics.VolumeIdleTime.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.VolumeId", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "EBS Volume Idle Time [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "67f43080-b7b9-11e9-8349-f15f850c5cd0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:27.567Z", + "version": "WzMzNDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/681aab60-178c-11ea-8650-fb606deb5be4.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/681aab60-178c-11ea-8650-fb606deb5be4.json new file mode 100644 index 000000000000..40f7185dfade --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/681aab60-178c-11ea-8650-fb606deb5be4.json @@ -0,0 +1,162 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Usage CallCount [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "aws.usage.metrics.CallCount.sum" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "filters": [ + { + "input": { + "language": "kuery", + "query": "aws.dimensions.Type : \"API\" " + }, + "label": "" + } + ], + "row": true + }, + "schema": "split", + "type": "filters" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "aws.dimensions.Service", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "field": "aws.dimensions.Resource", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 4, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metric": { + "accessor": 3, + "aggType": "sum", + "format": { + "id": "number" + }, + "params": {} + }, + "splitRow": [ + { + "accessor": 0, + "aggType": "filters", + "format": {}, + "params": {} + } + ] + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": false, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Usage CallCount [Metricbeat AWS]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "681aab60-178c-11ea-8650-fb606deb5be4", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:39.859Z", + "version": "WzM0NjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/68970b10-6890-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/68970b10-6890-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..3410f21f62e3 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/68970b10-6890-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "NATGateway Connection Established [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0", + "value": 0 + } + ], + "bar_color_rules": [ + { + "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "f444c0e0-688f-11ea-8b7d-fd9d15a13cd0", + "label": "Total Connections Established", + "line_width": "2", + "metrics": [ + { + "field": "aws.natgateway.metrics.ConnectionEstablishedCount.sum", + "id": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", + "type": "sum" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "aws.dimensions.NatGatewayId", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "time_range_mode": "last_value", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "NATGateway Connection Established [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "68970b10-6890-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:32.666Z", + "version": "WzMzODQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/6e3285d0-4763-11e9-8062-c98a86cb6f94.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/6e3285d0-4763-11e9-8062-c98a86cb6f94.json new file mode 100644 index 000000000000..fdfdad52271f --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/6e3285d0-4763-11e9-8062-c98a86cb6f94.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "S3 Filters [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "cloud.region", + "id": "1549397251041", + "indexPattern": "metricbeat-*", + "label": "region", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "aws.s3.bucket.name", + "id": "1549512142947", + "indexPattern": "metricbeat-*", + "label": "s3 bucket name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "AWS S3 Filters", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6e3285d0-4763-11e9-8062-c98a86cb6f94", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:35.750Z", + "version": "WzM0MjksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/6f7f7680-180c-11ea-8e91-03c7047cbb9d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/6f7f7680-180c-11ea-8e91-03c7047cbb9d.json new file mode 100644 index 000000000000..bc6839ee178c --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/6f7f7680-180c-11ea-8e91-03c7047cbb9d.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SNS Publish Size [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Publish Size", + "line_width": 1, + "metrics": [ + { + "field": "aws.sns.metrics.PublishSize.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SNS Publish Size [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6f7f7680-180c-11ea-8e91-03c7047cbb9d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:36.824Z", + "version": "WzM0MzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/6fc1efd0-b3c9-11e9-87a4-078dbbae220d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/6fc1efd0-b3c9-11e9-87a4-078dbbae220d.json new file mode 100644 index 000000000000..3e1c5c400ef7 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/6fc1efd0-b3c9-11e9-87a4-078dbbae220d.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ELB Unhealthy Host Count [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": "rgba(255,255,255,1)", + "id": "7e66beb0-b3c6-11e9-af6e-ef22c5680226", + "operator": "gt", + "value": 0 + } + ], + "bar_color_rules": [ + { + "id": "7db91990-b3c6-11e9-af6e-ef22c5680226" + } + ], + "filter": "", + "gauge_color_rules": [ + { + "id": "7d0b9b80-b3c6-11e9-af6e-ef22c5680226" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "number", + "id": "35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971", + "label": "Unhealthy Host Count", + "line_width": 2, + "metrics": [ + { + "field": "aws.elb.metrics.UnHealthyHostCount.max", + "id": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "everything", + "stacked": "none", + "terms_field": "aws.dimensions.AvailabilityZone", + "terms_order_by": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "ELB Unhealthy Host Count [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6fc1efd0-b3c9-11e9-87a4-078dbbae220d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:29.650Z", + "version": "WzMzNTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/75ebfda0-1789-11ea-8650-fb606deb5be4.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/75ebfda0-1789-11ea-8650-fb606deb5be4.json new file mode 100644 index 000000000000..ec242bede8aa --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/75ebfda0-1789-11ea-8650-fb606deb5be4.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Usage Call Count Per Service [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "aws.dimensions.Type : \"API\" " + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.usage.metrics.CallCount.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.Service", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Usage Call Count Per Service [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "75ebfda0-1789-11ea-8650-fb606deb5be4", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:39.859Z", + "version": "WzM0NjksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/7b93bab0-7b0a-11ea-9bb4-e958b64b5685.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/7b93bab0-7b0a-11ea-9bb4-e958b64b5685.json new file mode 100644 index 000000000000..0a2a0ac6c7d9 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/7b93bab0-7b0a-11ea-9bb4-e958b64b5685.json @@ -0,0 +1,65 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "DynamoDB Read Throttle Events [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0.1", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Read Throttle Events", + "line_width": 1, + "metrics": [ + { + "field": "aws.dynamodb.metrics.ReadThrottleEvents.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.TableName", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "DynamoDB Read Throttle Events [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7b93bab0-7b0a-11ea-9bb4-e958b64b5685", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:26.548Z", + "version": "WzMzMjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/7d1e0870-7a3f-11ea-bfa4-dfea8c457654.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/7d1e0870-7a3f-11ea-bfa4-dfea8c457654.json new file mode 100644 index 000000000000..248efd9685e5 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/7d1e0870-7a3f-11ea-bfa4-dfea8c457654.json @@ -0,0 +1,249 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index" + } + }, + "title": "DynamoDB Max Read/Write Account Limits [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Reads", + "field": "aws.dynamodb.metrics.AccountMaxReads.max" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Table Reads", + "field": "aws.dynamodb.metrics.AccountMaxTableLevelReads.max" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Writes", + "field": "aws.dynamodb.metrics.AccountMaxWrites.max" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Table Writes", + "field": "aws.dynamodb.metrics.AccountMaxTableLevelWrites.max" + }, + "schema": "metric", + "type": "max" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "dimensions": { + "x": null, + "y": [ + { + "accessor": 0, + "aggType": "max", + "format": { + "id": "number", + "params": { + "parsedUrl": { + "basePath": "", + "origin": "http://localhost:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "Reads", + "params": {} + }, + { + "accessor": 1, + "aggType": "max", + "format": { + "id": "number", + "params": { + "parsedUrl": { + "basePath": "", + "origin": "http://localhost:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "Table Reads", + "params": {} + }, + { + "accessor": 2, + "aggType": "max", + "format": { + "id": "number", + "params": { + "parsedUrl": { + "basePath": "", + "origin": "http://localhost:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "Writes", + "params": {} + } + ] + }, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": { + "show": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Reads" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + }, + { + "data": { + "id": "2", + "label": "Table Reads" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + }, + { + "data": { + "id": "3", + "label": "Writes" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + }, + { + "data": { + "id": "4", + "label": "Table Writes" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Account Max Reads" + }, + "type": "value" + } + ] + }, + "title": "DynamoDB Max Read/Write Account Limits [Metricbeat AWS]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7d1e0870-7a3f-11ea-bfa4-dfea8c457654", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:26.548Z", + "version": "WzMzMjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/81d83c70-4762-11e9-8062-c98a86cb6f94.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/81d83c70-4762-11e9-8062-c98a86cb6f94.json new file mode 100644 index 000000000000..0e0e43abaf49 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/81d83c70-4762-11e9-8062-c98a86cb6f94.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "S3 Total Error 4xx [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "59207fe0-4762-11e9-bf81-69a4e579cab5" + } + ], + "bar_color_rules": [ + { + "id": "5ad9a190-4762-11e9-bf81-69a4e579cab5" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Total # of HTTP 4xx Errors", + "line_width": 1, + "metrics": [ + { + "field": "aws.s3_request.errors.4xx", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "AWS S3 Total Error 4xx", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "81d83c70-4762-11e9-8062-c98a86cb6f94", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:35.750Z", + "version": "WzM0MjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/8345d580-6891-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/8345d580-6891-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..5896ffc9e8c2 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/8345d580-6891-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "NATGateway Filters [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "cloud.account.name", + "id": "1565034367477", + "indexPatternRefName": "control_0_index_pattern", + "label": "account name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "cloud.region", + "id": "1584478324642", + "indexPatternRefName": "control_1_index_pattern", + "label": "region", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "aws.dimensions.NatGatewayId", + "id": "1584479118709", + "indexPatternRefName": "control_2_index_pattern", + "label": "NATGateway ID", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": true + }, + "title": "NATGateway Filters [Metricbeat AWS]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8345d580-6891-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:32.666Z", + "version": "WzMzODEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/83f08eb0-1532-11ea-841c-01bf20a6c8ba.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/83f08eb0-1532-11ea-841c-01bf20a6c8ba.json new file mode 100644 index 000000000000..61bd832e7b9a --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/83f08eb0-1532-11ea-841c-01bf20a6c8ba.json @@ -0,0 +1,100 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Total Estimated Charges [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "88a80e30-1530-11ea-961e-c1db9cc6166e" + } + ], + "bar_color_rules": [ + { + "id": "ebb52700-1531-11ea-961e-c1db9cc6166e" + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "aws.billing.EstimatedCharges : * and not (aws.billing.ServiceName : * )" + }, + "gauge_color_rules": [ + { + "id": "e8a045e0-1531-11ea-961e-c1db9cc6166e" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=1d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "aws.billing.EstimatedCharges : * and not (aws.billing.ServiceName : * )" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Total Estimated Charges", + "line_width": 1, + "metrics": [ + { + "field": "aws.billing.EstimatedCharges", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "override_index_pattern": 1, + "point_size": 1, + "separate_axis": 0, + "series_drop_last_bucket": 0, + "series_index_pattern": "metricbeat-*", + "series_interval": ">=1d", + "series_time_field": "@timestamp", + "split_color_mode": "gradient", + "split_mode": "filter", + "stacked": "none", + "time_range_mode": "last_value", + "value_template": "${{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "last_value", + "tooltip_mode": "show_all", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Total Estimated Charges [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "83f08eb0-1532-11ea-841c-01bf20a6c8ba", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:25.535Z", + "version": "WzMzMTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/8b34a100-4762-11e9-8062-c98a86cb6f94.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/8b34a100-4762-11e9-8062-c98a86cb6f94.json new file mode 100644 index 000000000000..1827e35f1cdc --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/8b34a100-4762-11e9-8062-c98a86cb6f94.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "S3 Total Error 5xx [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "59207fe0-4762-11e9-bf81-69a4e579cab5" + } + ], + "bar_color_rules": [ + { + "id": "5ad9a190-4762-11e9-bf81-69a4e579cab5" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Total # of HTTP 5xx Errors", + "line_width": 1, + "metrics": [ + { + "field": "aws.s3_request.errors.5xx", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "AWS S3 Total Error 5xx", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8b34a100-4762-11e9-8062-c98a86cb6f94", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:35.750Z", + "version": "WzM0MjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/8cf5fbe0-7b07-11ea-9bb4-e958b64b5685.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/8cf5fbe0-7b07-11ea-9bb4-e958b64b5685.json new file mode 100644 index 000000000000..10f75466d9ed --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/8cf5fbe0-7b07-11ea-9bb4-e958b64b5685.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "DynamoDB Successful Request Latency [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "43e58670-7b05-11ea-8ef8-01625a2f68ac" + } + ], + "bar_color_rules": [ + { + "id": "3c733ea0-7b05-11ea-8ef8-01625a2f68ac" + } + ], + "drop_last_bucket": 1, + "gauge_color_rules": [ + { + "id": "499c62a0-7b05-11ea-8ef8-01625a2f68ac" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0.1", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Successful Request Latency", + "line_width": 1, + "metrics": [ + { + "field": "aws.dynamodb.metrics.SuccessfulRequestLatency.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "offset_time": "", + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "aws.dimensions.TableName", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "DynamoDB Successful Request Latency [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8cf5fbe0-7b07-11ea-9bb4-e958b64b5685", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:26.548Z", + "version": "WzMzMjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9121ac90-734d-11e9-816b-07687310a99a.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9121ac90-734d-11e9-816b-07687310a99a.json new file mode 100644 index 000000000000..32ebdeb60255 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9121ac90-734d-11e9-816b-07687310a99a.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Cloudwatch ELB Unhealthy Host Count [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "cbb498f0-734c-11e9-a683-47ca322fa6f9" + } + ], + "bar_color_rules": [ + { + "id": "94f2ce40-734c-11e9-a683-47ca322fa6f9" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "ELB Unhealthy Host Count", + "line_width": 1, + "metrics": [ + { + "field": "aws.elb.metrics.UnHealthyHostCount", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.LoadBalancerName", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "AWS Cloudwatch ELB Unhealthy Host Count", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9121ac90-734d-11e9-816b-07687310a99a", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:33.734Z", + "version": "WzM0MDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/915bcd50-28d1-11ea-ba6c-49a884eb104f.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/915bcd50-28d1-11ea-ba6c-49a884eb104f.json new file mode 100644 index 000000000000..57a93ef4c29a --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/915bcd50-28d1-11ea-ba6c-49a884eb104f.json @@ -0,0 +1,95 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Lambda Top Throttles [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "fbf0eac0-28d0-11ea-8789-f72e3366fb25" + } + ], + "bar_color_rules": [ + { + "id": "f679afa0-28d0-11ea-8789-f72e3366fb25" + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "3eabbde0-28d1-11ea-8789-f72e3366fb25" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "ca2e4c60-28cd-11ea-822d-3ba2c0089081", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "ca2e4c61-28cd-11ea-822d-3ba2c0089081", + "label": "avg(aws.metrics.Duration.avg)", + "line_width": 2, + "metrics": [ + { + "field": "aws.lambda.metrics.Duration.avg", + "id": "ca2e4c62-28cd-11ea-822d-3ba2c0089081", + "type": "max" + } + ], + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.FunctionName", + "terms_order_by": "ca2e4c62-28cd-11ea-822d-3ba2c0089081", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Lambda Top Throttles [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "915bcd50-28d1-11ea-ba6c-49a884eb104f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:31.702Z", + "version": "WzMzNzksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9202d1a0-178c-11ea-8650-fb606deb5be4.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9202d1a0-178c-11ea-8650-fb606deb5be4.json new file mode 100644 index 000000000000..7b412e1044e7 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9202d1a0-178c-11ea-8650-fb606deb5be4.json @@ -0,0 +1,162 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Usage ResourceCount [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "aws.usage.metrics.ResourceCount.sum" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "filters": [ + { + "input": { + "language": "kuery", + "query": "aws.dimensions.Type : \"Resource\" " + }, + "label": "" + } + ], + "row": true + }, + "schema": "split", + "type": "filters" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "aws.dimensions.Service", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "field": "aws.dimensions.Resource", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": true, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 4, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metric": { + "accessor": 3, + "aggType": "sum", + "format": { + "id": "number" + }, + "params": {} + }, + "splitRow": [ + { + "accessor": 0, + "aggType": "filters", + "format": {}, + "params": {} + } + ] + }, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": false, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Usage ResourceCount [Metricbeat AWS]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9202d1a0-178c-11ea-8650-fb606deb5be4", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:39.859Z", + "version": "WzM0NjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/95b322f0-734a-11e9-816b-07687310a99a.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/95b322f0-734a-11e9-816b-07687310a99a.json new file mode 100644 index 000000000000..e378d1a3be8d --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/95b322f0-734a-11e9-816b-07687310a99a.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SQS Messages Delayed Top5 [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "23be77d0-734a-11e9-a683-47ca322fa6f9" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "AWS SQS Messages Delayed", + "line_width": 1, + "metrics": [ + { + "field": "aws.sqs.messages.delayed", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.sqs.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "AWS SQS Messages Delayed Top5", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "95b322f0-734a-11e9-816b-07687310a99a", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:33.734Z", + "version": "WzM0MDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9bf8e1e0-6890-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9bf8e1e0-6890-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..a52487a283ec --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9bf8e1e0-6890-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "NATGateway Packet Drop [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0", + "value": 0 + } + ], + "bar_color_rules": [ + { + "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "f444c0e0-688f-11ea-8b7d-fd9d15a13cd0", + "label": "Total Packets Drop", + "line_width": "2", + "metrics": [ + { + "field": "aws.natgateway.metrics.PacketsDropCount.sum", + "id": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", + "type": "sum" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "aws.dimensions.NatGatewayId", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "time_range_mode": "last_value", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "NATGateway Packet Drop [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9bf8e1e0-6890-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:32.666Z", + "version": "WzMzODMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9d284bc0-7b08-11ea-9bb4-e958b64b5685.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9d284bc0-7b08-11ea-9bb4-e958b64b5685.json new file mode 100644 index 000000000000..614010fff9ac --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9d284bc0-7b08-11ea-9bb4-e958b64b5685.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "DynamoDB Consumed Read Capacity Units [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "43e58670-7b05-11ea-8ef8-01625a2f68ac" + } + ], + "bar_color_rules": [ + { + "id": "3c733ea0-7b05-11ea-8ef8-01625a2f68ac" + } + ], + "drop_last_bucket": 1, + "gauge_color_rules": [ + { + "id": "499c62a0-7b05-11ea-8ef8-01625a2f68ac" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0.1", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Consumed Read Capacity Units", + "line_width": 1, + "metrics": [ + { + "field": "aws.dynamodb.metrics.ConsumedReadCapacityUnits.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "offset_time": "", + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "aws.dimensions.TableName", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "DynamoDB Consumed Read Capacity Units [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9d284bc0-7b08-11ea-9bb4-e958b64b5685", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:26.548Z", + "version": "WzMzMjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9e8c6030-f7f8-11e8-af03-c999c9dea608-ecs.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9e8c6030-f7f8-11e8-af03-c999c9dea608-ecs.json new file mode 100644 index 000000000000..5e31083f7658 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9e8c6030-f7f8-11e8-af03-c999c9dea608-ecs.json @@ -0,0 +1,83 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "EC2 Status Check Failed [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "d13f6b50-f7f6-11e8-bff8-21537b07dd44" + } + ], + "bar_color_rules": [ + { + "id": "ad6d62d0-f7f7-11e8-bff8-21537b07dd44" + } + ], + "gauge_color_rules": [ + { + "id": "b0c5b590-f7f7-11e8-bff8-21537b07dd44" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "EC2 Status Check Failed", + "line_width": 1, + "metrics": [ + { + "field": "aws.ec2.status.check_failed", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.id", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "AWS EC2 Status Check Failed", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9e8c6030-f7f8-11e8-af03-c999c9dea608-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:28.616Z", + "version": "WzMzNDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9f0425c0-7b0a-11ea-9bb4-e958b64b5685.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9f0425c0-7b0a-11ea-9bb4-e958b64b5685.json new file mode 100644 index 000000000000..f22245b6c9c9 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/9f0425c0-7b0a-11ea-9bb4-e958b64b5685.json @@ -0,0 +1,65 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "DynamoDB Throttle Requests [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0.1", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Throttled Requests", + "line_width": 1, + "metrics": [ + { + "field": "aws.dynamodb.metrics.ThrottledRequests.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.TableName", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "DynamoDB Throttle Requests [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9f0425c0-7b0a-11ea-9bb4-e958b64b5685", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:26.548Z", + "version": "WzMzMjksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/a5670a20-e65a-11ea-a838-3f4a45f85600.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/a5670a20-e65a-11ea-a838-3f4a45f85600.json new file mode 100644 index 000000000000..3e0c03f552d3 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/a5670a20-e65a-11ea-a838-3f4a45f85600.json @@ -0,0 +1,81 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Availability Zone Utilization [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "exclude": "NoAZ", + "field": "aws.billing.group_by.AZ", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": true, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Availability Zone Utilization [Metricbeat AWS]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a5670a20-e65a-11ea-a838-3f4a45f85600", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:25.535Z", + "version": "WzMzMTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/abdc7480-180b-11ea-8e91-03c7047cbb9d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/abdc7480-180b-11ea-8e91-03c7047cbb9d.json new file mode 100644 index 000000000000..017a8295cfa3 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/abdc7480-180b-11ea-8e91-03c7047cbb9d.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SNS SMS Success Rate [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "SMS Success Rate", + "line_width": 1, + "metrics": [ + { + "field": "aws.sns.metrics.SMSSuccessRate.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SNS SMS Success Rate [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "abdc7480-180b-11ea-8e91-03c7047cbb9d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:36.824Z", + "version": "WzM0NDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b00c4390-b7b8-11e9-8349-f15f850c5cd0.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b00c4390-b7b8-11e9-8349-f15f850c5cd0.json new file mode 100644 index 000000000000..3b8e5162d49d --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b00c4390-b7b8-11e9-8349-f15f850c5cd0.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "EBS Volume Read Bytes [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Volume Read Bytes", + "line_width": 1, + "metrics": [ + { + "field": "aws.ebs.metrics.VolumeReadBytes.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.VolumeId", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "EBS Volume Read Bytes [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b00c4390-b7b8-11e9-8349-f15f850c5cd0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:27.567Z", + "version": "WzMzMzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b0afd3e0-43b7-11e9-8697-530f39afc6eb.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b0afd3e0-43b7-11e9-8697-530f39afc6eb.json new file mode 100644 index 000000000000..8f6390c594c8 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b0afd3e0-43b7-11e9-8697-530f39afc6eb.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "SQS Filters [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "cloud.region", + "id": "1549397251041", + "indexPatternRefName": "control_0_index_pattern", + "label": "region", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "aws.sqs.queue.name", + "id": "1549512142947", + "indexPatternRefName": "control_1_index_pattern", + "label": "queue name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "AWS SQS Filters", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b0afd3e0-43b7-11e9-8697-530f39afc6eb", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:37.811Z", + "version": "WzM0NTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b2191dd0-734c-11e9-816b-07687310a99a.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b2191dd0-734c-11e9-816b-07687310a99a.json new file mode 100644 index 000000000000..d8330434f03d --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b2191dd0-734c-11e9-816b-07687310a99a.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Cloudwatch ELB Request Count Top5 [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "94f2ce40-734c-11e9-a683-47ca322fa6f9" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "ELB Request Count Top5", + "line_width": 1, + "metrics": [ + { + "field": "aws.elb.metrics.RequestCount", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.LoadBalancerName", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "AWS Cloudwatch ELB Request Count Top5", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b2191dd0-734c-11e9-816b-07687310a99a", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:33.734Z", + "version": "WzM0MDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b2ea15a0-b3c7-11e9-87a4-078dbbae220d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b2ea15a0-b3c7-11e9-87a4-078dbbae220d.json new file mode 100644 index 000000000000..140ecbe0b5c6 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b2ea15a0-b3c7-11e9-87a4-078dbbae220d.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ELB Latency in Seconds [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "7e66beb0-b3c6-11e9-af6e-ef22c5680226" + } + ], + "bar_color_rules": [ + { + "id": "7db91990-b3c6-11e9-af6e-ef22c5680226" + } + ], + "filter": "", + "gauge_color_rules": [ + { + "id": "7d0b9b80-b3c6-11e9-af6e-ef22c5680226" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "s,s,3", + "id": "35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971", + "label": "Latency in seconds", + "line_width": 2, + "metrics": [ + { + "field": "aws.elb.metrics.Latency.avg", + "id": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.LoadBalancerName", + "terms_order_by": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "ELB Latency in Seconds [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b2ea15a0-b3c7-11e9-87a4-078dbbae220d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:29.650Z", + "version": "WzMzNTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b36532e0-688e-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b36532e0-688e-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..7c1b60b0b2e1 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b36532e0-688e-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,82 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "NATGateway Bytes In From Destination [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "bar_color_rules": [ + { + "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.natgateway.metrics.BytesInFromDestination.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.NatGatewayId", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "time_range_mode": "last_value", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "NATGateway Bytes In From Destination [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b36532e0-688e-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:32.666Z", + "version": "WzMzODYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b403f7b0-7b15-11ea-9bb4-e958b64b5685.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b403f7b0-7b15-11ea-9bb4-e958b64b5685.json new file mode 100644 index 000000000000..6f63fce1dd5a --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b403f7b0-7b15-11ea-9bb4-e958b64b5685.json @@ -0,0 +1,65 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "DynamoDB Write Throttle Events [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0.1", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Write Throttle Events", + "line_width": 1, + "metrics": [ + { + "field": "aws.dynamodb.metrics.WriteThrottleEvents.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.TableName", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "DynamoDB Write Throttle Events [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b403f7b0-7b15-11ea-9bb4-e958b64b5685", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:26.548Z", + "version": "WzMzMzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b5308940-7347-11e9-816b-07687310a99a.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b5308940-7347-11e9-816b-07687310a99a.json new file mode 100644 index 000000000000..2394e2459d62 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b5308940-7347-11e9-816b-07687310a99a.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "AWS Region Filter [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "cloud.region", + "id": "1549397251041", + "indexPatternRefName": "control_0_index_pattern", + "label": "region name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "AWS Region Filter", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b5308940-7347-11e9-816b-07687310a99a", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:39.859Z", + "version": "WzM0NjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b7f8bf90-180f-11ea-8e91-03c7047cbb9d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b7f8bf90-180f-11ea-8e91-03c7047cbb9d.json new file mode 100644 index 000000000000..85554d276e20 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b7f8bf90-180f-11ea-8e91-03c7047cbb9d.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SNS SMS Month To Date Spent USD [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "s,s,3", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "SMS Month To Date Spent USD", + "line_width": 1, + "metrics": [ + { + "field": "aws.sns.metrics.SMSMonthToDateSpentUSD.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SNS SMS Month To Date Spent USD [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b7f8bf90-180f-11ea-8e91-03c7047cbb9d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:36.824Z", + "version": "WzM0NDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b9703dd0-b3c9-11e9-87a4-078dbbae220d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b9703dd0-b3c9-11e9-87a4-078dbbae220d.json new file mode 100644 index 000000000000..8351816865dd --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/b9703dd0-b3c9-11e9-87a4-078dbbae220d.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ELB HTTP 5XX Errors [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "7e66beb0-b3c6-11e9-af6e-ef22c5680226" + } + ], + "bar_color_rules": [ + { + "id": "7db91990-b3c6-11e9-af6e-ef22c5680226" + } + ], + "filter": "", + "gauge_color_rules": [ + { + "id": "7d0b9b80-b3c6-11e9-af6e-ef22c5680226" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "number", + "id": "35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971", + "label": "HTTP 5XX Errors", + "line_width": 2, + "metrics": [ + { + "field": "aws.elb.metrics.HTTPCode_ELB_5XX.sum", + "id": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.LoadBalancerName", + "terms_order_by": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "ELB HTTP 5XX Errors [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b9703dd0-b3c9-11e9-87a4-078dbbae220d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:29.650Z", + "version": "WzMzNTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bb3a6cd0-b7b6-11e9-8349-f15f850c5cd0.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bb3a6cd0-b7b6-11e9-8349-f15f850c5cd0.json new file mode 100644 index 000000000000..676bfa644c8e --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bb3a6cd0-b7b6-11e9-8349-f15f850c5cd0.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "EBS Volume Read Ops [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Number of Read Operation", + "line_width": 1, + "metrics": [ + { + "field": "aws.ebs.metrics.VolumeReadOps.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.VolumeId", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "EBS Volume Read Ops [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bb3a6cd0-b7b6-11e9-8349-f15f850c5cd0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:27.567Z", + "version": "WzMzMzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bb82c4d0-6c25-11e9-81bc-7f4cd8b3d892.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bb82c4d0-6c25-11e9-81bc-7f4cd8b3d892.json new file mode 100644 index 000000000000..199042602d18 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bb82c4d0-6c25-11e9-81bc-7f4cd8b3d892.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SQS Empty Receives [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "d95adba0-6b8a-11e9-98b0-9b2c3d14a4c1" + } + ], + "bar_color_rules": [ + { + "id": "a7e8c370-6c25-11e9-9cd1-3bdb0c7db024" + } + ], + "drop_last_bucket": 0, + "gauge_color_rules": [ + { + "id": "a778eaa0-6c25-11e9-9cd1-3bdb0c7db024" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "field": "aws.sqs.empty_receives", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "numerator": "", + "percentiles": [ + { + "id": "74323cf0-6c25-11e9-9cd1-3bdb0c7db024", + "mode": "line", + "shade": 0.2, + "value": 50 + } + ], + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.sqs.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "SQS Empty Receives [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bb82c4d0-6c25-11e9-81bc-7f4cd8b3d892", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:37.811Z", + "version": "WzM0NTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bc5dcc90-688e-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bc5dcc90-688e-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..260f5b1024d1 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bc5dcc90-688e-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,82 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "NATGateway Bytes In From Source [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "bar_color_rules": [ + { + "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.natgateway.metrics.BytesInFromSource.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.NatGatewayId", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "time_range_mode": "last_value", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "NATGateway Bytes In From Source [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bc5dcc90-688e-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:32.666Z", + "version": "WzMzODcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bc8bd8f0-31fd-11ea-bcbf-59cb7eefc1f0.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bc8bd8f0-31fd-11ea-bcbf-59cb7eefc1f0.json new file mode 100644 index 000000000000..392747d282c0 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bc8bd8f0-31fd-11ea-bcbf-59cb7eefc1f0.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Region/Account Filters [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "cloud.region", + "id": "1549397251041", + "indexPatternRefName": "control_0_index_pattern", + "label": "region", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "cloud.account.name", + "id": "1549512126406", + "indexPatternRefName": "control_1_index_pattern", + "label": "account name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "Region/Account Filters [Metricbeat AWS]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bc8bd8f0-31fd-11ea-bcbf-59cb7eefc1f0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:26.548Z", + "version": "WzMzMjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bdb8ddd0-6890-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bdb8ddd0-6890-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..cf8b62db1692 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bdb8ddd0-6890-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "NATGateway Packet In From Destination [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0", + "value": 0 + } + ], + "bar_color_rules": [ + { + "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "f444c0e0-688f-11ea-8b7d-fd9d15a13cd0", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.natgateway.metrics.PacketsInFromDestination.sum", + "id": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.NatGatewayId", + "terms_order_by": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "time_range_mode": "last_value", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "NATGateway Packet In From Destination [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bdb8ddd0-6890-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:32.666Z", + "version": "WzMzOTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/be6c4180-41e6-11e9-b7a0-c99d9d127b61.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/be6c4180-41e6-11e9-b7a0-c99d9d127b61.json new file mode 100644 index 000000000000..80248aa4d4a5 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/be6c4180-41e6-11e9-b7a0-c99d9d127b61.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SQS Messages Deleted [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "field": "aws.sqs.messages.deleted", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.sqs.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SQS Messages Deleted [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "be6c4180-41e6-11e9-b7a0-c99d9d127b61", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:37.811Z", + "version": "WzM0NDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/be8828d0-f7f6-11e8-af03-c999c9dea608-ecs.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/be8828d0-f7f6-11e8-af03-c999c9dea608-ecs.json new file mode 100644 index 000000000000..9f36cb956cde --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/be8828d0-f7f6-11e8-af03-c999c9dea608-ecs.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "EC2 CPU Utilization [Metricbeat AWS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [], + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "23428b30-f7f2-11e8-bff8-21537b07dd44" + } + ], + "bar_color_rules": [ + { + "id": "2592bcc0-f7f2-11e8-bff8-21537b07dd44" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": "", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "AWS EC2 CPU Utilization ECS", + "line_width": 1, + "metrics": [ + { + "field": "aws.ec2.cpu.total.pct", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "series_drop_last_bucket": 1, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "cloud.instance.id", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "AWS EC2 CPU Utilization ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "be8828d0-f7f6-11e8-af03-c999c9dea608-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:33.734Z", + "version": "WzMzOTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bf81e030-180e-11ea-8e91-03c7047cbb9d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bf81e030-180e-11ea-8e91-03c7047cbb9d.json new file mode 100644 index 000000000000..0450a14d3b97 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/bf81e030-180e-11ea-8e91-03c7047cbb9d.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SNS Notifications Filtered Out [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "s,s,3", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Notifications Filtered Out", + "line_width": 1, + "metrics": [ + { + "field": "aws.sns.metrics.NumberOfNotificationsFilteredOut.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SNS Notifications Filtered Out [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bf81e030-180e-11ea-8e91-03c7047cbb9d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:36.824Z", + "version": "WzM0MzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c0e32d50-b7b8-11e9-8349-f15f850c5cd0.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c0e32d50-b7b8-11e9-8349-f15f850c5cd0.json new file mode 100644 index 000000000000..c0a035d5f090 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c0e32d50-b7b8-11e9-8349-f15f850c5cd0.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "EBS Volume Write Bytes [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Volume Write Bytes", + "line_width": 1, + "metrics": [ + { + "field": "aws.ebs.metrics.VolumeWriteBytes.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.VolumeId", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "EBS Volume Write Bytes [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c0e32d50-b7b8-11e9-8349-f15f850c5cd0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:27.567Z", + "version": "WzMzMzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c186b610-688d-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c186b610-688d-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..c6a39b799001 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c186b610-688d-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "NATGateway Active Connection Count Top10 [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "bar_color_rules": [ + { + "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "drop_last_bucket": 0, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "3", + "metrics": [ + { + "field": "aws.natgateway.metrics.ActiveConnectionCount.max", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.NatGatewayId", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "time_range_mode": "last_value", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "NATGateway Active Connection Count Top10 [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c186b610-688d-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:32.666Z", + "version": "WzMzODUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c1db9b80-694b-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c1db9b80-694b-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..8afc6dc63b00 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c1db9b80-694b-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Transit Gateway Packets Drop Count Blackhole [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.transitgateway.metrics.PacketDropCountBlackhole.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.TransitGateway", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Transit Gateway Packets Drop Count Blackhole [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c1db9b80-694b-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:38.811Z", + "version": "WzM0NjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c7d6cf90-688e-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c7d6cf90-688e-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..d8099aff3d90 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c7d6cf90-688e-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,82 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "NATGateway Bytes Out To Source [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "bar_color_rules": [ + { + "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.natgateway.metrics.BytesOutToSource.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.NatGatewayId", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "time_range_mode": "last_value", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "NATGateway Bytes Out To Source [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c7d6cf90-688e-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:32.666Z", + "version": "WzMzODksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c84ed3d0-6890-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c84ed3d0-6890-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..a331b0331fd9 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/c84ed3d0-6890-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "NATGateway Packet In From Source [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0", + "value": 0 + } + ], + "bar_color_rules": [ + { + "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "f444c0e0-688f-11ea-8b7d-fd9d15a13cd0", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.natgateway.metrics.PacketsInFromSource.sum", + "id": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.NatGatewayId", + "terms_order_by": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "time_range_mode": "last_value", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "NATGateway Packet In From Source [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c84ed3d0-6890-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:32.666Z", + "version": "WzMzOTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/cd6419c0-6949-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/cd6419c0-6949-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..e3c480d3ebbd --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/cd6419c0-6949-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Transit Gateway Bytes In [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.transitgateway.metrics.BytesIn.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.TransitGateway", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Transit Gateway Bytes In [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "cd6419c0-6949-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:38.811Z", + "version": "WzM0NTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/ce7445c0-688f-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/ce7445c0-688f-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..9fb1abb10ab7 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/ce7445c0-688f-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "NATGateway Error Port Allocation [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0", + "value": 0 + } + ], + "bar_color_rules": [ + { + "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Total Error of Port Allocation", + "line_width": "2", + "metrics": [ + { + "field": "aws.natgateway.metrics.ErrorPortAllocation.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "aws.dimensions.NatGatewayId", + "terms_order_by": "_count", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "time_range_mode": "last_value", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "NATGateway Error Port Allocation [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ce7445c0-688f-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:32.666Z", + "version": "WzMzODIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d045d120-b7b9-11e9-8349-f15f850c5cd0.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d045d120-b7b9-11e9-8349-f15f850c5cd0.json new file mode 100644 index 000000000000..7e2236559890 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d045d120-b7b9-11e9-8349-f15f850c5cd0.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "EBS Volume ID Filter [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "aws.dimensions.VolumeId", + "id": "1565034367477", + "indexPatternRefName": "control_0_index_pattern", + "label": "volume id", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": true + }, + "title": "EBS Volume ID Filter [Metricbeat AWS]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d045d120-b7b9-11e9-8349-f15f850c5cd0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:27.567Z", + "version": "WzMzNDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d186fd50-4763-11e9-8062-c98a86cb6f94.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d186fd50-4763-11e9-8062-c98a86cb6f94.json new file mode 100644 index 000000000000..fbe4c6dba563 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d186fd50-4763-11e9-8062-c98a86cb6f94.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "S3 Total Requests [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "c03c4320-4763-11e9-b811-fd5d24a641d7" + } + ], + "bar_color_rules": [ + { + "id": "c7b9fca0-4763-11e9-b811-fd5d24a641d7" + } + ], + "drop_last_bucket": 0, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "field": "aws.s3_request.requests.total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "offset_time": "", + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.s3.bucket.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "S3 Total Requests [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d186fd50-4763-11e9-8062-c98a86cb6f94", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:35.750Z", + "version": "WzM0MzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d19a71b0-180e-11ea-8e91-03c7047cbb9d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d19a71b0-180e-11ea-8e91-03c7047cbb9d.json new file mode 100644 index 000000000000..3c1963470329 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d19a71b0-180e-11ea-8e91-03c7047cbb9d.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SNS Notifications Filtered Out Invalid Attributes [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "s,s,3", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Notifications Filtered Out Invalid Attributes", + "line_width": 1, + "metrics": [ + { + "field": "aws.sns.metrics.NumberOfNotificationsFilteredOut-InvalidAttributes.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SNS Notifications Filtered Out Invalid Attributes [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d19a71b0-180e-11ea-8e91-03c7047cbb9d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:36.824Z", + "version": "WzM0MzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d2f46190-830f-11e9-ac83-47df3568ff90.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d2f46190-830f-11e9-ac83-47df3568ff90.json new file mode 100644 index 000000000000..457be81b31d1 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d2f46190-830f-11e9-ac83-47df3568ff90.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Cloudwatch ECS Memory Available [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "bb21d180-830d-11e9-9c4c-391fa0a2e15f" + } + ], + "filter": "", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "lucene", + "query": "(aws.cloudwatch.namespace:\"AWS/ECS\") AND (_exists_: aws.ecs.metrics.MemoryReservation) AND (_exists_: aws.ecs.metrics.MemoryUtilization)" + }, + "formatter": "percent", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "aws.ecs.metrics.MemoryUtilization", + "id": "17f8ddf0-830d-11e9-9f3d-ed346f48a007", + "type": "sum" + }, + { + "field": "aws.ecs.metrics.MemoryReservation", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + }, + { + "id": "68a93050-830e-11e9-9c4c-391fa0a2e15f", + "script": "(params.res - params.util) / 100", + "type": "math", + "variables": [ + { + "field": "17f8ddf0-830d-11e9-9f3d-ed346f48a007", + "id": "6f338920-830e-11e9-9c4c-391fa0a2e15f", + "name": "util" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "7ab9f9a0-830e-11e9-9c4c-391fa0a2e15f", + "name": "res" + } + ] + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.ClusterName", + "terms_order_by": "_key", + "terms_size": "5", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "AWS Cloudwatch ECS Memory Available", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d2f46190-830f-11e9-ac83-47df3568ff90", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:33.734Z", + "version": "WzM0MDksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d560de70-b3c7-11e9-87a4-078dbbae220d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d560de70-b3c7-11e9-87a4-078dbbae220d.json new file mode 100644 index 000000000000..89a21de34f0c --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/d560de70-b3c7-11e9-87a4-078dbbae220d.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ELB Request Count [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "7e66beb0-b3c6-11e9-af6e-ef22c5680226" + } + ], + "bar_color_rules": [ + { + "id": "7db91990-b3c6-11e9-af6e-ef22c5680226" + } + ], + "filter": "", + "gauge_color_rules": [ + { + "id": "7d0b9b80-b3c6-11e9-af6e-ef22c5680226" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "35d3cbc0-b3c6-11e9-bf3f-29d51aa3d971", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "number", + "id": "35d3cbc1-b3c6-11e9-bf3f-29d51aa3d971", + "label": "Request Count", + "line_width": 2, + "metrics": [ + { + "field": "aws.elb.metrics.RequestCount.sum", + "id": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.LoadBalancerName", + "terms_order_by": "35d3cbc2-b3c6-11e9-bf3f-29d51aa3d971", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "ELB Request Count [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d560de70-b3c7-11e9-87a4-078dbbae220d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:29.650Z", + "version": "WzMzNTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/dc5f65b0-6949-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/dc5f65b0-6949-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..6b4a8127c32c --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/dc5f65b0-6949-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Transit Gateway Bytes Out [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.transitgateway.metrics.BytesOut.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.TransitGateway", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Transit Gateway Bytes Out [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dc5f65b0-6949-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:38.811Z", + "version": "WzM0NTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/dcd31cd0-41e5-11e9-b7a0-c99d9d127b61.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/dcd31cd0-41e5-11e9-b7a0-c99d9d127b61.json new file mode 100644 index 000000000000..9eb689605757 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/dcd31cd0-41e5-11e9-b7a0-c99d9d127b61.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SQS Messages Delayed [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "field": "aws.sqs.messages.delayed", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.sqs.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SQS Messages Delayed [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dcd31cd0-41e5-11e9-b7a0-c99d9d127b61", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:37.811Z", + "version": "WzM0NDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/dd2f2a10-41e6-11e9-b7a0-c99d9d127b61.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/dd2f2a10-41e6-11e9-b7a0-c99d9d127b61.json new file mode 100644 index 000000000000..11060d01be39 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/dd2f2a10-41e6-11e9-b7a0-c99d9d127b61.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SQS Messages Sent [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "d95adba0-6b8a-11e9-98b0-9b2c3d14a4c1" + } + ], + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "line_width": 1, + "metrics": [ + { + "field": "aws.sqs.messages.sent", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.sqs.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SQS Messages Sent [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dd2f2a10-41e6-11e9-b7a0-c99d9d127b61", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:37.811Z", + "version": "WzM0NDksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/deab0260-2981-11e9-86eb-a3a07a77f530.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/deab0260-2981-11e9-86eb-a3a07a77f530.json new file mode 100644 index 000000000000..34c0dc22b01b --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/deab0260-2981-11e9-86eb-a3a07a77f530.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "AWS Account Filter [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "cloud.account.name", + "id": "1549397251041", + "indexPatternRefName": "control_0_index_pattern", + "label": "account name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "AWS Account Filter [Metricbeat AWS]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "deab0260-2981-11e9-86eb-a3a07a77f530", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:39.859Z", + "version": "WzM0NjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/dffa19e0-180e-11ea-8e91-03c7047cbb9d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/dffa19e0-180e-11ea-8e91-03c7047cbb9d.json new file mode 100644 index 000000000000..8b4c7b2cf831 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/dffa19e0-180e-11ea-8e91-03c7047cbb9d.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SNS Notifications Filtered Out No Message Attributes [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "s,s,3", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Notifications Filtered Out No Message Attributes", + "line_width": 1, + "metrics": [ + { + "field": "aws.sns.metrics.NumberOfNotificationsFilteredOut-NoMessageAttributes.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SNS Notifications Filtered Out No Message Attributes [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dffa19e0-180e-11ea-8e91-03c7047cbb9d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:36.824Z", + "version": "WzM0MzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/e0e65e60-688e-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/e0e65e60-688e-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..8d31139c31aa --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/e0e65e60-688e-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,82 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "NATGateway Bytes Out To Destination [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "bar_color_rules": [ + { + "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.natgateway.metrics.BytesOutToDestination.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.NatGatewayId", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "time_range_mode": "last_value", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "NATGateway Bytes Out To Destination [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e0e65e60-688e-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:32.666Z", + "version": "WzMzODgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/ea9e3d40-693a-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/ea9e3d40-693a-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..108f812f6ce4 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/ea9e3d40-693a-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VPN Tunnel Data In [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.vpn.metrics.TunnelDataIn.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.TunnelIpAddress", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VPN Tunnel Data In [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ea9e3d40-693a-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:40.825Z", + "version": "WzM0NzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f1db6ec0-f7f8-11e8-af03-c999c9dea608-ecs.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f1db6ec0-f7f8-11e8-af03-c999c9dea608-ecs.json new file mode 100644 index 000000000000..9de20a8d0dbe --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f1db6ec0-f7f8-11e8-af03-c999c9dea608-ecs.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "EC2 DiskIO Read Bytes [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [], + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "23428b30-f7f2-11e8-bff8-21537b07dd44" + } + ], + "bar_color_rules": [ + { + "id": "2592bcc0-f7f2-11e8-bff8-21537b07dd44" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "AWS EC2 DiskIO Read Bytes", + "line_width": "2", + "metrics": [ + { + "field": "aws.ec2.diskio.read.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "series_drop_last_bucket": 1, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "cloud.instance.id", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "10" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "EC2 DiskIO Read Bytes [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f1db6ec0-f7f8-11e8-af03-c999c9dea608-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:28.616Z", + "version": "WzMzNDksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f58f99b0-693a-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f58f99b0-693a-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..f2cf820c85c3 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f58f99b0-693a-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VPN Tunnel Data Out [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.vpn.metrics.TunnelDataOut.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.TunnelIpAddress", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VPN Tunnel Data Out [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f58f99b0-693a-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:40.825Z", + "version": "WzM0NzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f6831f30-b7b6-11e9-8349-f15f850c5cd0.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f6831f30-b7b6-11e9-8349-f15f850c5cd0.json new file mode 100644 index 000000000000..8e0af380979d --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f6831f30-b7b6-11e9-8349-f15f850c5cd0.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "EBS Volume Write Ops [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Number of Write Operation", + "line_width": 1, + "metrics": [ + { + "field": "aws.ebs.metrics.VolumeWriteOps.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.VolumeId", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "EBS Volume Write Ops [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f6831f30-b7b6-11e9-8349-f15f850c5cd0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:27.567Z", + "version": "WzMzMzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f74eb760-41e8-11e9-b7a0-c99d9d127b61.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f74eb760-41e8-11e9-b7a0-c99d9d127b61.json new file mode 100644 index 000000000000..f0df5381a8f2 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f74eb760-41e8-11e9-b7a0-c99d9d127b61.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SQS Messages Visible [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "d5b83c70-41e8-11e9-9e94-11d4d21d3f4b" + } + ], + "bar_color_rules": [ + { + "id": "d2d14920-41e8-11e9-9e94-11d4d21d3f4b" + } + ], + "drop_last_bucket": 0, + "gauge_color_rules": [ + { + "id": "d2163680-41e8-11e9-9e94-11d4d21d3f4b" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "SQS Message Visible", + "line_width": 1, + "metrics": [ + { + "field": "aws.sqs.messages.visible", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.sqs.queue.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "SQS Messages Visible [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f74eb760-41e8-11e9-b7a0-c99d9d127b61", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:37.811Z", + "version": "WzM0NDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f7c17000-6949-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f7c17000-6949-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..6e30b09cf6f4 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/f7c17000-6949-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Transit Gateway Bytes Drop Count Blackhole [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.transitgateway.metrics.BytesDropCountBlackhole.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.TransitGateway", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Transit Gateway Bytes Drop Count Blackhole [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f7c17000-6949-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:38.811Z", + "version": "WzM0NjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fc0869c0-180e-11ea-8e91-03c7047cbb9d.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fc0869c0-180e-11ea-8e91-03c7047cbb9d.json new file mode 100644 index 000000000000..701af072b3aa --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fc0869c0-180e-11ea-8e91-03c7047cbb9d.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SNS Notifications Redriven To DLQ [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "s,s,3", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Notifications Redriven To DLQ", + "line_width": 1, + "metrics": [ + { + "field": "aws.sns.metrics.NumberOfNotificationsRedrivenToDlq.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SNS Notifications Redriven To DLQ [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fc0869c0-180e-11ea-8e91-03c7047cbb9d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:36.824Z", + "version": "WzM0NDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fcfc8d80-693e-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fcfc8d80-693e-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..d7c9d01e859a --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fcfc8d80-693e-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,119 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "VPN Filters [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "cloud.account.name", + "id": "1565034367477", + "indexPatternRefName": "control_0_index_pattern", + "label": "account name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "cloud.region", + "id": "1584478324642", + "indexPatternRefName": "control_1_index_pattern", + "label": "region", + "options": { + "dynamicOptions": false, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "aws.dimensions.VpnId", + "id": "1584552913938", + "indexPatternRefName": "control_2_index_pattern", + "label": "VPN ID", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "aws.dimensions.TunnelIpAddress", + "id": "1584552958445", + "indexPatternRefName": "control_3_index_pattern", + "label": "Tunnel IP", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": true + }, + "title": "VPN Filters [Metricbeat AWS]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fcfc8d80-693e-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_3_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:40.825Z", + "version": "WzM0NzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fd915180-6890-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fd915180-6890-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..fc5e01c3a7d4 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fd915180-6890-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "NATGateway Packet Out To Source [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "688b0480-688d-11ea-8b7d-fd9d15a13cd0", + "value": 0 + } + ], + "bar_color_rules": [ + { + "id": "6b6b1a00-688d-11ea-8b7d-fd9d15a13cd0" + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "f444c0e0-688f-11ea-8b7d-fd9d15a13cd0", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "aws.natgateway.metrics.PacketsOutToSource.sum", + "id": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.NatGatewayId", + "terms_order_by": "f444c0e1-688f-11ea-8b7d-fd9d15a13cd0", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "time_range_mode": "last_value", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "NATGateway Packet Out To Source [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fd915180-6890-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:32.666Z", + "version": "WzMzOTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fe0581b0-b7b8-11e9-8349-f15f850c5cd0.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fe0581b0-b7b8-11e9-8349-f15f850c5cd0.json new file mode 100644 index 000000000000..e0ca4e5994cc --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fe0581b0-b7b8-11e9-8349-f15f850c5cd0.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "EBS Volume Queue Length [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Volume Queue Length", + "line_width": 1, + "metrics": [ + { + "field": "aws.ebs.metrics.VolumeQueueLength.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "aws.dimensions.VolumeId", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "EBS Volume Queue Length [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fe0581b0-b7b8-11e9-8349-f15f850c5cd0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:27.567Z", + "version": "WzMzMzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fed59380-f7f8-11e8-af03-c999c9dea608-ecs.json b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fed59380-f7f8-11e8-af03-c999c9dea608-ecs.json new file mode 100644 index 000000000000..b328eaae2bb9 --- /dev/null +++ b/x-pack/metricbeat/module/aws/_meta/kibana/7/visualization/fed59380-f7f8-11e8-af03-c999c9dea608-ecs.json @@ -0,0 +1,81 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "EC2 DiskIO Write Bytes [Metricbeat AWS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [], + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "23428b30-f7f2-11e8-bff8-21537b07dd44" + } + ], + "bar_color_rules": [ + { + "id": "2592bcc0-f7f2-11e8-bff8-21537b07dd44" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": "", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "AWS EC2 DiskIO Write Bytes", + "line_width": "2", + "metrics": [ + { + "field": "aws.ec2.diskio.write.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "series_drop_last_bucket": 1, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "cloud.instance.id", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "terms_size": "10" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "EC2 DiskIO Write Bytes [Metricbeat AWS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fed59380-f7f8-11e8-af03-c999c9dea608-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:28.616Z", + "version": "WzMzNDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/dashboard/20dc7c50-2e89-11eb-991c-c5fd3b7f5a63.json b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/dashboard/20dc7c50-2e89-11eb-991c-c5fd3b7f5a63.json new file mode 100644 index 000000000000..8ec055a8d0d5 --- /dev/null +++ b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/dashboard/20dc7c50-2e89-11eb-991c-c5fd3b7f5a63.json @@ -0,0 +1,218 @@ +{ + "attributes": { + "description": "Overview of AWS Fargate Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 14, + "i": "2429ae11-ccb3-4016-b18d-c88140e29f67", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "2429ae11-ccb3-4016-b18d-c88140e29f67", + "panelRefName": "panel_2429ae11-ccb3-4016-b18d-c88140e29f67", + "title": "ECS Task Filter", + "type": "visualization", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 14, + "i": "735a25cb-f781-4a8b-99e6-2adf582f8a37", + "w": 39, + "x": 9, + "y": 0 + }, + "panelIndex": "735a25cb-f781-4a8b-99e6-2adf582f8a37", + "panelRefName": "panel_735a25cb-f781-4a8b-99e6-2adf582f8a37", + "title": "Containers", + "type": "lens", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "5d4537e8-9aee-47e6-8580-1961d8a3a38e", + "w": 24, + "x": 0, + "y": 14 + }, + "panelIndex": "5d4537e8-9aee-47e6-8580-1961d8a3a38e", + "panelRefName": "panel_5d4537e8-9aee-47e6-8580-1961d8a3a38e", + "title": "Total Number of Containers", + "type": "lens", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "d3c9208e-c699-4514-a091-a731d28ab9af", + "w": 24, + "x": 24, + "y": 14 + }, + "panelIndex": "d3c9208e-c699-4514-a091-a731d28ab9af", + "panelRefName": "panel_d3c9208e-c699-4514-a091-a731d28ab9af", + "title": "CPU Utilization Per Cluster", + "type": "lens", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "9dd2b002-5170-49ea-afc2-30b0b46b0fd7", + "w": 24, + "x": 0, + "y": 29 + }, + "panelIndex": "9dd2b002-5170-49ea-afc2-30b0b46b0fd7", + "panelRefName": "panel_9dd2b002-5170-49ea-afc2-30b0b46b0fd7", + "title": "Container Memory Usage Pct", + "type": "lens", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "89b0cd8b-13d9-4a43-8f93-3410aff125c3", + "w": 24, + "x": 24, + "y": 44 + }, + "panelIndex": "89b0cd8b-13d9-4a43-8f93-3410aff125c3", + "panelRefName": "panel_89b0cd8b-13d9-4a43-8f93-3410aff125c3", + "title": "DiskIO Write", + "type": "lens", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "d7a6623a-14cf-411c-ab73-ded3734a359b", + "w": 24, + "x": 0, + "y": 44 + }, + "panelIndex": "d7a6623a-14cf-411c-ab73-ded3734a359b", + "panelRefName": "panel_d7a6623a-14cf-411c-ab73-ded3734a359b", + "title": "DiskIO Read", + "type": "lens", + "version": "7.10.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "a7a6e425-98fd-4210-b3d5-005268be6274", + "w": 24, + "x": 24, + "y": 29 + }, + "panelIndex": "a7a6e425-98fd-4210-b3d5-005268be6274", + "panelRefName": "panel_a7a6e425-98fd-4210-b3d5-005268be6274", + "title": "Container CPU Total Norm Pct", + "type": "lens", + "version": "7.10.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat AWSFargate] Fargate Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "20dc7c50-2e89-11eb-991c-c5fd3b7f5a63", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "38eee240-2e90-11eb-a417-f961313c14f6", + "name": "2429ae11-ccb3-4016-b18d-c88140e29f67:panel_2429ae11-ccb3-4016-b18d-c88140e29f67", + "type": "visualization" + }, + { + "id": "8cf592f0-2e8e-11eb-a417-f961313c14f6", + "name": "735a25cb-f781-4a8b-99e6-2adf582f8a37:panel_735a25cb-f781-4a8b-99e6-2adf582f8a37", + "type": "lens" + }, + { + "id": "86720980-3966-11eb-a417-f961313c14f6", + "name": "5d4537e8-9aee-47e6-8580-1961d8a3a38e:panel_5d4537e8-9aee-47e6-8580-1961d8a3a38e", + "type": "lens" + }, + { + "id": "b1837e70-396f-11eb-a417-f961313c14f6", + "name": "d3c9208e-c699-4514-a091-a731d28ab9af:panel_d3c9208e-c699-4514-a091-a731d28ab9af", + "type": "lens" + }, + { + "id": "d3f3aa80-2e8d-11eb-a417-f961313c14f6", + "name": "9dd2b002-5170-49ea-afc2-30b0b46b0fd7:panel_9dd2b002-5170-49ea-afc2-30b0b46b0fd7", + "type": "lens" + }, + { + "id": "c3952840-2e91-11eb-a417-f961313c14f6", + "name": "89b0cd8b-13d9-4a43-8f93-3410aff125c3:panel_89b0cd8b-13d9-4a43-8f93-3410aff125c3", + "type": "lens" + }, + { + "id": "a7970500-2e91-11eb-a417-f961313c14f6", + "name": "d7a6623a-14cf-411c-ab73-ded3734a359b:panel_d7a6623a-14cf-411c-ab73-ded3734a359b", + "type": "lens" + }, + { + "id": "60941700-2e88-11eb-991c-c5fd3b7f5a63", + "name": "a7a6e425-98fd-4210-b3d5-005268be6274:panel_a7a6e425-98fd-4210-b3d5-005268be6274", + "type": "lens" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:41.879Z", + "version": "WzM0NzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/dashboard/Metricbeat-awsfargate-overview.ndjson b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/dashboard/Metricbeat-awsfargate-overview.ndjson deleted file mode 100644 index bef11f74f72b..000000000000 --- a/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/dashboard/Metricbeat-awsfargate-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"ECS Task Filter [Metricbeat AWSFargate]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1607442436907\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Region Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"awsfargate.task_stats.cluster_name\",\"id\":\"1607442399749\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Cluster Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"container.labels.com_amazonaws_ecs_task-definition-family\",\"id\":\"1606248025028\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Task Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"ECS Task Filter [Metricbeat AWSFargate]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"38eee240-2e90-11eb-a417-f961313c14f6","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0NzksMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"e350c9e6-e6b7-40f1-83ed-94a38ed9467a":{"columnOrder":["040803fd-23f9-4f4f-95da-e8be99becbc1","eb452b61-bf12-46c0-afae-c0f1c776156c","b1e08425-6a1e-4db6-bb47-a65167b7e14f","09de0d9e-c174-46cf-bdc8-50158475b4a7","e0782143-0636-43b4-8fac-b857ea5282b2","7626706b-6efa-4fe7-b45c-6e9afa07f982","441ceb32-53e7-4408-9638-6dfd38202144"],"columns":{"040803fd-23f9-4f4f-95da-e8be99becbc1":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Task Name","operationType":"terms","params":{"orderBy":{"type":"alphabetical"},"orderDirection":"asc","size":20},"scale":"ordinal","sourceField":"container.labels.com_amazonaws_ecs_task-definition-family"},"09de0d9e-c174-46cf-bdc8-50158475b4a7":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"CPU","operationType":"average","params":{"format":{"id":"percent","params":{"decimals":3}}},"scale":"ratio","sourceField":"awsfargate.task_stats.cpu.total.norm.pct"},"441ceb32-53e7-4408-9638-6dfd38202144":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Memory","operationType":"average","params":{"format":{"id":"percent","params":{"decimals":3}}},"scale":"ratio","sourceField":"awsfargate.task_stats.memory.usage.pct"},"7626706b-6efa-4fe7-b45c-6e9afa07f982":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Memory Usage","operationType":"average","params":{"format":{"id":"bytes","params":{"decimals":2}}},"scale":"ratio","sourceField":"awsfargate.task_stats.memory.usage.total"},"b1e08425-6a1e-4db6-bb47-a65167b7e14f":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"ECS Cluster ARN","operationType":"terms","params":{"orderBy":{"type":"alphabetical"},"orderDirection":"asc","size":20},"scale":"ordinal","sourceField":"container.labels.com_amazonaws_ecs_cluster"},"e0782143-0636-43b4-8fac-b857ea5282b2":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"DiskIO","operationType":"average","scale":"ratio","sourceField":"awsfargate.task_stats.diskio.total"},"eb452b61-bf12-46c0-afae-c0f1c776156c":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Container Name","operationType":"terms","params":{"orderBy":{"type":"alphabetical"},"orderDirection":"asc","size":20},"scale":"ordinal","sourceField":"container.name"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"columns":[{"columnId":"eb452b61-bf12-46c0-afae-c0f1c776156c"},{"columnId":"040803fd-23f9-4f4f-95da-e8be99becbc1"},{"columnId":"b1e08425-6a1e-4db6-bb47-a65167b7e14f"},{"columnId":"09de0d9e-c174-46cf-bdc8-50158475b4a7"},{"columnId":"e0782143-0636-43b4-8fac-b857ea5282b2"},{"columnId":"7626706b-6efa-4fe7-b45c-6e9afa07f982"},{"columnId":"441ceb32-53e7-4408-9638-6dfd38202144"}],"layerId":"e350c9e6-e6b7-40f1-83ed-94a38ed9467a"}},"title":"Container Table [Metricbeat AWSFargate]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"8cf592f0-2e8e-11eb-a417-f961313c14f6","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-e350c9e6-e6b7-40f1-83ed-94a38ed9467a","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0ODAsMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"450490b7-c7f9-42bf-8e7d-227cbf960e94":{"columnOrder":["b20aebaf-7126-4b1c-acca-79cfa113b44d","915eda3d-00ce-40d0-ada8-4eb372202b42"],"columns":{"915eda3d-00ce-40d0-ada8-4eb372202b42":{"dataType":"number","isBucketed":false,"label":"Unique count of container.id","operationType":"unique_count","scale":"ratio","sourceField":"container.id"},"b20aebaf-7126-4b1c-acca-79cfa113b44d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["915eda3d-00ce-40d0-ada8-4eb372202b42"],"layerId":"450490b7-c7f9-42bf-8e7d-227cbf960e94","position":"top","seriesType":"bar_stacked","showGridlines":false,"xAccessor":"b20aebaf-7126-4b1c-acca-79cfa113b44d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar_stacked","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true}}},"title":"Total Number of Containers [Metricbeat AWSFargate]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"86720980-3966-11eb-a417-f961313c14f6","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-450490b7-c7f9-42bf-8e7d-227cbf960e94","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0ODEsMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"82f43ff6-6ac1-4f73-b532-61b6b9fe15b0":{"columnOrder":["e139ccbc-54ff-4921-b345-e3c3ff6a9efc","d7b9836e-d606-4aab-b2d8-44cbc726a950"],"columns":{"d7b9836e-d606-4aab-b2d8-44cbc726a950":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"CPU Utilization","operationType":"average","params":{"format":{"id":"percent","params":{"decimals":2}}},"scale":"ratio","sourceField":"awsfargate.task_stats.cpu.total.norm.pct"},"e139ccbc-54ff-4921-b345-e3c3ff6a9efc":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Cluster Name","operationType":"terms","params":{"orderBy":{"columnId":"d7b9836e-d606-4aab-b2d8-44cbc726a950","type":"column"},"orderDirection":"desc","size":20},"scale":"ordinal","sourceField":"awsfargate.task_stats.cluster_name"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["d7b9836e-d606-4aab-b2d8-44cbc726a950"],"layerId":"82f43ff6-6ac1-4f73-b532-61b6b9fe15b0","seriesType":"bar_horizontal","xAccessor":"e139ccbc-54ff-4921-b345-e3c3ff6a9efc"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar_horizontal","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true}}},"title":"CPU Utilization Per Cluster [Metricbeat AWSFargate]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"b1837e70-396f-11eb-a417-f961313c14f6","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-82f43ff6-6ac1-4f73-b532-61b6b9fe15b0","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0ODIsMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"e350c9e6-e6b7-40f1-83ed-94a38ed9467a":{"columnOrder":["55121be2-80f6-407c-9352-3e13705ac860","eb452b61-bf12-46c0-afae-c0f1c776156c","5b846eff-5ca7-45b0-b4c2-0346e9986302"],"columns":{"55121be2-80f6-407c-9352-3e13705ac860":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"10s"},"scale":"interval","sourceField":"@timestamp"},"5b846eff-5ca7-45b0-b4c2-0346e9986302":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Container Memory Usage Pct","operationType":"average","params":{"format":{"id":"percent","params":{"decimals":2}}},"scale":"ratio","sourceField":"awsfargate.task_stats.memory.usage.pct"},"eb452b61-bf12-46c0-afae-c0f1c776156c":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"container identifier","operationType":"terms","params":{"orderBy":{"columnId":"5b846eff-5ca7-45b0-b4c2-0346e9986302","type":"column"},"orderDirection":"desc","size":20},"scale":"ordinal","sourceField":"awsfargate.task_stats.identifier"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["5b846eff-5ca7-45b0-b4c2-0346e9986302"],"layerId":"e350c9e6-e6b7-40f1-83ed-94a38ed9467a","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"eb452b61-bf12-46c0-afae-c0f1c776156c","xAccessor":"55121be2-80f6-407c-9352-3e13705ac860"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true}}},"title":"Container Memory Usage Pct [Metricbeat AWSFargate]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"d3f3aa80-2e8d-11eb-a417-f961313c14f6","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-e350c9e6-e6b7-40f1-83ed-94a38ed9467a","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0ODMsMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"c8d70f88-6554-41ca-ac1e-a3cf8b992972":{"columnOrder":["0505d890-632e-4434-a68f-f019e7893eaf","989ce63a-7fcd-4c83-980b-d595a1dd2469","ab00dce2-6c01-4a0d-8d7c-71330afbaa3b"],"columns":{"0505d890-632e-4434-a68f-f019e7893eaf":{"dataType":"string","isBucketed":true,"label":"Top values of awsfargate.task_stats.identifier","operationType":"terms","params":{"orderBy":{"columnId":"ab00dce2-6c01-4a0d-8d7c-71330afbaa3b","type":"column"},"orderDirection":"desc","size":20},"scale":"ordinal","sourceField":"awsfargate.task_stats.identifier"},"989ce63a-7fcd-4c83-980b-d595a1dd2469":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"ab00dce2-6c01-4a0d-8d7c-71330afbaa3b":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"DiskIO Write","operationType":"average","params":{"format":{"id":"bytes","params":{"decimals":2}}},"scale":"ratio","sourceField":"awsfargate.task_stats.diskio.write.bytes"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["ab00dce2-6c01-4a0d-8d7c-71330afbaa3b"],"layerId":"c8d70f88-6554-41ca-ac1e-a3cf8b992972","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"0505d890-632e-4434-a68f-f019e7893eaf","xAccessor":"989ce63a-7fcd-4c83-980b-d595a1dd2469"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true}}},"title":"DiskIO Write [Metricbeat AWSFargate]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"c3952840-2e91-11eb-a417-f961313c14f6","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-c8d70f88-6554-41ca-ac1e-a3cf8b992972","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0ODQsMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"c8d70f88-6554-41ca-ac1e-a3cf8b992972":{"columnOrder":["0505d890-632e-4434-a68f-f019e7893eaf","989ce63a-7fcd-4c83-980b-d595a1dd2469","ab00dce2-6c01-4a0d-8d7c-71330afbaa3b"],"columns":{"0505d890-632e-4434-a68f-f019e7893eaf":{"dataType":"string","isBucketed":true,"label":"Top values of awsfargate.task_stats.identifier","operationType":"terms","params":{"orderBy":{"columnId":"ab00dce2-6c01-4a0d-8d7c-71330afbaa3b","type":"column"},"orderDirection":"desc","size":20},"scale":"ordinal","sourceField":"awsfargate.task_stats.identifier"},"989ce63a-7fcd-4c83-980b-d595a1dd2469":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"ab00dce2-6c01-4a0d-8d7c-71330afbaa3b":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"DiskIO Read","operationType":"average","params":{"format":{"id":"bytes","params":{"decimals":2}}},"scale":"ratio","sourceField":"awsfargate.task_stats.diskio.read.bytes"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"axisTitlesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"fittingFunction":"None","gridlinesVisibilitySettings":{"x":true,"yLeft":true,"yRight":true},"layers":[{"accessors":["ab00dce2-6c01-4a0d-8d7c-71330afbaa3b"],"layerId":"c8d70f88-6554-41ca-ac1e-a3cf8b992972","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"0505d890-632e-4434-a68f-f019e7893eaf","xAccessor":"989ce63a-7fcd-4c83-980b-d595a1dd2469"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line","tickLabelsVisibilitySettings":{"x":true,"yLeft":true,"yRight":true}}},"title":"DiskIO Read [Metricbeat AWSFargate]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"a7970500-2e91-11eb-a417-f961313c14f6","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-c8d70f88-6554-41ca-ac1e-a3cf8b992972","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0ODUsMV0="} -{"attributes":{"description":"","state":{"datasourceStates":{"indexpattern":{"layers":{"0749cbce-4a88-471d-9715-9f4f54510864":{"columnOrder":["35481ca7-cebb-495c-974f-34ede5f3935c","33d4857c-800a-4854-9369-dbf019501bdd","ec425562-fe79-4326-b753-20b408c806fb"],"columns":{"33d4857c-800a-4854-9369-dbf019501bdd":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Container Identifier","operationType":"terms","params":{"orderBy":{"columnId":"ec425562-fe79-4326-b753-20b408c806fb","type":"column"},"orderDirection":"desc","size":20},"scale":"ordinal","sourceField":"awsfargate.task_stats.identifier"},"35481ca7-cebb-495c-974f-34ede5f3935c":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"10s"},"scale":"interval","sourceField":"@timestamp"},"ec425562-fe79-4326-b753-20b408c806fb":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Container CPU Total Norm Pct","operationType":"average","params":{"format":{"id":"percent","params":{"decimals":2}}},"scale":"ratio","sourceField":"awsfargate.task_stats.cpu.total.norm.pct"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["ec425562-fe79-4326-b753-20b408c806fb"],"layerId":"0749cbce-4a88-471d-9715-9f4f54510864","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"33d4857c-800a-4854-9369-dbf019501bdd","xAccessor":"35481ca7-cebb-495c-974f-34ede5f3935c"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Container CPU Total Norm Pct [Metricbeat AWSFargate]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"60941700-2e88-11eb-991c-c5fd3b7f5a63","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-0749cbce-4a88-471d-9715-9f4f54510864","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0ODYsMV0="} -{"attributes":{"description":"Overview of AWS Fargate Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.10.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"2429ae11-ccb3-4016-b18d-c88140e29f67\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"2429ae11-ccb3-4016-b18d-c88140e29f67\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"ECS Task Filter\",\"panelRefName\":\"panel_2429ae11-ccb3-4016-b18d-c88140e29f67\"},{\"version\":\"7.10.0\",\"type\":\"lens\",\"gridData\":{\"h\":14,\"i\":\"735a25cb-f781-4a8b-99e6-2adf582f8a37\",\"w\":39,\"x\":9,\"y\":0},\"panelIndex\":\"735a25cb-f781-4a8b-99e6-2adf582f8a37\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Containers\",\"panelRefName\":\"panel_735a25cb-f781-4a8b-99e6-2adf582f8a37\"},{\"version\":\"7.10.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"5d4537e8-9aee-47e6-8580-1961d8a3a38e\",\"w\":24,\"x\":0,\"y\":14},\"panelIndex\":\"5d4537e8-9aee-47e6-8580-1961d8a3a38e\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Total Number of Containers\",\"panelRefName\":\"panel_5d4537e8-9aee-47e6-8580-1961d8a3a38e\"},{\"version\":\"7.10.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"d3c9208e-c699-4514-a091-a731d28ab9af\",\"w\":24,\"x\":24,\"y\":14},\"panelIndex\":\"d3c9208e-c699-4514-a091-a731d28ab9af\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"CPU Utilization Per Cluster\",\"panelRefName\":\"panel_d3c9208e-c699-4514-a091-a731d28ab9af\"},{\"version\":\"7.10.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"9dd2b002-5170-49ea-afc2-30b0b46b0fd7\",\"w\":24,\"x\":0,\"y\":29},\"panelIndex\":\"9dd2b002-5170-49ea-afc2-30b0b46b0fd7\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Container Memory Usage Pct\",\"panelRefName\":\"panel_9dd2b002-5170-49ea-afc2-30b0b46b0fd7\"},{\"version\":\"7.10.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"89b0cd8b-13d9-4a43-8f93-3410aff125c3\",\"w\":24,\"x\":24,\"y\":44},\"panelIndex\":\"89b0cd8b-13d9-4a43-8f93-3410aff125c3\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"DiskIO Write\",\"panelRefName\":\"panel_89b0cd8b-13d9-4a43-8f93-3410aff125c3\"},{\"version\":\"7.10.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"d7a6623a-14cf-411c-ab73-ded3734a359b\",\"w\":24,\"x\":0,\"y\":44},\"panelIndex\":\"d7a6623a-14cf-411c-ab73-ded3734a359b\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"DiskIO Read\",\"panelRefName\":\"panel_d7a6623a-14cf-411c-ab73-ded3734a359b\"},{\"version\":\"7.10.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"a7a6e425-98fd-4210-b3d5-005268be6274\",\"w\":24,\"x\":24,\"y\":29},\"panelIndex\":\"a7a6e425-98fd-4210-b3d5-005268be6274\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Container CPU Total Norm Pct\",\"panelRefName\":\"panel_a7a6e425-98fd-4210-b3d5-005268be6274\"}]","timeRestore":false,"title":"[Metricbeat AWSFargate] Fargate Overview","version":1},"coreMigrationVersion":"8.0.0","id":"20dc7c50-2e89-11eb-991c-c5fd3b7f5a63","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"38eee240-2e90-11eb-a417-f961313c14f6","name":"2429ae11-ccb3-4016-b18d-c88140e29f67:panel_2429ae11-ccb3-4016-b18d-c88140e29f67","type":"visualization"},{"id":"8cf592f0-2e8e-11eb-a417-f961313c14f6","name":"735a25cb-f781-4a8b-99e6-2adf582f8a37:panel_735a25cb-f781-4a8b-99e6-2adf582f8a37","type":"lens"},{"id":"86720980-3966-11eb-a417-f961313c14f6","name":"5d4537e8-9aee-47e6-8580-1961d8a3a38e:panel_5d4537e8-9aee-47e6-8580-1961d8a3a38e","type":"lens"},{"id":"b1837e70-396f-11eb-a417-f961313c14f6","name":"d3c9208e-c699-4514-a091-a731d28ab9af:panel_d3c9208e-c699-4514-a091-a731d28ab9af","type":"lens"},{"id":"d3f3aa80-2e8d-11eb-a417-f961313c14f6","name":"9dd2b002-5170-49ea-afc2-30b0b46b0fd7:panel_9dd2b002-5170-49ea-afc2-30b0b46b0fd7","type":"lens"},{"id":"c3952840-2e91-11eb-a417-f961313c14f6","name":"89b0cd8b-13d9-4a43-8f93-3410aff125c3:panel_89b0cd8b-13d9-4a43-8f93-3410aff125c3","type":"lens"},{"id":"a7970500-2e91-11eb-a417-f961313c14f6","name":"d7a6623a-14cf-411c-ab73-ded3734a359b:panel_d7a6623a-14cf-411c-ab73-ded3734a359b","type":"lens"},{"id":"60941700-2e88-11eb-991c-c5fd3b7f5a63","name":"a7a6e425-98fd-4210-b3d5-005268be6274:panel_a7a6e425-98fd-4210-b3d5-005268be6274","type":"lens"}],"type":"dashboard","updated_at":"2021-08-04T16:30:41.879Z","version":"WzM0NzgsMV0="} diff --git a/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/60941700-2e88-11eb-991c-c5fd3b7f5a63.json b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/60941700-2e88-11eb-991c-c5fd3b7f5a63.json new file mode 100644 index 000000000000..5c970ff5d3c6 --- /dev/null +++ b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/60941700-2e88-11eb-991c-c5fd3b7f5a63.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "0749cbce-4a88-471d-9715-9f4f54510864": { + "columnOrder": [ + "35481ca7-cebb-495c-974f-34ede5f3935c", + "33d4857c-800a-4854-9369-dbf019501bdd", + "ec425562-fe79-4326-b753-20b408c806fb" + ], + "columns": { + "33d4857c-800a-4854-9369-dbf019501bdd": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Container Identifier", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "ec425562-fe79-4326-b753-20b408c806fb", + "type": "column" + }, + "orderDirection": "desc", + "size": 20 + }, + "scale": "ordinal", + "sourceField": "awsfargate.task_stats.identifier" + }, + "35481ca7-cebb-495c-974f-34ede5f3935c": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "10s" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "ec425562-fe79-4326-b753-20b408c806fb": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Container CPU Total Norm Pct", + "operationType": "average", + "params": { + "format": { + "id": "percent", + "params": { + "decimals": 2 + } + } + }, + "scale": "ratio", + "sourceField": "awsfargate.task_stats.cpu.total.norm.pct" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "ec425562-fe79-4326-b753-20b408c806fb" + ], + "layerId": "0749cbce-4a88-471d-9715-9f4f54510864", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "33d4857c-800a-4854-9369-dbf019501bdd", + "xAccessor": "35481ca7-cebb-495c-974f-34ede5f3935c" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line" + } + }, + "title": "Container CPU Total Norm Pct [Metricbeat AWSFargate]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "60941700-2e88-11eb-991c-c5fd3b7f5a63", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-0749cbce-4a88-471d-9715-9f4f54510864", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:41.879Z", + "version": "WzM0ODYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/86720980-3966-11eb-a417-f961313c14f6.json b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/86720980-3966-11eb-a417-f961313c14f6.json new file mode 100644 index 000000000000..f32957480d93 --- /dev/null +++ b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/86720980-3966-11eb-a417-f961313c14f6.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "450490b7-c7f9-42bf-8e7d-227cbf960e94": { + "columnOrder": [ + "b20aebaf-7126-4b1c-acca-79cfa113b44d", + "915eda3d-00ce-40d0-ada8-4eb372202b42" + ], + "columns": { + "915eda3d-00ce-40d0-ada8-4eb372202b42": { + "dataType": "number", + "isBucketed": false, + "label": "Unique count of container.id", + "operationType": "unique_count", + "scale": "ratio", + "sourceField": "container.id" + }, + "b20aebaf-7126-4b1c-acca-79cfa113b44d": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "915eda3d-00ce-40d0-ada8-4eb372202b42" + ], + "layerId": "450490b7-c7f9-42bf-8e7d-227cbf960e94", + "position": "top", + "seriesType": "bar_stacked", + "showGridlines": false, + "xAccessor": "b20aebaf-7126-4b1c-acca-79cfa113b44d" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar_stacked", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + } + } + }, + "title": "Total Number of Containers [Metricbeat AWSFargate]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "86720980-3966-11eb-a417-f961313c14f6", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-450490b7-c7f9-42bf-8e7d-227cbf960e94", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:41.879Z", + "version": "WzM0ODEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/8cf592f0-2e8e-11eb-a417-f961313c14f6.json b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/8cf592f0-2e8e-11eb-a417-f961313c14f6.json new file mode 100644 index 000000000000..02d1257c14f1 --- /dev/null +++ b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/8cf592f0-2e8e-11eb-a417-f961313c14f6.json @@ -0,0 +1,187 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "e350c9e6-e6b7-40f1-83ed-94a38ed9467a": { + "columnOrder": [ + "040803fd-23f9-4f4f-95da-e8be99becbc1", + "eb452b61-bf12-46c0-afae-c0f1c776156c", + "b1e08425-6a1e-4db6-bb47-a65167b7e14f", + "09de0d9e-c174-46cf-bdc8-50158475b4a7", + "e0782143-0636-43b4-8fac-b857ea5282b2", + "7626706b-6efa-4fe7-b45c-6e9afa07f982", + "441ceb32-53e7-4408-9638-6dfd38202144" + ], + "columns": { + "040803fd-23f9-4f4f-95da-e8be99becbc1": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Task Name", + "operationType": "terms", + "params": { + "orderBy": { + "type": "alphabetical" + }, + "orderDirection": "asc", + "size": 20 + }, + "scale": "ordinal", + "sourceField": "container.labels.com_amazonaws_ecs_task-definition-family" + }, + "09de0d9e-c174-46cf-bdc8-50158475b4a7": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "CPU", + "operationType": "average", + "params": { + "format": { + "id": "percent", + "params": { + "decimals": 3 + } + } + }, + "scale": "ratio", + "sourceField": "awsfargate.task_stats.cpu.total.norm.pct" + }, + "441ceb32-53e7-4408-9638-6dfd38202144": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Memory", + "operationType": "average", + "params": { + "format": { + "id": "percent", + "params": { + "decimals": 3 + } + } + }, + "scale": "ratio", + "sourceField": "awsfargate.task_stats.memory.usage.pct" + }, + "7626706b-6efa-4fe7-b45c-6e9afa07f982": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Memory Usage", + "operationType": "average", + "params": { + "format": { + "id": "bytes", + "params": { + "decimals": 2 + } + } + }, + "scale": "ratio", + "sourceField": "awsfargate.task_stats.memory.usage.total" + }, + "b1e08425-6a1e-4db6-bb47-a65167b7e14f": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "ECS Cluster ARN", + "operationType": "terms", + "params": { + "orderBy": { + "type": "alphabetical" + }, + "orderDirection": "asc", + "size": 20 + }, + "scale": "ordinal", + "sourceField": "container.labels.com_amazonaws_ecs_cluster" + }, + "e0782143-0636-43b4-8fac-b857ea5282b2": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "DiskIO", + "operationType": "average", + "scale": "ratio", + "sourceField": "awsfargate.task_stats.diskio.total" + }, + "eb452b61-bf12-46c0-afae-c0f1c776156c": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Container Name", + "operationType": "terms", + "params": { + "orderBy": { + "type": "alphabetical" + }, + "orderDirection": "asc", + "size": 20 + }, + "scale": "ordinal", + "sourceField": "container.name" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "columns": [ + { + "columnId": "eb452b61-bf12-46c0-afae-c0f1c776156c" + }, + { + "columnId": "040803fd-23f9-4f4f-95da-e8be99becbc1" + }, + { + "columnId": "b1e08425-6a1e-4db6-bb47-a65167b7e14f" + }, + { + "columnId": "09de0d9e-c174-46cf-bdc8-50158475b4a7" + }, + { + "columnId": "e0782143-0636-43b4-8fac-b857ea5282b2" + }, + { + "columnId": "7626706b-6efa-4fe7-b45c-6e9afa07f982" + }, + { + "columnId": "441ceb32-53e7-4408-9638-6dfd38202144" + } + ], + "layerId": "e350c9e6-e6b7-40f1-83ed-94a38ed9467a" + } + }, + "title": "Container Table [Metricbeat AWSFargate]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "8cf592f0-2e8e-11eb-a417-f961313c14f6", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-e350c9e6-e6b7-40f1-83ed-94a38ed9467a", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:41.879Z", + "version": "WzM0ODAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/a7970500-2e91-11eb-a417-f961313c14f6.json b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/a7970500-2e91-11eb-a417-f961313c14f6.json new file mode 100644 index 000000000000..8dbc3b42eef5 --- /dev/null +++ b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/a7970500-2e91-11eb-a417-f961313c14f6.json @@ -0,0 +1,129 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "c8d70f88-6554-41ca-ac1e-a3cf8b992972": { + "columnOrder": [ + "0505d890-632e-4434-a68f-f019e7893eaf", + "989ce63a-7fcd-4c83-980b-d595a1dd2469", + "ab00dce2-6c01-4a0d-8d7c-71330afbaa3b" + ], + "columns": { + "0505d890-632e-4434-a68f-f019e7893eaf": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of awsfargate.task_stats.identifier", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "ab00dce2-6c01-4a0d-8d7c-71330afbaa3b", + "type": "column" + }, + "orderDirection": "desc", + "size": 20 + }, + "scale": "ordinal", + "sourceField": "awsfargate.task_stats.identifier" + }, + "989ce63a-7fcd-4c83-980b-d595a1dd2469": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "ab00dce2-6c01-4a0d-8d7c-71330afbaa3b": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "DiskIO Read", + "operationType": "average", + "params": { + "format": { + "id": "bytes", + "params": { + "decimals": 2 + } + } + }, + "scale": "ratio", + "sourceField": "awsfargate.task_stats.diskio.read.bytes" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "ab00dce2-6c01-4a0d-8d7c-71330afbaa3b" + ], + "layerId": "c8d70f88-6554-41ca-ac1e-a3cf8b992972", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "0505d890-632e-4434-a68f-f019e7893eaf", + "xAccessor": "989ce63a-7fcd-4c83-980b-d595a1dd2469" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + } + } + }, + "title": "DiskIO Read [Metricbeat AWSFargate]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "a7970500-2e91-11eb-a417-f961313c14f6", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-c8d70f88-6554-41ca-ac1e-a3cf8b992972", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:41.879Z", + "version": "WzM0ODUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/b1837e70-396f-11eb-a417-f961313c14f6.json b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/b1837e70-396f-11eb-a417-f961313c14f6.json new file mode 100644 index 000000000000..fe409a5fc4d9 --- /dev/null +++ b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/b1837e70-396f-11eb-a417-f961313c14f6.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "82f43ff6-6ac1-4f73-b532-61b6b9fe15b0": { + "columnOrder": [ + "e139ccbc-54ff-4921-b345-e3c3ff6a9efc", + "d7b9836e-d606-4aab-b2d8-44cbc726a950" + ], + "columns": { + "d7b9836e-d606-4aab-b2d8-44cbc726a950": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "CPU Utilization", + "operationType": "average", + "params": { + "format": { + "id": "percent", + "params": { + "decimals": 2 + } + } + }, + "scale": "ratio", + "sourceField": "awsfargate.task_stats.cpu.total.norm.pct" + }, + "e139ccbc-54ff-4921-b345-e3c3ff6a9efc": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Cluster Name", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "d7b9836e-d606-4aab-b2d8-44cbc726a950", + "type": "column" + }, + "orderDirection": "desc", + "size": 20 + }, + "scale": "ordinal", + "sourceField": "awsfargate.task_stats.cluster_name" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "d7b9836e-d606-4aab-b2d8-44cbc726a950" + ], + "layerId": "82f43ff6-6ac1-4f73-b532-61b6b9fe15b0", + "seriesType": "bar_horizontal", + "xAccessor": "e139ccbc-54ff-4921-b345-e3c3ff6a9efc" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar_horizontal", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + } + } + }, + "title": "CPU Utilization Per Cluster [Metricbeat AWSFargate]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "b1837e70-396f-11eb-a417-f961313c14f6", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-82f43ff6-6ac1-4f73-b532-61b6b9fe15b0", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:41.879Z", + "version": "WzM0ODIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/c3952840-2e91-11eb-a417-f961313c14f6.json b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/c3952840-2e91-11eb-a417-f961313c14f6.json new file mode 100644 index 000000000000..450d605e1dce --- /dev/null +++ b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/c3952840-2e91-11eb-a417-f961313c14f6.json @@ -0,0 +1,129 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "c8d70f88-6554-41ca-ac1e-a3cf8b992972": { + "columnOrder": [ + "0505d890-632e-4434-a68f-f019e7893eaf", + "989ce63a-7fcd-4c83-980b-d595a1dd2469", + "ab00dce2-6c01-4a0d-8d7c-71330afbaa3b" + ], + "columns": { + "0505d890-632e-4434-a68f-f019e7893eaf": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of awsfargate.task_stats.identifier", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "ab00dce2-6c01-4a0d-8d7c-71330afbaa3b", + "type": "column" + }, + "orderDirection": "desc", + "size": 20 + }, + "scale": "ordinal", + "sourceField": "awsfargate.task_stats.identifier" + }, + "989ce63a-7fcd-4c83-980b-d595a1dd2469": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "ab00dce2-6c01-4a0d-8d7c-71330afbaa3b": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "DiskIO Write", + "operationType": "average", + "params": { + "format": { + "id": "bytes", + "params": { + "decimals": 2 + } + } + }, + "scale": "ratio", + "sourceField": "awsfargate.task_stats.diskio.write.bytes" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "ab00dce2-6c01-4a0d-8d7c-71330afbaa3b" + ], + "layerId": "c8d70f88-6554-41ca-ac1e-a3cf8b992972", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "0505d890-632e-4434-a68f-f019e7893eaf", + "xAccessor": "989ce63a-7fcd-4c83-980b-d595a1dd2469" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + } + } + }, + "title": "DiskIO Write [Metricbeat AWSFargate]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "c3952840-2e91-11eb-a417-f961313c14f6", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-c8d70f88-6554-41ca-ac1e-a3cf8b992972", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:41.879Z", + "version": "WzM0ODQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/d3f3aa80-2e8d-11eb-a417-f961313c14f6.json b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/d3f3aa80-2e8d-11eb-a417-f961313c14f6.json new file mode 100644 index 000000000000..6b55a62eaf83 --- /dev/null +++ b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/lens/d3f3aa80-2e8d-11eb-a417-f961313c14f6.json @@ -0,0 +1,130 @@ +{ + "attributes": { + "description": "", + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "e350c9e6-e6b7-40f1-83ed-94a38ed9467a": { + "columnOrder": [ + "55121be2-80f6-407c-9352-3e13705ac860", + "eb452b61-bf12-46c0-afae-c0f1c776156c", + "5b846eff-5ca7-45b0-b4c2-0346e9986302" + ], + "columns": { + "55121be2-80f6-407c-9352-3e13705ac860": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "10s" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "5b846eff-5ca7-45b0-b4c2-0346e9986302": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Container Memory Usage Pct", + "operationType": "average", + "params": { + "format": { + "id": "percent", + "params": { + "decimals": 2 + } + } + }, + "scale": "ratio", + "sourceField": "awsfargate.task_stats.memory.usage.pct" + }, + "eb452b61-bf12-46c0-afae-c0f1c776156c": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "container identifier", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "5b846eff-5ca7-45b0-b4c2-0346e9986302", + "type": "column" + }, + "orderDirection": "desc", + "size": 20 + }, + "scale": "ordinal", + "sourceField": "awsfargate.task_stats.identifier" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "5b846eff-5ca7-45b0-b4c2-0346e9986302" + ], + "layerId": "e350c9e6-e6b7-40f1-83ed-94a38ed9467a", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "eb452b61-bf12-46c0-afae-c0f1c776156c", + "xAccessor": "55121be2-80f6-407c-9352-3e13705ac860" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + } + } + }, + "title": "Container Memory Usage Pct [Metricbeat AWSFargate]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "d3f3aa80-2e8d-11eb-a417-f961313c14f6", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-e350c9e6-e6b7-40f1-83ed-94a38ed9467a", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:41.879Z", + "version": "WzM0ODMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/visualization/38eee240-2e90-11eb-a417-f961313c14f6.json b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/visualization/38eee240-2e90-11eb-a417-f961313c14f6.json new file mode 100644 index 000000000000..077cf0cccb3b --- /dev/null +++ b/x-pack/metricbeat/module/awsfargate/_meta/kibana/7/visualization/38eee240-2e90-11eb-a417-f961313c14f6.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "ECS Task Filter [Metricbeat AWSFargate]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "cloud.region", + "id": "1607442436907", + "indexPatternRefName": "control_0_index_pattern", + "label": "Region Name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "awsfargate.task_stats.cluster_name", + "id": "1607442399749", + "indexPatternRefName": "control_1_index_pattern", + "label": "Cluster Name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "container.labels.com_amazonaws_ecs_task-definition-family", + "id": "1606248025028", + "indexPatternRefName": "control_2_index_pattern", + "label": "Task Name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": false, + "useTimeFilter": false + }, + "title": "ECS Task Filter [Metricbeat AWSFargate]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "38eee240-2e90-11eb-a417-f961313c14f6", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:41.879Z", + "version": "WzM0NzksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..2192ca117edf --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,303 @@ +{ + "attributes": { + "description": "This dashboard shows metrics for queue storage type in Azure.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": "queue", + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "azure.namespace", + "negate": false, + "params": { + "query": "Microsoft.Storage/storageAccounts/queueServices" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "azure.namespace": "Microsoft.Storage/storageAccounts/queueServices" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "933a427d-a8b7-48ff-ac53-337f32b340ea", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "933a427d-a8b7-48ff-ac53-337f32b340ea", + "panelRefName": "panel_933a427d-a8b7-48ff-ac53-337f32b340ea", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "w": 5, + "x": 9, + "y": 0 + }, + "panelIndex": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "panelRefName": "panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "title": "Availability", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "0b4107a7-6a3d-4092-9813-00edb56bc838", + "w": 5, + "x": 14, + "y": 0 + }, + "panelIndex": "0b4107a7-6a3d-4092-9813-00edb56bc838", + "panelRefName": "panel_0b4107a7-6a3d-4092-9813-00edb56bc838", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "cf022a47-2314-4ab6-b397-b1d860944179", + "w": 5, + "x": 19, + "y": 0 + }, + "panelIndex": "cf022a47-2314-4ab6-b397-b1d860944179", + "panelRefName": "panel_cf022a47-2314-4ab6-b397-b1d860944179", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "9d84188c-5a30-41ac-81cc-fe4fed360dd3", + "w": 5, + "x": 24, + "y": 0 + }, + "panelIndex": "9d84188c-5a30-41ac-81cc-fe4fed360dd3", + "panelRefName": "panel_9d84188c-5a30-41ac-81cc-fe4fed360dd3", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "1d623c03-4d02-4a81-b91e-49e82e112016", + "w": 19, + "x": 29, + "y": 0 + }, + "panelIndex": "1d623c03-4d02-4a81-b91e-49e82e112016", + "panelRefName": "panel_1d623c03-4d02-4a81-b91e-49e82e112016", + "title": "Transactions", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "ff6441f8-d66d-4399-bae5-25d3d861b299", + "w": 9, + "x": 0, + "y": 5 + }, + "panelIndex": "ff6441f8-d66d-4399-bae5-25d3d861b299", + "panelRefName": "panel_ff6441f8-d66d-4399-bae5-25d3d861b299", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "87066244-7840-4555-9d12-026d64977f1a", + "w": 20, + "x": 9, + "y": 9 + }, + "panelIndex": "87066244-7840-4555-9d12-026d64977f1a", + "panelRefName": "panel_87066244-7840-4555-9d12-026d64977f1a", + "title": "Success Server Latency", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "756da375-e6a2-4668-af43-0cd294878254", + "w": 19, + "x": 29, + "y": 9 + }, + "panelIndex": "756da375-e6a2-4668-af43-0cd294878254", + "panelRefName": "panel_756da375-e6a2-4668-af43-0cd294878254", + "title": "Success E2E Latency", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "a715fafc-ca38-410c-9253-12ba506eabc0", + "w": 20, + "x": 9, + "y": 24 + }, + "panelIndex": "a715fafc-ca38-410c-9253-12ba506eabc0", + "panelRefName": "panel_a715fafc-ca38-410c-9253-12ba506eabc0", + "title": "Egress Traffic by APIName", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "75f72920-be71-47a9-a967-f1c862ab2961", + "w": 19, + "x": 29, + "y": 24 + }, + "panelIndex": "75f72920-be71-47a9-a967-f1c862ab2961", + "panelRefName": "panel_75f72920-be71-47a9-a967-f1c862ab2961", + "title": "Ingress Traffic by APIName", + "type": "visualization", + "version": "7.7.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Azure] Queue Storage Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "10efa340-32f8-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "09f05e00-32f7-11ea-a83e-25b8612d00cc", + "name": "933a427d-a8b7-48ff-ac53-337f32b340ea:panel_933a427d-a8b7-48ff-ac53-337f32b340ea", + "type": "visualization" + }, + { + "id": "40dbc0d0-32e3-11ea-a83e-25b8612d00cc", + "name": "a9456b9b-efa6-410d-a56c-4b66aa8c499e:panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "type": "visualization" + }, + { + "id": "e159b990-339c-11ea-a83e-25b8612d00cc", + "name": "0b4107a7-6a3d-4092-9813-00edb56bc838:panel_0b4107a7-6a3d-4092-9813-00edb56bc838", + "type": "visualization" + }, + { + "id": "2bedaca0-339d-11ea-a83e-25b8612d00cc", + "name": "cf022a47-2314-4ab6-b397-b1d860944179:panel_cf022a47-2314-4ab6-b397-b1d860944179", + "type": "visualization" + }, + { + "id": "0241cc10-339d-11ea-a83e-25b8612d00cc", + "name": "9d84188c-5a30-41ac-81cc-fe4fed360dd3:panel_9d84188c-5a30-41ac-81cc-fe4fed360dd3", + "type": "visualization" + }, + { + "id": "553f9320-32e9-11ea-a83e-25b8612d00cc", + "name": "1d623c03-4d02-4a81-b91e-49e82e112016:panel_1d623c03-4d02-4a81-b91e-49e82e112016", + "type": "visualization" + }, + { + "id": "acced050-32d1-11ea-a83e-25b8612d00cc", + "name": "ff6441f8-d66d-4399-bae5-25d3d861b299:panel_ff6441f8-d66d-4399-bae5-25d3d861b299", + "type": "visualization" + }, + { + "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", + "name": "87066244-7840-4555-9d12-026d64977f1a:panel_87066244-7840-4555-9d12-026d64977f1a", + "type": "visualization" + }, + { + "id": "685fbeb0-32eb-11ea-a83e-25b8612d00cc", + "name": "756da375-e6a2-4668-af43-0cd294878254:panel_756da375-e6a2-4668-af43-0cd294878254", + "type": "visualization" + }, + { + "id": "599c62c0-32d7-11ea-a83e-25b8612d00cc", + "name": "a715fafc-ca38-410c-9253-12ba506eabc0:panel_a715fafc-ca38-410c-9253-12ba506eabc0", + "type": "visualization" + }, + { + "id": "4eaef260-32e1-11ea-a83e-25b8612d00cc", + "name": "75f72920-be71-47a9-a967-f1c862ab2961:panel_75f72920-be71-47a9-a967-f1c862ab2961", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:51.088Z", + "version": "WzM1NjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..ae32182af4a8 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,298 @@ +{ + "attributes": { + "description": "This dashboard shows metrics for different storage types in Azure.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "3e05fed8-0edd-4973-a640-3499c62b141d", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "3e05fed8-0edd-4973-a640-3499c62b141d", + "panelRefName": "panel_3e05fed8-0edd-4973-a640-3499c62b141d", + "title": "", + "type": "visualization", + "version": "7.5.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "w": 5, + "x": 9, + "y": 0 + }, + "panelIndex": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "panelRefName": "panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "title": "Availability", + "type": "visualization", + "version": "7.5.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "ed66fab5-f4e7-45d9-b27f-2315e0a10850", + "w": 5, + "x": 14, + "y": 0 + }, + "panelIndex": "ed66fab5-f4e7-45d9-b27f-2315e0a10850", + "panelRefName": "panel_ed66fab5-f4e7-45d9-b27f-2315e0a10850", + "title": "", + "type": "visualization", + "version": "7.5.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "71f11ae2-b13c-49b5-ae16-3d6d5e1dacec", + "w": 5, + "x": 19, + "y": 0 + }, + "panelIndex": "71f11ae2-b13c-49b5-ae16-3d6d5e1dacec", + "panelRefName": "panel_71f11ae2-b13c-49b5-ae16-3d6d5e1dacec", + "title": "", + "type": "visualization", + "version": "7.5.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "dae9895e-c53a-4989-bab1-1b7b7c233c56", + "w": 5, + "x": 24, + "y": 0 + }, + "panelIndex": "dae9895e-c53a-4989-bab1-1b7b7c233c56", + "panelRefName": "panel_dae9895e-c53a-4989-bab1-1b7b7c233c56", + "title": "", + "type": "visualization", + "version": "7.5.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "1d623c03-4d02-4a81-b91e-49e82e112016", + "w": 19, + "x": 29, + "y": 0 + }, + "panelIndex": "1d623c03-4d02-4a81-b91e-49e82e112016", + "panelRefName": "panel_1d623c03-4d02-4a81-b91e-49e82e112016", + "title": "Transactions", + "type": "visualization", + "version": "7.5.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "ff6441f8-d66d-4399-bae5-25d3d861b299", + "w": 9, + "x": 0, + "y": 5 + }, + "panelIndex": "ff6441f8-d66d-4399-bae5-25d3d861b299", + "panelRefName": "panel_ff6441f8-d66d-4399-bae5-25d3d861b299", + "title": "", + "type": "visualization", + "version": "7.5.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "87066244-7840-4555-9d12-026d64977f1a", + "w": 20, + "x": 9, + "y": 9 + }, + "panelIndex": "87066244-7840-4555-9d12-026d64977f1a", + "panelRefName": "panel_87066244-7840-4555-9d12-026d64977f1a", + "title": "Success Server Latency", + "type": "visualization", + "version": "7.5.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "756da375-e6a2-4668-af43-0cd294878254", + "w": 19, + "x": 29, + "y": 9 + }, + "panelIndex": "756da375-e6a2-4668-af43-0cd294878254", + "panelRefName": "panel_756da375-e6a2-4668-af43-0cd294878254", + "title": "Success E2E Latency", + "type": "visualization", + "version": "7.5.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "bf57aed2-3b69-4c8c-b602-e9054d08deb9", + "w": 9, + "x": 0, + "y": 20 + }, + "panelIndex": "bf57aed2-3b69-4c8c-b602-e9054d08deb9", + "panelRefName": "panel_bf57aed2-3b69-4c8c-b602-e9054d08deb9", + "title": "Used Capacity by Resource", + "type": "visualization", + "version": "7.5.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "a715fafc-ca38-410c-9253-12ba506eabc0", + "w": 20, + "x": 9, + "y": 24 + }, + "panelIndex": "a715fafc-ca38-410c-9253-12ba506eabc0", + "panelRefName": "panel_a715fafc-ca38-410c-9253-12ba506eabc0", + "title": "Egress Traffic by APIName", + "type": "visualization", + "version": "7.5.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "75f72920-be71-47a9-a967-f1c862ab2961", + "w": 19, + "x": 29, + "y": 24 + }, + "panelIndex": "75f72920-be71-47a9-a967-f1c862ab2961", + "panelRefName": "panel_75f72920-be71-47a9-a967-f1c862ab2961", + "title": "Ingress Traffic by APIName", + "type": "visualization", + "version": "7.5.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Azure] Storage Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "1a151f80-32db-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "fcc24d70-32f5-11ea-a83e-25b8612d00cc", + "name": "3e05fed8-0edd-4973-a640-3499c62b141d:panel_3e05fed8-0edd-4973-a640-3499c62b141d", + "type": "visualization" + }, + { + "id": "40dbc0d0-32e3-11ea-a83e-25b8612d00cc", + "name": "a9456b9b-efa6-410d-a56c-4b66aa8c499e:panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "type": "visualization" + }, + { + "id": "634b83c0-32ee-11ea-a83e-25b8612d00cc", + "name": "ed66fab5-f4e7-45d9-b27f-2315e0a10850:panel_ed66fab5-f4e7-45d9-b27f-2315e0a10850", + "type": "visualization" + }, + { + "id": "33d645e0-32ed-11ea-a83e-25b8612d00cc", + "name": "71f11ae2-b13c-49b5-ae16-3d6d5e1dacec:panel_71f11ae2-b13c-49b5-ae16-3d6d5e1dacec", + "type": "visualization" + }, + { + "id": "2219de20-32ed-11ea-a83e-25b8612d00cc", + "name": "dae9895e-c53a-4989-bab1-1b7b7c233c56:panel_dae9895e-c53a-4989-bab1-1b7b7c233c56", + "type": "visualization" + }, + { + "id": "553f9320-32e9-11ea-a83e-25b8612d00cc", + "name": "1d623c03-4d02-4a81-b91e-49e82e112016:panel_1d623c03-4d02-4a81-b91e-49e82e112016", + "type": "visualization" + }, + { + "id": "acced050-32d1-11ea-a83e-25b8612d00cc", + "name": "ff6441f8-d66d-4399-bae5-25d3d861b299:panel_ff6441f8-d66d-4399-bae5-25d3d861b299", + "type": "visualization" + }, + { + "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", + "name": "87066244-7840-4555-9d12-026d64977f1a:panel_87066244-7840-4555-9d12-026d64977f1a", + "type": "visualization" + }, + { + "id": "685fbeb0-32eb-11ea-a83e-25b8612d00cc", + "name": "756da375-e6a2-4668-af43-0cd294878254:panel_756da375-e6a2-4668-af43-0cd294878254", + "type": "visualization" + }, + { + "id": "109ec950-32e6-11ea-a83e-25b8612d00cc", + "name": "bf57aed2-3b69-4c8c-b602-e9054d08deb9:panel_bf57aed2-3b69-4c8c-b602-e9054d08deb9", + "type": "visualization" + }, + { + "id": "599c62c0-32d7-11ea-a83e-25b8612d00cc", + "name": "a715fafc-ca38-410c-9253-12ba506eabc0:panel_a715fafc-ca38-410c-9253-12ba506eabc0", + "type": "visualization" + }, + { + "id": "4eaef260-32e1-11ea-a83e-25b8612d00cc", + "name": "75f72920-be71-47a9-a967-f1c862ab2961:panel_75f72920-be71-47a9-a967-f1c862ab2961", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:52.180Z", + "version": "WzM1NzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/6f2393f0-6d08-11ea-8fe8-71add5fd7c38.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/6f2393f0-6d08-11ea-8fe8-71add5fd7c38.json new file mode 100644 index 000000000000..dfc46984cfc7 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/6f2393f0-6d08-11ea-8fe8-71add5fd7c38.json @@ -0,0 +1,166 @@ +{ + "attributes": { + "description": "This dashboard shows metrics for the container registry in Azure.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "51fee31f-97e1-4f8e-aeb2-daeca1ccf9be", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "51fee31f-97e1-4f8e-aeb2-daeca1ccf9be", + "panelRefName": "panel_51fee31f-97e1-4f8e-aeb2-daeca1ccf9be", + "title": "", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "dde974c7-6d81-4580-9b7f-c7a999ecc19e", + "w": 18, + "x": 9, + "y": 0 + }, + "panelIndex": "dde974c7-6d81-4580-9b7f-c7a999ecc19e", + "panelRefName": "panel_dde974c7-6d81-4580-9b7f-c7a999ecc19e", + "title": "Container Registry Successful Pull Count", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "25a02616-f735-494a-97f7-4a56531e9e5e", + "w": 21, + "x": 27, + "y": 0 + }, + "panelIndex": "25a02616-f735-494a-97f7-4a56531e9e5e", + "panelRefName": "panel_25a02616-f735-494a-97f7-4a56531e9e5e", + "title": "Container Registry Successful Push Count", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "ec183a66-545b-4a67-bfb4-568def660612", + "w": 9, + "x": 0, + "y": 5 + }, + "panelIndex": "ec183a66-545b-4a67-bfb4-568def660612", + "panelRefName": "panel_ec183a66-545b-4a67-bfb4-568def660612", + "title": "Containers Filters", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "7f508c43-afd7-4874-86ef-c6976700759b", + "w": 24, + "x": 0, + "y": 16 + }, + "panelIndex": "7f508c43-afd7-4874-86ef-c6976700759b", + "panelRefName": "panel_7f508c43-afd7-4874-86ef-c6976700759b", + "title": "Container Registry Total Pull Count", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "97a048da-9b56-420b-af8c-1f0d568f0f94", + "w": 24, + "x": 24, + "y": 16 + }, + "panelIndex": "97a048da-9b56-420b-af8c-1f0d568f0f94", + "panelRefName": "panel_97a048da-9b56-420b-af8c-1f0d568f0f94", + "title": "Container Registry Total Push Count", + "type": "visualization", + "version": "7.6.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Azure] Container Registry Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "6f2393f0-6d08-11ea-8fe8-71add5fd7c38", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "1e70dc50-6d22-11ea-8fe8-71add5fd7c38", + "name": "51fee31f-97e1-4f8e-aeb2-daeca1ccf9be:panel_51fee31f-97e1-4f8e-aeb2-daeca1ccf9be", + "type": "visualization" + }, + { + "id": "7972b260-6d07-11ea-8fe8-71add5fd7c38", + "name": "dde974c7-6d81-4580-9b7f-c7a999ecc19e:panel_dde974c7-6d81-4580-9b7f-c7a999ecc19e", + "type": "visualization" + }, + { + "id": "b88b7f90-6d07-11ea-8fe8-71add5fd7c38", + "name": "25a02616-f735-494a-97f7-4a56531e9e5e:panel_25a02616-f735-494a-97f7-4a56531e9e5e", + "type": "visualization" + }, + { + "id": "0fa31060-6aae-11ea-af5c-73e8f396b3e9", + "name": "ec183a66-545b-4a67-bfb4-568def660612:panel_ec183a66-545b-4a67-bfb4-568def660612", + "type": "visualization" + }, + { + "id": "ff303710-6d07-11ea-8fe8-71add5fd7c38", + "name": "7f508c43-afd7-4874-86ef-c6976700759b:panel_7f508c43-afd7-4874-86ef-c6976700759b", + "type": "visualization" + }, + { + "id": "ddea7430-6d07-11ea-8fe8-71add5fd7c38", + "name": "97a048da-9b56-420b-af8c-1f0d568f0f94:panel_97a048da-9b56-420b-af8c-1f0d568f0f94", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:46.992Z", + "version": "WzM1MjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/91afcc50-eaad-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/91afcc50-eaad-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..dee210983329 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/91afcc50-eaad-11e9-90ec-112a988266d5.json @@ -0,0 +1,232 @@ +{ + "attributes": { + "description": "This dashboard visualized relevant metrics for VMs running on Azure cloud.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "d84767cd-3fc9-438c-a969-f15c4d5fc9c5", + "w": 6, + "x": 0, + "y": 0 + }, + "panelIndex": "d84767cd-3fc9-438c-a969-f15c4d5fc9c5", + "panelRefName": "panel_d84767cd-3fc9-438c-a969-f15c4d5fc9c5", + "title": "Filters", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "127eff01-d34c-4bda-8f19-4cf06982989f", + "w": 20, + "x": 6, + "y": 0 + }, + "panelIndex": "127eff01-d34c-4bda-8f19-4cf06982989f", + "panelRefName": "panel_127eff01-d34c-4bda-8f19-4cf06982989f", + "title": "Percentage CPU", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2f85c4f1-a575-49a1-99d3-fbed8a2806ec", + "w": 22, + "x": 26, + "y": 0 + }, + "panelIndex": "2f85c4f1-a575-49a1-99d3-fbed8a2806ec", + "panelRefName": "panel_2f85c4f1-a575-49a1-99d3-fbed8a2806ec", + "title": "Available Memory", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "6cbc30b4-658e-4f7a-a888-221775fd0af3", + "w": 12, + "x": 36, + "y": 12 + }, + "panelIndex": "6cbc30b4-658e-4f7a-a888-221775fd0af3", + "panelRefName": "panel_6cbc30b4-658e-4f7a-a888-221775fd0af3", + "title": "Disk Reads", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "e195e7ba-c736-4bf7-9f23-c96f4acd9b6b", + "w": 12, + "x": 0, + "y": 12 + }, + "panelIndex": "e195e7ba-c736-4bf7-9f23-c96f4acd9b6b", + "panelRefName": "panel_e195e7ba-c736-4bf7-9f23-c96f4acd9b6b", + "title": "Network In Total", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "64fc0214-97f7-4d52-a9bd-a91449293f1c", + "w": 12, + "x": 12, + "y": 12 + }, + "panelIndex": "64fc0214-97f7-4d52-a9bd-a91449293f1c", + "panelRefName": "panel_64fc0214-97f7-4d52-a9bd-a91449293f1c", + "title": "Network Out Total", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "12c9c185-81ed-4313-b274-b3384de2d396", + "w": 12, + "x": 24, + "y": 12 + }, + "panelIndex": "12c9c185-81ed-4313-b274-b3384de2d396", + "panelRefName": "panel_12c9c185-81ed-4313-b274-b3384de2d396", + "title": "Disk Writes", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "200ae92b-4184-4aed-9868-6ce5e16e7a8d", + "w": 24, + "x": 0, + "y": 23 + }, + "panelIndex": "200ae92b-4184-4aed-9868-6ce5e16e7a8d", + "panelRefName": "panel_200ae92b-4184-4aed-9868-6ce5e16e7a8d", + "title": "Disk Read Operations/s", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "36c46a84-3e6b-4a7e-9246-357ae9d10d1e", + "w": 24, + "x": 24, + "y": 23 + }, + "panelIndex": "36c46a84-3e6b-4a7e-9246-357ae9d10d1e", + "panelRefName": "panel_36c46a84-3e6b-4a7e-9246-357ae9d10d1e", + "title": "Disk Write Operations/s", + "type": "visualization", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Azure] VM Scale Sets Overview ", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "91afcc50-eaad-11e9-90ec-112a988266d5", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "686bc990-ea92-11e9-90ec-112a988266d5", + "name": "d84767cd-3fc9-438c-a969-f15c4d5fc9c5:panel_d84767cd-3fc9-438c-a969-f15c4d5fc9c5", + "type": "visualization" + }, + { + "id": "33500790-eaaf-11e9-90ec-112a988266d5", + "name": "127eff01-d34c-4bda-8f19-4cf06982989f:panel_127eff01-d34c-4bda-8f19-4cf06982989f", + "type": "visualization" + }, + { + "id": "cecd6680-eb41-11e9-90ec-112a988266d5", + "name": "2f85c4f1-a575-49a1-99d3-fbed8a2806ec:panel_2f85c4f1-a575-49a1-99d3-fbed8a2806ec", + "type": "visualization" + }, + { + "id": "42cc28d0-ea9a-11e9-90ec-112a988266d5", + "name": "6cbc30b4-658e-4f7a-a888-221775fd0af3:panel_6cbc30b4-658e-4f7a-a888-221775fd0af3", + "type": "visualization" + }, + { + "id": "64266ec0-eb42-11e9-90ec-112a988266d5", + "name": "e195e7ba-c736-4bf7-9f23-c96f4acd9b6b:panel_e195e7ba-c736-4bf7-9f23-c96f4acd9b6b", + "type": "visualization" + }, + { + "id": "b45fd8e0-eb42-11e9-90ec-112a988266d5", + "name": "64fc0214-97f7-4d52-a9bd-a91449293f1c:panel_64fc0214-97f7-4d52-a9bd-a91449293f1c", + "type": "visualization" + }, + { + "id": "0d03a670-eb43-11e9-90ec-112a988266d5", + "name": "12c9c185-81ed-4313-b274-b3384de2d396:panel_12c9c185-81ed-4313-b274-b3384de2d396", + "type": "visualization" + }, + { + "id": "9c1a1910-ea9a-11e9-90ec-112a988266d5", + "name": "200ae92b-4184-4aed-9868-6ce5e16e7a8d:panel_200ae92b-4184-4aed-9868-6ce5e16e7a8d", + "type": "visualization" + }, + { + "id": "cfaedaf0-eb43-11e9-90ec-112a988266d5", + "name": "36c46a84-3e6b-4a7e-9246-357ae9d10d1e:panel_36c46a84-3e6b-4a7e-9246-357ae9d10d1e", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:56.299Z", + "version": "WzM2MTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/9c11ac60-6cf6-11ea-8fe8-71add5fd7c38.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/9c11ac60-6cf6-11ea-8fe8-71add5fd7c38.json new file mode 100644 index 000000000000..422e2298a79b --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/9c11ac60-6cf6-11ea-8fe8-71add5fd7c38.json @@ -0,0 +1,166 @@ +{ + "attributes": { + "description": "This dashboard shows metrics for the container instances in Azure.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "c3f93abd-4a7c-43fa-bde7-d26925082d2f", + "w": 11, + "x": 0, + "y": 0 + }, + "panelIndex": "c3f93abd-4a7c-43fa-bde7-d26925082d2f", + "panelRefName": "panel_c3f93abd-4a7c-43fa-bde7-d26925082d2f", + "title": "", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "ea4c505b-43fb-4869-a94a-bba028071ecc", + "w": 17, + "x": 11, + "y": 0 + }, + "panelIndex": "ea4c505b-43fb-4869-a94a-bba028071ecc", + "panelRefName": "panel_ea4c505b-43fb-4869-a94a-bba028071ecc", + "title": "Container Instance CPU Utilization", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "0899027b-629e-4889-821f-45ee0161bd91", + "w": 20, + "x": 28, + "y": 0 + }, + "panelIndex": "0899027b-629e-4889-821f-45ee0161bd91", + "panelRefName": "panel_0899027b-629e-4889-821f-45ee0161bd91", + "title": "Container Instance Memory Utilization", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "f72bd066-3696-4e0a-9660-78fb47c92152", + "w": 11, + "x": 0, + "y": 5 + }, + "panelIndex": "f72bd066-3696-4e0a-9660-78fb47c92152", + "panelRefName": "panel_f72bd066-3696-4e0a-9660-78fb47c92152", + "title": "Containers Filters", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "7c9016b9-a76e-41f6-9945-ac6880fd9ab0", + "w": 24, + "x": 0, + "y": 16 + }, + "panelIndex": "7c9016b9-a76e-41f6-9945-ac6880fd9ab0", + "panelRefName": "panel_7c9016b9-a76e-41f6-9945-ac6880fd9ab0", + "title": "Container Instance Netowrk Bytes Received/s", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "0abdf4ee-b569-430b-972a-a60160ef2221", + "w": 24, + "x": 24, + "y": 16 + }, + "panelIndex": "0abdf4ee-b569-430b-972a-a60160ef2221", + "panelRefName": "panel_0abdf4ee-b569-430b-972a-a60160ef2221", + "title": "Container Instance Network Bytes Transmitted/s", + "type": "visualization", + "version": "7.6.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Azure] Container Instance Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "9c11ac60-6cf6-11ea-8fe8-71add5fd7c38", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "5720b830-6aad-11ea-af5c-73e8f396b3e9", + "name": "c3f93abd-4a7c-43fa-bde7-d26925082d2f:panel_c3f93abd-4a7c-43fa-bde7-d26925082d2f", + "type": "visualization" + }, + { + "id": "04f8eec0-6ab1-11ea-af5c-73e8f396b3e9", + "name": "ea4c505b-43fb-4869-a94a-bba028071ecc:panel_ea4c505b-43fb-4869-a94a-bba028071ecc", + "type": "visualization" + }, + { + "id": "942844b0-6ac5-11ea-af5c-73e8f396b3e9", + "name": "0899027b-629e-4889-821f-45ee0161bd91:panel_0899027b-629e-4889-821f-45ee0161bd91", + "type": "visualization" + }, + { + "id": "0fa31060-6aae-11ea-af5c-73e8f396b3e9", + "name": "f72bd066-3696-4e0a-9660-78fb47c92152:panel_f72bd066-3696-4e0a-9660-78fb47c92152", + "type": "visualization" + }, + { + "id": "bd1c93b0-6cf7-11ea-8fe8-71add5fd7c38", + "name": "7c9016b9-a76e-41f6-9945-ac6880fd9ab0:panel_7c9016b9-a76e-41f6-9945-ac6880fd9ab0", + "type": "visualization" + }, + { + "id": "74a8e130-6cfa-11ea-8fe8-71add5fd7c38", + "name": "0abdf4ee-b569-430b-972a-a60160ef2221:panel_0abdf4ee-b569-430b-972a-a60160ef2221", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:45.960Z", + "version": "WzM1MTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-app-state-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-app-state-overview.ndjson deleted file mode 100644 index 6c0da6e54f0f..000000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-app-state-overview.ndjson +++ /dev/null @@ -1,12 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"controlledBy\": \"1532342651170\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"azure.application_id\", \"negate\": false, \"params\": {\"query\": \"42cb59a9-d5be-400b-a5c4-69b0a0026ac6\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"azure.application_id\": \"42cb59a9-d5be-400b-a5c4-69b0a0026ac6\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"App State Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.application_id\",\"id\":\"1532342651170\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Application ID\",\"options\":{\"multiselect\":true,\"order\":\"desc\",\"size\":10,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.dimensions.request_url_host\",\"id\":\"1601559750853\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Host URL\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"1532342651170\",\"type\":\"list\"},{\"fieldName\":\"azure.dimensions.cloud_role_name\",\"id\":\"1601640368472\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"1532342651170\",\"type\":\"list\"},{\"fieldName\":\"azure.dimensions.browser_timing_url_host\",\"id\":\"1601640439434\",\"indexPatternRefName\":\"control_3_index_pattern\",\"label\":\"Browser URL Host\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"1532342651170\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"App State Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"2e5183a0-03da-11eb-8034-63f2039e9d3f","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_3_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0ODgsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"85644d0a-8011-45af-a751-7961b8bdd071":{"columnOrder":["bcbccc16-d042-40fa-a9b2-0f09268281ff","5788331a-267d-426a-a68e-94a5310af644","b0d8f2d4-91f3-469c-8bcb-962a9fb48fba","e5c93c50-bb0a-4609-a7ce-7003f2f9a20e","9e183a5e-3dba-4929-b07e-2a3321f7926b"],"columns":{"5788331a-267d-426a-a68e-94a5310af644":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Type","operationType":"terms","params":{"orderBy":{"columnId":"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"azure.dimensions.exception_type"},"9e183a5e-3dba-4929-b07e-2a3321f7926b":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Browser","operationType":"average","scale":"ratio","sourceField":"azure.app_state.exceptions_browser.sum"},"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total","operationType":"average","scale":"ratio","sourceField":"azure.app_state.exceptions_count.sum"},"bcbccc16-d042-40fa-a9b2-0f09268281ff":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"e5c93c50-bb0a-4609-a7ce-7003f2f9a20e":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Server ","operationType":"average","scale":"ratio","sourceField":"azure.app_state.exceptions_server.sum"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["b0d8f2d4-91f3-469c-8bcb-962a9fb48fba","e5c93c50-bb0a-4609-a7ce-7003f2f9a20e","9e183a5e-3dba-4929-b07e-2a3321f7926b"],"layerId":"85644d0a-8011-45af-a751-7961b8bdd071","position":"top","seriesType":"area_stacked","showGridlines":false,"splitAccessor":"5788331a-267d-426a-a68e-94a5310af644","xAccessor":"bcbccc16-d042-40fa-a9b2-0f09268281ff"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"area_stacked"}},"title":"App state Exceptions [Metricbeat Azure]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"1064f9a0-04a5-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0ODksMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"85644d0a-8011-45af-a751-7961b8bdd071":{"columnOrder":["bcbccc16-d042-40fa-a9b2-0f09268281ff","a1f669d0-c9f2-4bc5-9bdd-e40badd261b9","b0d8f2d4-91f3-469c-8bcb-962a9fb48fba"],"columns":{"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Instance","operationType":"terms","params":{"orderBy":{"columnId":"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"azure.dimensions.cloud_role_instance"},"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Available memory","operationType":"average","params":{"format":{"id":"bytes","params":{"decimals":2}}},"scale":"ratio","sourceField":"azure.app_state.performance_counters_memory_available_bytes.avg"},"bcbccc16-d042-40fa-a9b2-0f09268281ff":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["b0d8f2d4-91f3-469c-8bcb-962a9fb48fba"],"layerId":"85644d0a-8011-45af-a751-7961b8bdd071","position":"top","seriesType":"area","showGridlines":false,"splitAccessor":"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9","xAccessor":"bcbccc16-d042-40fa-a9b2-0f09268281ff"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"area"}},"title":"App state Memory [Metricbeat Azure]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"76cc1d70-04a7-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTAsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"82e648a8-6d9a-4ae0-9449-b802ce1ac723":{"columnOrder":["d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1"],"columns":{"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Unique users","operationType":"average","scale":"ratio","sourceField":"azure.app_state.users_count.unique"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"accessor":"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1","layerId":"82e648a8-6d9a-4ae0-9449-b802ce1ac723"}},"title":"App state Unique users [Metricbeat Azure]","visualizationType":"lnsMetric"},"coreMigrationVersion":"8.0.0","id":"a89c8fd0-03ec-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-82e648a8-6d9a-4ae0-9449-b802ce1ac723","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTEsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"82e648a8-6d9a-4ae0-9449-b802ce1ac723":{"columnOrder":["d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1"],"columns":{"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Unique authenticated users","operationType":"average","scale":"ratio","sourceField":"azure.app_state.users_authenticated.unique"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"accessor":"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1","layerId":"82e648a8-6d9a-4ae0-9449-b802ce1ac723"}},"title":"App state Unique authenticated users [Metricbeat Azure]","visualizationType":"lnsMetric"},"coreMigrationVersion":"8.0.0","id":"cb5ec410-03ed-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-82e648a8-6d9a-4ae0-9449-b802ce1ac723","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTIsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"82e648a8-6d9a-4ae0-9449-b802ce1ac723":{"columnOrder":["d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1"],"columns":{"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Unique sessions","operationType":"average","scale":"ratio","sourceField":"azure.app_state.sessions_count.unique"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"accessor":"d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1","layerId":"82e648a8-6d9a-4ae0-9449-b802ce1ac723"}},"title":"App state Unique sessions [Metricbeat Azure]","visualizationType":"lnsMetric"},"coreMigrationVersion":"8.0.0","id":"0df175c0-03ee-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-82e648a8-6d9a-4ae0-9449-b802ce1ac723","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTMsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"85644d0a-8011-45af-a751-7961b8bdd071":{"columnOrder":["bcbccc16-d042-40fa-a9b2-0f09268281ff","8864c98b-413a-484f-a61d-336a63ef3f13","9ec4d260-e302-46c4-ac09-50ef54627894","a47e59dc-fb62-42f8-90e1-236c7c5a073d"],"columns":{"8864c98b-413a-484f-a61d-336a63ef3f13":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Host URL","operationType":"terms","params":{"orderBy":{"columnId":"9ec4d260-e302-46c4-ac09-50ef54627894","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"azure.dimensions.request_url_host"},"9ec4d260-e302-46c4-ac09-50ef54627894":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total requests","operationType":"average","scale":"ratio","sourceField":"azure.app_state.requests_count.sum"},"a47e59dc-fb62-42f8-90e1-236c7c5a073d":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Failed requests","operationType":"average","scale":"ratio","sourceField":"azure.app_state.requests_failed.sum"},"bcbccc16-d042-40fa-a9b2-0f09268281ff":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["9ec4d260-e302-46c4-ac09-50ef54627894","a47e59dc-fb62-42f8-90e1-236c7c5a073d"],"layerId":"85644d0a-8011-45af-a751-7961b8bdd071","position":"top","seriesType":"area","showGridlines":false,"splitAccessor":"8864c98b-413a-484f-a61d-336a63ef3f13","xAccessor":"bcbccc16-d042-40fa-a9b2-0f09268281ff"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"area"}},"title":"App state Requests [Metricbeat Azure]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"f0678020-04a2-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTQsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"85644d0a-8011-45af-a751-7961b8bdd071":{"columnOrder":["bcbccc16-d042-40fa-a9b2-0f09268281ff","4d4c068a-0194-4d54-a1fa-3863c3df9331","be6a3d8b-9428-480b-a7b3-071127726093","6bc1fd35-168d-42d5-b9c8-7078896d8ce4","988e9976-3471-478c-89f6-11fd46458d7f"],"columns":{"4d4c068a-0194-4d54-a1fa-3863c3df9331":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Url Path","operationType":"terms","params":{"orderBy":{"columnId":"be6a3d8b-9428-480b-a7b3-071127726093","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"azure.dimensions.browser_timing_url_path"},"6bc1fd35-168d-42d5-b9c8-7078896d8ce4":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total duration","operationType":"average","scale":"ratio","sourceField":"azure.app_state.browser_timings_total_duration.avg"},"988e9976-3471-478c-89f6-11fd46458d7f":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Receive duration","operationType":"average","scale":"ratio","sourceField":"azure.app_state.browser_timings_receive_duration.avg"},"bcbccc16-d042-40fa-a9b2-0f09268281ff":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"be6a3d8b-9428-480b-a7b3-071127726093":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Send duration","operationType":"average","params":{},"scale":"ratio","sourceField":"azure.app_state.browser_timings_send_duration.avg"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["be6a3d8b-9428-480b-a7b3-071127726093","6bc1fd35-168d-42d5-b9c8-7078896d8ce4","988e9976-3471-478c-89f6-11fd46458d7f"],"layerId":"85644d0a-8011-45af-a751-7961b8bdd071","position":"top","seriesType":"bar","showGridlines":false,"splitAccessor":"4d4c068a-0194-4d54-a1fa-3863c3df9331","xAccessor":"bcbccc16-d042-40fa-a9b2-0f09268281ff"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar"}},"title":"App state Browser Send/Receive Duration [Metricbeat Azure]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"e2704140-04a3-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTUsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"85644d0a-8011-45af-a751-7961b8bdd071":{"columnOrder":["bcbccc16-d042-40fa-a9b2-0f09268281ff","4d4c068a-0194-4d54-a1fa-3863c3df9331","b5a75764-e98b-434b-a0f0-5658a4aa1cf6","ab158cba-532f-47f8-8450-db883504dc0f"],"columns":{"4d4c068a-0194-4d54-a1fa-3863c3df9331":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Url Path","operationType":"terms","params":{"orderBy":{"type":"alphabetical"},"orderDirection":"asc","size":3},"scale":"ordinal","sourceField":"azure.dimensions.browser_timing_url_path"},"ab158cba-532f-47f8-8450-db883504dc0f":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Processing duration","operationType":"average","scale":"ratio","sourceField":"azure.app_state.browser_timings_processing_duration.avg"},"b5a75764-e98b-434b-a0f0-5658a4aa1cf6":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Networking duration","operationType":"average","scale":"ratio","sourceField":"azure.app_state.browser_timings_network_duration.avg"},"bcbccc16-d042-40fa-a9b2-0f09268281ff":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["b5a75764-e98b-434b-a0f0-5658a4aa1cf6","ab158cba-532f-47f8-8450-db883504dc0f"],"layerId":"85644d0a-8011-45af-a751-7961b8bdd071","position":"top","seriesType":"bar","showGridlines":false,"splitAccessor":"4d4c068a-0194-4d54-a1fa-3863c3df9331","xAccessor":"bcbccc16-d042-40fa-a9b2-0f09268281ff"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar"}},"title":"App state Browser Networking/Processing Duration [Metricbeat Azure]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"0e74dee0-04a4-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTYsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"85644d0a-8011-45af-a751-7961b8bdd071":{"columnOrder":["bcbccc16-d042-40fa-a9b2-0f09268281ff","a1f669d0-c9f2-4bc5-9bdd-e40badd261b9","b0d8f2d4-91f3-469c-8bcb-962a9fb48fba","252dfd5f-26bd-4861-bb01-4b3530cadd95"],"columns":{"252dfd5f-26bd-4861-bb01-4b3530cadd95":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"CPU percentage","operationType":"average","params":{"format":{"id":"percent","params":{"decimals":2}}},"scale":"ratio","sourceField":"azure.app_state.performance_counters_process_cpu_percentage.avg"},"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Instance","operationType":"terms","params":{"orderBy":{"columnId":"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"azure.dimensions.cloud_role_instance"},"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total CPU percentage ","operationType":"average","params":{"format":{"id":"percent","params":{"decimals":2}}},"scale":"ratio","sourceField":"azure.app_state.performance_counters_process_cpu_percentage_total.avg"},"bcbccc16-d042-40fa-a9b2-0f09268281ff":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["b0d8f2d4-91f3-469c-8bcb-962a9fb48fba","252dfd5f-26bd-4861-bb01-4b3530cadd95"],"layerId":"85644d0a-8011-45af-a751-7961b8bdd071","position":"top","seriesType":"area","showGridlines":false,"splitAccessor":"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9","xAccessor":"bcbccc16-d042-40fa-a9b2-0f09268281ff"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"area"}},"title":"App state Process CPU usage [Metricbeat Azure]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"cfa361a0-04a8-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTcsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"85644d0a-8011-45af-a751-7961b8bdd071":{"columnOrder":["bcbccc16-d042-40fa-a9b2-0f09268281ff","a1f669d0-c9f2-4bc5-9bdd-e40badd261b9","b0d8f2d4-91f3-469c-8bcb-962a9fb48fba"],"columns":{"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Instance","operationType":"terms","params":{"orderBy":{"columnId":"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"azure.dimensions.cloud_role_instance"},"b0d8f2d4-91f3-469c-8bcb-962a9fb48fba":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Process private bytes","operationType":"average","params":{"format":{"id":"bytes","params":{"decimals":2}}},"scale":"ratio","sourceField":"azure.app_state.performance_counters_process_private_bytes.avg"},"bcbccc16-d042-40fa-a9b2-0f09268281ff":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["b0d8f2d4-91f3-469c-8bcb-962a9fb48fba"],"layerId":"85644d0a-8011-45af-a751-7961b8bdd071","position":"top","seriesType":"area","showGridlines":false,"splitAccessor":"a1f669d0-c9f2-4bc5-9bdd-e40badd261b9","xAccessor":"bcbccc16-d042-40fa-a9b2-0f09268281ff"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"area"}},"title":"App state Process Private Bytes [Metricbeat Azure]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"2b54b2c0-04a8-11eb-8034-63f2039e9d3f","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0OTgsMV0="} -{"attributes":{"description":"Provides relevant app insights metrics for web applications","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"controlledBy\": \"1532342651170\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"azure.app_state.application_id\", \"negate\": false, \"params\": {\"query\": \"42cb59a9-d5be-400b-a5c4-69b0a0026ac6\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"azure.app_state.application_id\": \"42cb59a9-d5be-400b-a5c4-69b0a0026ac6\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"307a1ecd-284c-4f35-9a3c-d5b77c9a9c82\",\"w\":7,\"x\":0,\"y\":0},\"panelIndex\":\"307a1ecd-284c-4f35-9a3c-d5b77c9a9c82\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_307a1ecd-284c-4f35-9a3c-d5b77c9a9c82\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"654e745f-360d-4898-89b6-57f788c5f540\",\"w\":20,\"x\":7,\"y\":0},\"panelIndex\":\"654e745f-360d-4898-89b6-57f788c5f540\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Exceptions\",\"panelRefName\":\"panel_654e745f-360d-4898-89b6-57f788c5f540\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"5adca737-559d-4b4f-9fa7-58841daa99c5\",\"w\":21,\"x\":27,\"y\":0},\"panelIndex\":\"5adca737-559d-4b4f-9fa7-58841daa99c5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Available Memory\",\"panelRefName\":\"panel_5adca737-559d-4b4f-9fa7-58841daa99c5\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"531cf244-45e0-43c3-9920-8f32397bd973\",\"w\":8,\"x\":0,\"y\":15},\"panelIndex\":\"531cf244-45e0-43c3-9920-8f32397bd973\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_531cf244-45e0-43c3-9920-8f32397bd973\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"b9242495-babc-48a7-9ad7-56c62b1dc117\",\"w\":8,\"x\":8,\"y\":15},\"panelIndex\":\"b9242495-babc-48a7-9ad7-56c62b1dc117\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_b9242495-babc-48a7-9ad7-56c62b1dc117\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"d311025a-f5c5-4e48-9f1c-710f59264c43\",\"w\":8,\"x\":16,\"y\":15},\"panelIndex\":\"d311025a-f5c5-4e48-9f1c-710f59264c43\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_d311025a-f5c5-4e48-9f1c-710f59264c43\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"48974418-b1f7-4050-921e-a83771e125ae\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"48974418-b1f7-4050-921e-a83771e125ae\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Requests\",\"panelRefName\":\"panel_48974418-b1f7-4050-921e-a83771e125ae\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"39d20db1-316a-4ff3-811a-5571cb4497c3\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"39d20db1-316a-4ff3-811a-5571cb4497c3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Browser Send/Receive Duration\",\"panelRefName\":\"panel_39d20db1-316a-4ff3-811a-5571cb4497c3\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"bc810208-0395-4c70-9057-d7307e064e43\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"bc810208-0395-4c70-9057-d7307e064e43\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Browser Networking/Processing Duration\",\"panelRefName\":\"panel_bc810208-0395-4c70-9057-d7307e064e43\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"ecf6fbfa-ba65-481e-af85-07fd9d5feb5f\",\"w\":24,\"x\":0,\"y\":45},\"panelIndex\":\"ecf6fbfa-ba65-481e-af85-07fd9d5feb5f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Process CPU Usage\",\"panelRefName\":\"panel_ecf6fbfa-ba65-481e-af85-07fd9d5feb5f\"},{\"version\":\"7.9.2\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"40a1b80b-cd62-446d-91aa-a971bb3769e7\",\"w\":24,\"x\":24,\"y\":45},\"panelIndex\":\"40a1b80b-cd62-446d-91aa-a971bb3769e7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Process Private Bytes\",\"panelRefName\":\"panel_40a1b80b-cd62-446d-91aa-a971bb3769e7\"}]","timeRestore":false,"title":"[Metricbeat Azure] App State Overview","version":1},"coreMigrationVersion":"8.0.0","id":"d5fbd610-03d9-11eb-8034-63f2039e9d3f","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"2e5183a0-03da-11eb-8034-63f2039e9d3f","name":"307a1ecd-284c-4f35-9a3c-d5b77c9a9c82:panel_307a1ecd-284c-4f35-9a3c-d5b77c9a9c82","type":"visualization"},{"id":"1064f9a0-04a5-11eb-8034-63f2039e9d3f","name":"654e745f-360d-4898-89b6-57f788c5f540:panel_654e745f-360d-4898-89b6-57f788c5f540","type":"lens"},{"id":"76cc1d70-04a7-11eb-8034-63f2039e9d3f","name":"5adca737-559d-4b4f-9fa7-58841daa99c5:panel_5adca737-559d-4b4f-9fa7-58841daa99c5","type":"lens"},{"id":"a89c8fd0-03ec-11eb-8034-63f2039e9d3f","name":"531cf244-45e0-43c3-9920-8f32397bd973:panel_531cf244-45e0-43c3-9920-8f32397bd973","type":"lens"},{"id":"cb5ec410-03ed-11eb-8034-63f2039e9d3f","name":"b9242495-babc-48a7-9ad7-56c62b1dc117:panel_b9242495-babc-48a7-9ad7-56c62b1dc117","type":"lens"},{"id":"0df175c0-03ee-11eb-8034-63f2039e9d3f","name":"d311025a-f5c5-4e48-9f1c-710f59264c43:panel_d311025a-f5c5-4e48-9f1c-710f59264c43","type":"lens"},{"id":"f0678020-04a2-11eb-8034-63f2039e9d3f","name":"48974418-b1f7-4050-921e-a83771e125ae:panel_48974418-b1f7-4050-921e-a83771e125ae","type":"lens"},{"id":"e2704140-04a3-11eb-8034-63f2039e9d3f","name":"39d20db1-316a-4ff3-811a-5571cb4497c3:panel_39d20db1-316a-4ff3-811a-5571cb4497c3","type":"lens"},{"id":"0e74dee0-04a4-11eb-8034-63f2039e9d3f","name":"bc810208-0395-4c70-9057-d7307e064e43:panel_bc810208-0395-4c70-9057-d7307e064e43","type":"lens"},{"id":"cfa361a0-04a8-11eb-8034-63f2039e9d3f","name":"ecf6fbfa-ba65-481e-af85-07fd9d5feb5f:panel_ecf6fbfa-ba65-481e-af85-07fd9d5feb5f","type":"lens"},{"id":"2b54b2c0-04a8-11eb-8034-63f2039e9d3f","name":"40a1b80b-cd62-446d-91aa-a971bb3769e7:panel_40a1b80b-cd62-446d-91aa-a971bb3769e7","type":"lens"}],"type":"dashboard","updated_at":"2021-08-04T16:30:42.950Z","version":"WzM0ODcsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-billing-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-billing-overview.ndjson deleted file mode 100644 index e4f05aebca8e..000000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-billing-overview.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Billing Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.billing.department_name\",\"id\":\"1594294278147\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Department\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.billing.account_name\",\"id\":\"1594294329560\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Account\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.subscription_id\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_3_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1578578146383\",\"indexPatternRefName\":\"control_4_index_pattern\",\"label\":\"Resource Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Billing Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"82a51dd0-c1d7-11ea-b7e7-0f48178cdb3c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_3_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_4_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:43.912Z","version":"WzM1MDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Billing subscriptions [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total costs\",\"field\":\"azure.billing.pretax_cost\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"azure.subscription_id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Billing subscriptions [Metricbeat Azure]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"6ffa7e20-c1da-11ea-b7e7-0f48178cdb3c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:43.912Z","version":"WzM1MDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Billing resource groups [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total costs\",\"field\":\"azure.billing.pretax_cost\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"azure.resource.group\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"row\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Billing resource groups [Metricbeat Azure]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"b18053b0-c1da-11ea-b7e7-0f48178cdb3c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:43.912Z","version":"WzM1MDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Billing resource names [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total costs\",\"field\":\"azure.billing.pretax_cost\"},\"schema\":\"metric\",\"type\":\"sum\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"azure.resource.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"row\":true,\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Billing resource names [Metricbeat Azure]\",\"type\":\"pie\"}"},"coreMigrationVersion":"8.0.0","id":"c8016f70-c1da-11ea-b7e7-0f48178cdb3c","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:43.912Z","version":"WzM1MDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Charges Forecast [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"1f64e4e0-c1c7-11ea-879f-d1f118e66220\"}],\"bar_color_rules\":[{\"id\":\"20dbcd70-c1c7-11ea-879f-d1f118e66220\"}],\"drop_last_bucket\":1,\"gauge_color_rules\":[{\"id\":\"22692430-c1c7-11ea-879f-d1f118e66220\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"24h\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(25,77,51,1)\",\"fill\":\"0.7\",\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Actual costs\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"azure.billing.actual_cost\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"override_index_pattern\":0,\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":1,\"terms_field\":\"azure.billing.usage_date\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"d09632c0-c120-11ea-b262-d3ff1f3885f8\",\"label\":\"Forecast costs\",\"line_width\":\"2\",\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"azure.billing.forecast_cost\",\"id\":\"d09632c1-c120-11ea-b262-d3ff1f3885f8\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"offset_time\":\"\",\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"azure.billing.usage_date\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Charges Forecast [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9142aca0-c1c7-11ea-b7e7-0f48178cdb3c","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:43.912Z","version":"WzM1MDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Usage Details [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"1f64e4e0-c1c7-11ea-879f-d1f118e66220\"}],\"bar_color_rules\":[{\"id\":\"20dbcd70-c1c7-11ea-879f-d1f118e66220\"}],\"drop_last_bucket\":1,\"gauge_color_rules\":[{\"id\":\"22692430-c1c7-11ea-879f-d1f118e66220\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"24h\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"d09632c0-c120-11ea-b262-d3ff1f3885f8\",\"label\":\"Usage Details\",\"line_width\":\"2\",\"metrics\":[{\"agg_with\":\"sum\",\"field\":\"azure.billing.pretax_cost\",\"id\":\"d09632c1-c120-11ea-b262-d3ff1f3885f8\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"sum\"}],\"offset_time\":\"\",\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"azure.billing.usage_start\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Usage Details [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"05d5b3e0-c1c9-11ea-b7e7-0f48178cdb3c","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:43.912Z","version":"WzM1MDUsMV0="} -{"attributes":{"description":"This dashboard gives an overview of resource costs and forecast","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"3202a4c8-ed88-4592-9d39-73846426413b\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"3202a4c8-ed88-4592-9d39-73846426413b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_3202a4c8-ed88-4592-9d39-73846426413b\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"c18f8802-6189-4966-abe5-30bf2c7c6d63\",\"w\":15,\"x\":0,\"y\":5},\"panelIndex\":\"c18f8802-6189-4966-abe5-30bf2c7c6d63\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Subscriptions\",\"panelRefName\":\"panel_c18f8802-6189-4966-abe5-30bf2c7c6d63\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"0a93b125-de04-466e-a1d0-7b56d1b31b52\",\"w\":16,\"x\":15,\"y\":5},\"panelIndex\":\"0a93b125-de04-466e-a1d0-7b56d1b31b52\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Resource groups\",\"panelRefName\":\"panel_0a93b125-de04-466e-a1d0-7b56d1b31b52\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"f6b54b8f-b9e5-4c20-9e4c-8f83935ca739\",\"w\":17,\"x\":31,\"y\":5},\"panelIndex\":\"f6b54b8f-b9e5-4c20-9e4c-8f83935ca739\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Resources\",\"panelRefName\":\"panel_f6b54b8f-b9e5-4c20-9e4c-8f83935ca739\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":17,\"i\":\"323f890e-c4d6-4c84-a3d8-f3d4277d3c2f\",\"w\":48,\"x\":0,\"y\":21},\"panelIndex\":\"323f890e-c4d6-4c84-a3d8-f3d4277d3c2f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Forecast\",\"panelRefName\":\"panel_323f890e-c4d6-4c84-a3d8-f3d4277d3c2f\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"fb121db4-1343-4e4d-b1a3-e3f3531ae045\",\"w\":48,\"x\":0,\"y\":38},\"panelIndex\":\"fb121db4-1343-4e4d-b1a3-e3f3531ae045\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Daily usage\",\"panelRefName\":\"panel_fb121db4-1343-4e4d-b1a3-e3f3531ae045\"}]","timeRestore":false,"title":"[Metricbeat Azure] Billing overview","version":1},"coreMigrationVersion":"8.0.0","id":"d3efeb30-c1c7-11ea-b7e7-0f48178cdb3c","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"82a51dd0-c1d7-11ea-b7e7-0f48178cdb3c","name":"3202a4c8-ed88-4592-9d39-73846426413b:panel_3202a4c8-ed88-4592-9d39-73846426413b","type":"visualization"},{"id":"6ffa7e20-c1da-11ea-b7e7-0f48178cdb3c","name":"c18f8802-6189-4966-abe5-30bf2c7c6d63:panel_c18f8802-6189-4966-abe5-30bf2c7c6d63","type":"visualization"},{"id":"b18053b0-c1da-11ea-b7e7-0f48178cdb3c","name":"0a93b125-de04-466e-a1d0-7b56d1b31b52:panel_0a93b125-de04-466e-a1d0-7b56d1b31b52","type":"visualization"},{"id":"c8016f70-c1da-11ea-b7e7-0f48178cdb3c","name":"f6b54b8f-b9e5-4c20-9e4c-8f83935ca739:panel_f6b54b8f-b9e5-4c20-9e4c-8f83935ca739","type":"visualization"},{"id":"9142aca0-c1c7-11ea-b7e7-0f48178cdb3c","name":"323f890e-c4d6-4c84-a3d8-f3d4277d3c2f:panel_323f890e-c4d6-4c84-a3d8-f3d4277d3c2f","type":"visualization"},{"id":"05d5b3e0-c1c9-11ea-b7e7-0f48178cdb3c","name":"fb121db4-1343-4e4d-b1a3-e3f3531ae045:panel_fb121db4-1343-4e4d-b1a3-e3f3531ae045","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:43.912Z","version":"WzM0OTksMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-blob-storage-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-blob-storage-overview.ndjson deleted file mode 100644 index e4f310cdece2..000000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-blob-storage-overview.ndjson +++ /dev/null @@ -1,12 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Blob Storage Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Azure Storage\\n\\n[Overview](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [**Blob**](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [File](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [Table](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [Queue](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Blob Storage Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"e4b25ee0-32f6-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:44.945Z","version":"WzM1MDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Availability [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(104,204,202,1)\",\"id\":\"18f616c0-32e2-11ea-867b-37070aefa392\",\"operator\":\"gte\",\"value\":100},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"998b1c90-32e2-11ea-867b-37070aefa392\",\"operator\":\"lt\",\"value\":100}],\"bar_color_rules\":[{\"id\":\"28142cf0-32e2-11ea-867b-37070aefa392\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"29808e30-32e2-11ea-867b-37070aefa392\"}],\"gauge_inner_width\":\"7\",\"gauge_style\":\"circle\",\"gauge_width\":10,\"id\":\"0e91b810-32e2-11ea-a93d-dd20c62559b3\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.6\",\"formatter\":\"number\",\"hide_in_legend\":1,\"id\":\"0e91b811-32e2-11ea-a93d-dd20c62559b3\",\"label\":\"Availability\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.availability.avg\",\"id\":\"0e91b812-32e2-11ea-a93d-dd20c62559b3\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}} %\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Availability [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Blob Capacity [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"azure.resource.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Blob Capacity\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.blob_capacity.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Blob Capacity [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"17ee2920-3391-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:44.945Z","version":"WzM1MDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Blob Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Blob Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.blob_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Blob Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"55936920-3391-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:44.945Z","version":"WzM1MTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Transactions [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"avg(azure.storage.transactions.total)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.transactions.total\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.response_type\",\"terms_order_by\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Transactions [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"553f9320-32e9-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Storage Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1578578146383\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Storage Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"acced050-32d1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success Server Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"SuccessServerLatency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_server_latency.avg\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success Server Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success E2E Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"da4459b0-32ea-11ea-be35-cb10be813609\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"da4459b1-32ea-11ea-be35-cb10be813609\",\"label\":\"Success E2E Latency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_e2elatency.avg\",\"id\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success E2E Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Container Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Container Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.container_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Container Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9e991b10-3391-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:44.945Z","version":"WzM1MTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Egress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,149,177,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Egress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.egress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Egress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Ingress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Ingress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.ingress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Ingress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTksMV0="} -{"attributes":{"description":"This dashboard shows metrics for the blob storage type in Azure.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": \"blob\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"azure.namespace\", \"negate\": false, \"params\": {\"query\": \"Microsoft.Storage/storageAccounts/blobServices\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"azure.namespace\": \"Microsoft.Storage/storageAccounts/blobServices\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"w\":5,\"x\":9,\"y\":0},\"panelIndex\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Availability\",\"panelRefName\":\"panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"0c873134-b025-487d-be81-f727dbff0174\",\"w\":5,\"x\":14,\"y\":0},\"panelIndex\":\"0c873134-b025-487d-be81-f727dbff0174\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_0c873134-b025-487d-be81-f727dbff0174\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"41faed50-ba96-4484-b6dc-71ed3e2d3427\",\"w\":5,\"x\":19,\"y\":0},\"panelIndex\":\"41faed50-ba96-4484-b6dc-71ed3e2d3427\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_41faed50-ba96-4484-b6dc-71ed3e2d3427\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"w\":19,\"x\":29,\"y\":0},\"panelIndex\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Transactions\",\"panelRefName\":\"panel_1d623c03-4d02-4a81-b91e-49e82e112016\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ff6441f8-d66d-4399-bae5-25d3d861b299\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"87066244-7840-4555-9d12-026d64977f1a\",\"w\":20,\"x\":9,\"y\":9},\"panelIndex\":\"87066244-7840-4555-9d12-026d64977f1a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success Server Latency\",\"panelRefName\":\"panel_87066244-7840-4555-9d12-026d64977f1a\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"756da375-e6a2-4668-af43-0cd294878254\",\"w\":19,\"x\":29,\"y\":9},\"panelIndex\":\"756da375-e6a2-4668-af43-0cd294878254\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success E2E Latency\",\"panelRefName\":\"panel_756da375-e6a2-4668-af43-0cd294878254\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"34aa5ce7-4f4b-4712-836f-3765e7c3fb3f\",\"w\":5,\"x\":24,\"y\":0},\"panelIndex\":\"34aa5ce7-4f4b-4712-836f-3765e7c3fb3f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_34aa5ce7-4f4b-4712-836f-3765e7c3fb3f\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"w\":20,\"x\":9,\"y\":24},\"panelIndex\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Egress Traffic by APIName\",\"panelRefName\":\"panel_a715fafc-ca38-410c-9253-12ba506eabc0\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"w\":19,\"x\":29,\"y\":24},\"panelIndex\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ingress Traffic by APIName\",\"panelRefName\":\"panel_75f72920-be71-47a9-a967-f1c862ab2961\"}]","timeRestore":false,"title":"[Metricbeat Azure] Blob Storage Overview","version":1},"coreMigrationVersion":"8.0.0","id":"b165ef60-32f7-11ea-a83e-25b8612d00cc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"e4b25ee0-32f6-11ea-a83e-25b8612d00cc","name":"ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05:panel_ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05","type":"visualization"},{"id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","name":"a9456b9b-efa6-410d-a56c-4b66aa8c499e:panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e","type":"visualization"},{"id":"17ee2920-3391-11ea-a83e-25b8612d00cc","name":"0c873134-b025-487d-be81-f727dbff0174:panel_0c873134-b025-487d-be81-f727dbff0174","type":"visualization"},{"id":"55936920-3391-11ea-a83e-25b8612d00cc","name":"41faed50-ba96-4484-b6dc-71ed3e2d3427:panel_41faed50-ba96-4484-b6dc-71ed3e2d3427","type":"visualization"},{"id":"553f9320-32e9-11ea-a83e-25b8612d00cc","name":"1d623c03-4d02-4a81-b91e-49e82e112016:panel_1d623c03-4d02-4a81-b91e-49e82e112016","type":"visualization"},{"id":"acced050-32d1-11ea-a83e-25b8612d00cc","name":"ff6441f8-d66d-4399-bae5-25d3d861b299:panel_ff6441f8-d66d-4399-bae5-25d3d861b299","type":"visualization"},{"id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","name":"87066244-7840-4555-9d12-026d64977f1a:panel_87066244-7840-4555-9d12-026d64977f1a","type":"visualization"},{"id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","name":"756da375-e6a2-4668-af43-0cd294878254:panel_756da375-e6a2-4668-af43-0cd294878254","type":"visualization"},{"id":"9e991b10-3391-11ea-a83e-25b8612d00cc","name":"34aa5ce7-4f4b-4712-836f-3765e7c3fb3f:panel_34aa5ce7-4f4b-4712-836f-3765e7c3fb3f","type":"visualization"},{"id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","name":"a715fafc-ca38-410c-9253-12ba506eabc0:panel_a715fafc-ca38-410c-9253-12ba506eabc0","type":"visualization"},{"id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","name":"75f72920-be71-47a9-a967-f1c862ab2961:panel_75f72920-be71-47a9-a967-f1c862ab2961","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:44.945Z","version":"WzM1MDYsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-instance-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-instance-overview.ndjson deleted file mode 100644 index f9834330bdf0..000000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-instance-overview.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Navigation Container Instance Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"### Azure Containers\\n\\n[**Instances**](#/dashboard/9c11ac60-6cf6-11ea-8fe8-71add5fd7c38) |\\n[Registries](#/dashboard/6f2393f0-6d08-11ea-8fe8-71add5fd7c38) |\\n[Services](#/dashboard/dae20ed0-6d0a-11ea-8fe8-71add5fd7c38) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Container Instance Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"5720b830-6aad-11ea-af5c-73e8f396b3e9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:45.960Z","version":"WzM1MTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Instance CPU Utilization [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerInstance/containerGroups\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Azure Container CPU Utilization\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.container_instance.cpu_usage.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Instance CPU Utilization [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"04f8eec0-6ab1-11ea-af5c-73e8f396b3e9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:45.960Z","version":"WzM1MjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Instance Memory Utilization [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerInstance/containerGroups\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Instance Memory Utilization\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.container_instance.memory_usage.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Instance Memory Utilization [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"942844b0-6ac5-11ea-af5c-73e8f396b3e9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:45.960Z","version":"WzM1MjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Containers Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1584710440054\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1584710497045\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1584710535722\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Containers Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"0fa31060-6aae-11ea-af5c-73e8f396b3e9","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Instance Network Bytes Received/s [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerInstance/containerGroups\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Instance Network Bytes Received/s\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.container_instance.network_bytes_received_per_second.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Instance Network Bytes Received/s [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bd1c93b0-6cf7-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:45.960Z","version":"WzM1MjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Instance Network Bytes Transmitted/s [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerInstance/containerGroups\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(128,137,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Instance Network Bytes Transmitted/s\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.container_instance.network_bytes_transmitted_per_second.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Instance Network Bytes Transmitted/s [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"74a8e130-6cfa-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:45.960Z","version":"WzM1MjQsMV0="} -{"attributes":{"description":"This dashboard shows metrics for the container instances in Azure.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"c3f93abd-4a7c-43fa-bde7-d26925082d2f\",\"w\":11,\"x\":0,\"y\":0},\"panelIndex\":\"c3f93abd-4a7c-43fa-bde7-d26925082d2f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_c3f93abd-4a7c-43fa-bde7-d26925082d2f\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"ea4c505b-43fb-4869-a94a-bba028071ecc\",\"w\":17,\"x\":11,\"y\":0},\"panelIndex\":\"ea4c505b-43fb-4869-a94a-bba028071ecc\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Instance CPU Utilization\",\"panelRefName\":\"panel_ea4c505b-43fb-4869-a94a-bba028071ecc\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"0899027b-629e-4889-821f-45ee0161bd91\",\"w\":20,\"x\":28,\"y\":0},\"panelIndex\":\"0899027b-629e-4889-821f-45ee0161bd91\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Instance Memory Utilization\",\"panelRefName\":\"panel_0899027b-629e-4889-821f-45ee0161bd91\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"f72bd066-3696-4e0a-9660-78fb47c92152\",\"w\":11,\"x\":0,\"y\":5},\"panelIndex\":\"f72bd066-3696-4e0a-9660-78fb47c92152\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Containers Filters\",\"panelRefName\":\"panel_f72bd066-3696-4e0a-9660-78fb47c92152\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7c9016b9-a76e-41f6-9945-ac6880fd9ab0\",\"w\":24,\"x\":0,\"y\":16},\"panelIndex\":\"7c9016b9-a76e-41f6-9945-ac6880fd9ab0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Instance Netowrk Bytes Received/s\",\"panelRefName\":\"panel_7c9016b9-a76e-41f6-9945-ac6880fd9ab0\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"0abdf4ee-b569-430b-972a-a60160ef2221\",\"w\":24,\"x\":24,\"y\":16},\"panelIndex\":\"0abdf4ee-b569-430b-972a-a60160ef2221\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Instance Network Bytes Transmitted/s\",\"panelRefName\":\"panel_0abdf4ee-b569-430b-972a-a60160ef2221\"}]","timeRestore":false,"title":"[Metricbeat Azure] Container Instance Overview","version":1},"coreMigrationVersion":"8.0.0","id":"9c11ac60-6cf6-11ea-8fe8-71add5fd7c38","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"5720b830-6aad-11ea-af5c-73e8f396b3e9","name":"c3f93abd-4a7c-43fa-bde7-d26925082d2f:panel_c3f93abd-4a7c-43fa-bde7-d26925082d2f","type":"visualization"},{"id":"04f8eec0-6ab1-11ea-af5c-73e8f396b3e9","name":"ea4c505b-43fb-4869-a94a-bba028071ecc:panel_ea4c505b-43fb-4869-a94a-bba028071ecc","type":"visualization"},{"id":"942844b0-6ac5-11ea-af5c-73e8f396b3e9","name":"0899027b-629e-4889-821f-45ee0161bd91:panel_0899027b-629e-4889-821f-45ee0161bd91","type":"visualization"},{"id":"0fa31060-6aae-11ea-af5c-73e8f396b3e9","name":"f72bd066-3696-4e0a-9660-78fb47c92152:panel_f72bd066-3696-4e0a-9660-78fb47c92152","type":"visualization"},{"id":"bd1c93b0-6cf7-11ea-8fe8-71add5fd7c38","name":"7c9016b9-a76e-41f6-9945-ac6880fd9ab0:panel_7c9016b9-a76e-41f6-9945-ac6880fd9ab0","type":"visualization"},{"id":"74a8e130-6cfa-11ea-8fe8-71add5fd7c38","name":"0abdf4ee-b569-430b-972a-a60160ef2221:panel_0abdf4ee-b569-430b-972a-a60160ef2221","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:45.960Z","version":"WzM1MTgsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-registry-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-registry-overview.ndjson deleted file mode 100644 index 1b0739a9e306..000000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-registry-overview.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Navigation Container Registry Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"### Azure Containers\\n\\n[Instances](#/dashboard/9c11ac60-6cf6-11ea-8fe8-71add5fd7c38) |\\n[**Registries**](#/dashboard/6f2393f0-6d08-11ea-8fe8-71add5fd7c38) |\\n[Services](#/dashboard/dae20ed0-6d0a-11ea-8fe8-71add5fd7c38) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Container Registry Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"1e70dc50-6d22-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:46.992Z","version":"WzM1MjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Registry Successful Pull Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerRegistry/registries\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(188,74,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Registry Successful Pull Count\",\"line_width\":\"02\",\"metrics\":[{\"field\":\"azure.container_registry.successful_pull_count.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Registry Successful Pull Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7972b260-6d07-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:46.992Z","version":"WzM1MjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Registry Successful Push Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerRegistry/registries\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(128,137,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Registry Successful Push Count\",\"line_width\":\"02\",\"metrics\":[{\"field\":\"azure.container_registry.successful_push_count.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Registry Successful Push Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b88b7f90-6d07-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:46.992Z","version":"WzM1MjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Containers Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1584710440054\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1584710497045\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1584710535722\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Containers Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"0fa31060-6aae-11ea-af5c-73e8f396b3e9","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Registry Total Pull Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerRegistry/registries\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Registry Total Pull Count\",\"line_width\":\"02\",\"metrics\":[{\"field\":\"azure.container_registry.total_pull_count.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Registry Total Pull Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ff303710-6d07-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:46.992Z","version":"WzM1MzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Registry Total Push Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerRegistry/registries\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Registry Total Push Count\",\"line_width\":\"02\",\"metrics\":[{\"field\":\"azure.container_registry.total_push_count.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Registry Total Push Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ddea7430-6d07-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:46.992Z","version":"WzM1MzEsMV0="} -{"attributes":{"description":"This dashboard shows metrics for the container registry in Azure.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"51fee31f-97e1-4f8e-aeb2-daeca1ccf9be\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"51fee31f-97e1-4f8e-aeb2-daeca1ccf9be\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_51fee31f-97e1-4f8e-aeb2-daeca1ccf9be\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"dde974c7-6d81-4580-9b7f-c7a999ecc19e\",\"w\":18,\"x\":9,\"y\":0},\"panelIndex\":\"dde974c7-6d81-4580-9b7f-c7a999ecc19e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Registry Successful Pull Count\",\"panelRefName\":\"panel_dde974c7-6d81-4580-9b7f-c7a999ecc19e\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"25a02616-f735-494a-97f7-4a56531e9e5e\",\"w\":21,\"x\":27,\"y\":0},\"panelIndex\":\"25a02616-f735-494a-97f7-4a56531e9e5e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Registry Successful Push Count\",\"panelRefName\":\"panel_25a02616-f735-494a-97f7-4a56531e9e5e\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"ec183a66-545b-4a67-bfb4-568def660612\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"ec183a66-545b-4a67-bfb4-568def660612\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Containers Filters\",\"panelRefName\":\"panel_ec183a66-545b-4a67-bfb4-568def660612\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"7f508c43-afd7-4874-86ef-c6976700759b\",\"w\":24,\"x\":0,\"y\":16},\"panelIndex\":\"7f508c43-afd7-4874-86ef-c6976700759b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Registry Total Pull Count\",\"panelRefName\":\"panel_7f508c43-afd7-4874-86ef-c6976700759b\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"97a048da-9b56-420b-af8c-1f0d568f0f94\",\"w\":24,\"x\":24,\"y\":16},\"panelIndex\":\"97a048da-9b56-420b-af8c-1f0d568f0f94\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Registry Total Push Count\",\"panelRefName\":\"panel_97a048da-9b56-420b-af8c-1f0d568f0f94\"}]","timeRestore":false,"title":"[Metricbeat Azure] Container Registry Overview","version":1},"coreMigrationVersion":"8.0.0","id":"6f2393f0-6d08-11ea-8fe8-71add5fd7c38","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"1e70dc50-6d22-11ea-8fe8-71add5fd7c38","name":"51fee31f-97e1-4f8e-aeb2-daeca1ccf9be:panel_51fee31f-97e1-4f8e-aeb2-daeca1ccf9be","type":"visualization"},{"id":"7972b260-6d07-11ea-8fe8-71add5fd7c38","name":"dde974c7-6d81-4580-9b7f-c7a999ecc19e:panel_dde974c7-6d81-4580-9b7f-c7a999ecc19e","type":"visualization"},{"id":"b88b7f90-6d07-11ea-8fe8-71add5fd7c38","name":"25a02616-f735-494a-97f7-4a56531e9e5e:panel_25a02616-f735-494a-97f7-4a56531e9e5e","type":"visualization"},{"id":"0fa31060-6aae-11ea-af5c-73e8f396b3e9","name":"ec183a66-545b-4a67-bfb4-568def660612:panel_ec183a66-545b-4a67-bfb4-568def660612","type":"visualization"},{"id":"ff303710-6d07-11ea-8fe8-71add5fd7c38","name":"7f508c43-afd7-4874-86ef-c6976700759b:panel_7f508c43-afd7-4874-86ef-c6976700759b","type":"visualization"},{"id":"ddea7430-6d07-11ea-8fe8-71add5fd7c38","name":"97a048da-9b56-420b-af8c-1f0d568f0f94:panel_97a048da-9b56-420b-af8c-1f0d568f0f94","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:46.992Z","version":"WzM1MjUsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-service-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-service-overview.ndjson deleted file mode 100644 index e72286bc50a6..000000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-container-service-overview.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Navigation Container Service Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"### Azure Containers\\n\\n[Instances](#/dashboard/9c11ac60-6cf6-11ea-8fe8-71add5fd7c38) |\\n[Registries](#/dashboard/6f2393f0-6d08-11ea-8fe8-71add5fd7c38) |\\n[**Services**](#/dashboard/dae20ed0-6d0a-11ea-8fe8-71add5fd7c38) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Container Service Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"3630b9a0-6d22-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Service Kube Node Status Allocatable Memory Bytes [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerService/managedClusters\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Service Kube Node Status Allocatable Memory Bytes\",\"line_width\":\"02\",\"metrics\":[{\"field\":\"azure.container_service.kube_node_status_allocatable_memory_bytes.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Service Kube Node Status Allocatable Memory Bytes [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"eda368d0-6d1d-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Service Kube Node Status Allocatable CPU Cores [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerService/managedClusters\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(196,81,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Service Kube Node Status Allocatable CPU Cores\",\"line_width\":\"02\",\"metrics\":[{\"field\":\"azure.container_service.kube_node_status_allocatable_cpu_cores.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Service Kube Node Status Allocatable CPU Cores [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6e2d9930-6d1e-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Containers Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1584710440054\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1584710497045\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1584710535722\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Containers Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"0fa31060-6aae-11ea-af5c-73e8f396b3e9","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Service Kube Pod Status Phase [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0d772fb0-6d1f-11ea-a156-a582cfb250e8\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerService/managedClusters\\\" \"},\"gauge_color_rules\":[{\"id\":\"0ba507c0-6d1f-11ea-a156-a582cfb250e8\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(240,213,175,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Container Service Kube Pod Status Phase\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.container_service.kube_pod_status_phase.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"00\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.pod\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Service Kube Pod Status Phase [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bda7b580-6d1f-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container Service Kube Pod Status Ready [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.ContainerService/managedClusters\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(200,205,124,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"02\",\"metrics\":[{\"field\":\"azure.container_service.kube_pod_status_ready.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.pod\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Container Service Kube Pod Status Ready [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c19586f0-6d1e-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Container Service Kube Node Status Condition [Metricbeat Azure]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 0.2\": \"rgb(165,0,38)\", \"0.2 - 0.4\": \"rgb(244,109,67)\", \"0.4 - 0.6\": \"rgb(254,224,139)\", \"0.6 - 0.8\": \"rgb(217,239,139)\", \"0.8 - 1\": \"rgb(102,189,99)\"}, \"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"azure.container_service.kube_node_status_condition.avg\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"Ready\\\" and azure.dimensions.status : \\\"true\\\" \"},\"label\":\"Ready \\\"true\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"Ready\\\" and azure.dimensions.status : \\\"false\\\" \"},\"label\":\"Ready \\\"false\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"NetworkUnavailable\\\" and azure.dimensions.status : \\\"true\\\" \"},\"label\":\"Network Unavailable \\\"true\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"NetworkUnavailable\\\" and azure.dimensions.status : \\\"false\\\" \"},\"label\":\"NetworkUnavailable \\\"false\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"OutOfDisk\\\" and azure.dimensions.status : \\\"false\\\" \"},\"label\":\"OutOfDisk \\\"false\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"OutOfDisk\\\" and azure.dimensions.status : \\\"true\\\" \"},\"label\":\"OutOfDisk \\\"true\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"MemoryPressure\\\" and azure.dimensions.status : \\\"true\\\" \"},\"label\":\"MemoryPressure \\\"true\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"MemoryPressure\\\" and azure.dimensions.status : \\\"false\\\" \"},\"label\":\"MemoryPressure \\\"false\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"DiskPressure\\\" and azure.dimensions.status : \\\"false\\\" \"},\"label\":\"DiskPressure \\\"false\\\"\"},{\"input\":{\"language\":\"kuery\",\"query\":\"azure.dimensions.condition : \\\"DiskPressure\\\" and azure.dimensions.status : \\\"true\\\" \"},\"label\":\"DiskPressure \\\"true\\\"\"}]},\"schema\":\"segment\",\"type\":\"filters\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"azure.dimensions.node\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Green to Red\",\"colorsNumber\":5,\"colorsRange\":[{\"from\":0,\"to\":10}],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"azure.dimensions.node: Descending\",\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"filters\",\"format\":{},\"label\":\"filters\",\"params\":{}},\"y\":[{\"accessor\":2,\"aggType\":\"avg\",\"format\":{\"id\":\"number\",\"params\":{\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Average azure.container_service.kube_node_status_condition.avg\",\"params\":{}}]},\"enableHover\":false,\"invertColors\":true,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":false},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Container Service Kube Node Status Condition [Metricbeat Azure]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"8.0.0","id":"e79211c0-6d37-11ea-8fe8-71add5fd7c38","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzksMV0="} -{"attributes":{"description":"This dashboard shows metrics for the container service in Azure.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":17,\"i\":\"c35d3d89-2f34-43a0-b346-85ba0e7c9e89\",\"w\":18,\"x\":9,\"y\":0},\"panelIndex\":\"c35d3d89-2f34-43a0-b346-85ba0e7c9e89\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Service Kube Node Status Allocatable Memory\",\"panelRefName\":\"panel_c35d3d89-2f34-43a0-b346-85ba0e7c9e89\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":17,\"i\":\"e1952edf-ed31-49ee-8db1-24370998ab89\",\"w\":21,\"x\":27,\"y\":0},\"panelIndex\":\"e1952edf-ed31-49ee-8db1-24370998ab89\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Service Kube Node Status Allocatable CPU Cores\",\"panelRefName\":\"panel_e1952edf-ed31-49ee-8db1-24370998ab89\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"ec183a66-545b-4a67-bfb4-568def660612\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"ec183a66-545b-4a67-bfb4-568def660612\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Filters\",\"panelRefName\":\"panel_ec183a66-545b-4a67-bfb4-568def660612\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ada37452-619f-470a-b9cd-bafa20e7d7b1\",\"w\":24,\"x\":0,\"y\":17},\"panelIndex\":\"ada37452-619f-470a-b9cd-bafa20e7d7b1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Service Kube Pod Status Phase\",\"panelRefName\":\"panel_ada37452-619f-470a-b9cd-bafa20e7d7b1\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"c8d3ed1a-6e72-4115-9a69-db1919a36fc4\",\"w\":24,\"x\":24,\"y\":17},\"panelIndex\":\"c8d3ed1a-6e72-4115-9a69-db1919a36fc4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Service Kube Pod Status Ready\",\"panelRefName\":\"panel_c8d3ed1a-6e72-4115-9a69-db1919a36fc4\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"707fb714-99af-4484-a56e-bfecdf592c58\",\"w\":48,\"x\":0,\"y\":32},\"panelIndex\":\"707fb714-99af-4484-a56e-bfecdf592c58\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Container Service Kube Node Status Condition\",\"panelRefName\":\"panel_707fb714-99af-4484-a56e-bfecdf592c58\"}]","timeRestore":false,"title":"[Metricbeat Azure] Container Service Overview","version":1},"coreMigrationVersion":"8.0.0","id":"dae20ed0-6d0a-11ea-8fe8-71add5fd7c38","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"3630b9a0-6d22-11ea-8fe8-71add5fd7c38","name":"32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b:panel_32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b","type":"visualization"},{"id":"eda368d0-6d1d-11ea-8fe8-71add5fd7c38","name":"c35d3d89-2f34-43a0-b346-85ba0e7c9e89:panel_c35d3d89-2f34-43a0-b346-85ba0e7c9e89","type":"visualization"},{"id":"6e2d9930-6d1e-11ea-8fe8-71add5fd7c38","name":"e1952edf-ed31-49ee-8db1-24370998ab89:panel_e1952edf-ed31-49ee-8db1-24370998ab89","type":"visualization"},{"id":"0fa31060-6aae-11ea-af5c-73e8f396b3e9","name":"ec183a66-545b-4a67-bfb4-568def660612:panel_ec183a66-545b-4a67-bfb4-568def660612","type":"visualization"},{"id":"bda7b580-6d1f-11ea-8fe8-71add5fd7c38","name":"ada37452-619f-470a-b9cd-bafa20e7d7b1:panel_ada37452-619f-470a-b9cd-bafa20e7d7b1","type":"visualization"},{"id":"c19586f0-6d1e-11ea-8fe8-71add5fd7c38","name":"c8d3ed1a-6e72-4115-9a69-db1919a36fc4:panel_c8d3ed1a-6e72-4115-9a69-db1919a36fc4","type":"visualization"},{"id":"e79211c0-6d37-11ea-8fe8-71add5fd7c38","name":"707fb714-99af-4484-a56e-bfecdf592c58:panel_707fb714-99af-4484-a56e-bfecdf592c58","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:48.023Z","version":"WzM1MzIsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-database-account-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-database-account-overview.ndjson deleted file mode 100644 index ac318a1dccce..000000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-database-account-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Navigation Database Account Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"### Azure Database Accounts\\n\",\"openLinksInNewTab\":false},\"title\":\"Navigation Database Account Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"4177aab0-83cc-11ea-be84-f5d4d6b9a792","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:49.091Z","version":"WzM1NDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Database Account Data Usage [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.DocumentDb/databaseAccounts\\\" \"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"Data Usage\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.database_account.data_usage.total\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_exclude\":\"\\\"\\\"\",\"terms_field\":\"azure.dimensions.database_name\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Database Account Data Usage [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a49b4e20-8490-11ea-b181-4b1a9e0110f9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:49.091Z","version":"WzM1NDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Database Account Index Usage [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.DocumentDb/databaseAccounts\\\" \"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"Index Usage\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.database_account.index_usage.total\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_exclude\":\"\\\"\\\"\",\"terms_field\":\"azure.dimensions.database_name\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Database Account Index Usage [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d2801d70-8490-11ea-b181-4b1a9e0110f9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:49.091Z","version":"WzM1NDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Database Account Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1584710440054\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1584710497045\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1584710535722\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.dimensions.database_name\",\"id\":\"1587643606086\",\"indexPatternRefName\":\"control_3_index_pattern\",\"label\":\"Database\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"1584710535722\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Database Account Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"674c1d70-83cc-11ea-be84-f5d4d6b9a792","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_3_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:49.091Z","version":"WzM1NDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Database Account Total Requests [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.DocumentDb/databaseAccounts\\\" \"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"Total Requests\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.database_account.total_requests.count\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_exclude\":\"\\\"\\\"\",\"terms_field\":\"azure.dimensions.database_name\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Database Account Total Requests [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a16b5900-8492-11ea-b181-4b1a9e0110f9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:49.091Z","version":"WzM1NDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Database Account Document Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.DocumentDb/databaseAccounts\\\" \"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(102,102,102,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"Document Count\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"azure.database_account.document_count.total\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_exclude\":\"\\\"\\\"\",\"terms_field\":\"azure.dimensions.database_name\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Database Account Document Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d3ac7d90-8492-11ea-b181-4b1a9e0110f9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:49.091Z","version":"WzM1NDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success Server Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"SuccessServerLatency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_server_latency.avg\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success Server Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":" Database Account Requests By Status Code [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total Requests\",\"field\":\"azure.database_account.total_requests.count\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Status Codes\",\"field\":\"azure.dimensions.status_code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Database\",\"field\":\"azure.dimensions.database_name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":false,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":false,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Status Codes\",\"params\":{}}],\"splitColumn\":[{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Database\",\"params\":{}}],\"x\":null,\"y\":[{\"accessor\":2,\"aggType\":\"avg\",\"format\":{\"id\":\"number\",\"params\":{\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://localhost:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Total Requests\",\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Total Requests\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Total Requests\"},\"type\":\"value\"}],\"row\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\" Database Account Requests By Status Code [Metricbeat Azure]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"8.0.0","id":"037382e0-856e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:49.091Z","version":"WzM1NDgsMV0="} -{"attributes":{"description":"This Azure Database Account dashboard visualizes the most important database account metrics.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":4,\"i\":\"fe2125b1-526c-4293-b488-86d8c15ea3fb\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"fe2125b1-526c-4293-b488-86d8c15ea3fb\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_fe2125b1-526c-4293-b488-86d8c15ea3fb\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"db895503-5a84-4b26-b889-c3c7ca964643\",\"w\":18,\"x\":9,\"y\":0},\"panelIndex\":\"db895503-5a84-4b26-b889-c3c7ca964643\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Data Usage\",\"panelRefName\":\"panel_db895503-5a84-4b26-b889-c3c7ca964643\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"0b986285-a5d0-4a31-bdb8-0f29cd50c2eb\",\"w\":21,\"x\":27,\"y\":0},\"panelIndex\":\"0b986285-a5d0-4a31-bdb8-0f29cd50c2eb\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Index Usage\",\"panelRefName\":\"panel_0b986285-a5d0-4a31-bdb8-0f29cd50c2eb\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"7d7b71ea-eb6b-43bf-be61-80235d1d4529\",\"w\":9,\"x\":0,\"y\":4},\"panelIndex\":\"7d7b71ea-eb6b-43bf-be61-80235d1d4529\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_7d7b71ea-eb6b-43bf-be61-80235d1d4529\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"f6ce8b48-a876-4031-a43f-3ca3704a4ad6\",\"w\":24,\"x\":0,\"y\":18},\"panelIndex\":\"f6ce8b48-a876-4031-a43f-3ca3704a4ad6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Requests\",\"panelRefName\":\"panel_f6ce8b48-a876-4031-a43f-3ca3704a4ad6\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"c604014a-647f-4a1d-b2e9-0304fdacc363\",\"w\":24,\"x\":24,\"y\":18},\"panelIndex\":\"c604014a-647f-4a1d-b2e9-0304fdacc363\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Document Count\",\"panelRefName\":\"panel_c604014a-647f-4a1d-b2e9-0304fdacc363\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9\",\"w\":24,\"x\":0,\"y\":33},\"panelIndex\":\"b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Available Storage\",\"panelRefName\":\"panel_b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5e755432-3e55-405c-91cf-3348d5067a3a\",\"w\":24,\"x\":24,\"y\":33},\"panelIndex\":\"5e755432-3e55-405c-91cf-3348d5067a3a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Requests Per Status Code\",\"panelRefName\":\"panel_5e755432-3e55-405c-91cf-3348d5067a3a\"}]","timeRestore":false,"title":"[Metricbeat Azure] Database Account Overview","version":1},"coreMigrationVersion":"8.0.0","id":"b232c220-8481-11ea-b181-4b1a9e0110f9","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"4177aab0-83cc-11ea-be84-f5d4d6b9a792","name":"fe2125b1-526c-4293-b488-86d8c15ea3fb:panel_fe2125b1-526c-4293-b488-86d8c15ea3fb","type":"visualization"},{"id":"a49b4e20-8490-11ea-b181-4b1a9e0110f9","name":"db895503-5a84-4b26-b889-c3c7ca964643:panel_db895503-5a84-4b26-b889-c3c7ca964643","type":"visualization"},{"id":"d2801d70-8490-11ea-b181-4b1a9e0110f9","name":"0b986285-a5d0-4a31-bdb8-0f29cd50c2eb:panel_0b986285-a5d0-4a31-bdb8-0f29cd50c2eb","type":"visualization"},{"id":"674c1d70-83cc-11ea-be84-f5d4d6b9a792","name":"7d7b71ea-eb6b-43bf-be61-80235d1d4529:panel_7d7b71ea-eb6b-43bf-be61-80235d1d4529","type":"visualization"},{"id":"a16b5900-8492-11ea-b181-4b1a9e0110f9","name":"f6ce8b48-a876-4031-a43f-3ca3704a4ad6:panel_f6ce8b48-a876-4031-a43f-3ca3704a4ad6","type":"visualization"},{"id":"d3ac7d90-8492-11ea-b181-4b1a9e0110f9","name":"c604014a-647f-4a1d-b2e9-0304fdacc363:panel_c604014a-647f-4a1d-b2e9-0304fdacc363","type":"visualization"},{"id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","name":"b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9:panel_b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9","type":"visualization"},{"id":"037382e0-856e-11ea-91bc-ab084c7ec0e7","name":"5e755432-3e55-405c-91cf-3348d5067a3a:panel_5e755432-3e55-405c-91cf-3348d5067a3a","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:49.091Z","version":"WzM1NDAsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-file-storage-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-file-storage-overview.ndjson deleted file mode 100644 index 3f8904dc3969..000000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-file-storage-overview.ndjson +++ /dev/null @@ -1,14 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation File Storage Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Azure Storage\\n\\n[Overview](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [Blob](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [**File**](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [Table](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [Queue](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) \",\"openLinksInNewTab\":false},\"title\":\"Navigation File Storage Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"f18a7cb0-32f6-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:50.051Z","version":"WzM1NTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Availability [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(104,204,202,1)\",\"id\":\"18f616c0-32e2-11ea-867b-37070aefa392\",\"operator\":\"gte\",\"value\":100},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"998b1c90-32e2-11ea-867b-37070aefa392\",\"operator\":\"lt\",\"value\":100}],\"bar_color_rules\":[{\"id\":\"28142cf0-32e2-11ea-867b-37070aefa392\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"29808e30-32e2-11ea-867b-37070aefa392\"}],\"gauge_inner_width\":\"7\",\"gauge_style\":\"circle\",\"gauge_width\":10,\"id\":\"0e91b810-32e2-11ea-a93d-dd20c62559b3\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.6\",\"formatter\":\"number\",\"hide_in_legend\":1,\"id\":\"0e91b811-32e2-11ea-a93d-dd20c62559b3\",\"label\":\"Availability\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.availability.avg\",\"id\":\"0e91b812-32e2-11ea-a93d-dd20c62559b3\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}} %\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Availability [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage File Capacity [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"azure.resource.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"File Capacity\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.file_capacity.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage File Capacity [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"453965a0-3393-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:50.051Z","version":"WzM1NTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage File Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"File Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.file_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage File Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"722ef2f0-3393-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:50.051Z","version":"WzM1NTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage File Share Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"File Share Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.file_share_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage File Share Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a4bf9710-3393-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:50.051Z","version":"WzM1NTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Transactions [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"avg(azure.storage.transactions.total)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.transactions.total\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.response_type\",\"terms_order_by\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Transactions [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"553f9320-32e9-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Storage Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1578578146383\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Storage Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"acced050-32d1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success Server Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"SuccessServerLatency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_server_latency.avg\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success Server Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success E2E Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"da4459b0-32ea-11ea-be35-cb10be813609\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"da4459b1-32ea-11ea-be35-cb10be813609\",\"label\":\"Success E2E Latency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_e2elatency.avg\",\"id\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success E2E Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage File Share Snapshot Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"azure.resource.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,98,177,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"File Share Snapshot Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.file_share_snapshot_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage File Share Snapshot Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"09a6f150-3399-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:50.051Z","version":"WzM1NTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage File Share Snapshot Size [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"azure.resource.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,98,177,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"File Share Snapshot Size\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.file_share_snapshot_size.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage File Share Snapshot Size [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"241a55e0-3399-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:50.051Z","version":"WzM1NjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Egress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,149,177,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Egress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.egress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Egress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Ingress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Ingress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.ingress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Ingress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTksMV0="} -{"attributes":{"description":"This dashboard shows metrics for file storage type in Azure.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": \"file\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"azure.namespace\", \"negate\": false, \"params\": {\"query\": \"Microsoft.Storage/storageAccounts/fileServices\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"azure.namespace\": \"Microsoft.Storage/storageAccounts/fileServices\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"ee131d2d-7ab5-4434-9e3b-230759c3e5ff\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"ee131d2d-7ab5-4434-9e3b-230759c3e5ff\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ee131d2d-7ab5-4434-9e3b-230759c3e5ff\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"w\":5,\"x\":9,\"y\":0},\"panelIndex\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Availability\",\"panelRefName\":\"panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"b24e3e0d-a748-4bb9-ad71-e0de392e2696\",\"w\":5,\"x\":14,\"y\":0},\"panelIndex\":\"b24e3e0d-a748-4bb9-ad71-e0de392e2696\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_b24e3e0d-a748-4bb9-ad71-e0de392e2696\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"8131dfcd-2c52-4641-8259-2f4f2e7558d0\",\"w\":5,\"x\":19,\"y\":0},\"panelIndex\":\"8131dfcd-2c52-4641-8259-2f4f2e7558d0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_8131dfcd-2c52-4641-8259-2f4f2e7558d0\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"49233089-be1d-4cda-9ccf-2815152e1016\",\"w\":5,\"x\":24,\"y\":0},\"panelIndex\":\"49233089-be1d-4cda-9ccf-2815152e1016\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_49233089-be1d-4cda-9ccf-2815152e1016\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"w\":19,\"x\":29,\"y\":0},\"panelIndex\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Transactions\",\"panelRefName\":\"panel_1d623c03-4d02-4a81-b91e-49e82e112016\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ff6441f8-d66d-4399-bae5-25d3d861b299\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"87066244-7840-4555-9d12-026d64977f1a\",\"w\":20,\"x\":9,\"y\":9},\"panelIndex\":\"87066244-7840-4555-9d12-026d64977f1a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success Server Latency\",\"panelRefName\":\"panel_87066244-7840-4555-9d12-026d64977f1a\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"756da375-e6a2-4668-af43-0cd294878254\",\"w\":19,\"x\":29,\"y\":9},\"panelIndex\":\"756da375-e6a2-4668-af43-0cd294878254\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success E2E Latency\",\"panelRefName\":\"panel_756da375-e6a2-4668-af43-0cd294878254\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f\",\"w\":4,\"x\":0,\"y\":20},\"panelIndex\":\"2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"c6792441-37b6-4ef4-ad8b-21f137b2f0b4\",\"w\":5,\"x\":4,\"y\":20},\"panelIndex\":\"c6792441-37b6-4ef4-ad8b-21f137b2f0b4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_c6792441-37b6-4ef4-ad8b-21f137b2f0b4\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"w\":20,\"x\":9,\"y\":24},\"panelIndex\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Egress Traffic by APIName\",\"panelRefName\":\"panel_a715fafc-ca38-410c-9253-12ba506eabc0\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"w\":19,\"x\":29,\"y\":24},\"panelIndex\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ingress Traffic by APIName\",\"panelRefName\":\"panel_75f72920-be71-47a9-a967-f1c862ab2961\"}]","timeRestore":false,"title":"[Metricbeat Azure] File Storage Overview","version":1},"coreMigrationVersion":"8.0.0","id":"dff7a080-32f7-11ea-a83e-25b8612d00cc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"f18a7cb0-32f6-11ea-a83e-25b8612d00cc","name":"ee131d2d-7ab5-4434-9e3b-230759c3e5ff:panel_ee131d2d-7ab5-4434-9e3b-230759c3e5ff","type":"visualization"},{"id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","name":"a9456b9b-efa6-410d-a56c-4b66aa8c499e:panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e","type":"visualization"},{"id":"453965a0-3393-11ea-a83e-25b8612d00cc","name":"b24e3e0d-a748-4bb9-ad71-e0de392e2696:panel_b24e3e0d-a748-4bb9-ad71-e0de392e2696","type":"visualization"},{"id":"722ef2f0-3393-11ea-a83e-25b8612d00cc","name":"8131dfcd-2c52-4641-8259-2f4f2e7558d0:panel_8131dfcd-2c52-4641-8259-2f4f2e7558d0","type":"visualization"},{"id":"a4bf9710-3393-11ea-a83e-25b8612d00cc","name":"49233089-be1d-4cda-9ccf-2815152e1016:panel_49233089-be1d-4cda-9ccf-2815152e1016","type":"visualization"},{"id":"553f9320-32e9-11ea-a83e-25b8612d00cc","name":"1d623c03-4d02-4a81-b91e-49e82e112016:panel_1d623c03-4d02-4a81-b91e-49e82e112016","type":"visualization"},{"id":"acced050-32d1-11ea-a83e-25b8612d00cc","name":"ff6441f8-d66d-4399-bae5-25d3d861b299:panel_ff6441f8-d66d-4399-bae5-25d3d861b299","type":"visualization"},{"id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","name":"87066244-7840-4555-9d12-026d64977f1a:panel_87066244-7840-4555-9d12-026d64977f1a","type":"visualization"},{"id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","name":"756da375-e6a2-4668-af43-0cd294878254:panel_756da375-e6a2-4668-af43-0cd294878254","type":"visualization"},{"id":"09a6f150-3399-11ea-a83e-25b8612d00cc","name":"2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f:panel_2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f","type":"visualization"},{"id":"241a55e0-3399-11ea-a83e-25b8612d00cc","name":"c6792441-37b6-4ef4-ad8b-21f137b2f0b4:panel_c6792441-37b6-4ef4-ad8b-21f137b2f0b4","type":"visualization"},{"id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","name":"a715fafc-ca38-410c-9253-12ba506eabc0:panel_a715fafc-ca38-410c-9253-12ba506eabc0","type":"visualization"},{"id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","name":"75f72920-be71-47a9-a967-f1c862ab2961:panel_75f72920-be71-47a9-a967-f1c862ab2961","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:50.051Z","version":"WzM1NDksMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-queue-storage-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-queue-storage-overview.ndjson deleted file mode 100644 index 2afa9874be61..000000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-queue-storage-overview.ndjson +++ /dev/null @@ -1,12 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Queue Storage Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Azure Storage\\n\\n[Overview](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [Blob](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [File](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [Table](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [**Queue**](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Queue Storage Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"09f05e00-32f7-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:51.088Z","version":"WzM1NjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Availability [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(104,204,202,1)\",\"id\":\"18f616c0-32e2-11ea-867b-37070aefa392\",\"operator\":\"gte\",\"value\":100},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"998b1c90-32e2-11ea-867b-37070aefa392\",\"operator\":\"lt\",\"value\":100}],\"bar_color_rules\":[{\"id\":\"28142cf0-32e2-11ea-867b-37070aefa392\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"29808e30-32e2-11ea-867b-37070aefa392\"}],\"gauge_inner_width\":\"7\",\"gauge_style\":\"circle\",\"gauge_width\":10,\"id\":\"0e91b810-32e2-11ea-a93d-dd20c62559b3\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.6\",\"formatter\":\"number\",\"hide_in_legend\":1,\"id\":\"0e91b811-32e2-11ea-a93d-dd20c62559b3\",\"label\":\"Availability\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.availability.avg\",\"id\":\"0e91b812-32e2-11ea-a93d-dd20c62559b3\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}} %\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Availability [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Queue Capacity [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"azure.resource.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Queue Capacity\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.queue_capacity.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Queue Capacity [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e159b990-339c-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:51.088Z","version":"WzM1NjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Queue Message Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0a'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Queue Message Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.queue_message_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Queue Message Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2bedaca0-339d-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:51.088Z","version":"WzM1NjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Queue Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Queue Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.queue_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Queue Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0241cc10-339d-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:51.088Z","version":"WzM1NjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Transactions [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"avg(azure.storage.transactions.total)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.transactions.total\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.response_type\",\"terms_order_by\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Transactions [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"553f9320-32e9-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Storage Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1578578146383\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Storage Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"acced050-32d1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success Server Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"SuccessServerLatency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_server_latency.avg\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success Server Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success E2E Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"da4459b0-32ea-11ea-be35-cb10be813609\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"da4459b1-32ea-11ea-be35-cb10be813609\",\"label\":\"Success E2E Latency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_e2elatency.avg\",\"id\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success E2E Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Egress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,149,177,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Egress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.egress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Egress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Ingress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Ingress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.ingress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Ingress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTksMV0="} -{"attributes":{"description":"This dashboard shows metrics for queue storage type in Azure.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": \"queue\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"azure.namespace\", \"negate\": false, \"params\": {\"query\": \"Microsoft.Storage/storageAccounts/queueServices\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"azure.namespace\": \"Microsoft.Storage/storageAccounts/queueServices\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"933a427d-a8b7-48ff-ac53-337f32b340ea\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"933a427d-a8b7-48ff-ac53-337f32b340ea\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_933a427d-a8b7-48ff-ac53-337f32b340ea\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"w\":5,\"x\":9,\"y\":0},\"panelIndex\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Availability\",\"panelRefName\":\"panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"0b4107a7-6a3d-4092-9813-00edb56bc838\",\"w\":5,\"x\":14,\"y\":0},\"panelIndex\":\"0b4107a7-6a3d-4092-9813-00edb56bc838\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_0b4107a7-6a3d-4092-9813-00edb56bc838\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"cf022a47-2314-4ab6-b397-b1d860944179\",\"w\":5,\"x\":19,\"y\":0},\"panelIndex\":\"cf022a47-2314-4ab6-b397-b1d860944179\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_cf022a47-2314-4ab6-b397-b1d860944179\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"9d84188c-5a30-41ac-81cc-fe4fed360dd3\",\"w\":5,\"x\":24,\"y\":0},\"panelIndex\":\"9d84188c-5a30-41ac-81cc-fe4fed360dd3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_9d84188c-5a30-41ac-81cc-fe4fed360dd3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"w\":19,\"x\":29,\"y\":0},\"panelIndex\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Transactions\",\"panelRefName\":\"panel_1d623c03-4d02-4a81-b91e-49e82e112016\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ff6441f8-d66d-4399-bae5-25d3d861b299\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"87066244-7840-4555-9d12-026d64977f1a\",\"w\":20,\"x\":9,\"y\":9},\"panelIndex\":\"87066244-7840-4555-9d12-026d64977f1a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success Server Latency\",\"panelRefName\":\"panel_87066244-7840-4555-9d12-026d64977f1a\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"756da375-e6a2-4668-af43-0cd294878254\",\"w\":19,\"x\":29,\"y\":9},\"panelIndex\":\"756da375-e6a2-4668-af43-0cd294878254\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success E2E Latency\",\"panelRefName\":\"panel_756da375-e6a2-4668-af43-0cd294878254\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"w\":20,\"x\":9,\"y\":24},\"panelIndex\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Egress Traffic by APIName\",\"panelRefName\":\"panel_a715fafc-ca38-410c-9253-12ba506eabc0\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"w\":19,\"x\":29,\"y\":24},\"panelIndex\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ingress Traffic by APIName\",\"panelRefName\":\"panel_75f72920-be71-47a9-a967-f1c862ab2961\"}]","timeRestore":false,"title":"[Metricbeat Azure] Queue Storage Overview","version":1},"coreMigrationVersion":"8.0.0","id":"10efa340-32f8-11ea-a83e-25b8612d00cc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"09f05e00-32f7-11ea-a83e-25b8612d00cc","name":"933a427d-a8b7-48ff-ac53-337f32b340ea:panel_933a427d-a8b7-48ff-ac53-337f32b340ea","type":"visualization"},{"id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","name":"a9456b9b-efa6-410d-a56c-4b66aa8c499e:panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e","type":"visualization"},{"id":"e159b990-339c-11ea-a83e-25b8612d00cc","name":"0b4107a7-6a3d-4092-9813-00edb56bc838:panel_0b4107a7-6a3d-4092-9813-00edb56bc838","type":"visualization"},{"id":"2bedaca0-339d-11ea-a83e-25b8612d00cc","name":"cf022a47-2314-4ab6-b397-b1d860944179:panel_cf022a47-2314-4ab6-b397-b1d860944179","type":"visualization"},{"id":"0241cc10-339d-11ea-a83e-25b8612d00cc","name":"9d84188c-5a30-41ac-81cc-fe4fed360dd3:panel_9d84188c-5a30-41ac-81cc-fe4fed360dd3","type":"visualization"},{"id":"553f9320-32e9-11ea-a83e-25b8612d00cc","name":"1d623c03-4d02-4a81-b91e-49e82e112016:panel_1d623c03-4d02-4a81-b91e-49e82e112016","type":"visualization"},{"id":"acced050-32d1-11ea-a83e-25b8612d00cc","name":"ff6441f8-d66d-4399-bae5-25d3d861b299:panel_ff6441f8-d66d-4399-bae5-25d3d861b299","type":"visualization"},{"id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","name":"87066244-7840-4555-9d12-026d64977f1a:panel_87066244-7840-4555-9d12-026d64977f1a","type":"visualization"},{"id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","name":"756da375-e6a2-4668-af43-0cd294878254:panel_756da375-e6a2-4668-af43-0cd294878254","type":"visualization"},{"id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","name":"a715fafc-ca38-410c-9253-12ba506eabc0:panel_a715fafc-ca38-410c-9253-12ba506eabc0","type":"visualization"},{"id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","name":"75f72920-be71-47a9-a967-f1c862ab2961:panel_75f72920-be71-47a9-a967-f1c862ab2961","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:51.088Z","version":"WzM1NjMsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-storage-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-storage-overview.ndjson deleted file mode 100644 index 784191aeedd7..000000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-storage-overview.ndjson +++ /dev/null @@ -1,13 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Storage Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Azure Storage\\n\\n[**Overview**](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [Blob](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [File](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [Table](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [Queue](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Storage Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"fcc24d70-32f5-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:52.180Z","version":"WzM1NzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Availability [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(104,204,202,1)\",\"id\":\"18f616c0-32e2-11ea-867b-37070aefa392\",\"operator\":\"gte\",\"value\":100},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"998b1c90-32e2-11ea-867b-37070aefa392\",\"operator\":\"lt\",\"value\":100}],\"bar_color_rules\":[{\"id\":\"28142cf0-32e2-11ea-867b-37070aefa392\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"29808e30-32e2-11ea-867b-37070aefa392\"}],\"gauge_inner_width\":\"7\",\"gauge_style\":\"circle\",\"gauge_width\":10,\"id\":\"0e91b810-32e2-11ea-a93d-dd20c62559b3\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.6\",\"formatter\":\"number\",\"hide_in_legend\":1,\"id\":\"0e91b811-32e2-11ea-a93d-dd20c62559b3\",\"label\":\"Availability\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.availability.avg\",\"id\":\"0e91b812-32e2-11ea-a93d-dd20c62559b3\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}} %\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Availability [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Used Capacity [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"azure.resource.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Used Capacity\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.used_capacity.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Used Capacity [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"634b83c0-32ee-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:52.180Z","version":"WzM1NzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Ingress Gauge [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Ingress\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.ingress.total\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Ingress Gauge [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"33d645e0-32ed-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:52.180Z","version":"WzM1NzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Egress Gauge [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Egress\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.egress.total\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Egress Gauge [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2219de20-32ed-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:52.180Z","version":"WzM1ODAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Transactions [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"avg(azure.storage.transactions.total)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.transactions.total\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.response_type\",\"terms_order_by\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Transactions [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"553f9320-32e9-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Storage Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1578578146383\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Storage Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"acced050-32d1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success Server Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"SuccessServerLatency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_server_latency.avg\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success Server Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success E2E Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"da4459b0-32ea-11ea-be35-cb10be813609\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"da4459b1-32ea-11ea-be35-cb10be813609\",\"label\":\"Success E2E Latency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_e2elatency.avg\",\"id\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success E2E Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Used Capacity Resource Table [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"azure.resource.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Used Capacity\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.used_capacity.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Used Capacity Resource Table [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"109ec950-32e6-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:52.180Z","version":"WzM1ODUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Egress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,149,177,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Egress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.egress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Egress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Ingress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Ingress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.ingress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Ingress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTksMV0="} -{"attributes":{"description":"This dashboard shows metrics for different storage types in Azure.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"3e05fed8-0edd-4973-a640-3499c62b141d\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"3e05fed8-0edd-4973-a640-3499c62b141d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_3e05fed8-0edd-4973-a640-3499c62b141d\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"w\":5,\"x\":9,\"y\":0},\"panelIndex\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Availability\",\"panelRefName\":\"panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"ed66fab5-f4e7-45d9-b27f-2315e0a10850\",\"w\":5,\"x\":14,\"y\":0},\"panelIndex\":\"ed66fab5-f4e7-45d9-b27f-2315e0a10850\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ed66fab5-f4e7-45d9-b27f-2315e0a10850\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"71f11ae2-b13c-49b5-ae16-3d6d5e1dacec\",\"w\":5,\"x\":19,\"y\":0},\"panelIndex\":\"71f11ae2-b13c-49b5-ae16-3d6d5e1dacec\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_71f11ae2-b13c-49b5-ae16-3d6d5e1dacec\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"dae9895e-c53a-4989-bab1-1b7b7c233c56\",\"w\":5,\"x\":24,\"y\":0},\"panelIndex\":\"dae9895e-c53a-4989-bab1-1b7b7c233c56\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_dae9895e-c53a-4989-bab1-1b7b7c233c56\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"w\":19,\"x\":29,\"y\":0},\"panelIndex\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Transactions\",\"panelRefName\":\"panel_1d623c03-4d02-4a81-b91e-49e82e112016\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ff6441f8-d66d-4399-bae5-25d3d861b299\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"87066244-7840-4555-9d12-026d64977f1a\",\"w\":20,\"x\":9,\"y\":9},\"panelIndex\":\"87066244-7840-4555-9d12-026d64977f1a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success Server Latency\",\"panelRefName\":\"panel_87066244-7840-4555-9d12-026d64977f1a\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"756da375-e6a2-4668-af43-0cd294878254\",\"w\":19,\"x\":29,\"y\":9},\"panelIndex\":\"756da375-e6a2-4668-af43-0cd294878254\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success E2E Latency\",\"panelRefName\":\"panel_756da375-e6a2-4668-af43-0cd294878254\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"bf57aed2-3b69-4c8c-b602-e9054d08deb9\",\"w\":9,\"x\":0,\"y\":20},\"panelIndex\":\"bf57aed2-3b69-4c8c-b602-e9054d08deb9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Used Capacity by Resource\",\"panelRefName\":\"panel_bf57aed2-3b69-4c8c-b602-e9054d08deb9\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"w\":20,\"x\":9,\"y\":24},\"panelIndex\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Egress Traffic by APIName\",\"panelRefName\":\"panel_a715fafc-ca38-410c-9253-12ba506eabc0\"},{\"version\":\"7.5.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"w\":19,\"x\":29,\"y\":24},\"panelIndex\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ingress Traffic by APIName\",\"panelRefName\":\"panel_75f72920-be71-47a9-a967-f1c862ab2961\"}]","timeRestore":false,"title":"[Metricbeat Azure] Storage Overview","version":1},"coreMigrationVersion":"8.0.0","id":"1a151f80-32db-11ea-a83e-25b8612d00cc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"fcc24d70-32f5-11ea-a83e-25b8612d00cc","name":"3e05fed8-0edd-4973-a640-3499c62b141d:panel_3e05fed8-0edd-4973-a640-3499c62b141d","type":"visualization"},{"id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","name":"a9456b9b-efa6-410d-a56c-4b66aa8c499e:panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e","type":"visualization"},{"id":"634b83c0-32ee-11ea-a83e-25b8612d00cc","name":"ed66fab5-f4e7-45d9-b27f-2315e0a10850:panel_ed66fab5-f4e7-45d9-b27f-2315e0a10850","type":"visualization"},{"id":"33d645e0-32ed-11ea-a83e-25b8612d00cc","name":"71f11ae2-b13c-49b5-ae16-3d6d5e1dacec:panel_71f11ae2-b13c-49b5-ae16-3d6d5e1dacec","type":"visualization"},{"id":"2219de20-32ed-11ea-a83e-25b8612d00cc","name":"dae9895e-c53a-4989-bab1-1b7b7c233c56:panel_dae9895e-c53a-4989-bab1-1b7b7c233c56","type":"visualization"},{"id":"553f9320-32e9-11ea-a83e-25b8612d00cc","name":"1d623c03-4d02-4a81-b91e-49e82e112016:panel_1d623c03-4d02-4a81-b91e-49e82e112016","type":"visualization"},{"id":"acced050-32d1-11ea-a83e-25b8612d00cc","name":"ff6441f8-d66d-4399-bae5-25d3d861b299:panel_ff6441f8-d66d-4399-bae5-25d3d861b299","type":"visualization"},{"id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","name":"87066244-7840-4555-9d12-026d64977f1a:panel_87066244-7840-4555-9d12-026d64977f1a","type":"visualization"},{"id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","name":"756da375-e6a2-4668-af43-0cd294878254:panel_756da375-e6a2-4668-af43-0cd294878254","type":"visualization"},{"id":"109ec950-32e6-11ea-a83e-25b8612d00cc","name":"bf57aed2-3b69-4c8c-b602-e9054d08deb9:panel_bf57aed2-3b69-4c8c-b602-e9054d08deb9","type":"visualization"},{"id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","name":"a715fafc-ca38-410c-9253-12ba506eabc0:panel_a715fafc-ca38-410c-9253-12ba506eabc0","type":"visualization"},{"id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","name":"75f72920-be71-47a9-a967-f1c862ab2961:panel_75f72920-be71-47a9-a967-f1c862ab2961","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:52.180Z","version":"WzM1NzUsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-table-storage-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-table-storage-overview.ndjson deleted file mode 100644 index e0e8d34d5e1b..000000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-table-storage-overview.ndjson +++ /dev/null @@ -1,12 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Table Storage Overview [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### Azure Storage\\n\\n[Overview](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [Blob](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [File](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [**Table**](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [Queue](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Table Storage Overview [Metricbeat Azure]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"fdef3f40-32f6-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1ODksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Availability [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(104,204,202,1)\",\"id\":\"18f616c0-32e2-11ea-867b-37070aefa392\",\"operator\":\"gte\",\"value\":100},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"998b1c90-32e2-11ea-867b-37070aefa392\",\"operator\":\"lt\",\"value\":100}],\"bar_color_rules\":[{\"id\":\"28142cf0-32e2-11ea-867b-37070aefa392\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"29808e30-32e2-11ea-867b-37070aefa392\"}],\"gauge_inner_width\":\"7\",\"gauge_style\":\"circle\",\"gauge_width\":10,\"id\":\"0e91b810-32e2-11ea-a93d-dd20c62559b3\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.6\",\"formatter\":\"number\",\"hide_in_legend\":1,\"id\":\"0e91b811-32e2-11ea-a93d-dd20c62559b3\",\"label\":\"Availability\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.availability.avg\",\"id\":\"0e91b812-32e2-11ea-a93d-dd20c62559b3\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}} %\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Availability [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Table Capacity [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"azure.resource.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Table Capacity\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.table_capacity.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Table Capacity [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f528e6a0-339a-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Table Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Table Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.table_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Table Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"43b31a20-339b-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Table Entity Count [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"'0a'\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Table Entity Count\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.table_entity_count.avg\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Table Entity Count [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5cbf5820-339c-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Transactions [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"avg(azure.storage.transactions.total)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.transactions.total\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.response_type\",\"terms_order_by\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Transactions [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"553f9320-32e9-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Storage Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"azure.subscription_id\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1578578146383\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Resource Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Storage Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"acced050-32d1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success Server Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"e9a40230-32e9-11ea-bda2-69435df36a5c\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"e9a40231-32e9-11ea-bda2-69435df36a5c\",\"label\":\"SuccessServerLatency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_server_latency.avg\",\"id\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"e9a40232-32e9-11ea-bda2-69435df36a5c\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success Server Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Success E2E Latency [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"da4459b0-32ea-11ea-be35-cb10be813609\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#3185FC\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"da4459b1-32ea-11ea-be35-cb10be813609\",\"label\":\"Success E2E Latency (ms)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.storage.success_e2elatency.avg\",\"id\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"da4459b2-32ea-11ea-be35-cb10be813609\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Success E2E Latency [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Egress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,149,177,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Egress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.egress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Egress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Account Ingress Traffic [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"0791c5a0-32d8-11ea-98d2-1194b9f2bfc0\"}],\"bar_color_rules\":[{\"id\":\"fca016e0-32de-11ea-a435-e7199eba380d\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"fb8be7c0-32de-11ea-a435-e7199eba380d\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"f0edca80-32d5-11ea-b19d-fb5049b980ca\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"f0edf190-32d5-11ea-b19d-fb5049b980ca\",\"label\":\"Storage Accounts Ingress Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.storage.ingress.total\",\"id\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(0,98,177,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"283dc410-32d9-11ea-98d2-1194b9f2bfc0\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.dimensions.api_name\",\"terms_order_by\":\"f0edf191-32d5-11ea-b19d-fb5049b980ca\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Account Ingress Traffic [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1OTksMV0="} -{"attributes":{"description":"This dashboard shows metrics for table storage type in Azure.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": \"table\", \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"azure.namespace\", \"negate\": false, \"params\": {\"query\": \"Microsoft.Storage/storageAccounts/tableServices\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"azure.namespace\": \"Microsoft.Storage/storageAccounts/tableServices\"}}}], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"204cbabc-fafd-472c-b106-bd08f5262b1f\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"204cbabc-fafd-472c-b106-bd08f5262b1f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_204cbabc-fafd-472c-b106-bd08f5262b1f\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"w\":5,\"x\":9,\"y\":0},\"panelIndex\":\"a9456b9b-efa6-410d-a56c-4b66aa8c499e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Availability\",\"panelRefName\":\"panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"15b7c108-0214-4af6-9719-fab59affafec\",\"w\":5,\"x\":14,\"y\":0},\"panelIndex\":\"15b7c108-0214-4af6-9719-fab59affafec\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_15b7c108-0214-4af6-9719-fab59affafec\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"4177a6e6-97d7-447e-bcf3-ee9c1d660bd8\",\"w\":5,\"x\":19,\"y\":0},\"panelIndex\":\"4177a6e6-97d7-447e-bcf3-ee9c1d660bd8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_4177a6e6-97d7-447e-bcf3-ee9c1d660bd8\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"28d85d90-3881-4d1f-b60c-43b545fc9f0e\",\"w\":5,\"x\":24,\"y\":0},\"panelIndex\":\"28d85d90-3881-4d1f-b60c-43b545fc9f0e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_28d85d90-3881-4d1f-b60c-43b545fc9f0e\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"w\":19,\"x\":29,\"y\":0},\"panelIndex\":\"1d623c03-4d02-4a81-b91e-49e82e112016\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Transactions\",\"panelRefName\":\"panel_1d623c03-4d02-4a81-b91e-49e82e112016\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"ff6441f8-d66d-4399-bae5-25d3d861b299\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ff6441f8-d66d-4399-bae5-25d3d861b299\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"87066244-7840-4555-9d12-026d64977f1a\",\"w\":20,\"x\":9,\"y\":9},\"panelIndex\":\"87066244-7840-4555-9d12-026d64977f1a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success Server Latency\",\"panelRefName\":\"panel_87066244-7840-4555-9d12-026d64977f1a\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"756da375-e6a2-4668-af43-0cd294878254\",\"w\":19,\"x\":29,\"y\":9},\"panelIndex\":\"756da375-e6a2-4668-af43-0cd294878254\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Success E2E Latency\",\"panelRefName\":\"panel_756da375-e6a2-4668-af43-0cd294878254\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"w\":20,\"x\":9,\"y\":24},\"panelIndex\":\"a715fafc-ca38-410c-9253-12ba506eabc0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Egress Traffic by APIName\",\"panelRefName\":\"panel_a715fafc-ca38-410c-9253-12ba506eabc0\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"w\":19,\"x\":29,\"y\":24},\"panelIndex\":\"75f72920-be71-47a9-a967-f1c862ab2961\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ingress Traffic by APIName\",\"panelRefName\":\"panel_75f72920-be71-47a9-a967-f1c862ab2961\"}]","timeRestore":false,"title":"[Metricbeat Azure] Table Storage Overview","version":1},"coreMigrationVersion":"8.0.0","id":"ff2fe020-32f7-11ea-a83e-25b8612d00cc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"fdef3f40-32f6-11ea-a83e-25b8612d00cc","name":"204cbabc-fafd-472c-b106-bd08f5262b1f:panel_204cbabc-fafd-472c-b106-bd08f5262b1f","type":"visualization"},{"id":"40dbc0d0-32e3-11ea-a83e-25b8612d00cc","name":"a9456b9b-efa6-410d-a56c-4b66aa8c499e:panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e","type":"visualization"},{"id":"f528e6a0-339a-11ea-a83e-25b8612d00cc","name":"15b7c108-0214-4af6-9719-fab59affafec:panel_15b7c108-0214-4af6-9719-fab59affafec","type":"visualization"},{"id":"43b31a20-339b-11ea-a83e-25b8612d00cc","name":"4177a6e6-97d7-447e-bcf3-ee9c1d660bd8:panel_4177a6e6-97d7-447e-bcf3-ee9c1d660bd8","type":"visualization"},{"id":"5cbf5820-339c-11ea-a83e-25b8612d00cc","name":"28d85d90-3881-4d1f-b60c-43b545fc9f0e:panel_28d85d90-3881-4d1f-b60c-43b545fc9f0e","type":"visualization"},{"id":"553f9320-32e9-11ea-a83e-25b8612d00cc","name":"1d623c03-4d02-4a81-b91e-49e82e112016:panel_1d623c03-4d02-4a81-b91e-49e82e112016","type":"visualization"},{"id":"acced050-32d1-11ea-a83e-25b8612d00cc","name":"ff6441f8-d66d-4399-bae5-25d3d861b299:panel_ff6441f8-d66d-4399-bae5-25d3d861b299","type":"visualization"},{"id":"81f16b40-32ea-11ea-a83e-25b8612d00cc","name":"87066244-7840-4555-9d12-026d64977f1a:panel_87066244-7840-4555-9d12-026d64977f1a","type":"visualization"},{"id":"685fbeb0-32eb-11ea-a83e-25b8612d00cc","name":"756da375-e6a2-4668-af43-0cd294878254:panel_756da375-e6a2-4668-af43-0cd294878254","type":"visualization"},{"id":"599c62c0-32d7-11ea-a83e-25b8612d00cc","name":"a715fafc-ca38-410c-9253-12ba506eabc0:panel_a715fafc-ca38-410c-9253-12ba506eabc0","type":"visualization"},{"id":"4eaef260-32e1-11ea-a83e-25b8612d00cc","name":"75f72920-be71-47a9-a967-f1c862ab2961:panel_75f72920-be71-47a9-a967-f1c862ab2961","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:53.138Z","version":"WzM1ODgsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-guestmetrics-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-guestmetrics-overview.ndjson deleted file mode 100644 index b3089b9638d0..000000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-guestmetrics-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"VM Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1570774891724\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"VM Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"VM Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"5031b220-eb61-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ASP.NET Applications Running [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"04bf3740-eaa3-11e9-8742-b533e334ee9a\"}],\"bar_color_rules\":[{\"id\":\"03eec7e0-eaa3-11e9-8742-b533e334ee9a\"}],\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"gauge_color_rules\":[{\"id\":\"07485320-eaa3-11e9-8742-b533e334ee9a\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"d1acb8f0-eaa2-11e9-a229-c9171499dcc6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0.2\",\"formatter\":\"number\",\"id\":\"d1acb8f1-eaa2-11e9-a229-c9171499dcc6\",\"label\":\"applications running\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_running.avg\",\"id\":\"d1acb8f2-eaa2-11e9-a229-c9171499dcc6\",\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ASP.NET Applications Running [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1f5c1cd0-eaa3-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:54.175Z","version":"WzM2MDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQL Server User Connections [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type :\\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"da495db0-eaa7-11e9-a88b-4b683ca3087b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"da495db1-eaa7-11e9-a88b-4b683ca3087b\",\"label\":\"connections\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.sqlserver_general_statistics_user_connections.avg\",\"id\":\"da495db2-eaa7-11e9-a88b-4b683ca3087b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQL Server User Connections [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0aacc190-eaa8-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:54.175Z","version":"WzM2MDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ASP.NET Application Requests [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"be74e9e0-eaa4-11e9-8923-850d87d8e766\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"be74e9e1-eaa4-11e9-8923-850d87d8e766\",\"label\":\"timed out\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_requests_timed_out.avg\",\"id\":\"be74e9e2-eaa4-11e9-8923-850d87d8e766\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":0,\"formatter\":\"number\",\"id\":\"be74e9e3-eaa4-11e9-8923-850d87d8e766\",\"label\":\"failed\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_requests_failed.avg\",\"id\":\"be74e9e4-eaa4-11e9-8923-850d87d8e766\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":0,\"formatter\":\"number\",\"id\":\"be7510f0-eaa4-11e9-8923-850d87d8e766\",\"label\":\"succeeded\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_requests_succeeded.avg\",\"id\":\"be7510f1-eaa4-11e9-8923-850d87d8e766\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#490092\",\"fill\":0,\"formatter\":\"number\",\"id\":\"be7510f2-eaa4-11e9-8923-850d87d8e766\",\"label\":\"total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_requests_total.avg\",\"id\":\"be7510f3-eaa4-11e9-8923-850d87d8e766\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ASP.NET Application Requests [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"097bc300-eaa5-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:54.175Z","version":"WzM2MDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ASP.NET Application Error Rates [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"29576400-eaa4-11e9-a2d3-e7a00bbd3c18\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"29578b10-eaa4-11e9-a2d3-e7a00bbd3c18\",\"label\":\"errors\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_errors_total.avg\",\"id\":\"29578b11-eaa4-11e9-a2d3-e7a00bbd3c18\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ASP.NET Application Error Rates [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6d52a660-eaa4-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:54.175Z","version":"WzM2MDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQL Server Total Server Memory [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type:\\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"94af6a00-eaa8-11e9-9269-d92e2d3f77fd\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"94af6a01-eaa8-11e9-9269-d92e2d3f77fd\",\"label\":\"memory\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.sqlserver_memory_manager_total_server_memory.avg\",\"id\":\"94af6a02-eaa8-11e9-9269-d92e2d3f77fd\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQL Server Total Server Memory [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d7ea4290-eaa8-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:54.175Z","version":"WzM2MDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ASP.NET Application Sessions [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"6d6575a0-eaa5-11e9-84ad-5919a47b8f34\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"6d6575a1-eaa5-11e9-84ad-5919a47b8f34\",\"label\":\"active\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_sessions_active.avg\",\"id\":\"6d6575a2-eaa5-11e9-84ad-5919a47b8f34\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#DB1374\",\"fill\":0,\"formatter\":\"number\",\"id\":\"6d6575a3-eaa5-11e9-84ad-5919a47b8f34\",\"label\":\"timed out\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_sessions_timed_out.avg\",\"id\":\"6d6575a4-eaa5-11e9-84ad-5919a47b8f34\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#00B3A4\",\"fill\":0,\"formatter\":\"number\",\"id\":\"6d6575a5-eaa5-11e9-84ad-5919a47b8f34\",\"label\":\"abandoned\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_sessions_abandoned.avg\",\"id\":\"6d6575a6-eaa5-11e9-84ad-5919a47b8f34\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#490092\",\"fill\":0,\"formatter\":\"number\",\"id\":\"6d6575a7-eaa5-11e9-84ad-5919a47b8f34\",\"label\":\"total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.asp_net_applications_sessions_total.avg\",\"id\":\"6d6575a8-eaa5-11e9-84ad-5919a47b8f34\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"ASP.NET Application Sessions [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b9aa9b20-eaa5-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:54.175Z","version":"WzM2MDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQL Server Page Reads/Writes [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"35459a30-eaa8-11e9-a379-c33a712c0373\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"35459a31-eaa8-11e9-a379-c33a712c0373\",\"label\":\"Page Reads/s\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.sqlserver_buffer_manager_page_reads_per_sec.avg\",\"id\":\"35459a32-eaa8-11e9-a379-c33a712c0373\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"35459a33-eaa8-11e9-a379-c33a712c0373\",\"label\":\"Page Writes/s\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.sqlserver_buffer_manager_page_writes_per_sec.avg\",\"id\":\"35459a34-eaa8-11e9-a379-c33a712c0373\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQL Server Page Reads/Writes [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"787a0a20-eaa8-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:54.175Z","version":"WzM2MDgsMV0="} -{"attributes":{"description":"This dashboards shows ASP.NET and SQL Server specific metrics extracted from the azure.vm.windows.guestmetrics namespace","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"b7b8bcc1-f776-45cf-a149-36665f2de746\",\"w\":6,\"x\":0,\"y\":0},\"panelIndex\":\"b7b8bcc1-f776-45cf-a149-36665f2de746\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_b7b8bcc1-f776-45cf-a149-36665f2de746\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"bc65dd87-08f6-49f7-b8bf-0d371431ad4d\",\"w\":18,\"x\":6,\"y\":0},\"panelIndex\":\"bc65dd87-08f6-49f7-b8bf-0d371431ad4d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Applications Running\",\"panelRefName\":\"panel_bc65dd87-08f6-49f7-b8bf-0d371431ad4d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQL Server User Connections\",\"panelRefName\":\"panel_6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"5c0158cc-c884-4665-8bbf-7fc34d885d55\",\"w\":12,\"x\":0,\"y\":12},\"panelIndex\":\"5c0158cc-c884-4665-8bbf-7fc34d885d55\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Application Requests\",\"panelRefName\":\"panel_5c0158cc-c884-4665-8bbf-7fc34d885d55\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71\",\"w\":12,\"x\":12,\"y\":12},\"panelIndex\":\"03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Application Error Rates\",\"panelRefName\":\"panel_03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"aaa96404-80de-44dc-990c-76bf40d3827b\",\"w\":24,\"x\":24,\"y\":12},\"panelIndex\":\"aaa96404-80de-44dc-990c-76bf40d3827b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQL Server Total Server Memory\",\"panelRefName\":\"panel_aaa96404-80de-44dc-990c-76bf40d3827b\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"b89c7551-e0e1-4642-ac18-01322ea72db8\",\"w\":24,\"x\":0,\"y\":24},\"panelIndex\":\"b89c7551-e0e1-4642-ac18-01322ea72db8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Application Sessions\",\"panelRefName\":\"panel_b89c7551-e0e1-4642-ac18-01322ea72db8\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"43effd82-fc6a-4d11-bd1e-d3b12a34cbce\",\"w\":24,\"x\":24,\"y\":24},\"panelIndex\":\"43effd82-fc6a-4d11-bd1e-d3b12a34cbce\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"SQL Server Page Reads/Writes\",\"panelRefName\":\"panel_43effd82-fc6a-4d11-bd1e-d3b12a34cbce\"}]","timeRestore":false,"title":"[Metricbeat Azure] VM Guest Metrics Overview","version":1},"coreMigrationVersion":"8.0.0","id":"a6f5d430-eaa6-11e9-90ec-112a988266d5","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"5031b220-eb61-11e9-90ec-112a988266d5","name":"b7b8bcc1-f776-45cf-a149-36665f2de746:panel_b7b8bcc1-f776-45cf-a149-36665f2de746","type":"visualization"},{"id":"1f5c1cd0-eaa3-11e9-90ec-112a988266d5","name":"bc65dd87-08f6-49f7-b8bf-0d371431ad4d:panel_bc65dd87-08f6-49f7-b8bf-0d371431ad4d","type":"visualization"},{"id":"0aacc190-eaa8-11e9-90ec-112a988266d5","name":"6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca:panel_6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca","type":"visualization"},{"id":"097bc300-eaa5-11e9-90ec-112a988266d5","name":"5c0158cc-c884-4665-8bbf-7fc34d885d55:panel_5c0158cc-c884-4665-8bbf-7fc34d885d55","type":"visualization"},{"id":"6d52a660-eaa4-11e9-90ec-112a988266d5","name":"03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71:panel_03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71","type":"visualization"},{"id":"d7ea4290-eaa8-11e9-90ec-112a988266d5","name":"aaa96404-80de-44dc-990c-76bf40d3827b:panel_aaa96404-80de-44dc-990c-76bf40d3827b","type":"visualization"},{"id":"b9aa9b20-eaa5-11e9-90ec-112a988266d5","name":"b89c7551-e0e1-4642-ac18-01322ea72db8:panel_b89c7551-e0e1-4642-ac18-01322ea72db8","type":"visualization"},{"id":"787a0a20-eaa8-11e9-90ec-112a988266d5","name":"43effd82-fc6a-4d11-bd1e-d3b12a34cbce:panel_43effd82-fc6a-4d11-bd1e-d3b12a34cbce","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:54.175Z","version":"WzM2MDAsMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-overview.ndjson deleted file mode 100644 index d8b43ee86c7b..000000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vm-overview.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"VM Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.name\",\"id\":\"1570774891724\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"VM Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"VM Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"5031b220-eb61-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM CPU Utilization [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"4f6c1610-ea8e-11e9-8c73-71740bcf3d8b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"4f6c1611-ea8e-11e9-8c73-71740bcf3d8b\",\"label\":\"Azure VM CPU Utilization\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.percentage_cpu.avg\",\"id\":\"4f6c1612-ea8e-11e9-8c73-71740bcf3d8b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"value_template\":\"{{value}}%\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VM CPU Utilization [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"db9a3490-ea8f-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM Available Memory [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"c7e12030-ea94-11e9-bf06-bfc27258c9ad\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"c7e12031-ea94-11e9-bf06-bfc27258c9ad\",\"label\":\"VM Available Memory\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.memory_available_bytes.avg\",\"id\":\"c7e12032-ea94-11e9-bf06-bfc27258c9ad\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VM Available Memory [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7205a4f0-ea95-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM Disk Reads [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type :\\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"VM Disk Read bytes\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.disk_read_bytes.total\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VM Disk Reads [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e8ca65c0-eb45-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM Network In Total [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"Azure VM Network In Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.network_in_total.total\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VM Network In Total [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8b6b9450-ea99-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM Network Out Total [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"Azure VM Network Out Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.network_out_total.total\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VM Network Out Total [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"abd32c30-ea99-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM Disk Writes [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type :\\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,188,0,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"VM Disk Writes bytes\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.disk_write_bytes.total\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VM Disk Writes [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5c016810-ea9a-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM Disk Read Operations/s [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"VM Disk Read Operations/s\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.disk_read_operations_per_sec.avg\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VM Disk Read Operations/s [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3a50e950-eb46-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM Disk Write Operations/s [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachines\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"VM Disk Write Operations/s\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm.disk_write_operations_per_sec.avg\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VM Disk Write Operations/s [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0892eaa0-ea9a-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MTgsMV0="} -{"attributes":{"description":"This dashboard visualized relevant metrics for VMs running on Azure cloud.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"aa881f9d-28d3-4722-822e-3e670021cf52\",\"w\":6,\"x\":0,\"y\":0},\"panelIndex\":\"aa881f9d-28d3-4722-822e-3e670021cf52\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VM Filters\",\"panelRefName\":\"panel_aa881f9d-28d3-4722-822e-3e670021cf52\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"e673f70c-f811-4290-9087-578c7dd13675\",\"w\":20,\"x\":6,\"y\":0},\"panelIndex\":\"e673f70c-f811-4290-9087-578c7dd13675\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VM CPU Utilization\",\"panelRefName\":\"panel_e673f70c-f811-4290-9087-578c7dd13675\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"2473ef72-c56c-4783-a36a-f4b8efd66ab7\",\"w\":22,\"x\":26,\"y\":0},\"panelIndex\":\"2473ef72-c56c-4783-a36a-f4b8efd66ab7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VM Available Memory\",\"panelRefName\":\"panel_2473ef72-c56c-4783-a36a-f4b8efd66ab7\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"14e225ef-6417-4377-b2cb-6b46b6693b78\",\"w\":12,\"x\":36,\"y\":12},\"panelIndex\":\"14e225ef-6417-4377-b2cb-6b46b6693b78\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14e225ef-6417-4377-b2cb-6b46b6693b78\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"535d70b3-3f3c-4a84-85ba-ab671b6d144f\",\"w\":12,\"x\":0,\"y\":12},\"panelIndex\":\"535d70b3-3f3c-4a84-85ba-ab671b6d144f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VM Network In Total\",\"panelRefName\":\"panel_535d70b3-3f3c-4a84-85ba-ab671b6d144f\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6903a45e-bf11-4db2-9497-fd9692e83448\",\"w\":12,\"x\":12,\"y\":12},\"panelIndex\":\"6903a45e-bf11-4db2-9497-fd9692e83448\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VM Network Out Total\",\"panelRefName\":\"panel_6903a45e-bf11-4db2-9497-fd9692e83448\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"aa57fa8f-f6ea-45e3-9b2c-ba948d625813\",\"w\":12,\"x\":24,\"y\":12},\"panelIndex\":\"aa57fa8f-f6ea-45e3-9b2c-ba948d625813\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VM Disk Writes\",\"panelRefName\":\"panel_aa57fa8f-f6ea-45e3-9b2c-ba948d625813\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"8879143b-ed83-45ec-8c58-b10dc1597c22\",\"w\":24,\"x\":0,\"y\":24},\"panelIndex\":\"8879143b-ed83-45ec-8c58-b10dc1597c22\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VM Disk Read Operations/s\",\"panelRefName\":\"panel_8879143b-ed83-45ec-8c58-b10dc1597c22\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"4071f2bf-1794-45ff-b76d-58864226d8b7\",\"w\":24,\"x\":24,\"y\":24},\"panelIndex\":\"4071f2bf-1794-45ff-b76d-58864226d8b7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"VM Disk Write Operations/s\",\"panelRefName\":\"panel_4071f2bf-1794-45ff-b76d-58864226d8b7\"}]","timeRestore":false,"title":"[Metricbeat Azure] Compute VMs Overview","version":1},"coreMigrationVersion":"8.0.0","id":"eb3f05f0-ea9a-11e9-90ec-112a988266d5","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"5031b220-eb61-11e9-90ec-112a988266d5","name":"aa881f9d-28d3-4722-822e-3e670021cf52:panel_aa881f9d-28d3-4722-822e-3e670021cf52","type":"visualization"},{"id":"db9a3490-ea8f-11e9-90ec-112a988266d5","name":"e673f70c-f811-4290-9087-578c7dd13675:panel_e673f70c-f811-4290-9087-578c7dd13675","type":"visualization"},{"id":"7205a4f0-ea95-11e9-90ec-112a988266d5","name":"2473ef72-c56c-4783-a36a-f4b8efd66ab7:panel_2473ef72-c56c-4783-a36a-f4b8efd66ab7","type":"visualization"},{"id":"e8ca65c0-eb45-11e9-90ec-112a988266d5","name":"14e225ef-6417-4377-b2cb-6b46b6693b78:panel_14e225ef-6417-4377-b2cb-6b46b6693b78","type":"visualization"},{"id":"8b6b9450-ea99-11e9-90ec-112a988266d5","name":"535d70b3-3f3c-4a84-85ba-ab671b6d144f:panel_535d70b3-3f3c-4a84-85ba-ab671b6d144f","type":"visualization"},{"id":"abd32c30-ea99-11e9-90ec-112a988266d5","name":"6903a45e-bf11-4db2-9497-fd9692e83448:panel_6903a45e-bf11-4db2-9497-fd9692e83448","type":"visualization"},{"id":"5c016810-ea9a-11e9-90ec-112a988266d5","name":"aa57fa8f-f6ea-45e3-9b2c-ba948d625813:panel_aa57fa8f-f6ea-45e3-9b2c-ba948d625813","type":"visualization"},{"id":"3a50e950-eb46-11e9-90ec-112a988266d5","name":"8879143b-ed83-45ec-8c58-b10dc1597c22:panel_8879143b-ed83-45ec-8c58-b10dc1597c22","type":"visualization"},{"id":"0892eaa0-ea9a-11e9-90ec-112a988266d5","name":"4071f2bf-1794-45ff-b76d-58864226d8b7:panel_4071f2bf-1794-45ff-b76d-58864226d8b7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:55.224Z","version":"WzM2MDksMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vmss-overview.ndjson b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vmss-overview.ndjson deleted file mode 100644 index 27f6f9578df4..000000000000 --- a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/Metricbeat-azure-vmss-overview.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"VMSS Filters [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.region\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.resource.group\",\"id\":\"1549512142947\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Resource Group\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"azure.dimensions.vmname\",\"id\":\"1570711989416\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"VM Name (dimension)\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"VMSS Filters [Metricbeat Azure]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"686bc990-ea92-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VMSS CPU Utilization [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type :\\\"Microsoft.Compute/virtualMachineScaleSets\\\" \"},\"id\":\"7666abc0-eaae-11e9-a083-57ad7f0b1ec1\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7666abc1-eaae-11e9-a083-57ad7f0b1ec1\",\"label\":\"avg(azure.compute_vm_scaleset.percentage_cpu.avg)\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm_scaleset.percentage_cpu.avg\",\"id\":\"7666abc2-eaae-11e9-a083-57ad7f0b1ec1\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VMSS CPU Utilization [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"33500790-eaaf-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VMSS Available Memory [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type :\\\"Microsoft.Compute/virtualMachineScaleSets\\\" \"},\"id\":\"e25fa710-eb3e-11e9-8bf6-ff656bce9010\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"e25fa711-eb3e-11e9-8bf6-ff656bce9010\",\"label\":\"avg(azure.compute_vm_scaleset.memory_available_bytes.avg)\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm_scaleset.memory_available_bytes.avg\",\"id\":\"e25fa712-eb3e-11e9-8bf6-ff656bce9010\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VMSS Available Memory [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cecd6680-eb41-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VMSS Disk Reads [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type :\\\"Microsoft.Compute/virtualMachineScaleSets\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"VM Disk Read bytes\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm_scaleset.disk_read_bytes.total\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VMSS Disk Reads [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"42cc28d0-ea9a-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VMSS Network In Total [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachineScaleSets\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"Azure VMSS Network In Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm_scaleset.network_in_total.total\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VMSS Network In Total [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"64266ec0-eb42-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VMSS Network Out Total [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachineScaleSets\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"Azure VM Network Out Total\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm_scaleset.network_out_total.total\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VMSS Network Out Total [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b45fd8e0-eb42-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VMSS Disk Writes [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type :\\\"Microsoft.Compute/virtualMachineScaleSets\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,180,251,1)\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"VM Disk Writes bytes\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm_scaleset.disk_write_bytes.total\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VMSS Disk Writes [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0d03a670-eb43-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VMSS Disk Read Operations [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachineScaleSets\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"VM Disk Read Operations/s\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm_scaleset.disk_read_operations_per_sec.avg\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VMSS Disk Read Operations [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c1a1910-ea9a-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VMSS Disk Write Operations [Metricbeat Azure]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"azure.resource.type : \\\"Microsoft.Compute/virtualMachineScaleSets\\\" \"},\"id\":\"39b6adc0-ea99-11e9-8328-799c817fb96b\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0,\"formatter\":\"number\",\"id\":\"39b6adc1-ea99-11e9-8328-799c817fb96b\",\"label\":\"VM Disk Write Operations/s\",\"line_width\":2,\"metrics\":[{\"field\":\"azure.compute_vm_scaleset.disk_write_operations_per_sec.avg\",\"id\":\"39b6adc2-ea99-11e9-8328-799c817fb96b\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"azure.resource.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"VMSS Disk Write Operations [Metricbeat Azure]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"cfaedaf0-eb43-11e9-90ec-112a988266d5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MjgsMV0="} -{"attributes":{"description":"This dashboard visualized relevant metrics for VMs running on Azure cloud.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"d84767cd-3fc9-438c-a969-f15c4d5fc9c5\",\"w\":6,\"x\":0,\"y\":0},\"panelIndex\":\"d84767cd-3fc9-438c-a969-f15c4d5fc9c5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_d84767cd-3fc9-438c-a969-f15c4d5fc9c5\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"127eff01-d34c-4bda-8f19-4cf06982989f\",\"w\":20,\"x\":6,\"y\":0},\"panelIndex\":\"127eff01-d34c-4bda-8f19-4cf06982989f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Percentage CPU\",\"panelRefName\":\"panel_127eff01-d34c-4bda-8f19-4cf06982989f\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"2f85c4f1-a575-49a1-99d3-fbed8a2806ec\",\"w\":22,\"x\":26,\"y\":0},\"panelIndex\":\"2f85c4f1-a575-49a1-99d3-fbed8a2806ec\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Available Memory\",\"panelRefName\":\"panel_2f85c4f1-a575-49a1-99d3-fbed8a2806ec\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"6cbc30b4-658e-4f7a-a888-221775fd0af3\",\"w\":12,\"x\":36,\"y\":12},\"panelIndex\":\"6cbc30b4-658e-4f7a-a888-221775fd0af3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disk Reads\",\"panelRefName\":\"panel_6cbc30b4-658e-4f7a-a888-221775fd0af3\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"e195e7ba-c736-4bf7-9f23-c96f4acd9b6b\",\"w\":12,\"x\":0,\"y\":12},\"panelIndex\":\"e195e7ba-c736-4bf7-9f23-c96f4acd9b6b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Network In Total\",\"panelRefName\":\"panel_e195e7ba-c736-4bf7-9f23-c96f4acd9b6b\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"64fc0214-97f7-4d52-a9bd-a91449293f1c\",\"w\":12,\"x\":12,\"y\":12},\"panelIndex\":\"64fc0214-97f7-4d52-a9bd-a91449293f1c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Network Out Total\",\"panelRefName\":\"panel_64fc0214-97f7-4d52-a9bd-a91449293f1c\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"12c9c185-81ed-4313-b274-b3384de2d396\",\"w\":12,\"x\":24,\"y\":12},\"panelIndex\":\"12c9c185-81ed-4313-b274-b3384de2d396\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disk Writes\",\"panelRefName\":\"panel_12c9c185-81ed-4313-b274-b3384de2d396\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"200ae92b-4184-4aed-9868-6ce5e16e7a8d\",\"w\":24,\"x\":0,\"y\":23},\"panelIndex\":\"200ae92b-4184-4aed-9868-6ce5e16e7a8d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disk Read Operations/s\",\"panelRefName\":\"panel_200ae92b-4184-4aed-9868-6ce5e16e7a8d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"36c46a84-3e6b-4a7e-9246-357ae9d10d1e\",\"w\":24,\"x\":24,\"y\":23},\"panelIndex\":\"36c46a84-3e6b-4a7e-9246-357ae9d10d1e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disk Write Operations/s\",\"panelRefName\":\"panel_36c46a84-3e6b-4a7e-9246-357ae9d10d1e\"}]","timeRestore":false,"title":"[Metricbeat Azure] VM Scale Sets Overview ","version":1},"coreMigrationVersion":"8.0.0","id":"91afcc50-eaad-11e9-90ec-112a988266d5","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"686bc990-ea92-11e9-90ec-112a988266d5","name":"d84767cd-3fc9-438c-a969-f15c4d5fc9c5:panel_d84767cd-3fc9-438c-a969-f15c4d5fc9c5","type":"visualization"},{"id":"33500790-eaaf-11e9-90ec-112a988266d5","name":"127eff01-d34c-4bda-8f19-4cf06982989f:panel_127eff01-d34c-4bda-8f19-4cf06982989f","type":"visualization"},{"id":"cecd6680-eb41-11e9-90ec-112a988266d5","name":"2f85c4f1-a575-49a1-99d3-fbed8a2806ec:panel_2f85c4f1-a575-49a1-99d3-fbed8a2806ec","type":"visualization"},{"id":"42cc28d0-ea9a-11e9-90ec-112a988266d5","name":"6cbc30b4-658e-4f7a-a888-221775fd0af3:panel_6cbc30b4-658e-4f7a-a888-221775fd0af3","type":"visualization"},{"id":"64266ec0-eb42-11e9-90ec-112a988266d5","name":"e195e7ba-c736-4bf7-9f23-c96f4acd9b6b:panel_e195e7ba-c736-4bf7-9f23-c96f4acd9b6b","type":"visualization"},{"id":"b45fd8e0-eb42-11e9-90ec-112a988266d5","name":"64fc0214-97f7-4d52-a9bd-a91449293f1c:panel_64fc0214-97f7-4d52-a9bd-a91449293f1c","type":"visualization"},{"id":"0d03a670-eb43-11e9-90ec-112a988266d5","name":"12c9c185-81ed-4313-b274-b3384de2d396:panel_12c9c185-81ed-4313-b274-b3384de2d396","type":"visualization"},{"id":"9c1a1910-ea9a-11e9-90ec-112a988266d5","name":"200ae92b-4184-4aed-9868-6ce5e16e7a8d:panel_200ae92b-4184-4aed-9868-6ce5e16e7a8d","type":"visualization"},{"id":"cfaedaf0-eb43-11e9-90ec-112a988266d5","name":"36c46a84-3e6b-4a7e-9246-357ae9d10d1e:panel_36c46a84-3e6b-4a7e-9246-357ae9d10d1e","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:56.299Z","version":"WzM2MTksMV0="} diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/a6f5d430-eaa6-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/a6f5d430-eaa6-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..89ee7e368e18 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/a6f5d430-eaa6-11e9-90ec-112a988266d5.json @@ -0,0 +1,210 @@ +{ + "attributes": { + "description": "This dashboards shows ASP.NET and SQL Server specific metrics extracted from the azure.vm.windows.guestmetrics namespace", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "b7b8bcc1-f776-45cf-a149-36665f2de746", + "w": 6, + "x": 0, + "y": 0 + }, + "panelIndex": "b7b8bcc1-f776-45cf-a149-36665f2de746", + "panelRefName": "panel_b7b8bcc1-f776-45cf-a149-36665f2de746", + "title": "Filters", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "bc65dd87-08f6-49f7-b8bf-0d371431ad4d", + "w": 18, + "x": 6, + "y": 0 + }, + "panelIndex": "bc65dd87-08f6-49f7-b8bf-0d371431ad4d", + "panelRefName": "panel_bc65dd87-08f6-49f7-b8bf-0d371431ad4d", + "title": "Applications Running", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca", + "panelRefName": "panel_6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca", + "title": "SQL Server User Connections", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "5c0158cc-c884-4665-8bbf-7fc34d885d55", + "w": 12, + "x": 0, + "y": 12 + }, + "panelIndex": "5c0158cc-c884-4665-8bbf-7fc34d885d55", + "panelRefName": "panel_5c0158cc-c884-4665-8bbf-7fc34d885d55", + "title": "Application Requests", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71", + "w": 12, + "x": 12, + "y": 12 + }, + "panelIndex": "03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71", + "panelRefName": "panel_03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71", + "title": "Application Error Rates", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "aaa96404-80de-44dc-990c-76bf40d3827b", + "w": 24, + "x": 24, + "y": 12 + }, + "panelIndex": "aaa96404-80de-44dc-990c-76bf40d3827b", + "panelRefName": "panel_aaa96404-80de-44dc-990c-76bf40d3827b", + "title": "SQL Server Total Server Memory", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "b89c7551-e0e1-4642-ac18-01322ea72db8", + "w": 24, + "x": 0, + "y": 24 + }, + "panelIndex": "b89c7551-e0e1-4642-ac18-01322ea72db8", + "panelRefName": "panel_b89c7551-e0e1-4642-ac18-01322ea72db8", + "title": "Application Sessions", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "43effd82-fc6a-4d11-bd1e-d3b12a34cbce", + "w": 24, + "x": 24, + "y": 24 + }, + "panelIndex": "43effd82-fc6a-4d11-bd1e-d3b12a34cbce", + "panelRefName": "panel_43effd82-fc6a-4d11-bd1e-d3b12a34cbce", + "title": "SQL Server Page Reads/Writes", + "type": "visualization", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Azure] VM Guest Metrics Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "a6f5d430-eaa6-11e9-90ec-112a988266d5", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "5031b220-eb61-11e9-90ec-112a988266d5", + "name": "b7b8bcc1-f776-45cf-a149-36665f2de746:panel_b7b8bcc1-f776-45cf-a149-36665f2de746", + "type": "visualization" + }, + { + "id": "1f5c1cd0-eaa3-11e9-90ec-112a988266d5", + "name": "bc65dd87-08f6-49f7-b8bf-0d371431ad4d:panel_bc65dd87-08f6-49f7-b8bf-0d371431ad4d", + "type": "visualization" + }, + { + "id": "0aacc190-eaa8-11e9-90ec-112a988266d5", + "name": "6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca:panel_6a5abca9-1cfd-45ef-aa88-9b4a72ce2dca", + "type": "visualization" + }, + { + "id": "097bc300-eaa5-11e9-90ec-112a988266d5", + "name": "5c0158cc-c884-4665-8bbf-7fc34d885d55:panel_5c0158cc-c884-4665-8bbf-7fc34d885d55", + "type": "visualization" + }, + { + "id": "6d52a660-eaa4-11e9-90ec-112a988266d5", + "name": "03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71:panel_03c9cff0-b2ec-4dd1-9a2f-db7f441e5e71", + "type": "visualization" + }, + { + "id": "d7ea4290-eaa8-11e9-90ec-112a988266d5", + "name": "aaa96404-80de-44dc-990c-76bf40d3827b:panel_aaa96404-80de-44dc-990c-76bf40d3827b", + "type": "visualization" + }, + { + "id": "b9aa9b20-eaa5-11e9-90ec-112a988266d5", + "name": "b89c7551-e0e1-4642-ac18-01322ea72db8:panel_b89c7551-e0e1-4642-ac18-01322ea72db8", + "type": "visualization" + }, + { + "id": "787a0a20-eaa8-11e9-90ec-112a988266d5", + "name": "43effd82-fc6a-4d11-bd1e-d3b12a34cbce:panel_43effd82-fc6a-4d11-bd1e-d3b12a34cbce", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:54.175Z", + "version": "WzM2MDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..cdb9ade5d351 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,303 @@ +{ + "attributes": { + "description": "This dashboard shows metrics for the blob storage type in Azure.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": "blob", + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "azure.namespace", + "negate": false, + "params": { + "query": "Microsoft.Storage/storageAccounts/blobServices" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "azure.namespace": "Microsoft.Storage/storageAccounts/blobServices" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05", + "panelRefName": "panel_ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "w": 5, + "x": 9, + "y": 0 + }, + "panelIndex": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "panelRefName": "panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "title": "Availability", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "0c873134-b025-487d-be81-f727dbff0174", + "w": 5, + "x": 14, + "y": 0 + }, + "panelIndex": "0c873134-b025-487d-be81-f727dbff0174", + "panelRefName": "panel_0c873134-b025-487d-be81-f727dbff0174", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "41faed50-ba96-4484-b6dc-71ed3e2d3427", + "w": 5, + "x": 19, + "y": 0 + }, + "panelIndex": "41faed50-ba96-4484-b6dc-71ed3e2d3427", + "panelRefName": "panel_41faed50-ba96-4484-b6dc-71ed3e2d3427", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "1d623c03-4d02-4a81-b91e-49e82e112016", + "w": 19, + "x": 29, + "y": 0 + }, + "panelIndex": "1d623c03-4d02-4a81-b91e-49e82e112016", + "panelRefName": "panel_1d623c03-4d02-4a81-b91e-49e82e112016", + "title": "Transactions", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "ff6441f8-d66d-4399-bae5-25d3d861b299", + "w": 9, + "x": 0, + "y": 5 + }, + "panelIndex": "ff6441f8-d66d-4399-bae5-25d3d861b299", + "panelRefName": "panel_ff6441f8-d66d-4399-bae5-25d3d861b299", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "87066244-7840-4555-9d12-026d64977f1a", + "w": 20, + "x": 9, + "y": 9 + }, + "panelIndex": "87066244-7840-4555-9d12-026d64977f1a", + "panelRefName": "panel_87066244-7840-4555-9d12-026d64977f1a", + "title": "Success Server Latency", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "756da375-e6a2-4668-af43-0cd294878254", + "w": 19, + "x": 29, + "y": 9 + }, + "panelIndex": "756da375-e6a2-4668-af43-0cd294878254", + "panelRefName": "panel_756da375-e6a2-4668-af43-0cd294878254", + "title": "Success E2E Latency", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "34aa5ce7-4f4b-4712-836f-3765e7c3fb3f", + "w": 5, + "x": 24, + "y": 0 + }, + "panelIndex": "34aa5ce7-4f4b-4712-836f-3765e7c3fb3f", + "panelRefName": "panel_34aa5ce7-4f4b-4712-836f-3765e7c3fb3f", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "a715fafc-ca38-410c-9253-12ba506eabc0", + "w": 20, + "x": 9, + "y": 24 + }, + "panelIndex": "a715fafc-ca38-410c-9253-12ba506eabc0", + "panelRefName": "panel_a715fafc-ca38-410c-9253-12ba506eabc0", + "title": "Egress Traffic by APIName", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "75f72920-be71-47a9-a967-f1c862ab2961", + "w": 19, + "x": 29, + "y": 24 + }, + "panelIndex": "75f72920-be71-47a9-a967-f1c862ab2961", + "panelRefName": "panel_75f72920-be71-47a9-a967-f1c862ab2961", + "title": "Ingress Traffic by APIName", + "type": "visualization", + "version": "7.7.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Azure] Blob Storage Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "b165ef60-32f7-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "e4b25ee0-32f6-11ea-a83e-25b8612d00cc", + "name": "ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05:panel_ed5f5642-c94a-481b-a8c2-7dfe4c6a4f05", + "type": "visualization" + }, + { + "id": "40dbc0d0-32e3-11ea-a83e-25b8612d00cc", + "name": "a9456b9b-efa6-410d-a56c-4b66aa8c499e:panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "type": "visualization" + }, + { + "id": "17ee2920-3391-11ea-a83e-25b8612d00cc", + "name": "0c873134-b025-487d-be81-f727dbff0174:panel_0c873134-b025-487d-be81-f727dbff0174", + "type": "visualization" + }, + { + "id": "55936920-3391-11ea-a83e-25b8612d00cc", + "name": "41faed50-ba96-4484-b6dc-71ed3e2d3427:panel_41faed50-ba96-4484-b6dc-71ed3e2d3427", + "type": "visualization" + }, + { + "id": "553f9320-32e9-11ea-a83e-25b8612d00cc", + "name": "1d623c03-4d02-4a81-b91e-49e82e112016:panel_1d623c03-4d02-4a81-b91e-49e82e112016", + "type": "visualization" + }, + { + "id": "acced050-32d1-11ea-a83e-25b8612d00cc", + "name": "ff6441f8-d66d-4399-bae5-25d3d861b299:panel_ff6441f8-d66d-4399-bae5-25d3d861b299", + "type": "visualization" + }, + { + "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", + "name": "87066244-7840-4555-9d12-026d64977f1a:panel_87066244-7840-4555-9d12-026d64977f1a", + "type": "visualization" + }, + { + "id": "685fbeb0-32eb-11ea-a83e-25b8612d00cc", + "name": "756da375-e6a2-4668-af43-0cd294878254:panel_756da375-e6a2-4668-af43-0cd294878254", + "type": "visualization" + }, + { + "id": "9e991b10-3391-11ea-a83e-25b8612d00cc", + "name": "34aa5ce7-4f4b-4712-836f-3765e7c3fb3f:panel_34aa5ce7-4f4b-4712-836f-3765e7c3fb3f", + "type": "visualization" + }, + { + "id": "599c62c0-32d7-11ea-a83e-25b8612d00cc", + "name": "a715fafc-ca38-410c-9253-12ba506eabc0:panel_a715fafc-ca38-410c-9253-12ba506eabc0", + "type": "visualization" + }, + { + "id": "4eaef260-32e1-11ea-a83e-25b8612d00cc", + "name": "75f72920-be71-47a9-a967-f1c862ab2961:panel_75f72920-be71-47a9-a967-f1c862ab2961", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:44.945Z", + "version": "WzM1MDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/b232c220-8481-11ea-b181-4b1a9e0110f9.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/b232c220-8481-11ea-b181-4b1a9e0110f9.json new file mode 100644 index 000000000000..d073102debed --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/b232c220-8481-11ea-b181-4b1a9e0110f9.json @@ -0,0 +1,210 @@ +{ + "attributes": { + "description": "This Azure Database Account dashboard visualizes the most important database account metrics.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 4, + "i": "fe2125b1-526c-4293-b488-86d8c15ea3fb", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "fe2125b1-526c-4293-b488-86d8c15ea3fb", + "panelRefName": "panel_fe2125b1-526c-4293-b488-86d8c15ea3fb", + "title": "", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "db895503-5a84-4b26-b889-c3c7ca964643", + "w": 18, + "x": 9, + "y": 0 + }, + "panelIndex": "db895503-5a84-4b26-b889-c3c7ca964643", + "panelRefName": "panel_db895503-5a84-4b26-b889-c3c7ca964643", + "title": "Data Usage", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "0b986285-a5d0-4a31-bdb8-0f29cd50c2eb", + "w": 21, + "x": 27, + "y": 0 + }, + "panelIndex": "0b986285-a5d0-4a31-bdb8-0f29cd50c2eb", + "panelRefName": "panel_0b986285-a5d0-4a31-bdb8-0f29cd50c2eb", + "title": "Index Usage", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "7d7b71ea-eb6b-43bf-be61-80235d1d4529", + "w": 9, + "x": 0, + "y": 4 + }, + "panelIndex": "7d7b71ea-eb6b-43bf-be61-80235d1d4529", + "panelRefName": "panel_7d7b71ea-eb6b-43bf-be61-80235d1d4529", + "title": "", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "f6ce8b48-a876-4031-a43f-3ca3704a4ad6", + "w": 24, + "x": 0, + "y": 18 + }, + "panelIndex": "f6ce8b48-a876-4031-a43f-3ca3704a4ad6", + "panelRefName": "panel_f6ce8b48-a876-4031-a43f-3ca3704a4ad6", + "title": "Total Requests", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "c604014a-647f-4a1d-b2e9-0304fdacc363", + "w": 24, + "x": 24, + "y": 18 + }, + "panelIndex": "c604014a-647f-4a1d-b2e9-0304fdacc363", + "panelRefName": "panel_c604014a-647f-4a1d-b2e9-0304fdacc363", + "title": "Document Count", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9", + "w": 24, + "x": 0, + "y": 33 + }, + "panelIndex": "b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9", + "panelRefName": "panel_b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9", + "title": "Available Storage", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "5e755432-3e55-405c-91cf-3348d5067a3a", + "w": 24, + "x": 24, + "y": 33 + }, + "panelIndex": "5e755432-3e55-405c-91cf-3348d5067a3a", + "panelRefName": "panel_5e755432-3e55-405c-91cf-3348d5067a3a", + "title": "Requests Per Status Code", + "type": "visualization", + "version": "7.6.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Azure] Database Account Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "b232c220-8481-11ea-b181-4b1a9e0110f9", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "4177aab0-83cc-11ea-be84-f5d4d6b9a792", + "name": "fe2125b1-526c-4293-b488-86d8c15ea3fb:panel_fe2125b1-526c-4293-b488-86d8c15ea3fb", + "type": "visualization" + }, + { + "id": "a49b4e20-8490-11ea-b181-4b1a9e0110f9", + "name": "db895503-5a84-4b26-b889-c3c7ca964643:panel_db895503-5a84-4b26-b889-c3c7ca964643", + "type": "visualization" + }, + { + "id": "d2801d70-8490-11ea-b181-4b1a9e0110f9", + "name": "0b986285-a5d0-4a31-bdb8-0f29cd50c2eb:panel_0b986285-a5d0-4a31-bdb8-0f29cd50c2eb", + "type": "visualization" + }, + { + "id": "674c1d70-83cc-11ea-be84-f5d4d6b9a792", + "name": "7d7b71ea-eb6b-43bf-be61-80235d1d4529:panel_7d7b71ea-eb6b-43bf-be61-80235d1d4529", + "type": "visualization" + }, + { + "id": "a16b5900-8492-11ea-b181-4b1a9e0110f9", + "name": "f6ce8b48-a876-4031-a43f-3ca3704a4ad6:panel_f6ce8b48-a876-4031-a43f-3ca3704a4ad6", + "type": "visualization" + }, + { + "id": "d3ac7d90-8492-11ea-b181-4b1a9e0110f9", + "name": "c604014a-647f-4a1d-b2e9-0304fdacc363:panel_c604014a-647f-4a1d-b2e9-0304fdacc363", + "type": "visualization" + }, + { + "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", + "name": "b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9:panel_b0cbeaf7-8a12-4efa-b63b-5479c2cb39a9", + "type": "visualization" + }, + { + "id": "037382e0-856e-11ea-91bc-ab084c7ec0e7", + "name": "5e755432-3e55-405c-91cf-3348d5067a3a:panel_5e755432-3e55-405c-91cf-3348d5067a3a", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:49.091Z", + "version": "WzM1NDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/d3efeb30-c1c7-11ea-b7e7-0f48178cdb3c.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/d3efeb30-c1c7-11ea-b7e7-0f48178cdb3c.json new file mode 100644 index 000000000000..60bfc2a852a8 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/d3efeb30-c1c7-11ea-b7e7-0f48178cdb3c.json @@ -0,0 +1,166 @@ +{ + "attributes": { + "description": "This dashboard gives an overview of resource costs and forecast", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "3202a4c8-ed88-4592-9d39-73846426413b", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "3202a4c8-ed88-4592-9d39-73846426413b", + "panelRefName": "panel_3202a4c8-ed88-4592-9d39-73846426413b", + "title": "", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "c18f8802-6189-4966-abe5-30bf2c7c6d63", + "w": 15, + "x": 0, + "y": 5 + }, + "panelIndex": "c18f8802-6189-4966-abe5-30bf2c7c6d63", + "panelRefName": "panel_c18f8802-6189-4966-abe5-30bf2c7c6d63", + "title": "Subscriptions", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "0a93b125-de04-466e-a1d0-7b56d1b31b52", + "w": 16, + "x": 15, + "y": 5 + }, + "panelIndex": "0a93b125-de04-466e-a1d0-7b56d1b31b52", + "panelRefName": "panel_0a93b125-de04-466e-a1d0-7b56d1b31b52", + "title": "Resource groups", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "f6b54b8f-b9e5-4c20-9e4c-8f83935ca739", + "w": 17, + "x": 31, + "y": 5 + }, + "panelIndex": "f6b54b8f-b9e5-4c20-9e4c-8f83935ca739", + "panelRefName": "panel_f6b54b8f-b9e5-4c20-9e4c-8f83935ca739", + "title": "Resources", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "323f890e-c4d6-4c84-a3d8-f3d4277d3c2f", + "w": 48, + "x": 0, + "y": 21 + }, + "panelIndex": "323f890e-c4d6-4c84-a3d8-f3d4277d3c2f", + "panelRefName": "panel_323f890e-c4d6-4c84-a3d8-f3d4277d3c2f", + "title": "Forecast", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "fb121db4-1343-4e4d-b1a3-e3f3531ae045", + "w": 48, + "x": 0, + "y": 38 + }, + "panelIndex": "fb121db4-1343-4e4d-b1a3-e3f3531ae045", + "panelRefName": "panel_fb121db4-1343-4e4d-b1a3-e3f3531ae045", + "title": "Daily usage", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Metricbeat Azure] Billing overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "d3efeb30-c1c7-11ea-b7e7-0f48178cdb3c", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "82a51dd0-c1d7-11ea-b7e7-0f48178cdb3c", + "name": "3202a4c8-ed88-4592-9d39-73846426413b:panel_3202a4c8-ed88-4592-9d39-73846426413b", + "type": "visualization" + }, + { + "id": "6ffa7e20-c1da-11ea-b7e7-0f48178cdb3c", + "name": "c18f8802-6189-4966-abe5-30bf2c7c6d63:panel_c18f8802-6189-4966-abe5-30bf2c7c6d63", + "type": "visualization" + }, + { + "id": "b18053b0-c1da-11ea-b7e7-0f48178cdb3c", + "name": "0a93b125-de04-466e-a1d0-7b56d1b31b52:panel_0a93b125-de04-466e-a1d0-7b56d1b31b52", + "type": "visualization" + }, + { + "id": "c8016f70-c1da-11ea-b7e7-0f48178cdb3c", + "name": "f6b54b8f-b9e5-4c20-9e4c-8f83935ca739:panel_f6b54b8f-b9e5-4c20-9e4c-8f83935ca739", + "type": "visualization" + }, + { + "id": "9142aca0-c1c7-11ea-b7e7-0f48178cdb3c", + "name": "323f890e-c4d6-4c84-a3d8-f3d4277d3c2f:panel_323f890e-c4d6-4c84-a3d8-f3d4277d3c2f", + "type": "visualization" + }, + { + "id": "05d5b3e0-c1c9-11ea-b7e7-0f48178cdb3c", + "name": "fb121db4-1343-4e4d-b1a3-e3f3531ae045:panel_fb121db4-1343-4e4d-b1a3-e3f3531ae045", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:43.912Z", + "version": "WzM0OTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/d5fbd610-03d9-11eb-8034-63f2039e9d3f.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/d5fbd610-03d9-11eb-8034-63f2039e9d3f.json new file mode 100644 index 000000000000..3b4efc83c7fc --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/d5fbd610-03d9-11eb-8034-63f2039e9d3f.json @@ -0,0 +1,304 @@ +{ + "attributes": { + "description": "Provides relevant app insights metrics for web applications", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "controlledBy": "1532342651170", + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "azure.app_state.application_id", + "negate": false, + "params": { + "query": "42cb59a9-d5be-400b-a5c4-69b0a0026ac6" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "azure.app_state.application_id": "42cb59a9-d5be-400b-a5c4-69b0a0026ac6" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "307a1ecd-284c-4f35-9a3c-d5b77c9a9c82", + "w": 7, + "x": 0, + "y": 0 + }, + "panelIndex": "307a1ecd-284c-4f35-9a3c-d5b77c9a9c82", + "panelRefName": "panel_307a1ecd-284c-4f35-9a3c-d5b77c9a9c82", + "title": "", + "type": "visualization", + "version": "7.9.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "654e745f-360d-4898-89b6-57f788c5f540", + "w": 20, + "x": 7, + "y": 0 + }, + "panelIndex": "654e745f-360d-4898-89b6-57f788c5f540", + "panelRefName": "panel_654e745f-360d-4898-89b6-57f788c5f540", + "title": "Exceptions", + "type": "lens", + "version": "7.9.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "5adca737-559d-4b4f-9fa7-58841daa99c5", + "w": 21, + "x": 27, + "y": 0 + }, + "panelIndex": "5adca737-559d-4b4f-9fa7-58841daa99c5", + "panelRefName": "panel_5adca737-559d-4b4f-9fa7-58841daa99c5", + "title": "Available Memory", + "type": "lens", + "version": "7.9.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "531cf244-45e0-43c3-9920-8f32397bd973", + "w": 8, + "x": 0, + "y": 15 + }, + "panelIndex": "531cf244-45e0-43c3-9920-8f32397bd973", + "panelRefName": "panel_531cf244-45e0-43c3-9920-8f32397bd973", + "title": "", + "type": "lens", + "version": "7.9.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "b9242495-babc-48a7-9ad7-56c62b1dc117", + "w": 8, + "x": 8, + "y": 15 + }, + "panelIndex": "b9242495-babc-48a7-9ad7-56c62b1dc117", + "panelRefName": "panel_b9242495-babc-48a7-9ad7-56c62b1dc117", + "title": "", + "type": "lens", + "version": "7.9.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "d311025a-f5c5-4e48-9f1c-710f59264c43", + "w": 8, + "x": 16, + "y": 15 + }, + "panelIndex": "d311025a-f5c5-4e48-9f1c-710f59264c43", + "panelRefName": "panel_d311025a-f5c5-4e48-9f1c-710f59264c43", + "title": "", + "type": "lens", + "version": "7.9.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "48974418-b1f7-4050-921e-a83771e125ae", + "w": 24, + "x": 24, + "y": 15 + }, + "panelIndex": "48974418-b1f7-4050-921e-a83771e125ae", + "panelRefName": "panel_48974418-b1f7-4050-921e-a83771e125ae", + "title": "Requests", + "type": "lens", + "version": "7.9.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "39d20db1-316a-4ff3-811a-5571cb4497c3", + "w": 24, + "x": 0, + "y": 30 + }, + "panelIndex": "39d20db1-316a-4ff3-811a-5571cb4497c3", + "panelRefName": "panel_39d20db1-316a-4ff3-811a-5571cb4497c3", + "title": "Browser Send/Receive Duration", + "type": "lens", + "version": "7.9.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "bc810208-0395-4c70-9057-d7307e064e43", + "w": 24, + "x": 24, + "y": 30 + }, + "panelIndex": "bc810208-0395-4c70-9057-d7307e064e43", + "panelRefName": "panel_bc810208-0395-4c70-9057-d7307e064e43", + "title": "Browser Networking/Processing Duration", + "type": "lens", + "version": "7.9.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "ecf6fbfa-ba65-481e-af85-07fd9d5feb5f", + "w": 24, + "x": 0, + "y": 45 + }, + "panelIndex": "ecf6fbfa-ba65-481e-af85-07fd9d5feb5f", + "panelRefName": "panel_ecf6fbfa-ba65-481e-af85-07fd9d5feb5f", + "title": "Process CPU Usage", + "type": "lens", + "version": "7.9.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "40a1b80b-cd62-446d-91aa-a971bb3769e7", + "w": 24, + "x": 24, + "y": 45 + }, + "panelIndex": "40a1b80b-cd62-446d-91aa-a971bb3769e7", + "panelRefName": "panel_40a1b80b-cd62-446d-91aa-a971bb3769e7", + "title": "Process Private Bytes", + "type": "lens", + "version": "7.9.2" + } + ], + "timeRestore": false, + "title": "[Metricbeat Azure] App State Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "d5fbd610-03d9-11eb-8034-63f2039e9d3f", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "2e5183a0-03da-11eb-8034-63f2039e9d3f", + "name": "307a1ecd-284c-4f35-9a3c-d5b77c9a9c82:panel_307a1ecd-284c-4f35-9a3c-d5b77c9a9c82", + "type": "visualization" + }, + { + "id": "1064f9a0-04a5-11eb-8034-63f2039e9d3f", + "name": "654e745f-360d-4898-89b6-57f788c5f540:panel_654e745f-360d-4898-89b6-57f788c5f540", + "type": "lens" + }, + { + "id": "76cc1d70-04a7-11eb-8034-63f2039e9d3f", + "name": "5adca737-559d-4b4f-9fa7-58841daa99c5:panel_5adca737-559d-4b4f-9fa7-58841daa99c5", + "type": "lens" + }, + { + "id": "a89c8fd0-03ec-11eb-8034-63f2039e9d3f", + "name": "531cf244-45e0-43c3-9920-8f32397bd973:panel_531cf244-45e0-43c3-9920-8f32397bd973", + "type": "lens" + }, + { + "id": "cb5ec410-03ed-11eb-8034-63f2039e9d3f", + "name": "b9242495-babc-48a7-9ad7-56c62b1dc117:panel_b9242495-babc-48a7-9ad7-56c62b1dc117", + "type": "lens" + }, + { + "id": "0df175c0-03ee-11eb-8034-63f2039e9d3f", + "name": "d311025a-f5c5-4e48-9f1c-710f59264c43:panel_d311025a-f5c5-4e48-9f1c-710f59264c43", + "type": "lens" + }, + { + "id": "f0678020-04a2-11eb-8034-63f2039e9d3f", + "name": "48974418-b1f7-4050-921e-a83771e125ae:panel_48974418-b1f7-4050-921e-a83771e125ae", + "type": "lens" + }, + { + "id": "e2704140-04a3-11eb-8034-63f2039e9d3f", + "name": "39d20db1-316a-4ff3-811a-5571cb4497c3:panel_39d20db1-316a-4ff3-811a-5571cb4497c3", + "type": "lens" + }, + { + "id": "0e74dee0-04a4-11eb-8034-63f2039e9d3f", + "name": "bc810208-0395-4c70-9057-d7307e064e43:panel_bc810208-0395-4c70-9057-d7307e064e43", + "type": "lens" + }, + { + "id": "cfa361a0-04a8-11eb-8034-63f2039e9d3f", + "name": "ecf6fbfa-ba65-481e-af85-07fd9d5feb5f:panel_ecf6fbfa-ba65-481e-af85-07fd9d5feb5f", + "type": "lens" + }, + { + "id": "2b54b2c0-04a8-11eb-8034-63f2039e9d3f", + "name": "40a1b80b-cd62-446d-91aa-a971bb3769e7:panel_40a1b80b-cd62-446d-91aa-a971bb3769e7", + "type": "lens" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:42.950Z", + "version": "WzM0ODcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/dae20ed0-6d0a-11ea-8fe8-71add5fd7c38.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/dae20ed0-6d0a-11ea-8fe8-71add5fd7c38.json new file mode 100644 index 000000000000..24ce4ba0eab5 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/dae20ed0-6d0a-11ea-8fe8-71add5fd7c38.json @@ -0,0 +1,188 @@ +{ + "attributes": { + "description": "This dashboard shows metrics for the container service in Azure.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b", + "panelRefName": "panel_32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b", + "title": "", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "c35d3d89-2f34-43a0-b346-85ba0e7c9e89", + "w": 18, + "x": 9, + "y": 0 + }, + "panelIndex": "c35d3d89-2f34-43a0-b346-85ba0e7c9e89", + "panelRefName": "panel_c35d3d89-2f34-43a0-b346-85ba0e7c9e89", + "title": "Container Service Kube Node Status Allocatable Memory", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "e1952edf-ed31-49ee-8db1-24370998ab89", + "w": 21, + "x": 27, + "y": 0 + }, + "panelIndex": "e1952edf-ed31-49ee-8db1-24370998ab89", + "panelRefName": "panel_e1952edf-ed31-49ee-8db1-24370998ab89", + "title": "Container Service Kube Node Status Allocatable CPU Cores", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "ec183a66-545b-4a67-bfb4-568def660612", + "w": 9, + "x": 0, + "y": 5 + }, + "panelIndex": "ec183a66-545b-4a67-bfb4-568def660612", + "panelRefName": "panel_ec183a66-545b-4a67-bfb4-568def660612", + "title": "Container Filters", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "ada37452-619f-470a-b9cd-bafa20e7d7b1", + "w": 24, + "x": 0, + "y": 17 + }, + "panelIndex": "ada37452-619f-470a-b9cd-bafa20e7d7b1", + "panelRefName": "panel_ada37452-619f-470a-b9cd-bafa20e7d7b1", + "title": "Container Service Kube Pod Status Phase", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "c8d3ed1a-6e72-4115-9a69-db1919a36fc4", + "w": 24, + "x": 24, + "y": 17 + }, + "panelIndex": "c8d3ed1a-6e72-4115-9a69-db1919a36fc4", + "panelRefName": "panel_c8d3ed1a-6e72-4115-9a69-db1919a36fc4", + "title": "Container Service Kube Pod Status Ready", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "707fb714-99af-4484-a56e-bfecdf592c58", + "w": 48, + "x": 0, + "y": 32 + }, + "panelIndex": "707fb714-99af-4484-a56e-bfecdf592c58", + "panelRefName": "panel_707fb714-99af-4484-a56e-bfecdf592c58", + "title": "Container Service Kube Node Status Condition", + "type": "visualization", + "version": "7.6.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Azure] Container Service Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "dae20ed0-6d0a-11ea-8fe8-71add5fd7c38", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "3630b9a0-6d22-11ea-8fe8-71add5fd7c38", + "name": "32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b:panel_32b4e6e2-bf3f-4c4a-8fdb-925f21f9d22b", + "type": "visualization" + }, + { + "id": "eda368d0-6d1d-11ea-8fe8-71add5fd7c38", + "name": "c35d3d89-2f34-43a0-b346-85ba0e7c9e89:panel_c35d3d89-2f34-43a0-b346-85ba0e7c9e89", + "type": "visualization" + }, + { + "id": "6e2d9930-6d1e-11ea-8fe8-71add5fd7c38", + "name": "e1952edf-ed31-49ee-8db1-24370998ab89:panel_e1952edf-ed31-49ee-8db1-24370998ab89", + "type": "visualization" + }, + { + "id": "0fa31060-6aae-11ea-af5c-73e8f396b3e9", + "name": "ec183a66-545b-4a67-bfb4-568def660612:panel_ec183a66-545b-4a67-bfb4-568def660612", + "type": "visualization" + }, + { + "id": "bda7b580-6d1f-11ea-8fe8-71add5fd7c38", + "name": "ada37452-619f-470a-b9cd-bafa20e7d7b1:panel_ada37452-619f-470a-b9cd-bafa20e7d7b1", + "type": "visualization" + }, + { + "id": "c19586f0-6d1e-11ea-8fe8-71add5fd7c38", + "name": "c8d3ed1a-6e72-4115-9a69-db1919a36fc4:panel_c8d3ed1a-6e72-4115-9a69-db1919a36fc4", + "type": "visualization" + }, + { + "id": "e79211c0-6d37-11ea-8fe8-71add5fd7c38", + "name": "707fb714-99af-4484-a56e-bfecdf592c58:panel_707fb714-99af-4484-a56e-bfecdf592c58", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:48.023Z", + "version": "WzM1MzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..4d937da926bb --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,347 @@ +{ + "attributes": { + "description": "This dashboard shows metrics for file storage type in Azure.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": "file", + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "azure.namespace", + "negate": false, + "params": { + "query": "Microsoft.Storage/storageAccounts/fileServices" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "azure.namespace": "Microsoft.Storage/storageAccounts/fileServices" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "ee131d2d-7ab5-4434-9e3b-230759c3e5ff", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "ee131d2d-7ab5-4434-9e3b-230759c3e5ff", + "panelRefName": "panel_ee131d2d-7ab5-4434-9e3b-230759c3e5ff", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "w": 5, + "x": 9, + "y": 0 + }, + "panelIndex": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "panelRefName": "panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "title": "Availability", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "b24e3e0d-a748-4bb9-ad71-e0de392e2696", + "w": 5, + "x": 14, + "y": 0 + }, + "panelIndex": "b24e3e0d-a748-4bb9-ad71-e0de392e2696", + "panelRefName": "panel_b24e3e0d-a748-4bb9-ad71-e0de392e2696", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "8131dfcd-2c52-4641-8259-2f4f2e7558d0", + "w": 5, + "x": 19, + "y": 0 + }, + "panelIndex": "8131dfcd-2c52-4641-8259-2f4f2e7558d0", + "panelRefName": "panel_8131dfcd-2c52-4641-8259-2f4f2e7558d0", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "49233089-be1d-4cda-9ccf-2815152e1016", + "w": 5, + "x": 24, + "y": 0 + }, + "panelIndex": "49233089-be1d-4cda-9ccf-2815152e1016", + "panelRefName": "panel_49233089-be1d-4cda-9ccf-2815152e1016", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "1d623c03-4d02-4a81-b91e-49e82e112016", + "w": 19, + "x": 29, + "y": 0 + }, + "panelIndex": "1d623c03-4d02-4a81-b91e-49e82e112016", + "panelRefName": "panel_1d623c03-4d02-4a81-b91e-49e82e112016", + "title": "Transactions", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "ff6441f8-d66d-4399-bae5-25d3d861b299", + "w": 9, + "x": 0, + "y": 5 + }, + "panelIndex": "ff6441f8-d66d-4399-bae5-25d3d861b299", + "panelRefName": "panel_ff6441f8-d66d-4399-bae5-25d3d861b299", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "87066244-7840-4555-9d12-026d64977f1a", + "w": 20, + "x": 9, + "y": 9 + }, + "panelIndex": "87066244-7840-4555-9d12-026d64977f1a", + "panelRefName": "panel_87066244-7840-4555-9d12-026d64977f1a", + "title": "Success Server Latency", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "756da375-e6a2-4668-af43-0cd294878254", + "w": 19, + "x": 29, + "y": 9 + }, + "panelIndex": "756da375-e6a2-4668-af43-0cd294878254", + "panelRefName": "panel_756da375-e6a2-4668-af43-0cd294878254", + "title": "Success E2E Latency", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f", + "w": 4, + "x": 0, + "y": 20 + }, + "panelIndex": "2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f", + "panelRefName": "panel_2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "c6792441-37b6-4ef4-ad8b-21f137b2f0b4", + "w": 5, + "x": 4, + "y": 20 + }, + "panelIndex": "c6792441-37b6-4ef4-ad8b-21f137b2f0b4", + "panelRefName": "panel_c6792441-37b6-4ef4-ad8b-21f137b2f0b4", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "a715fafc-ca38-410c-9253-12ba506eabc0", + "w": 20, + "x": 9, + "y": 24 + }, + "panelIndex": "a715fafc-ca38-410c-9253-12ba506eabc0", + "panelRefName": "panel_a715fafc-ca38-410c-9253-12ba506eabc0", + "title": "Egress Traffic by APIName", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "75f72920-be71-47a9-a967-f1c862ab2961", + "w": 19, + "x": 29, + "y": 24 + }, + "panelIndex": "75f72920-be71-47a9-a967-f1c862ab2961", + "panelRefName": "panel_75f72920-be71-47a9-a967-f1c862ab2961", + "title": "Ingress Traffic by APIName", + "type": "visualization", + "version": "7.7.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Azure] File Storage Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "dff7a080-32f7-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "f18a7cb0-32f6-11ea-a83e-25b8612d00cc", + "name": "ee131d2d-7ab5-4434-9e3b-230759c3e5ff:panel_ee131d2d-7ab5-4434-9e3b-230759c3e5ff", + "type": "visualization" + }, + { + "id": "40dbc0d0-32e3-11ea-a83e-25b8612d00cc", + "name": "a9456b9b-efa6-410d-a56c-4b66aa8c499e:panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "type": "visualization" + }, + { + "id": "453965a0-3393-11ea-a83e-25b8612d00cc", + "name": "b24e3e0d-a748-4bb9-ad71-e0de392e2696:panel_b24e3e0d-a748-4bb9-ad71-e0de392e2696", + "type": "visualization" + }, + { + "id": "722ef2f0-3393-11ea-a83e-25b8612d00cc", + "name": "8131dfcd-2c52-4641-8259-2f4f2e7558d0:panel_8131dfcd-2c52-4641-8259-2f4f2e7558d0", + "type": "visualization" + }, + { + "id": "a4bf9710-3393-11ea-a83e-25b8612d00cc", + "name": "49233089-be1d-4cda-9ccf-2815152e1016:panel_49233089-be1d-4cda-9ccf-2815152e1016", + "type": "visualization" + }, + { + "id": "553f9320-32e9-11ea-a83e-25b8612d00cc", + "name": "1d623c03-4d02-4a81-b91e-49e82e112016:panel_1d623c03-4d02-4a81-b91e-49e82e112016", + "type": "visualization" + }, + { + "id": "acced050-32d1-11ea-a83e-25b8612d00cc", + "name": "ff6441f8-d66d-4399-bae5-25d3d861b299:panel_ff6441f8-d66d-4399-bae5-25d3d861b299", + "type": "visualization" + }, + { + "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", + "name": "87066244-7840-4555-9d12-026d64977f1a:panel_87066244-7840-4555-9d12-026d64977f1a", + "type": "visualization" + }, + { + "id": "685fbeb0-32eb-11ea-a83e-25b8612d00cc", + "name": "756da375-e6a2-4668-af43-0cd294878254:panel_756da375-e6a2-4668-af43-0cd294878254", + "type": "visualization" + }, + { + "id": "09a6f150-3399-11ea-a83e-25b8612d00cc", + "name": "2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f:panel_2d5c6c0f-f4d2-44fb-b7e5-1a855b75e40f", + "type": "visualization" + }, + { + "id": "241a55e0-3399-11ea-a83e-25b8612d00cc", + "name": "c6792441-37b6-4ef4-ad8b-21f137b2f0b4:panel_c6792441-37b6-4ef4-ad8b-21f137b2f0b4", + "type": "visualization" + }, + { + "id": "599c62c0-32d7-11ea-a83e-25b8612d00cc", + "name": "a715fafc-ca38-410c-9253-12ba506eabc0:panel_a715fafc-ca38-410c-9253-12ba506eabc0", + "type": "visualization" + }, + { + "id": "4eaef260-32e1-11ea-a83e-25b8612d00cc", + "name": "75f72920-be71-47a9-a967-f1c862ab2961:panel_75f72920-be71-47a9-a967-f1c862ab2961", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:50.051Z", + "version": "WzM1NDksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/eb3f05f0-ea9a-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/eb3f05f0-ea9a-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..a10da79a747c --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/eb3f05f0-ea9a-11e9-90ec-112a988266d5.json @@ -0,0 +1,231 @@ +{ + "attributes": { + "description": "This dashboard visualized relevant metrics for VMs running on Azure cloud.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "aa881f9d-28d3-4722-822e-3e670021cf52", + "w": 6, + "x": 0, + "y": 0 + }, + "panelIndex": "aa881f9d-28d3-4722-822e-3e670021cf52", + "panelRefName": "panel_aa881f9d-28d3-4722-822e-3e670021cf52", + "title": "VM Filters", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "e673f70c-f811-4290-9087-578c7dd13675", + "w": 20, + "x": 6, + "y": 0 + }, + "panelIndex": "e673f70c-f811-4290-9087-578c7dd13675", + "panelRefName": "panel_e673f70c-f811-4290-9087-578c7dd13675", + "title": "VM CPU Utilization", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2473ef72-c56c-4783-a36a-f4b8efd66ab7", + "w": 22, + "x": 26, + "y": 0 + }, + "panelIndex": "2473ef72-c56c-4783-a36a-f4b8efd66ab7", + "panelRefName": "panel_2473ef72-c56c-4783-a36a-f4b8efd66ab7", + "title": "VM Available Memory", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "14e225ef-6417-4377-b2cb-6b46b6693b78", + "w": 12, + "x": 36, + "y": 12 + }, + "panelIndex": "14e225ef-6417-4377-b2cb-6b46b6693b78", + "panelRefName": "panel_14e225ef-6417-4377-b2cb-6b46b6693b78", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "535d70b3-3f3c-4a84-85ba-ab671b6d144f", + "w": 12, + "x": 0, + "y": 12 + }, + "panelIndex": "535d70b3-3f3c-4a84-85ba-ab671b6d144f", + "panelRefName": "panel_535d70b3-3f3c-4a84-85ba-ab671b6d144f", + "title": "VM Network In Total", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6903a45e-bf11-4db2-9497-fd9692e83448", + "w": 12, + "x": 12, + "y": 12 + }, + "panelIndex": "6903a45e-bf11-4db2-9497-fd9692e83448", + "panelRefName": "panel_6903a45e-bf11-4db2-9497-fd9692e83448", + "title": "VM Network Out Total", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "aa57fa8f-f6ea-45e3-9b2c-ba948d625813", + "w": 12, + "x": 24, + "y": 12 + }, + "panelIndex": "aa57fa8f-f6ea-45e3-9b2c-ba948d625813", + "panelRefName": "panel_aa57fa8f-f6ea-45e3-9b2c-ba948d625813", + "title": "VM Disk Writes", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "8879143b-ed83-45ec-8c58-b10dc1597c22", + "w": 24, + "x": 0, + "y": 24 + }, + "panelIndex": "8879143b-ed83-45ec-8c58-b10dc1597c22", + "panelRefName": "panel_8879143b-ed83-45ec-8c58-b10dc1597c22", + "title": "VM Disk Read Operations/s", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "4071f2bf-1794-45ff-b76d-58864226d8b7", + "w": 24, + "x": 24, + "y": 24 + }, + "panelIndex": "4071f2bf-1794-45ff-b76d-58864226d8b7", + "panelRefName": "panel_4071f2bf-1794-45ff-b76d-58864226d8b7", + "title": "VM Disk Write Operations/s", + "type": "visualization", + "version": "7.9.1" + } + ], + "timeRestore": false, + "title": "[Metricbeat Azure] Compute VMs Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "eb3f05f0-ea9a-11e9-90ec-112a988266d5", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "5031b220-eb61-11e9-90ec-112a988266d5", + "name": "aa881f9d-28d3-4722-822e-3e670021cf52:panel_aa881f9d-28d3-4722-822e-3e670021cf52", + "type": "visualization" + }, + { + "id": "db9a3490-ea8f-11e9-90ec-112a988266d5", + "name": "e673f70c-f811-4290-9087-578c7dd13675:panel_e673f70c-f811-4290-9087-578c7dd13675", + "type": "visualization" + }, + { + "id": "7205a4f0-ea95-11e9-90ec-112a988266d5", + "name": "2473ef72-c56c-4783-a36a-f4b8efd66ab7:panel_2473ef72-c56c-4783-a36a-f4b8efd66ab7", + "type": "visualization" + }, + { + "id": "e8ca65c0-eb45-11e9-90ec-112a988266d5", + "name": "14e225ef-6417-4377-b2cb-6b46b6693b78:panel_14e225ef-6417-4377-b2cb-6b46b6693b78", + "type": "visualization" + }, + { + "id": "8b6b9450-ea99-11e9-90ec-112a988266d5", + "name": "535d70b3-3f3c-4a84-85ba-ab671b6d144f:panel_535d70b3-3f3c-4a84-85ba-ab671b6d144f", + "type": "visualization" + }, + { + "id": "abd32c30-ea99-11e9-90ec-112a988266d5", + "name": "6903a45e-bf11-4db2-9497-fd9692e83448:panel_6903a45e-bf11-4db2-9497-fd9692e83448", + "type": "visualization" + }, + { + "id": "5c016810-ea9a-11e9-90ec-112a988266d5", + "name": "aa57fa8f-f6ea-45e3-9b2c-ba948d625813:panel_aa57fa8f-f6ea-45e3-9b2c-ba948d625813", + "type": "visualization" + }, + { + "id": "3a50e950-eb46-11e9-90ec-112a988266d5", + "name": "8879143b-ed83-45ec-8c58-b10dc1597c22:panel_8879143b-ed83-45ec-8c58-b10dc1597c22", + "type": "visualization" + }, + { + "id": "0892eaa0-ea9a-11e9-90ec-112a988266d5", + "name": "4071f2bf-1794-45ff-b76d-58864226d8b7:panel_4071f2bf-1794-45ff-b76d-58864226d8b7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:55.224Z", + "version": "WzM2MDksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..0db710dc049c --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,303 @@ +{ + "attributes": { + "description": "This dashboard shows metrics for table storage type in Azure.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": "table", + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "azure.namespace", + "negate": false, + "params": { + "query": "Microsoft.Storage/storageAccounts/tableServices" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "azure.namespace": "Microsoft.Storage/storageAccounts/tableServices" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "204cbabc-fafd-472c-b106-bd08f5262b1f", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "204cbabc-fafd-472c-b106-bd08f5262b1f", + "panelRefName": "panel_204cbabc-fafd-472c-b106-bd08f5262b1f", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "w": 5, + "x": 9, + "y": 0 + }, + "panelIndex": "a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "panelRefName": "panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "title": "Availability", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "15b7c108-0214-4af6-9719-fab59affafec", + "w": 5, + "x": 14, + "y": 0 + }, + "panelIndex": "15b7c108-0214-4af6-9719-fab59affafec", + "panelRefName": "panel_15b7c108-0214-4af6-9719-fab59affafec", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "4177a6e6-97d7-447e-bcf3-ee9c1d660bd8", + "w": 5, + "x": 19, + "y": 0 + }, + "panelIndex": "4177a6e6-97d7-447e-bcf3-ee9c1d660bd8", + "panelRefName": "panel_4177a6e6-97d7-447e-bcf3-ee9c1d660bd8", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "28d85d90-3881-4d1f-b60c-43b545fc9f0e", + "w": 5, + "x": 24, + "y": 0 + }, + "panelIndex": "28d85d90-3881-4d1f-b60c-43b545fc9f0e", + "panelRefName": "panel_28d85d90-3881-4d1f-b60c-43b545fc9f0e", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "1d623c03-4d02-4a81-b91e-49e82e112016", + "w": 19, + "x": 29, + "y": 0 + }, + "panelIndex": "1d623c03-4d02-4a81-b91e-49e82e112016", + "panelRefName": "panel_1d623c03-4d02-4a81-b91e-49e82e112016", + "title": "Transactions", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "ff6441f8-d66d-4399-bae5-25d3d861b299", + "w": 9, + "x": 0, + "y": 5 + }, + "panelIndex": "ff6441f8-d66d-4399-bae5-25d3d861b299", + "panelRefName": "panel_ff6441f8-d66d-4399-bae5-25d3d861b299", + "title": "", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "87066244-7840-4555-9d12-026d64977f1a", + "w": 20, + "x": 9, + "y": 9 + }, + "panelIndex": "87066244-7840-4555-9d12-026d64977f1a", + "panelRefName": "panel_87066244-7840-4555-9d12-026d64977f1a", + "title": "Success Server Latency", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "756da375-e6a2-4668-af43-0cd294878254", + "w": 19, + "x": 29, + "y": 9 + }, + "panelIndex": "756da375-e6a2-4668-af43-0cd294878254", + "panelRefName": "panel_756da375-e6a2-4668-af43-0cd294878254", + "title": "Success E2E Latency", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "a715fafc-ca38-410c-9253-12ba506eabc0", + "w": 20, + "x": 9, + "y": 24 + }, + "panelIndex": "a715fafc-ca38-410c-9253-12ba506eabc0", + "panelRefName": "panel_a715fafc-ca38-410c-9253-12ba506eabc0", + "title": "Egress Traffic by APIName", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "75f72920-be71-47a9-a967-f1c862ab2961", + "w": 19, + "x": 29, + "y": 24 + }, + "panelIndex": "75f72920-be71-47a9-a967-f1c862ab2961", + "panelRefName": "panel_75f72920-be71-47a9-a967-f1c862ab2961", + "title": "Ingress Traffic by APIName", + "type": "visualization", + "version": "7.7.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Azure] Table Storage Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "ff2fe020-32f7-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "fdef3f40-32f6-11ea-a83e-25b8612d00cc", + "name": "204cbabc-fafd-472c-b106-bd08f5262b1f:panel_204cbabc-fafd-472c-b106-bd08f5262b1f", + "type": "visualization" + }, + { + "id": "40dbc0d0-32e3-11ea-a83e-25b8612d00cc", + "name": "a9456b9b-efa6-410d-a56c-4b66aa8c499e:panel_a9456b9b-efa6-410d-a56c-4b66aa8c499e", + "type": "visualization" + }, + { + "id": "f528e6a0-339a-11ea-a83e-25b8612d00cc", + "name": "15b7c108-0214-4af6-9719-fab59affafec:panel_15b7c108-0214-4af6-9719-fab59affafec", + "type": "visualization" + }, + { + "id": "43b31a20-339b-11ea-a83e-25b8612d00cc", + "name": "4177a6e6-97d7-447e-bcf3-ee9c1d660bd8:panel_4177a6e6-97d7-447e-bcf3-ee9c1d660bd8", + "type": "visualization" + }, + { + "id": "5cbf5820-339c-11ea-a83e-25b8612d00cc", + "name": "28d85d90-3881-4d1f-b60c-43b545fc9f0e:panel_28d85d90-3881-4d1f-b60c-43b545fc9f0e", + "type": "visualization" + }, + { + "id": "553f9320-32e9-11ea-a83e-25b8612d00cc", + "name": "1d623c03-4d02-4a81-b91e-49e82e112016:panel_1d623c03-4d02-4a81-b91e-49e82e112016", + "type": "visualization" + }, + { + "id": "acced050-32d1-11ea-a83e-25b8612d00cc", + "name": "ff6441f8-d66d-4399-bae5-25d3d861b299:panel_ff6441f8-d66d-4399-bae5-25d3d861b299", + "type": "visualization" + }, + { + "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", + "name": "87066244-7840-4555-9d12-026d64977f1a:panel_87066244-7840-4555-9d12-026d64977f1a", + "type": "visualization" + }, + { + "id": "685fbeb0-32eb-11ea-a83e-25b8612d00cc", + "name": "756da375-e6a2-4668-af43-0cd294878254:panel_756da375-e6a2-4668-af43-0cd294878254", + "type": "visualization" + }, + { + "id": "599c62c0-32d7-11ea-a83e-25b8612d00cc", + "name": "a715fafc-ca38-410c-9253-12ba506eabc0:panel_a715fafc-ca38-410c-9253-12ba506eabc0", + "type": "visualization" + }, + { + "id": "4eaef260-32e1-11ea-a83e-25b8612d00cc", + "name": "75f72920-be71-47a9-a967-f1c862ab2961:panel_75f72920-be71-47a9-a967-f1c862ab2961", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:53.138Z", + "version": "WzM1ODgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/0df175c0-03ee-11eb-8034-63f2039e9d3f.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/0df175c0-03ee-11eb-8034-63f2039e9d3f.json new file mode 100644 index 000000000000..f4132c375f29 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/0df175c0-03ee-11eb-8034-63f2039e9d3f.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "82e648a8-6d9a-4ae0-9449-b802ce1ac723": { + "columnOrder": [ + "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1" + ], + "columns": { + "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Unique sessions", + "operationType": "average", + "scale": "ratio", + "sourceField": "azure.app_state.sessions_count.unique" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "accessor": "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1", + "layerId": "82e648a8-6d9a-4ae0-9449-b802ce1ac723" + } + }, + "title": "App state Unique sessions [Metricbeat Azure]", + "visualizationType": "lnsMetric" + }, + "coreMigrationVersion": "8.0.0", + "id": "0df175c0-03ee-11eb-8034-63f2039e9d3f", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-82e648a8-6d9a-4ae0-9449-b802ce1ac723", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:42.950Z", + "version": "WzM0OTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/0e74dee0-04a4-11eb-8034-63f2039e9d3f.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/0e74dee0-04a4-11eb-8034-63f2039e9d3f.json new file mode 100644 index 000000000000..465e88273173 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/0e74dee0-04a4-11eb-8034-63f2039e9d3f.json @@ -0,0 +1,116 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "85644d0a-8011-45af-a751-7961b8bdd071": { + "columnOrder": [ + "bcbccc16-d042-40fa-a9b2-0f09268281ff", + "4d4c068a-0194-4d54-a1fa-3863c3df9331", + "b5a75764-e98b-434b-a0f0-5658a4aa1cf6", + "ab158cba-532f-47f8-8450-db883504dc0f" + ], + "columns": { + "4d4c068a-0194-4d54-a1fa-3863c3df9331": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Url Path", + "operationType": "terms", + "params": { + "orderBy": { + "type": "alphabetical" + }, + "orderDirection": "asc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "azure.dimensions.browser_timing_url_path" + }, + "ab158cba-532f-47f8-8450-db883504dc0f": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Processing duration", + "operationType": "average", + "scale": "ratio", + "sourceField": "azure.app_state.browser_timings_processing_duration.avg" + }, + "b5a75764-e98b-434b-a0f0-5658a4aa1cf6": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Networking duration", + "operationType": "average", + "scale": "ratio", + "sourceField": "azure.app_state.browser_timings_network_duration.avg" + }, + "bcbccc16-d042-40fa-a9b2-0f09268281ff": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "b5a75764-e98b-434b-a0f0-5658a4aa1cf6", + "ab158cba-532f-47f8-8450-db883504dc0f" + ], + "layerId": "85644d0a-8011-45af-a751-7961b8bdd071", + "position": "top", + "seriesType": "bar", + "showGridlines": false, + "splitAccessor": "4d4c068a-0194-4d54-a1fa-3863c3df9331", + "xAccessor": "bcbccc16-d042-40fa-a9b2-0f09268281ff" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar" + } + }, + "title": "App state Browser Networking/Processing Duration [Metricbeat Azure]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "0e74dee0-04a4-11eb-8034-63f2039e9d3f", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:42.950Z", + "version": "WzM0OTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/1064f9a0-04a5-11eb-8034-63f2039e9d3f.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/1064f9a0-04a5-11eb-8034-63f2039e9d3f.json new file mode 100644 index 000000000000..e6e8fb49f00c --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/1064f9a0-04a5-11eb-8034-63f2039e9d3f.json @@ -0,0 +1,128 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "85644d0a-8011-45af-a751-7961b8bdd071": { + "columnOrder": [ + "bcbccc16-d042-40fa-a9b2-0f09268281ff", + "5788331a-267d-426a-a68e-94a5310af644", + "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba", + "e5c93c50-bb0a-4609-a7ce-7003f2f9a20e", + "9e183a5e-3dba-4929-b07e-2a3321f7926b" + ], + "columns": { + "5788331a-267d-426a-a68e-94a5310af644": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Type", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba", + "type": "column" + }, + "orderDirection": "desc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "azure.dimensions.exception_type" + }, + "9e183a5e-3dba-4929-b07e-2a3321f7926b": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Browser", + "operationType": "average", + "scale": "ratio", + "sourceField": "azure.app_state.exceptions_browser.sum" + }, + "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Total", + "operationType": "average", + "scale": "ratio", + "sourceField": "azure.app_state.exceptions_count.sum" + }, + "bcbccc16-d042-40fa-a9b2-0f09268281ff": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "e5c93c50-bb0a-4609-a7ce-7003f2f9a20e": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Server ", + "operationType": "average", + "scale": "ratio", + "sourceField": "azure.app_state.exceptions_server.sum" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba", + "e5c93c50-bb0a-4609-a7ce-7003f2f9a20e", + "9e183a5e-3dba-4929-b07e-2a3321f7926b" + ], + "layerId": "85644d0a-8011-45af-a751-7961b8bdd071", + "position": "top", + "seriesType": "area_stacked", + "showGridlines": false, + "splitAccessor": "5788331a-267d-426a-a68e-94a5310af644", + "xAccessor": "bcbccc16-d042-40fa-a9b2-0f09268281ff" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "area_stacked" + } + }, + "title": "App state Exceptions [Metricbeat Azure]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "1064f9a0-04a5-11eb-8034-63f2039e9d3f", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:42.950Z", + "version": "WzM0ODksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/2b54b2c0-04a8-11eb-8034-63f2039e9d3f.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/2b54b2c0-04a8-11eb-8034-63f2039e9d3f.json new file mode 100644 index 000000000000..d795011c75f6 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/2b54b2c0-04a8-11eb-8034-63f2039e9d3f.json @@ -0,0 +1,114 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "85644d0a-8011-45af-a751-7961b8bdd071": { + "columnOrder": [ + "bcbccc16-d042-40fa-a9b2-0f09268281ff", + "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9", + "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba" + ], + "columns": { + "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Instance", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba", + "type": "column" + }, + "orderDirection": "desc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "azure.dimensions.cloud_role_instance" + }, + "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Process private bytes", + "operationType": "average", + "params": { + "format": { + "id": "bytes", + "params": { + "decimals": 2 + } + } + }, + "scale": "ratio", + "sourceField": "azure.app_state.performance_counters_process_private_bytes.avg" + }, + "bcbccc16-d042-40fa-a9b2-0f09268281ff": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba" + ], + "layerId": "85644d0a-8011-45af-a751-7961b8bdd071", + "position": "top", + "seriesType": "area", + "showGridlines": false, + "splitAccessor": "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9", + "xAccessor": "bcbccc16-d042-40fa-a9b2-0f09268281ff" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "area" + } + }, + "title": "App state Process Private Bytes [Metricbeat Azure]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "2b54b2c0-04a8-11eb-8034-63f2039e9d3f", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:42.950Z", + "version": "WzM0OTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/76cc1d70-04a7-11eb-8034-63f2039e9d3f.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/76cc1d70-04a7-11eb-8034-63f2039e9d3f.json new file mode 100644 index 000000000000..059228f03c3c --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/76cc1d70-04a7-11eb-8034-63f2039e9d3f.json @@ -0,0 +1,114 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "85644d0a-8011-45af-a751-7961b8bdd071": { + "columnOrder": [ + "bcbccc16-d042-40fa-a9b2-0f09268281ff", + "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9", + "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba" + ], + "columns": { + "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Instance", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba", + "type": "column" + }, + "orderDirection": "desc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "azure.dimensions.cloud_role_instance" + }, + "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Available memory", + "operationType": "average", + "params": { + "format": { + "id": "bytes", + "params": { + "decimals": 2 + } + } + }, + "scale": "ratio", + "sourceField": "azure.app_state.performance_counters_memory_available_bytes.avg" + }, + "bcbccc16-d042-40fa-a9b2-0f09268281ff": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba" + ], + "layerId": "85644d0a-8011-45af-a751-7961b8bdd071", + "position": "top", + "seriesType": "area", + "showGridlines": false, + "splitAccessor": "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9", + "xAccessor": "bcbccc16-d042-40fa-a9b2-0f09268281ff" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "area" + } + }, + "title": "App state Memory [Metricbeat Azure]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "76cc1d70-04a7-11eb-8034-63f2039e9d3f", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:42.950Z", + "version": "WzM0OTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/a89c8fd0-03ec-11eb-8034-63f2039e9d3f.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/a89c8fd0-03ec-11eb-8034-63f2039e9d3f.json new file mode 100644 index 000000000000..9ebca3874208 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/a89c8fd0-03ec-11eb-8034-63f2039e9d3f.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "82e648a8-6d9a-4ae0-9449-b802ce1ac723": { + "columnOrder": [ + "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1" + ], + "columns": { + "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Unique users", + "operationType": "average", + "scale": "ratio", + "sourceField": "azure.app_state.users_count.unique" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "accessor": "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1", + "layerId": "82e648a8-6d9a-4ae0-9449-b802ce1ac723" + } + }, + "title": "App state Unique users [Metricbeat Azure]", + "visualizationType": "lnsMetric" + }, + "coreMigrationVersion": "8.0.0", + "id": "a89c8fd0-03ec-11eb-8034-63f2039e9d3f", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-82e648a8-6d9a-4ae0-9449-b802ce1ac723", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:42.950Z", + "version": "WzM0OTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/cb5ec410-03ed-11eb-8034-63f2039e9d3f.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/cb5ec410-03ed-11eb-8034-63f2039e9d3f.json new file mode 100644 index 000000000000..a18858f3e536 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/cb5ec410-03ed-11eb-8034-63f2039e9d3f.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "82e648a8-6d9a-4ae0-9449-b802ce1ac723": { + "columnOrder": [ + "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1" + ], + "columns": { + "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Unique authenticated users", + "operationType": "average", + "scale": "ratio", + "sourceField": "azure.app_state.users_authenticated.unique" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "accessor": "d62f1bf0-71b4-41ba-9d9c-dc9f4e478ac1", + "layerId": "82e648a8-6d9a-4ae0-9449-b802ce1ac723" + } + }, + "title": "App state Unique authenticated users [Metricbeat Azure]", + "visualizationType": "lnsMetric" + }, + "coreMigrationVersion": "8.0.0", + "id": "cb5ec410-03ed-11eb-8034-63f2039e9d3f", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-82e648a8-6d9a-4ae0-9449-b802ce1ac723", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:42.950Z", + "version": "WzM0OTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/cfa361a0-04a8-11eb-8034-63f2039e9d3f.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/cfa361a0-04a8-11eb-8034-63f2039e9d3f.json new file mode 100644 index 000000000000..1fa40ca2fa96 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/cfa361a0-04a8-11eb-8034-63f2039e9d3f.json @@ -0,0 +1,133 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "85644d0a-8011-45af-a751-7961b8bdd071": { + "columnOrder": [ + "bcbccc16-d042-40fa-a9b2-0f09268281ff", + "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9", + "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba", + "252dfd5f-26bd-4861-bb01-4b3530cadd95" + ], + "columns": { + "252dfd5f-26bd-4861-bb01-4b3530cadd95": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "CPU percentage", + "operationType": "average", + "params": { + "format": { + "id": "percent", + "params": { + "decimals": 2 + } + } + }, + "scale": "ratio", + "sourceField": "azure.app_state.performance_counters_process_cpu_percentage.avg" + }, + "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Instance", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba", + "type": "column" + }, + "orderDirection": "desc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "azure.dimensions.cloud_role_instance" + }, + "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Total CPU percentage ", + "operationType": "average", + "params": { + "format": { + "id": "percent", + "params": { + "decimals": 2 + } + } + }, + "scale": "ratio", + "sourceField": "azure.app_state.performance_counters_process_cpu_percentage_total.avg" + }, + "bcbccc16-d042-40fa-a9b2-0f09268281ff": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "b0d8f2d4-91f3-469c-8bcb-962a9fb48fba", + "252dfd5f-26bd-4861-bb01-4b3530cadd95" + ], + "layerId": "85644d0a-8011-45af-a751-7961b8bdd071", + "position": "top", + "seriesType": "area", + "showGridlines": false, + "splitAccessor": "a1f669d0-c9f2-4bc5-9bdd-e40badd261b9", + "xAccessor": "bcbccc16-d042-40fa-a9b2-0f09268281ff" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "area" + } + }, + "title": "App state Process CPU usage [Metricbeat Azure]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "cfa361a0-04a8-11eb-8034-63f2039e9d3f", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:42.950Z", + "version": "WzM0OTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/e2704140-04a3-11eb-8034-63f2039e9d3f.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/e2704140-04a3-11eb-8034-63f2039e9d3f.json new file mode 100644 index 000000000000..2863689441b9 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/e2704140-04a3-11eb-8034-63f2039e9d3f.json @@ -0,0 +1,129 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "85644d0a-8011-45af-a751-7961b8bdd071": { + "columnOrder": [ + "bcbccc16-d042-40fa-a9b2-0f09268281ff", + "4d4c068a-0194-4d54-a1fa-3863c3df9331", + "be6a3d8b-9428-480b-a7b3-071127726093", + "6bc1fd35-168d-42d5-b9c8-7078896d8ce4", + "988e9976-3471-478c-89f6-11fd46458d7f" + ], + "columns": { + "4d4c068a-0194-4d54-a1fa-3863c3df9331": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Url Path", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "be6a3d8b-9428-480b-a7b3-071127726093", + "type": "column" + }, + "orderDirection": "desc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "azure.dimensions.browser_timing_url_path" + }, + "6bc1fd35-168d-42d5-b9c8-7078896d8ce4": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Total duration", + "operationType": "average", + "scale": "ratio", + "sourceField": "azure.app_state.browser_timings_total_duration.avg" + }, + "988e9976-3471-478c-89f6-11fd46458d7f": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Receive duration", + "operationType": "average", + "scale": "ratio", + "sourceField": "azure.app_state.browser_timings_receive_duration.avg" + }, + "bcbccc16-d042-40fa-a9b2-0f09268281ff": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "be6a3d8b-9428-480b-a7b3-071127726093": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Send duration", + "operationType": "average", + "params": {}, + "scale": "ratio", + "sourceField": "azure.app_state.browser_timings_send_duration.avg" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "be6a3d8b-9428-480b-a7b3-071127726093", + "6bc1fd35-168d-42d5-b9c8-7078896d8ce4", + "988e9976-3471-478c-89f6-11fd46458d7f" + ], + "layerId": "85644d0a-8011-45af-a751-7961b8bdd071", + "position": "top", + "seriesType": "bar", + "showGridlines": false, + "splitAccessor": "4d4c068a-0194-4d54-a1fa-3863c3df9331", + "xAccessor": "bcbccc16-d042-40fa-a9b2-0f09268281ff" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar" + } + }, + "title": "App state Browser Send/Receive Duration [Metricbeat Azure]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "e2704140-04a3-11eb-8034-63f2039e9d3f", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:42.950Z", + "version": "WzM0OTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/f0678020-04a2-11eb-8034-63f2039e9d3f.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/f0678020-04a2-11eb-8034-63f2039e9d3f.json new file mode 100644 index 000000000000..4a2577a33847 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/lens/f0678020-04a2-11eb-8034-63f2039e9d3f.json @@ -0,0 +1,117 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "85644d0a-8011-45af-a751-7961b8bdd071": { + "columnOrder": [ + "bcbccc16-d042-40fa-a9b2-0f09268281ff", + "8864c98b-413a-484f-a61d-336a63ef3f13", + "9ec4d260-e302-46c4-ac09-50ef54627894", + "a47e59dc-fb62-42f8-90e1-236c7c5a073d" + ], + "columns": { + "8864c98b-413a-484f-a61d-336a63ef3f13": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Host URL", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "9ec4d260-e302-46c4-ac09-50ef54627894", + "type": "column" + }, + "orderDirection": "desc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "azure.dimensions.request_url_host" + }, + "9ec4d260-e302-46c4-ac09-50ef54627894": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Total requests", + "operationType": "average", + "scale": "ratio", + "sourceField": "azure.app_state.requests_count.sum" + }, + "a47e59dc-fb62-42f8-90e1-236c7c5a073d": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Failed requests", + "operationType": "average", + "scale": "ratio", + "sourceField": "azure.app_state.requests_failed.sum" + }, + "bcbccc16-d042-40fa-a9b2-0f09268281ff": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "9ec4d260-e302-46c4-ac09-50ef54627894", + "a47e59dc-fb62-42f8-90e1-236c7c5a073d" + ], + "layerId": "85644d0a-8011-45af-a751-7961b8bdd071", + "position": "top", + "seriesType": "area", + "showGridlines": false, + "splitAccessor": "8864c98b-413a-484f-a61d-336a63ef3f13", + "xAccessor": "bcbccc16-d042-40fa-a9b2-0f09268281ff" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "area" + } + }, + "title": "App state Requests [Metricbeat Azure]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "f0678020-04a2-11eb-8034-63f2039e9d3f", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-85644d0a-8011-45af-a751-7961b8bdd071", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:30:42.950Z", + "version": "WzM0OTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0241cc10-339d-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0241cc10-339d-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..8237a1e34f96 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0241cc10-339d-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Queue Count [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "'0'", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Queue Count", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.queue_count.avg", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage Queue Count [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0241cc10-339d-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:51.088Z", + "version": "WzM1NjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/037382e0-856e-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/037382e0-856e-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..607ba74707bf --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/037382e0-856e-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,225 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index" + } + }, + "title": " Database Account Requests By Status Code [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Total Requests", + "field": "azure.database_account.total_requests.count" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Status Codes", + "field": "azure.dimensions.status_code", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Database", + "field": "azure.dimensions.database_name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "split", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": false, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": false, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "dimensions": { + "series": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "", + "origin": "http://localhost:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "Status Codes", + "params": {} + } + ], + "splitColumn": [ + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "", + "origin": "http://localhost:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "Database", + "params": {} + } + ], + "x": null, + "y": [ + { + "accessor": 2, + "aggType": "avg", + "format": { + "id": "number", + "params": { + "parsedUrl": { + "basePath": "", + "origin": "http://localhost:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "Total Requests", + "params": {} + } + ] + }, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": { + "show": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "row": false, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Total Requests" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Total Requests" + }, + "type": "value" + } + ] + }, + "title": " Database Account Requests By Status Code [Metricbeat Azure]", + "type": "histogram" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "037382e0-856e-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:49.091Z", + "version": "WzM1NDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/04f8eec0-6ab1-11ea-af5c-73e8f396b3e9.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/04f8eec0-6ab1-11ea-af5c-73e8f396b3e9.json new file mode 100644 index 000000000000..fe7a33967db4 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/04f8eec0-6ab1-11ea-af5c-73e8f396b3e9.json @@ -0,0 +1,69 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Container Instance CPU Utilization [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.ContainerInstance/containerGroups\" " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": "", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Azure Container CPU Utilization", + "line_width": "2", + "metrics": [ + { + "field": "azure.container_instance.cpu_usage.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Container Instance CPU Utilization [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "04f8eec0-6ab1-11ea-af5c-73e8f396b3e9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:45.960Z", + "version": "WzM1MjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/05d5b3e0-c1c9-11ea-b7e7-0f48178cdb3c.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/05d5b3e0-c1c9-11ea-b7e7-0f48178cdb3c.json new file mode 100644 index 000000000000..d2ff5b9edc16 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/05d5b3e0-c1c9-11ea-b7e7-0f48178cdb3c.json @@ -0,0 +1,91 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Usage Details [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "1f64e4e0-c1c7-11ea-879f-d1f118e66220" + } + ], + "bar_color_rules": [ + { + "id": "20dbcd70-c1c7-11ea-879f-d1f118e66220" + } + ], + "drop_last_bucket": 1, + "gauge_color_rules": [ + { + "id": "22692430-c1c7-11ea-879f-d1f118e66220" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "24h", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "rgba(22,165,165,1)", + "fill": "0.5", + "formatter": "number", + "id": "d09632c0-c120-11ea-b262-d3ff1f3885f8", + "label": "Usage Details", + "line_width": "2", + "metrics": [ + { + "agg_with": "sum", + "field": "azure.billing.pretax_cost", + "id": "d09632c1-c120-11ea-b262-d3ff1f3885f8", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "sum" + } + ], + "offset_time": "", + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "azure.billing.usage_start", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Usage Details [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "05d5b3e0-c1c9-11ea-b7e7-0f48178cdb3c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:43.912Z", + "version": "WzM1MDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0892eaa0-ea9a-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0892eaa0-ea9a-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..3a3a50923cf7 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0892eaa0-ea9a-11e9-90ec-112a988266d5.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VM Disk Write Operations/s [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " + }, + "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": 0, + "formatter": "number", + "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", + "label": "VM Disk Write Operations/s", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.disk_write_operations_per_sec.avg", + "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VM Disk Write Operations/s [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0892eaa0-ea9a-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:55.224Z", + "version": "WzM2MTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/097bc300-eaa5-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/097bc300-eaa5-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..eedb4b6acb9c --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/097bc300-eaa5-11e9-90ec-112a988266d5.json @@ -0,0 +1,138 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ASP.NET Application Requests [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " + }, + "id": "be74e9e0-eaa4-11e9-8923-850d87d8e766", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(254,146,0,1)", + "fill": 0, + "formatter": "number", + "id": "be74e9e1-eaa4-11e9-8923-850d87d8e766", + "label": "timed out", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.asp_net_applications_requests_timed_out.avg", + "id": "be74e9e2-eaa4-11e9-8923-850d87d8e766", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#DB1374", + "fill": 0, + "formatter": "number", + "id": "be74e9e3-eaa4-11e9-8923-850d87d8e766", + "label": "failed", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.asp_net_applications_requests_failed.avg", + "id": "be74e9e4-eaa4-11e9-8923-850d87d8e766", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#00B3A4", + "fill": 0, + "formatter": "number", + "id": "be7510f0-eaa4-11e9-8923-850d87d8e766", + "label": "succeeded", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.asp_net_applications_requests_succeeded.avg", + "id": "be7510f1-eaa4-11e9-8923-850d87d8e766", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#490092", + "fill": 0, + "formatter": "number", + "id": "be7510f2-eaa4-11e9-8923-850d87d8e766", + "label": "total", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.asp_net_applications_requests_total.avg", + "id": "be7510f3-eaa4-11e9-8923-850d87d8e766", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "ASP.NET Application Requests [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "097bc300-eaa5-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:54.175Z", + "version": "WzM2MDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/09a6f150-3399-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/09a6f150-3399-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..7b57598af0b6 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/09a6f150-3399-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage File Share Snapshot Count [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "azure.resource.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,98,177,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "'0'", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "File Share Snapshot Count", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.file_share_snapshot_count.avg", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage File Share Snapshot Count [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "09a6f150-3399-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:50.051Z", + "version": "WzM1NTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/09f05e00-32f7-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/09f05e00-32f7-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..1dc5e416789f --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/09f05e00-32f7-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Navigation Queue Storage Overview [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "### Azure Storage\n\n[Overview](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [Blob](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [File](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [Table](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [**Queue**](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) ", + "openLinksInNewTab": false + }, + "title": "Navigation Queue Storage Overview [Metricbeat Azure]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "09f05e00-32f7-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:51.088Z", + "version": "WzM1NjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0aacc190-eaa8-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0aacc190-eaa8-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..c245700dee4a --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0aacc190-eaa8-11e9-90ec-112a988266d5.json @@ -0,0 +1,69 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SQL Server User Connections [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type :\"Microsoft.Compute/virtualMachines\" " + }, + "id": "da495db0-eaa7-11e9-a88b-4b683ca3087b", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "number", + "id": "da495db1-eaa7-11e9-a88b-4b683ca3087b", + "label": "connections", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.sqlserver_general_statistics_user_connections.avg", + "id": "da495db2-eaa7-11e9-a88b-4b683ca3087b", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SQL Server User Connections [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0aacc190-eaa8-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:54.175Z", + "version": "WzM2MDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0d03a670-eb43-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0d03a670-eb43-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..495d4c7f6214 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0d03a670-eb43-11e9-90ec-112a988266d5.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VMSS Disk Writes [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type :\"Microsoft.Compute/virtualMachineScaleSets\" " + }, + "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,180,251,1)", + "fill": 0, + "formatter": "bytes", + "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", + "label": "VM Disk Writes bytes", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm_scaleset.disk_write_bytes.total", + "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VMSS Disk Writes [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0d03a670-eb43-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:56.299Z", + "version": "WzM2MjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0fa31060-6aae-11ea-af5c-73e8f396b3e9.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0fa31060-6aae-11ea-af5c-73e8f396b3e9.json new file mode 100644 index 000000000000..1d0fb4d42f6d --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/0fa31060-6aae-11ea-af5c-73e8f396b3e9.json @@ -0,0 +1,93 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Containers Filters [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "azure.subscription_id", + "id": "1584710440054", + "indexPatternRefName": "control_0_index_pattern", + "label": "Subscription", + "options": { + "dynamicOptions": true, + "multiselect": false, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "azure.resource.group", + "id": "1584710497045", + "indexPatternRefName": "control_1_index_pattern", + "label": "Resource Group", + "options": { + "dynamicOptions": true, + "multiselect": false, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "azure.resource.name", + "id": "1584710535722", + "indexPatternRefName": "control_2_index_pattern", + "label": "Resource", + "options": { + "dynamicOptions": true, + "multiselect": false, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "Containers Filters [Metricbeat Azure]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0fa31060-6aae-11ea-af5c-73e8f396b3e9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:48.023Z", + "version": "WzM1MzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/109ec950-32e6-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/109ec950-32e6-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..e516a19fe20b --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/109ec950-32e6-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Used Capacity Resource Table [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "azure.resource.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Used Capacity", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.used_capacity.avg", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Storage Used Capacity Resource Table [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "109ec950-32e6-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:52.180Z", + "version": "WzM1ODUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/17ee2920-3391-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/17ee2920-3391-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..ced13ebc9a2b --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/17ee2920-3391-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Blob Capacity [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "azure.resource.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Blob Capacity", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.blob_capacity.avg", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage Blob Capacity [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "17ee2920-3391-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:44.945Z", + "version": "WzM1MDksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/1e70dc50-6d22-11ea-8fe8-71add5fd7c38.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/1e70dc50-6d22-11ea-8fe8-71add5fd7c38.json new file mode 100644 index 000000000000..bee21b70197a --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/1e70dc50-6d22-11ea-8fe8-71add5fd7c38.json @@ -0,0 +1,30 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Navigation Container Registry Overview [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "### Azure Containers\n\n[Instances](#/dashboard/9c11ac60-6cf6-11ea-8fe8-71add5fd7c38) |\n[**Registries**](#/dashboard/6f2393f0-6d08-11ea-8fe8-71add5fd7c38) |\n[Services](#/dashboard/dae20ed0-6d0a-11ea-8fe8-71add5fd7c38) ", + "openLinksInNewTab": false + }, + "title": "Navigation Container Registry Overview [Metricbeat Azure]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1e70dc50-6d22-11ea-8fe8-71add5fd7c38", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:46.992Z", + "version": "WzM1MjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/1f5c1cd0-eaa3-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/1f5c1cd0-eaa3-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..3ef312fcfd2a --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/1f5c1cd0-eaa3-11e9-90ec-112a988266d5.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ASP.NET Applications Running [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "04bf3740-eaa3-11e9-8742-b533e334ee9a" + } + ], + "bar_color_rules": [ + { + "id": "03eec7e0-eaa3-11e9-8742-b533e334ee9a" + } + ], + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " + }, + "gauge_color_rules": [ + { + "id": "07485320-eaa3-11e9-8742-b533e334ee9a" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "d1acb8f0-eaa2-11e9-a229-c9171499dcc6", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": "0.2", + "formatter": "number", + "id": "d1acb8f1-eaa2-11e9-a229-c9171499dcc6", + "label": "applications running", + "line_width": "1", + "metrics": [ + { + "field": "azure.compute_vm.asp_net_applications_running.avg", + "id": "d1acb8f2-eaa2-11e9-a229-c9171499dcc6", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "ASP.NET Applications Running [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1f5c1cd0-eaa3-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:54.175Z", + "version": "WzM2MDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/2219de20-32ed-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/2219de20-32ed-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..37c37ce43404 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/2219de20-32ed-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Egress Gauge [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Egress", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.egress.total", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage Egress Gauge [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2219de20-32ed-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:52.180Z", + "version": "WzM1ODAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/241a55e0-3399-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/241a55e0-3399-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..096f7405179f --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/241a55e0-3399-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage File Share Snapshot Size [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "azure.resource.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,98,177,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "File Share Snapshot Size", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.file_share_snapshot_size.avg", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage File Share Snapshot Size [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "241a55e0-3399-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:50.051Z", + "version": "WzM1NjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/2bedaca0-339d-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/2bedaca0-339d-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..bae3cd480c09 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/2bedaca0-339d-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Queue Message Count [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "'0a'", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Queue Message Count", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.queue_message_count.avg", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage Queue Message Count [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2bedaca0-339d-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:51.088Z", + "version": "WzM1NjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/2e5183a0-03da-11eb-8034-63f2039e9d3f.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/2e5183a0-03da-11eb-8034-63f2039e9d3f.json new file mode 100644 index 000000000000..ab9e5a2bbfdb --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/2e5183a0-03da-11eb-8034-63f2039e9d3f.json @@ -0,0 +1,146 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "controlledBy": "1532342651170", + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "azure.application_id", + "negate": false, + "params": { + "query": "42cb59a9-d5be-400b-a5c4-69b0a0026ac6" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "azure.application_id": "42cb59a9-d5be-400b-a5c4-69b0a0026ac6" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "App State Filters [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "azure.application_id", + "id": "1532342651170", + "indexPatternRefName": "control_0_index_pattern", + "label": "Application ID", + "options": { + "multiselect": true, + "order": "desc", + "size": 10, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "azure.dimensions.request_url_host", + "id": "1601559750853", + "indexPatternRefName": "control_1_index_pattern", + "label": "Host URL", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "1532342651170", + "type": "list" + }, + { + "fieldName": "azure.dimensions.cloud_role_name", + "id": "1601640368472", + "indexPatternRefName": "control_2_index_pattern", + "label": "Name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "1532342651170", + "type": "list" + }, + { + "fieldName": "azure.dimensions.browser_timing_url_host", + "id": "1601640439434", + "indexPatternRefName": "control_3_index_pattern", + "label": "Browser URL Host", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "1532342651170", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "App State Filters [Metricbeat Azure]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2e5183a0-03da-11eb-8034-63f2039e9d3f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_3_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:42.950Z", + "version": "WzM0ODgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/33500790-eaaf-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/33500790-eaaf-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..458a6593c864 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/33500790-eaaf-11e9-90ec-112a988266d5.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VMSS CPU Utilization [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type :\"Microsoft.Compute/virtualMachineScaleSets\" " + }, + "id": "7666abc0-eaae-11e9-a083-57ad7f0b1ec1", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "number", + "id": "7666abc1-eaae-11e9-a083-57ad7f0b1ec1", + "label": "avg(azure.compute_vm_scaleset.percentage_cpu.avg)", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm_scaleset.percentage_cpu.avg", + "id": "7666abc2-eaae-11e9-a083-57ad7f0b1ec1", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VMSS CPU Utilization [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "33500790-eaaf-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:56.299Z", + "version": "WzM2MjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/33d645e0-32ed-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/33d645e0-32ed-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..df9f13116fec --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/33d645e0-32ed-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Ingress Gauge [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Ingress", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.ingress.total", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage Ingress Gauge [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "33d645e0-32ed-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:52.180Z", + "version": "WzM1NzksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/3630b9a0-6d22-11ea-8fe8-71add5fd7c38.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/3630b9a0-6d22-11ea-8fe8-71add5fd7c38.json new file mode 100644 index 000000000000..ebda84eff81e --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/3630b9a0-6d22-11ea-8fe8-71add5fd7c38.json @@ -0,0 +1,30 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Navigation Container Service Overview [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "### Azure Containers\n\n[Instances](#/dashboard/9c11ac60-6cf6-11ea-8fe8-71add5fd7c38) |\n[Registries](#/dashboard/6f2393f0-6d08-11ea-8fe8-71add5fd7c38) |\n[**Services**](#/dashboard/dae20ed0-6d0a-11ea-8fe8-71add5fd7c38) ", + "openLinksInNewTab": false + }, + "title": "Navigation Container Service Overview [Metricbeat Azure]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3630b9a0-6d22-11ea-8fe8-71add5fd7c38", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:48.023Z", + "version": "WzM1MzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/3a50e950-eb46-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/3a50e950-eb46-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..b5e98a9ebf10 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/3a50e950-eb46-11e9-90ec-112a988266d5.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VM Disk Read Operations/s [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " + }, + "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": 0, + "formatter": "number", + "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", + "label": "VM Disk Read Operations/s", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.disk_read_operations_per_sec.avg", + "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VM Disk Read Operations/s [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3a50e950-eb46-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:55.224Z", + "version": "WzM2MTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/40dbc0d0-32e3-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/40dbc0d0-32e3-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..eefee0e3d187 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/40dbc0d0-32e3-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,101 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Availability [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(104,204,202,1)", + "id": "18f616c0-32e2-11ea-867b-37070aefa392", + "operator": "gte", + "value": 100 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "998b1c90-32e2-11ea-867b-37070aefa392", + "operator": "lt", + "value": 100 + } + ], + "bar_color_rules": [ + { + "id": "28142cf0-32e2-11ea-867b-37070aefa392" + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "29808e30-32e2-11ea-867b-37070aefa392" + } + ], + "gauge_inner_width": "7", + "gauge_style": "circle", + "gauge_width": 10, + "id": "0e91b810-32e2-11ea-a93d-dd20c62559b3", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(22,165,165,1)", + "fill": "0.6", + "formatter": "number", + "hide_in_legend": 1, + "id": "0e91b811-32e2-11ea-a93d-dd20c62559b3", + "label": "Availability", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.availability.avg", + "id": "0e91b812-32e2-11ea-a93d-dd20c62559b3", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": null, + "type": "timeseries", + "value_template": "{{value}} %" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "last_value", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Storage Availability [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "40dbc0d0-32e3-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:53.138Z", + "version": "WzM1OTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/4177aab0-83cc-11ea-be84-f5d4d6b9a792.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/4177aab0-83cc-11ea-be84-f5d4d6b9a792.json new file mode 100644 index 000000000000..dac3ae289ae5 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/4177aab0-83cc-11ea-be84-f5d4d6b9a792.json @@ -0,0 +1,30 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Navigation Database Account Overview [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "### Azure Database Accounts\n", + "openLinksInNewTab": false + }, + "title": "Navigation Database Account Overview [Metricbeat Azure]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4177aab0-83cc-11ea-be84-f5d4d6b9a792", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:49.091Z", + "version": "WzM1NDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/42cc28d0-ea9a-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/42cc28d0-ea9a-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..7d0751b93a03 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/42cc28d0-ea9a-11e9-90ec-112a988266d5.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VMSS Disk Reads [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type :\"Microsoft.Compute/virtualMachineScaleSets\" " + }, + "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": 0, + "formatter": "bytes", + "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", + "label": "VM Disk Read bytes", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm_scaleset.disk_read_bytes.total", + "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VMSS Disk Reads [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "42cc28d0-ea9a-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:56.299Z", + "version": "WzM2MjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/43b31a20-339b-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/43b31a20-339b-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..869daa7d5178 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/43b31a20-339b-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Table Count [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "'0'", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Table Count", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.table_count.avg", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage Table Count [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "43b31a20-339b-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:53.138Z", + "version": "WzM1OTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/453965a0-3393-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/453965a0-3393-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..b4d1afaca913 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/453965a0-3393-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage File Capacity [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "azure.resource.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "File Capacity", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.file_capacity.avg", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage File Capacity [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "453965a0-3393-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:50.051Z", + "version": "WzM1NTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/4eaef260-32e1-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/4eaef260-32e1-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..10164bd45e28 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/4eaef260-32e1-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Account Ingress Traffic [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "0791c5a0-32d8-11ea-98d2-1194b9f2bfc0" + } + ], + "bar_color_rules": [ + { + "id": "fca016e0-32de-11ea-a435-e7199eba380d" + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "fb8be7c0-32de-11ea-a435-e7199eba380d" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "f0edca80-32d5-11ea-b19d-fb5049b980ca", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "hidden": false, + "id": "f0edf190-32d5-11ea-b19d-fb5049b980ca", + "label": "Storage Accounts Ingress Total", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.ingress.total", + "id": "f0edf191-32d5-11ea-b19d-fb5049b980ca", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "rgba(0,98,177,1)", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "283dc410-32d9-11ea-98d2-1194b9f2bfc0" + } + ], + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.dimensions.api_name", + "terms_order_by": "f0edf191-32d5-11ea-b19d-fb5049b980ca", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Storage Account Ingress Traffic [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4eaef260-32e1-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:53.138Z", + "version": "WzM1OTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/5031b220-eb61-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/5031b220-eb61-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..672475c8f9db --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/5031b220-eb61-11e9-90ec-112a988266d5.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "VM Filters [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "cloud.region", + "id": "1549397251041", + "indexPatternRefName": "control_0_index_pattern", + "label": "Region", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "azure.resource.group", + "id": "1549512142947", + "indexPatternRefName": "control_1_index_pattern", + "label": "Resource Group", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "azure.resource.name", + "id": "1570774891724", + "indexPatternRefName": "control_2_index_pattern", + "label": "VM Name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "VM Filters [Metricbeat Azure]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5031b220-eb61-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:55.224Z", + "version": "WzM2MTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/553f9320-32e9-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/553f9320-32e9-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..0f6627b68de1 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/553f9320-32e9-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,72 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Transactions [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "#3185FC", + "fill": 0.5, + "formatter": "number", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "avg(azure.storage.transactions.total)", + "line_width": "1", + "metrics": [ + { + "field": "azure.storage.transactions.total", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.dimensions.response_type", + "terms_order_by": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Storage Transactions [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "553f9320-32e9-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:53.138Z", + "version": "WzM1OTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/55936920-3391-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/55936920-3391-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..04fd3f4e0ea6 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/55936920-3391-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Blob Count [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "'0'", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Blob Count", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.blob_count.avg", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage Blob Count [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "55936920-3391-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:44.945Z", + "version": "WzM1MTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/5720b830-6aad-11ea-af5c-73e8f396b3e9.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/5720b830-6aad-11ea-af5c-73e8f396b3e9.json new file mode 100644 index 000000000000..212944c0685f --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/5720b830-6aad-11ea-af5c-73e8f396b3e9.json @@ -0,0 +1,30 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Navigation Container Instance Overview [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "### Azure Containers\n\n[**Instances**](#/dashboard/9c11ac60-6cf6-11ea-8fe8-71add5fd7c38) |\n[Registries](#/dashboard/6f2393f0-6d08-11ea-8fe8-71add5fd7c38) |\n[Services](#/dashboard/dae20ed0-6d0a-11ea-8fe8-71add5fd7c38) ", + "openLinksInNewTab": false + }, + "title": "Navigation Container Instance Overview [Metricbeat Azure]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5720b830-6aad-11ea-af5c-73e8f396b3e9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:45.960Z", + "version": "WzM1MTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/599c62c0-32d7-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/599c62c0-32d7-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..6b8a773ab6bb --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/599c62c0-32d7-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Account Egress Traffic [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "0791c5a0-32d8-11ea-98d2-1194b9f2bfc0" + } + ], + "bar_color_rules": [ + { + "id": "fca016e0-32de-11ea-a435-e7199eba380d" + } + ], + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "fb8be7c0-32de-11ea-a435-e7199eba380d" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "f0edca80-32d5-11ea-b19d-fb5049b980ca", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,149,177,1)", + "fill": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "hidden": false, + "id": "f0edf190-32d5-11ea-b19d-fb5049b980ca", + "label": "Storage Accounts Egress Total", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.egress.total", + "id": "f0edf191-32d5-11ea-b19d-fb5049b980ca", + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "rgba(0,98,177,1)", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "283dc410-32d9-11ea-98d2-1194b9f2bfc0" + } + ], + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.dimensions.api_name", + "terms_order_by": "f0edf191-32d5-11ea-b19d-fb5049b980ca", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Storage Account Egress Traffic [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "599c62c0-32d7-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:53.138Z", + "version": "WzM1OTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/5c016810-ea9a-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/5c016810-ea9a-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..25c4c75c42cb --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/5c016810-ea9a-11e9-90ec-112a988266d5.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VM Disk Writes [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type :\"Microsoft.Compute/virtualMachines\" " + }, + "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(176,188,0,1)", + "fill": 0, + "formatter": "bytes", + "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", + "label": "VM Disk Writes bytes", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.disk_write_bytes.total", + "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VM Disk Writes [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5c016810-ea9a-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:55.224Z", + "version": "WzM2MTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/5cbf5820-339c-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/5cbf5820-339c-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..9f814fa88080 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/5cbf5820-339c-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Table Entity Count [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "'0a'", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Table Entity Count", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.table_entity_count.avg", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage Table Entity Count [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5cbf5820-339c-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:53.138Z", + "version": "WzM1OTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/634b83c0-32ee-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/634b83c0-32ee-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..2a80cfc0b77a --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/634b83c0-32ee-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Used Capacity [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "azure.resource.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Used Capacity", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.used_capacity.avg", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage Used Capacity [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "634b83c0-32ee-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:52.180Z", + "version": "WzM1NzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/64266ec0-eb42-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/64266ec0-eb42-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..12989c2f1ec7 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/64266ec0-eb42-11e9-90ec-112a988266d5.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VMSS Network In Total [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.Compute/virtualMachineScaleSets\" " + }, + "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": 0, + "formatter": "bytes", + "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", + "label": "Azure VMSS Network In Total", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm_scaleset.network_in_total.total", + "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VMSS Network In Total [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "64266ec0-eb42-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:56.299Z", + "version": "WzM2MjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/674c1d70-83cc-11ea-be84-f5d4d6b9a792.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/674c1d70-83cc-11ea-be84-f5d4d6b9a792.json new file mode 100644 index 000000000000..d961d5365b57 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/674c1d70-83cc-11ea-be84-f5d4d6b9a792.json @@ -0,0 +1,113 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Database Account Filters [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "azure.subscription_id", + "id": "1584710440054", + "indexPatternRefName": "control_0_index_pattern", + "label": "Subscription", + "options": { + "dynamicOptions": true, + "multiselect": false, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "azure.resource.group", + "id": "1584710497045", + "indexPatternRefName": "control_1_index_pattern", + "label": "Resource Group", + "options": { + "dynamicOptions": true, + "multiselect": false, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "azure.resource.name", + "id": "1584710535722", + "indexPatternRefName": "control_2_index_pattern", + "label": "Resource", + "options": { + "dynamicOptions": true, + "multiselect": false, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "azure.dimensions.database_name", + "id": "1587643606086", + "indexPatternRefName": "control_3_index_pattern", + "label": "Database", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "1584710535722", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "Database Account Filters [Metricbeat Azure]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "674c1d70-83cc-11ea-be84-f5d4d6b9a792", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_3_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:49.091Z", + "version": "WzM1NDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/685fbeb0-32eb-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/685fbeb0-32eb-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..ef64eb6627a1 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/685fbeb0-32eb-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,72 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Success E2E Latency [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "da4459b0-32ea-11ea-be35-cb10be813609", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "#3185FC", + "fill": 0.5, + "formatter": "number", + "id": "da4459b1-32ea-11ea-be35-cb10be813609", + "label": "Success E2E Latency (ms)", + "line_width": "1", + "metrics": [ + { + "field": "azure.storage.success_e2elatency.avg", + "id": "da4459b2-32ea-11ea-be35-cb10be813609", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.dimensions.api_name", + "terms_order_by": "da4459b2-32ea-11ea-be35-cb10be813609", + "type": "timeseries", + "value_template": "{{value}} ms" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Storage Success E2E Latency [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "685fbeb0-32eb-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:53.138Z", + "version": "WzM1OTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/686bc990-ea92-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/686bc990-ea92-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..cd095c57eb11 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/686bc990-ea92-11e9-90ec-112a988266d5.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "VMSS Filters [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "cloud.region", + "id": "1549397251041", + "indexPatternRefName": "control_0_index_pattern", + "label": "Region", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "azure.resource.group", + "id": "1549512142947", + "indexPatternRefName": "control_1_index_pattern", + "label": "Resource Group", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "azure.dimensions.vmname", + "id": "1570711989416", + "indexPatternRefName": "control_2_index_pattern", + "label": "VM Name (dimension)", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "VMSS Filters [Metricbeat Azure]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "686bc990-ea92-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:56.299Z", + "version": "WzM2MjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/6d52a660-eaa4-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/6d52a660-eaa4-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..044c16ff2442 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/6d52a660-eaa4-11e9-90ec-112a988266d5.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ASP.NET Application Error Rates [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " + }, + "id": "29576400-eaa4-11e9-a2d3-e7a00bbd3c18", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": "0.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "29578b10-eaa4-11e9-a2d3-e7a00bbd3c18", + "label": "errors", + "line_width": "1", + "metrics": [ + { + "field": "azure.compute_vm.asp_net_applications_errors_total.avg", + "id": "29578b11-eaa4-11e9-a2d3-e7a00bbd3c18", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "ASP.NET Application Error Rates [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6d52a660-eaa4-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:54.175Z", + "version": "WzM2MDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/6e2d9930-6d1e-11ea-8fe8-71add5fd7c38.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/6e2d9930-6d1e-11ea-8fe8-71add5fd7c38.json new file mode 100644 index 000000000000..4256d0f42f4a --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/6e2d9930-6d1e-11ea-8fe8-71add5fd7c38.json @@ -0,0 +1,69 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Container Service Kube Node Status Allocatable CPU Cores [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.ContainerService/managedClusters\" " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(196,81,0,1)", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Container Service Kube Node Status Allocatable CPU Cores", + "line_width": "02", + "metrics": [ + { + "field": "azure.container_service.kube_node_status_allocatable_cpu_cores.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Container Service Kube Node Status Allocatable CPU Cores [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6e2d9930-6d1e-11ea-8fe8-71add5fd7c38", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:48.023Z", + "version": "WzM1MzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/6ffa7e20-c1da-11ea-b7e7-0f48178cdb3c.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/6ffa7e20-c1da-11ea-b7e7-0f48178cdb3c.json new file mode 100644 index 000000000000..115c983a8ae4 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/6ffa7e20-c1da-11ea-b7e7-0f48178cdb3c.json @@ -0,0 +1,83 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Billing subscriptions [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Total costs", + "field": "azure.billing.pretax_cost" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "azure.subscription_id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Billing subscriptions [Metricbeat Azure]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6ffa7e20-c1da-11ea-b7e7-0f48178cdb3c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:43.912Z", + "version": "WzM1MDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/7205a4f0-ea95-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/7205a4f0-ea95-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..4d0e3e827440 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/7205a4f0-ea95-11e9-90ec-112a988266d5.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VM Available Memory [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " + }, + "id": "c7e12030-ea94-11e9-bf06-bfc27258c9ad", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(176,188,0,1)", + "fill": 0, + "formatter": "bytes", + "id": "c7e12031-ea94-11e9-bf06-bfc27258c9ad", + "label": "VM Available Memory", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.memory_available_bytes.avg", + "id": "c7e12032-ea94-11e9-bf06-bfc27258c9ad", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VM Available Memory [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7205a4f0-ea95-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:55.224Z", + "version": "WzM2MTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/722ef2f0-3393-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/722ef2f0-3393-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..1375258f6cfa --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/722ef2f0-3393-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage File Count [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "'0'", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "File Count", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.file_count.avg", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage File Count [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "722ef2f0-3393-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:50.051Z", + "version": "WzM1NTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/74a8e130-6cfa-11ea-8fe8-71add5fd7c38.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/74a8e130-6cfa-11ea-8fe8-71add5fd7c38.json new file mode 100644 index 000000000000..29cd5254dba4 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/74a8e130-6cfa-11ea-8fe8-71add5fd7c38.json @@ -0,0 +1,74 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Container Instance Network Bytes Transmitted/s [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.ContainerInstance/containerGroups\" " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(128,137,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Container Instance Network Bytes Transmitted/s", + "line_width": "2", + "metrics": [ + { + "field": "azure.container_instance.network_bytes_transmitted_per_second.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Container Instance Network Bytes Transmitted/s [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "74a8e130-6cfa-11ea-8fe8-71add5fd7c38", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:45.960Z", + "version": "WzM1MjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/787a0a20-eaa8-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/787a0a20-eaa8-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..572e2faac0a5 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/787a0a20-eaa8-11e9-90ec-112a988266d5.json @@ -0,0 +1,92 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SQL Server Page Reads/Writes [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " + }, + "id": "35459a30-eaa8-11e9-a379-c33a712c0373", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": 0, + "formatter": "number", + "id": "35459a31-eaa8-11e9-a379-c33a712c0373", + "label": "Page Reads/s", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.sqlserver_buffer_manager_page_reads_per_sec.avg", + "id": "35459a32-eaa8-11e9-a379-c33a712c0373", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(176,188,0,1)", + "fill": 0, + "formatter": "number", + "id": "35459a33-eaa8-11e9-a379-c33a712c0373", + "label": "Page Writes/s", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.sqlserver_buffer_manager_page_writes_per_sec.avg", + "id": "35459a34-eaa8-11e9-a379-c33a712c0373", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SQL Server Page Reads/Writes [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "787a0a20-eaa8-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:54.175Z", + "version": "WzM2MDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/7972b260-6d07-11ea-8fe8-71add5fd7c38.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/7972b260-6d07-11ea-8fe8-71add5fd7c38.json new file mode 100644 index 000000000000..6e054471cf96 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/7972b260-6d07-11ea-8fe8-71add5fd7c38.json @@ -0,0 +1,69 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Container Registry Successful Pull Count [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.ContainerRegistry/registries\" " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(188,74,0,1)", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Container Registry Successful Pull Count", + "line_width": "02", + "metrics": [ + { + "field": "azure.container_registry.successful_pull_count.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Container Registry Successful Pull Count [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7972b260-6d07-11ea-8fe8-71add5fd7c38", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:46.992Z", + "version": "WzM1MjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/81f16b40-32ea-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/81f16b40-32ea-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..648d11532e20 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/81f16b40-32ea-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,72 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Success Server Latency [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "e9a40230-32e9-11ea-bda2-69435df36a5c", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "#3185FC", + "fill": 0.5, + "formatter": "number", + "id": "e9a40231-32e9-11ea-bda2-69435df36a5c", + "label": "SuccessServerLatency (ms)", + "line_width": "1", + "metrics": [ + { + "field": "azure.storage.success_server_latency.avg", + "id": "e9a40232-32e9-11ea-bda2-69435df36a5c", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.dimensions.api_name", + "terms_order_by": "e9a40232-32e9-11ea-bda2-69435df36a5c", + "type": "timeseries", + "value_template": "{{value}} ms" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Storage Success Server Latency [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "81f16b40-32ea-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:53.138Z", + "version": "WzM1OTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/82a51dd0-c1d7-11ea-b7e7-0f48178cdb3c.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/82a51dd0-c1d7-11ea-b7e7-0f48178cdb3c.json new file mode 100644 index 000000000000..2dcf72bffe11 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/82a51dd0-c1d7-11ea-b7e7-0f48178cdb3c.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Billing Filters [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "azure.billing.department_name", + "id": "1594294278147", + "indexPatternRefName": "control_0_index_pattern", + "label": "Department", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "azure.billing.account_name", + "id": "1594294329560", + "indexPatternRefName": "control_1_index_pattern", + "label": "Account", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "azure.subscription_id", + "id": "1549397251041", + "indexPatternRefName": "control_2_index_pattern", + "label": "Subscription", + "options": { + "dynamicOptions": true, + "multiselect": false, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "azure.resource.group", + "id": "1549512142947", + "indexPatternRefName": "control_3_index_pattern", + "label": "Resource Group", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "azure.resource.name", + "id": "1578578146383", + "indexPatternRefName": "control_4_index_pattern", + "label": "Resource Name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "Billing Filters [Metricbeat Azure]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "82a51dd0-c1d7-11ea-b7e7-0f48178cdb3c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_3_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_4_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:43.912Z", + "version": "WzM1MDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/8b6b9450-ea99-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/8b6b9450-ea99-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..3c5589b9240c --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/8b6b9450-ea99-11e9-90ec-112a988266d5.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VM Network In Total [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " + }, + "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": 0, + "formatter": "bytes", + "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", + "label": "Azure VM Network In Total", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.network_in_total.total", + "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VM Network In Total [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8b6b9450-ea99-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:55.224Z", + "version": "WzM2MTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/9142aca0-c1c7-11ea-b7e7-0f48178cdb3c.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/9142aca0-c1c7-11ea-b7e7-0f48178cdb3c.json new file mode 100644 index 000000000000..67e1a5bff7dc --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/9142aca0-c1c7-11ea-b7e7-0f48178cdb3c.json @@ -0,0 +1,123 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Charges Forecast [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "1f64e4e0-c1c7-11ea-879f-d1f118e66220" + } + ], + "bar_color_rules": [ + { + "id": "20dbcd70-c1c7-11ea-879f-d1f118e66220" + } + ], + "drop_last_bucket": 1, + "gauge_color_rules": [ + { + "id": "22692430-c1c7-11ea-879f-d1f118e66220" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "24h", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(25,77,51,1)", + "fill": "0.7", + "formatter": "number", + "hide_in_legend": 0, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Actual costs", + "line_width": 1, + "metrics": [ + { + "agg_with": "avg", + "field": "azure.billing.actual_cost", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "override_index_pattern": 0, + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "everything", + "stacked": "none", + "steps": 1, + "terms_field": "azure.billing.usage_date", + "type": "timeseries", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0.5", + "formatter": "number", + "id": "d09632c0-c120-11ea-b262-d3ff1f3885f8", + "label": "Forecast costs", + "line_width": "2", + "metrics": [ + { + "agg_with": "avg", + "field": "azure.billing.forecast_cost", + "id": "d09632c1-c120-11ea-b262-d3ff1f3885f8", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "offset_time": "", + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "azure.billing.usage_date", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Charges Forecast [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9142aca0-c1c7-11ea-b7e7-0f48178cdb3c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:43.912Z", + "version": "WzM1MDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/942844b0-6ac5-11ea-af5c-73e8f396b3e9.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/942844b0-6ac5-11ea-af5c-73e8f396b3e9.json new file mode 100644 index 000000000000..752e583f4f79 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/942844b0-6ac5-11ea-af5c-73e8f396b3e9.json @@ -0,0 +1,74 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Container Instance Memory Utilization [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.ContainerInstance/containerGroups\" " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Container Instance Memory Utilization", + "line_width": "2", + "metrics": [ + { + "field": "azure.container_instance.memory_usage.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Container Instance Memory Utilization [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "942844b0-6ac5-11ea-af5c-73e8f396b3e9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:45.960Z", + "version": "WzM1MjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/9c1a1910-ea9a-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/9c1a1910-ea9a-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..fd720158a6da --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/9c1a1910-ea9a-11e9-90ec-112a988266d5.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VMSS Disk Read Operations [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.Compute/virtualMachineScaleSets\" " + }, + "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": 0, + "formatter": "number", + "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", + "label": "VM Disk Read Operations/s", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm_scaleset.disk_read_operations_per_sec.avg", + "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VMSS Disk Read Operations [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c1a1910-ea9a-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:56.299Z", + "version": "WzM2MjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/9e991b10-3391-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/9e991b10-3391-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..7af107d81dc4 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/9e991b10-3391-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Container Count [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "'0'", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Container Count", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.container_count.avg", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage Container Count [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9e991b10-3391-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:44.945Z", + "version": "WzM1MTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/a16b5900-8492-11ea-b181-4b1a9e0110f9.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/a16b5900-8492-11ea-b181-4b1a9e0110f9.json new file mode 100644 index 000000000000..e31db534ef44 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/a16b5900-8492-11ea-b181-4b1a9e0110f9.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Database Account Total Requests [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.DocumentDb/databaseAccounts\" " + }, + "id": "e9a40230-32e9-11ea-bda2-69435df36a5c", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "e9a40231-32e9-11ea-bda2-69435df36a5c", + "label": "Total Requests", + "line_width": "2", + "metrics": [ + { + "field": "azure.database_account.total_requests.count", + "id": "e9a40232-32e9-11ea-bda2-69435df36a5c", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_exclude": "\"\"", + "terms_field": "azure.dimensions.database_name", + "terms_order_by": "_count", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Database Account Total Requests [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a16b5900-8492-11ea-b181-4b1a9e0110f9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:49.091Z", + "version": "WzM1NDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/a49b4e20-8490-11ea-b181-4b1a9e0110f9.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/a49b4e20-8490-11ea-b181-4b1a9e0110f9.json new file mode 100644 index 000000000000..544851386531 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/a49b4e20-8490-11ea-b181-4b1a9e0110f9.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Database Account Data Usage [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.DocumentDb/databaseAccounts\" " + }, + "id": "e9a40230-32e9-11ea-bda2-69435df36a5c", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "e9a40231-32e9-11ea-bda2-69435df36a5c", + "label": "Data Usage", + "line_width": "2", + "metrics": [ + { + "field": "azure.database_account.data_usage.total", + "id": "e9a40232-32e9-11ea-bda2-69435df36a5c", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_exclude": "\"\"", + "terms_field": "azure.dimensions.database_name", + "terms_order_by": "_count", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Database Account Data Usage [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a49b4e20-8490-11ea-b181-4b1a9e0110f9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:49.091Z", + "version": "WzM1NDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/a4bf9710-3393-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/a4bf9710-3393-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..45b69e3c6cbe --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/a4bf9710-3393-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage File Share Count [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "'0'", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "File Share Count", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.file_share_count.avg", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage File Share Count [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a4bf9710-3393-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:50.051Z", + "version": "WzM1NTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/abd32c30-ea99-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/abd32c30-ea99-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..ee0eaf127aa8 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/abd32c30-ea99-11e9-90ec-112a988266d5.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VM Network Out Total [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " + }, + "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": 0, + "formatter": "bytes", + "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", + "label": "Azure VM Network Out Total", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.network_out_total.total", + "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VM Network Out Total [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "abd32c30-ea99-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:55.224Z", + "version": "WzM2MTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/acced050-32d1-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/acced050-32d1-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..35249a6a996b --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/acced050-32d1-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Storage Filters [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "azure.subscription_id", + "id": "1549397251041", + "indexPatternRefName": "control_0_index_pattern", + "label": "Subscription", + "options": { + "dynamicOptions": true, + "multiselect": false, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "azure.resource.group", + "id": "1549512142947", + "indexPatternRefName": "control_1_index_pattern", + "label": "Resource Group", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "azure.resource.name", + "id": "1578578146383", + "indexPatternRefName": "control_2_index_pattern", + "label": "Resource Name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "Storage Filters [Metricbeat Azure]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "acced050-32d1-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:53.138Z", + "version": "WzM1OTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/b18053b0-c1da-11ea-b7e7-0f48178cdb3c.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/b18053b0-c1da-11ea-b7e7-0f48178cdb3c.json new file mode 100644 index 000000000000..f7560a8ebe1f --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/b18053b0-c1da-11ea-b7e7-0f48178cdb3c.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Billing resource groups [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Total costs", + "field": "azure.billing.pretax_cost" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "azure.resource.group", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "row": true, + "type": "pie" + }, + "title": "Billing resource groups [Metricbeat Azure]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b18053b0-c1da-11ea-b7e7-0f48178cdb3c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:43.912Z", + "version": "WzM1MDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/b45fd8e0-eb42-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/b45fd8e0-eb42-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..540970fe6f4c --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/b45fd8e0-eb42-11e9-90ec-112a988266d5.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VMSS Network Out Total [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.Compute/virtualMachineScaleSets\" " + }, + "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": 0, + "formatter": "bytes", + "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", + "label": "Azure VM Network Out Total", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm_scaleset.network_out_total.total", + "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VMSS Network Out Total [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b45fd8e0-eb42-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:56.299Z", + "version": "WzM2MjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/b88b7f90-6d07-11ea-8fe8-71add5fd7c38.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/b88b7f90-6d07-11ea-8fe8-71add5fd7c38.json new file mode 100644 index 000000000000..8458d04a8e7b --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/b88b7f90-6d07-11ea-8fe8-71add5fd7c38.json @@ -0,0 +1,69 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Container Registry Successful Push Count [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.ContainerRegistry/registries\" " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(128,137,0,1)", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Container Registry Successful Push Count", + "line_width": "02", + "metrics": [ + { + "field": "azure.container_registry.successful_push_count.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Container Registry Successful Push Count [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b88b7f90-6d07-11ea-8fe8-71add5fd7c38", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:46.992Z", + "version": "WzM1MjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/b9aa9b20-eaa5-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/b9aa9b20-eaa5-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..52a1028e5ebe --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/b9aa9b20-eaa5-11e9-90ec-112a988266d5.json @@ -0,0 +1,138 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ASP.NET Application Sessions [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " + }, + "id": "6d6575a0-eaa5-11e9-84ad-5919a47b8f34", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "number", + "id": "6d6575a1-eaa5-11e9-84ad-5919a47b8f34", + "label": "active", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.asp_net_applications_sessions_active.avg", + "id": "6d6575a2-eaa5-11e9-84ad-5919a47b8f34", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#DB1374", + "fill": 0, + "formatter": "number", + "id": "6d6575a3-eaa5-11e9-84ad-5919a47b8f34", + "label": "timed out", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.asp_net_applications_sessions_timed_out.avg", + "id": "6d6575a4-eaa5-11e9-84ad-5919a47b8f34", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#00B3A4", + "fill": 0, + "formatter": "number", + "id": "6d6575a5-eaa5-11e9-84ad-5919a47b8f34", + "label": "abandoned", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.asp_net_applications_sessions_abandoned.avg", + "id": "6d6575a6-eaa5-11e9-84ad-5919a47b8f34", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#490092", + "fill": 0, + "formatter": "number", + "id": "6d6575a7-eaa5-11e9-84ad-5919a47b8f34", + "label": "total", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.asp_net_applications_sessions_total.avg", + "id": "6d6575a8-eaa5-11e9-84ad-5919a47b8f34", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "ASP.NET Application Sessions [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b9aa9b20-eaa5-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:54.175Z", + "version": "WzM2MDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/bd1c93b0-6cf7-11ea-8fe8-71add5fd7c38.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/bd1c93b0-6cf7-11ea-8fe8-71add5fd7c38.json new file mode 100644 index 000000000000..55f1ed925df1 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/bd1c93b0-6cf7-11ea-8fe8-71add5fd7c38.json @@ -0,0 +1,74 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Container Instance Network Bytes Received/s [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.ContainerInstance/containerGroups\" " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(251,158,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Container Instance Network Bytes Received/s", + "line_width": "2", + "metrics": [ + { + "field": "azure.container_instance.network_bytes_received_per_second.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Container Instance Network Bytes Received/s [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bd1c93b0-6cf7-11ea-8fe8-71add5fd7c38", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:45.960Z", + "version": "WzM1MjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/bda7b580-6d1f-11ea-8fe8-71add5fd7c38.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/bda7b580-6d1f-11ea-8fe8-71add5fd7c38.json new file mode 100644 index 000000000000..350acce209d7 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/bda7b580-6d1f-11ea-8fe8-71add5fd7c38.json @@ -0,0 +1,81 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Container Service Kube Pod Status Phase [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "0d772fb0-6d1f-11ea-a156-a582cfb250e8" + } + ], + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.ContainerService/managedClusters\" " + }, + "gauge_color_rules": [ + { + "id": "0ba507c0-6d1f-11ea-a156-a582cfb250e8" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(240,213,175,1)", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Container Service Kube Pod Status Phase", + "line_width": "2", + "metrics": [ + { + "field": "azure.container_service.kube_pod_status_phase.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "00", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.dimensions.pod" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Container Service Kube Pod Status Phase [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bda7b580-6d1f-11ea-8fe8-71add5fd7c38", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:48.023Z", + "version": "WzM1MzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/c19586f0-6d1e-11ea-8fe8-71add5fd7c38.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/c19586f0-6d1e-11ea-8fe8-71add5fd7c38.json new file mode 100644 index 000000000000..867ccaeacb56 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/c19586f0-6d1e-11ea-8fe8-71add5fd7c38.json @@ -0,0 +1,69 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Container Service Kube Pod Status Ready [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.ContainerService/managedClusters\" " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(200,205,124,1)", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "02", + "metrics": [ + { + "field": "azure.container_service.kube_pod_status_ready.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.dimensions.pod", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Container Service Kube Pod Status Ready [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c19586f0-6d1e-11ea-8fe8-71add5fd7c38", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:48.023Z", + "version": "WzM1MzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/c8016f70-c1da-11ea-b7e7-0f48178cdb3c.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/c8016f70-c1da-11ea-b7e7-0f48178cdb3c.json new file mode 100644 index 000000000000..caee7483d53d --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/c8016f70-c1da-11ea-b7e7-0f48178cdb3c.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Billing resource names [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Total costs", + "field": "azure.billing.pretax_cost" + }, + "schema": "metric", + "type": "sum" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "azure.resource.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": true, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "row": true, + "type": "pie" + }, + "title": "Billing resource names [Metricbeat Azure]", + "type": "pie" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c8016f70-c1da-11ea-b7e7-0f48178cdb3c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:43.912Z", + "version": "WzM1MDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/cecd6680-eb41-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/cecd6680-eb41-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..2ef2a8843dbe --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/cecd6680-eb41-11e9-90ec-112a988266d5.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VMSS Available Memory [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type :\"Microsoft.Compute/virtualMachineScaleSets\" " + }, + "id": "e25fa710-eb3e-11e9-8bf6-ff656bce9010", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(22,165,165,1)", + "fill": 0, + "formatter": "bytes", + "id": "e25fa711-eb3e-11e9-8bf6-ff656bce9010", + "label": "avg(azure.compute_vm_scaleset.memory_available_bytes.avg)", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm_scaleset.memory_available_bytes.avg", + "id": "e25fa712-eb3e-11e9-8bf6-ff656bce9010", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VMSS Available Memory [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "cecd6680-eb41-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:56.299Z", + "version": "WzM2MjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/cfaedaf0-eb43-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/cfaedaf0-eb43-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..5a0d10543609 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/cfaedaf0-eb43-11e9-90ec-112a988266d5.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VMSS Disk Write Operations [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.Compute/virtualMachineScaleSets\" " + }, + "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": 0, + "formatter": "number", + "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", + "label": "VM Disk Write Operations/s", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm_scaleset.disk_write_operations_per_sec.avg", + "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VMSS Disk Write Operations [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "cfaedaf0-eb43-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:56.299Z", + "version": "WzM2MjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/d2801d70-8490-11ea-b181-4b1a9e0110f9.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/d2801d70-8490-11ea-b181-4b1a9e0110f9.json new file mode 100644 index 000000000000..b01f5a5b51e4 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/d2801d70-8490-11ea-b181-4b1a9e0110f9.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Database Account Index Usage [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.DocumentDb/databaseAccounts\" " + }, + "id": "e9a40230-32e9-11ea-bda2-69435df36a5c", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(176,188,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "e9a40231-32e9-11ea-bda2-69435df36a5c", + "label": "Index Usage", + "line_width": "2", + "metrics": [ + { + "field": "azure.database_account.index_usage.total", + "id": "e9a40232-32e9-11ea-bda2-69435df36a5c", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_exclude": "\"\"", + "terms_field": "azure.dimensions.database_name", + "terms_order_by": "_count", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Database Account Index Usage [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d2801d70-8490-11ea-b181-4b1a9e0110f9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:49.091Z", + "version": "WzM1NDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/d3ac7d90-8492-11ea-b181-4b1a9e0110f9.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/d3ac7d90-8492-11ea-b181-4b1a9e0110f9.json new file mode 100644 index 000000000000..df9acb13044c --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/d3ac7d90-8492-11ea-b181-4b1a9e0110f9.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Database Account Document Count [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.DocumentDb/databaseAccounts\" " + }, + "id": "e9a40230-32e9-11ea-bda2-69435df36a5c", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(102,102,102,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "e9a40231-32e9-11ea-bda2-69435df36a5c", + "label": "Document Count", + "line_width": "2", + "metrics": [ + { + "field": "azure.database_account.document_count.total", + "id": "e9a40232-32e9-11ea-bda2-69435df36a5c", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_exclude": "\"\"", + "terms_field": "azure.dimensions.database_name", + "terms_order_by": "_count", + "type": "timeseries", + "value_template": "{{value}} " + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Database Account Document Count [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d3ac7d90-8492-11ea-b181-4b1a9e0110f9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:49.091Z", + "version": "WzM1NDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/d7ea4290-eaa8-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/d7ea4290-eaa8-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..f3f908b42506 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/d7ea4290-eaa8-11e9-90ec-112a988266d5.json @@ -0,0 +1,69 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SQL Server Total Server Memory [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type:\"Microsoft.Compute/virtualMachines\" " + }, + "id": "94af6a00-eaa8-11e9-9269-d92e2d3f77fd", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": 0, + "formatter": "bytes", + "id": "94af6a01-eaa8-11e9-9269-d92e2d3f77fd", + "label": "memory", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.sqlserver_memory_manager_total_server_memory.avg", + "id": "94af6a02-eaa8-11e9-9269-d92e2d3f77fd", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SQL Server Total Server Memory [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d7ea4290-eaa8-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:54.175Z", + "version": "WzM2MDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/db9a3490-ea8f-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/db9a3490-ea8f-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..b093eb73d0a6 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/db9a3490-ea8f-11e9-90ec-112a988266d5.json @@ -0,0 +1,74 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VM CPU Utilization [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.Compute/virtualMachines\" " + }, + "id": "4f6c1610-ea8e-11e9-8c73-71740bcf3d8b", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "4f6c1611-ea8e-11e9-8c73-71740bcf3d8b", + "label": "Azure VM CPU Utilization", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.percentage_cpu.avg", + "id": "4f6c1612-ea8e-11e9-8c73-71740bcf3d8b", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "value_template": "{{value}}%" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VM CPU Utilization [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "db9a3490-ea8f-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:55.224Z", + "version": "WzM2MTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/ddea7430-6d07-11ea-8fe8-71add5fd7c38.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/ddea7430-6d07-11ea-8fe8-71add5fd7c38.json new file mode 100644 index 000000000000..47e4749fdd8b --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/ddea7430-6d07-11ea-8fe8-71add5fd7c38.json @@ -0,0 +1,69 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Container Registry Total Push Count [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.ContainerRegistry/registries\" " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Container Registry Total Push Count", + "line_width": "02", + "metrics": [ + { + "field": "azure.container_registry.total_push_count.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Container Registry Total Push Count [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ddea7430-6d07-11ea-8fe8-71add5fd7c38", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:46.992Z", + "version": "WzM1MzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/e159b990-339c-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/e159b990-339c-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..996b84b3c60e --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/e159b990-339c-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Queue Capacity [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "azure.resource.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Queue Capacity", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.queue_capacity.avg", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage Queue Capacity [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e159b990-339c-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:51.088Z", + "version": "WzM1NjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/e4b25ee0-32f6-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/e4b25ee0-32f6-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..0d2b2d8be43a --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/e4b25ee0-32f6-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Navigation Blob Storage Overview [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "### Azure Storage\n\n[Overview](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [**Blob**](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [File](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [Table](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [Queue](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) ", + "openLinksInNewTab": false + }, + "title": "Navigation Blob Storage Overview [Metricbeat Azure]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e4b25ee0-32f6-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:44.945Z", + "version": "WzM1MDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/e79211c0-6d37-11ea-8fe8-71add5fd7c38.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/e79211c0-6d37-11ea-8fe8-71add5fd7c38.json new file mode 100644 index 000000000000..de673a8d9b67 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/e79211c0-6d37-11ea-8fe8-71add5fd7c38.json @@ -0,0 +1,234 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index" + } + }, + "title": "Container Service Kube Node Status Condition [Metricbeat Azure]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 0.2": "rgb(165,0,38)", + "0.2 - 0.4": "rgb(244,109,67)", + "0.4 - 0.6": "rgb(254,224,139)", + "0.6 - 0.8": "rgb(217,239,139)", + "0.8 - 1": "rgb(102,189,99)" + }, + "legendOpen": true + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "azure.container_service.kube_node_status_condition.avg" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "filters": [ + { + "input": { + "language": "kuery", + "query": "azure.dimensions.condition : \"Ready\" and azure.dimensions.status : \"true\" " + }, + "label": "Ready \"true\"" + }, + { + "input": { + "language": "kuery", + "query": "azure.dimensions.condition : \"Ready\" and azure.dimensions.status : \"false\" " + }, + "label": "Ready \"false\"" + }, + { + "input": { + "language": "kuery", + "query": "azure.dimensions.condition : \"NetworkUnavailable\" and azure.dimensions.status : \"true\" " + }, + "label": "Network Unavailable \"true\"" + }, + { + "input": { + "language": "kuery", + "query": "azure.dimensions.condition : \"NetworkUnavailable\" and azure.dimensions.status : \"false\" " + }, + "label": "NetworkUnavailable \"false\"" + }, + { + "input": { + "language": "kuery", + "query": "azure.dimensions.condition : \"OutOfDisk\" and azure.dimensions.status : \"false\" " + }, + "label": "OutOfDisk \"false\"" + }, + { + "input": { + "language": "kuery", + "query": "azure.dimensions.condition : \"OutOfDisk\" and azure.dimensions.status : \"true\" " + }, + "label": "OutOfDisk \"true\"" + }, + { + "input": { + "language": "kuery", + "query": "azure.dimensions.condition : \"MemoryPressure\" and azure.dimensions.status : \"true\" " + }, + "label": "MemoryPressure \"true\"" + }, + { + "input": { + "language": "kuery", + "query": "azure.dimensions.condition : \"MemoryPressure\" and azure.dimensions.status : \"false\" " + }, + "label": "MemoryPressure \"false\"" + }, + { + "input": { + "language": "kuery", + "query": "azure.dimensions.condition : \"DiskPressure\" and azure.dimensions.status : \"false\" " + }, + "label": "DiskPressure \"false\"" + }, + { + "input": { + "language": "kuery", + "query": "azure.dimensions.condition : \"DiskPressure\" and azure.dimensions.status : \"true\" " + }, + "label": "DiskPressure \"true\"" + } + ] + }, + "schema": "segment", + "type": "filters" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "azure.dimensions.node", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "colorSchema": "Green to Red", + "colorsNumber": 5, + "colorsRange": [ + { + "from": 0, + "to": 10 + } + ], + "dimensions": { + "series": [ + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "", + "origin": "http://localhost:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "azure.dimensions.node: Descending", + "params": {} + } + ], + "x": { + "accessor": 0, + "aggType": "filters", + "format": {}, + "label": "filters", + "params": {} + }, + "y": [ + { + "accessor": 2, + "aggType": "avg", + "format": { + "id": "number", + "params": { + "parsedUrl": { + "basePath": "", + "origin": "http://localhost:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "Average azure.container_service.kube_node_status_condition.avg", + "params": {} + } + ] + }, + "enableHover": false, + "invertColors": true, + "legendPosition": "right", + "percentageMode": false, + "setColorRange": false, + "times": [], + "type": "heatmap", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "color": "black", + "overwriteColor": false, + "rotate": 0, + "show": false + }, + "scale": { + "defaultYExtents": false, + "type": "linear" + }, + "show": false, + "type": "value" + } + ] + }, + "title": "Container Service Kube Node Status Condition [Metricbeat Azure]", + "type": "heatmap" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e79211c0-6d37-11ea-8fe8-71add5fd7c38", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:48.023Z", + "version": "WzM1MzksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/e8ca65c0-eb45-11e9-90ec-112a988266d5.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/e8ca65c0-eb45-11e9-90ec-112a988266d5.json new file mode 100644 index 000000000000..d66c459b346d --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/e8ca65c0-eb45-11e9-90ec-112a988266d5.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VM Disk Reads [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type :\"Microsoft.Compute/virtualMachines\" " + }, + "id": "39b6adc0-ea99-11e9-8328-799c817fb96b", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": 0, + "formatter": "bytes", + "id": "39b6adc1-ea99-11e9-8328-799c817fb96b", + "label": "VM Disk Read bytes", + "line_width": 2, + "metrics": [ + { + "field": "azure.compute_vm.disk_read_bytes.total", + "id": "39b6adc2-ea99-11e9-8328-799c817fb96b", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "VM Disk Reads [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e8ca65c0-eb45-11e9-90ec-112a988266d5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:55.224Z", + "version": "WzM2MTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/eda368d0-6d1d-11ea-8fe8-71add5fd7c38.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/eda368d0-6d1d-11ea-8fe8-71add5fd7c38.json new file mode 100644 index 000000000000..e55da9db14ef --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/eda368d0-6d1d-11ea-8fe8-71add5fd7c38.json @@ -0,0 +1,69 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Container Service Kube Node Status Allocatable Memory Bytes [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.ContainerService/managedClusters\" " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(176,188,0,1)", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Container Service Kube Node Status Allocatable Memory Bytes", + "line_width": "02", + "metrics": [ + { + "field": "azure.container_service.kube_node_status_allocatable_memory_bytes.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Container Service Kube Node Status Allocatable Memory Bytes [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "eda368d0-6d1d-11ea-8fe8-71add5fd7c38", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:48.023Z", + "version": "WzM1MzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/f18a7cb0-32f6-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/f18a7cb0-32f6-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..7ebe3ba85c6f --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/f18a7cb0-32f6-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Navigation File Storage Overview [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "### Azure Storage\n\n[Overview](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [Blob](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [**File**](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [Table](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [Queue](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) ", + "openLinksInNewTab": false + }, + "title": "Navigation File Storage Overview [Metricbeat Azure]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f18a7cb0-32f6-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:50.051Z", + "version": "WzM1NTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/f528e6a0-339a-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/f528e6a0-339a-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..e9e1b1f96ff7 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/f528e6a0-339a-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Table Capacity [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "azure.resource.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Table Capacity", + "line_width": 2, + "metrics": [ + { + "field": "azure.storage.table_capacity.avg", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "azure.resource.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Storage Table Capacity [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f528e6a0-339a-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:53.138Z", + "version": "WzM1OTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/fcc24d70-32f5-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/fcc24d70-32f5-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..0d54b029804d --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/fcc24d70-32f5-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Navigation Storage Overview [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "### Azure Storage\n\n[**Overview**](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [Blob](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [File](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [Table](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [Queue](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) ", + "openLinksInNewTab": false + }, + "title": "Navigation Storage Overview [Metricbeat Azure]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fcc24d70-32f5-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:52.180Z", + "version": "WzM1NzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/fdef3f40-32f6-11ea-a83e-25b8612d00cc.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/fdef3f40-32f6-11ea-a83e-25b8612d00cc.json new file mode 100644 index 000000000000..3f32f6ce5b98 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/fdef3f40-32f6-11ea-a83e-25b8612d00cc.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Navigation Table Storage Overview [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "### Azure Storage\n\n[Overview](#/dashboard/1a151f80-32db-11ea-a83e-25b8612d00cc) | [Blob](#/dashboard/b165ef60-32f7-11ea-a83e-25b8612d00cc) | [File](#/dashboard/dff7a080-32f7-11ea-a83e-25b8612d00cc) | [**Table**](#/dashboard/ff2fe020-32f7-11ea-a83e-25b8612d00cc) | [Queue](#/dashboard/10efa340-32f8-11ea-a83e-25b8612d00cc) ", + "openLinksInNewTab": false + }, + "title": "Navigation Table Storage Overview [Metricbeat Azure]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fdef3f40-32f6-11ea-a83e-25b8612d00cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:53.138Z", + "version": "WzM1ODksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/ff303710-6d07-11ea-8fe8-71add5fd7c38.json b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/ff303710-6d07-11ea-8fe8-71add5fd7c38.json new file mode 100644 index 000000000000..e784b10d7b23 --- /dev/null +++ b/x-pack/metricbeat/module/azure/_meta/kibana/7/visualization/ff303710-6d07-11ea-8fe8-71add5fd7c38.json @@ -0,0 +1,69 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Container Registry Total Pull Count [Metricbeat Azure]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "azure.resource.type : \"Microsoft.ContainerRegistry/registries\" " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(254,146,0,1)", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Container Registry Total Pull Count", + "line_width": "02", + "metrics": [ + { + "field": "azure.container_registry.total_pull_count.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "azure.resource.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Container Registry Total Pull Count [Metricbeat Azure]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ff303710-6d07-11ea-8fe8-71add5fd7c38", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:46.992Z", + "version": "WzM1MzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/94364424-f851-11ea-8206-7b08cd60917a.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/94364424-f851-11ea-8206-7b08cd60917a.json new file mode 100644 index 000000000000..ef9a7e7fc261 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/94364424-f851-11ea-8206-7b08cd60917a.json @@ -0,0 +1,700 @@ +{ + "attributes": { + "description": "Cloud Foundry platform health", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "1", + "w": 4, + "x": 15, + "y": 2 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "8", + "w": 5, + "x": 38, + "y": 36 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "9", + "w": 5, + "x": 33, + "y": 36 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "11", + "w": 5, + "x": 43, + "y": 36 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "13", + "w": 15, + "x": 0, + "y": 2 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "14", + "w": 7, + "x": 26, + "y": 10 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "15", + "w": 7, + "x": 19, + "y": 23 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "16", + "w": 5, + "x": 0, + "y": 27 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "17", + "w": 5, + "x": 10, + "y": 27 + }, + "panelIndex": "17", + "panelRefName": "panel_17", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "18", + "w": 5, + "x": 5, + "y": 27 + }, + "panelIndex": "18", + "panelRefName": "panel_18", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "19", + "w": 19, + "x": 0, + "y": 17 + }, + "panelIndex": "19", + "panelRefName": "panel_19", + "title": "Applications availability", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "26", + "w": 14, + "x": 19, + "y": 2 + }, + "panelIndex": "26", + "panelRefName": "panel_26", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "28", + "w": 14, + "x": 19, + "y": 36 + }, + "panelIndex": "28", + "panelRefName": "panel_28", + "title": "Director health check", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "29", + "w": 19, + "x": 0, + "y": 33 + }, + "panelIndex": "29", + "panelRefName": "panel_29", + "title": "Test results", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "30", + "w": 15, + "x": 33, + "y": 2 + }, + "panelIndex": "30", + "panelRefName": "panel_30", + "title": "Top CPU user deployment", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "31", + "w": 15, + "x": 33, + "y": 18 + }, + "panelIndex": "31", + "panelRefName": "panel_31", + "title": "Top persistent disk deployment", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "36", + "w": 7, + "x": 19, + "y": 10 + }, + "panelIndex": "36", + "panelRefName": "panel_36", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "37", + "w": 7, + "x": 26, + "y": 23 + }, + "panelIndex": "37", + "panelRefName": "panel_37", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "38", + "w": 4, + "x": 24, + "y": 17 + }, + "panelIndex": "38", + "panelRefName": "panel_38", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "39", + "w": 4, + "x": 24, + "y": 30 + }, + "panelIndex": "39", + "panelRefName": "panel_39", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "41", + "w": 5, + "x": 19, + "y": 30 + }, + "panelIndex": "41", + "panelRefName": "panel_41", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "42", + "w": 5, + "x": 28, + "y": 30 + }, + "panelIndex": "42", + "panelRefName": "panel_42", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "43", + "w": 5, + "x": 28, + "y": 17 + }, + "panelIndex": "43", + "panelRefName": "panel_43", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "44", + "w": 5, + "x": 19, + "y": 17 + }, + "panelIndex": "44", + "panelRefName": "panel_44", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "46", + "w": 5, + "x": 0, + "y": 10 + }, + "panelIndex": "46", + "panelRefName": "panel_46", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "47", + "w": 5, + "x": 10, + "y": 10 + }, + "panelIndex": "47", + "panelRefName": "panel_47", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "48", + "w": 5, + "x": 5, + "y": 10 + }, + "panelIndex": "48", + "panelRefName": "panel_48", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 2, + "i": "f770c0d9-bc9a-4250-ad73-35a8cae0bcda", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "f770c0d9-bc9a-4250-ad73-35a8cae0bcda", + "panelRefName": "panel_f770c0d9-bc9a-4250-ad73-35a8cae0bcda", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5", + "w": 4, + "x": 15, + "y": 10 + }, + "panelIndex": "8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5", + "panelRefName": "panel_8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "fbd35912-3c3a-4ab9-878c-b68b598df8f0", + "w": 4, + "x": 15, + "y": 27 + }, + "panelIndex": "fbd35912-3c3a-4ab9-878c-b68b598df8f0", + "panelRefName": "panel_fbd35912-3c3a-4ab9-878c-b68b598df8f0", + "title": "", + "type": "visualization", + "version": "7.9.0" + } + ], + "refreshInterval": { + "pause": true, + "value": 0 + }, + "timeFrom": "now-1h", + "timeRestore": true, + "timeTo": "now", + "title": "[Metricbeat Cloud Foundry] Platform Health", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "94364424-f851-11ea-8206-7b08cd60917a", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "93acc294-f851-11ea-a97a-53f837470423", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "93f27abe-f851-11ea-90c1-670adf08e026", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "93d1bce8-f851-11ea-9e6c-e3a6ffa65309", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "93f86eec-f851-11ea-9ae8-ff70f6c28f02", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "93f59bb8-f851-11ea-ab86-6757c64f8446", + "name": "13:panel_13", + "type": "visualization" + }, + { + "id": "93d3c40c-f851-11ea-ab6c-2b7686d129ce", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "93edb394-f851-11ea-af40-bbda53487783", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "9398519c-f851-11ea-9d16-0345f5e91a95", + "name": "16:panel_16", + "type": "visualization" + }, + { + "id": "93c2c184-f851-11ea-93fb-fb88ecfdafdb", + "name": "17:panel_17", + "type": "visualization" + }, + { + "id": "94200db2-f851-11ea-a8fa-9bfadc17852f", + "name": "18:panel_18", + "type": "visualization" + }, + { + "id": "93d9d39c-f851-11ea-b957-3f002cacae67", + "name": "19:panel_19", + "type": "visualization" + }, + { + "id": "939a9380-f851-11ea-9a72-a3f185bef2c4", + "name": "26:panel_26", + "type": "visualization" + }, + { + "id": "943dcad2-f851-11ea-8923-93b64d3cea46", + "name": "28:panel_28", + "type": "visualization" + }, + { + "id": "93c03f18-f851-11ea-8da1-eb649369fefa", + "name": "29:panel_29", + "type": "visualization" + }, + { + "id": "9430406a-f851-11ea-a96e-efef958606c3", + "name": "30:panel_30", + "type": "visualization" + }, + { + "id": "93fd890e-f851-11ea-96db-8342eb689011", + "name": "31:panel_31", + "type": "visualization" + }, + { + "id": "93dcb238-f851-11ea-8c49-fb9deba7fc48", + "name": "36:panel_36", + "type": "visualization" + }, + { + "id": "93e0d7d2-f851-11ea-a8ea-ab5761cc3b1c", + "name": "37:panel_37", + "type": "visualization" + }, + { + "id": "94402c0a-f851-11ea-b3d4-f3815d5ef910", + "name": "38:panel_38", + "type": "visualization" + }, + { + "id": "937d5f4a-f851-11ea-9321-07e4098558b1", + "name": "39:panel_39", + "type": "visualization" + }, + { + "id": "93deea94-f851-11ea-8186-777cfa34f466", + "name": "41:panel_41", + "type": "visualization" + }, + { + "id": "938e9490-f851-11ea-9fc4-93d53dd1c7c1", + "name": "42:panel_42", + "type": "visualization" + }, + { + "id": "943b6bf2-f851-11ea-99e0-b300881da4b1", + "name": "43:panel_43", + "type": "visualization" + }, + { + "id": "9417ef10-f851-11ea-bc5c-cbb3bfb4dc2a", + "name": "44:panel_44", + "type": "visualization" + }, + { + "id": "9398519c-f851-11ea-9d16-0345f5e91a95", + "name": "46:panel_46", + "type": "visualization" + }, + { + "id": "93a42468-f851-11ea-8393-7791ef366bdd", + "name": "47:panel_47", + "type": "visualization" + }, + { + "id": "9379c90c-f851-11ea-8313-f3c659aaac21", + "name": "48:panel_48", + "type": "visualization" + }, + { + "id": "f771b65c-f8d0-11ea-bf74-8bbda818957f", + "name": "f770c0d9-bc9a-4250-ad73-35a8cae0bcda:panel_f770c0d9-bc9a-4250-ad73-35a8cae0bcda", + "type": "visualization" + }, + { + "id": "9410e9ea-f851-11ea-b70d-9bda9c286e02", + "name": "8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5:panel_8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5", + "type": "visualization" + }, + { + "id": "93911f12-f851-11ea-9a0a-bb5ff28cf81a", + "name": "fbd35912-3c3a-4ab9-878c-b68b598df8f0:panel_fbd35912-3c3a-4ab9-878c-b68b598df8f0", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/9c81cf34-f84e-11ea-a49d-f3f94f5e4fac.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/9c81cf34-f84e-11ea-a49d-f3f94f5e4fac.json new file mode 100644 index 000000000000..704f6492f5bc --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/9c81cf34-f84e-11ea-a49d-f3f94f5e4fac.json @@ -0,0 +1,612 @@ +{ + "attributes": { + "description": "Overview of Cloud Foundry", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 2, + "i": "614e3c18-7b1d-4510-9308-a7c64077076b", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "614e3c18-7b1d-4510-9308-a7c64077076b", + "panelRefName": "panel_614e3c18-7b1d-4510-9308-a7c64077076b", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 1, + "i": "efc5cc53-f0f5-4d09-850f-36baed6cea70", + "w": 15, + "x": 0, + "y": 2 + }, + "panelIndex": "efc5cc53-f0f5-4d09-850f-36baed6cea70", + "panelRefName": "panel_efc5cc53-f0f5-4d09-850f-36baed6cea70", + "title": "Components health", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "77151f90-5dd1-4c52-bbc8-eae071029c74", + "w": 14, + "x": 15, + "y": 2 + }, + "panelIndex": "77151f90-5dd1-4c52-bbc8-eae071029c74", + "panelRefName": "panel_77151f90-5dd1-4c52-bbc8-eae071029c74", + "title": "Job queue length", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "e3830a7f-00ba-4133-9be0-5bf881956830", + "w": 7, + "x": 29, + "y": 2 + }, + "panelIndex": "e3830a7f-00ba-4133-9be0-5bf881956830", + "panelRefName": "panel_e3830a7f-00ba-4133-9be0-5bf881956830", + "title": "Top CPU usage", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0", + "w": 6, + "x": 36, + "y": 2 + }, + "panelIndex": "f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0", + "panelRefName": "panel_f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0", + "title": "Top ephemeral disk usage", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "e00759d3-5853-4e0e-bb74-9c6be0f0cafe", + "w": 6, + "x": 42, + "y": 2 + }, + "panelIndex": "e00759d3-5853-4e0e-bb74-9c6be0f0cafe", + "panelRefName": "panel_e00759d3-5853-4e0e-bb74-9c6be0f0cafe", + "title": "Top persistent disk usage", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "8ba21983-ee6b-464a-b9e6-083b8f9af911", + "w": 3, + "x": 0, + "y": 3 + }, + "panelIndex": "8ba21983-ee6b-464a-b9e6-083b8f9af911", + "panelRefName": "panel_8ba21983-ee6b-464a-b9e6-083b8f9af911", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "ffb54b2e-36b9-477e-a722-96d4c4c6f493", + "w": 3, + "x": 3, + "y": 3 + }, + "panelIndex": "ffb54b2e-36b9-477e-a722-96d4c4c6f493", + "panelRefName": "panel_ffb54b2e-36b9-477e-a722-96d4c4c6f493", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "1695ac40-80fd-4164-8db3-41b31604c757", + "w": 3, + "x": 6, + "y": 3 + }, + "panelIndex": "1695ac40-80fd-4164-8db3-41b31604c757", + "panelRefName": "panel_1695ac40-80fd-4164-8db3-41b31604c757", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "8f111936-e953-45c2-859f-7adc28161741", + "w": 3, + "x": 9, + "y": 3 + }, + "panelIndex": "8f111936-e953-45c2-859f-7adc28161741", + "panelRefName": "panel_8f111936-e953-45c2-859f-7adc28161741", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "040843ca-cc51-4b6e-b15f-6cf8684ee63d", + "w": 3, + "x": 12, + "y": 3 + }, + "panelIndex": "040843ca-cc51-4b6e-b15f-6cf8684ee63d", + "panelRefName": "panel_040843ca-cc51-4b6e-b15f-6cf8684ee63d", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "207fe6aa-ca8e-4931-abae-7c2b0f78cc1d", + "w": 14, + "x": 15, + "y": 9 + }, + "panelIndex": "207fe6aa-ca8e-4931-abae-7c2b0f78cc1d", + "panelRefName": "panel_207fe6aa-ca8e-4931-abae-7c2b0f78cc1d", + "title": "Outstanding requests", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "c4e3338c-f3d9-4c7d-bac7-e784f706bb57", + "w": 5, + "x": 0, + "y": 10 + }, + "panelIndex": "c4e3338c-f3d9-4c7d-bac7-e784f706bb57", + "panelRefName": "panel_c4e3338c-f3d9-4c7d-bac7-e784f706bb57", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "30ed1180-cf4b-41b2-a60a-5332de7f6e46", + "w": 5, + "x": 5, + "y": 10 + }, + "panelIndex": "30ed1180-cf4b-41b2-a60a-5332de7f6e46", + "panelRefName": "panel_30ed1180-cf4b-41b2-a60a-5332de7f6e46", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "d77bfe2e-7057-4cfb-829b-c4011640ae2d", + "w": 5, + "x": 10, + "y": 10 + }, + "panelIndex": "d77bfe2e-7057-4cfb-829b-c4011640ae2d", + "panelRefName": "panel_d77bfe2e-7057-4cfb-829b-c4011640ae2d", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "b1ba0667-de29-4458-95d6-49217a6875cb", + "w": 5, + "x": 0, + "y": 15 + }, + "panelIndex": "b1ba0667-de29-4458-95d6-49217a6875cb", + "panelRefName": "panel_b1ba0667-de29-4458-95d6-49217a6875cb", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "ff23d11d-8396-4245-a334-ddafc5cbc198", + "w": 5, + "x": 5, + "y": 15 + }, + "panelIndex": "ff23d11d-8396-4245-a334-ddafc5cbc198", + "panelRefName": "panel_ff23d11d-8396-4245-a334-ddafc5cbc198", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "ee0d79d3-92f8-4360-b724-e9ebfd73b53e", + "w": 5, + "x": 10, + "y": 15 + }, + "panelIndex": "ee0d79d3-92f8-4360-b724-e9ebfd73b53e", + "panelRefName": "panel_ee0d79d3-92f8-4360-b724-e9ebfd73b53e", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "da31ae1e-e713-4d4f-b225-59824b203797", + "w": 19, + "x": 29, + "y": 15 + }, + "panelIndex": "da31ae1e-e713-4d4f-b225-59824b203797", + "panelRefName": "panel_da31ae1e-e713-4d4f-b225-59824b203797", + "title": "GoRouter latency PAS", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "a7138e23-fa21-42b8-8d09-d124c2640293", + "w": 14, + "x": 15, + "y": 16 + }, + "panelIndex": "a7138e23-fa21-42b8-8d09-d124c2640293", + "panelRefName": "panel_a7138e23-fa21-42b8-8d09-d124c2640293", + "title": "Diego cell time to sync", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 3, + "i": "2b4f53d8-a91c-447d-a8e4-f94589abe07f", + "w": 7, + "x": 0, + "y": 20 + }, + "panelIndex": "2b4f53d8-a91c-447d-a8e4-f94589abe07f", + "panelRefName": "panel_2b4f53d8-a91c-447d-a8e4-f94589abe07f", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 3, + "i": "fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4", + "w": 8, + "x": 7, + "y": 20 + }, + "panelIndex": "fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4", + "panelRefName": "panel_fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b", + "w": 7, + "x": 0, + "y": 23 + }, + "panelIndex": "e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b", + "panelRefName": "panel_e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b", + "title": "Maximum CPU utilization", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "5db37b04-577a-4703-a8ef-07d70299023e", + "w": 8, + "x": 7, + "y": 23 + }, + "panelIndex": "5db37b04-577a-4703-a8ef-07d70299023e", + "panelRefName": "panel_5db37b04-577a-4703-a8ef-07d70299023e", + "title": "Available disk space", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "dfb10794-82ba-4da3-80b7-5e4aa82dfd5c", + "w": 14, + "x": 15, + "y": 23 + }, + "panelIndex": "dfb10794-82ba-4da3-80b7-5e4aa82dfd5c", + "panelRefName": "panel_dfb10794-82ba-4da3-80b7-5e4aa82dfd5c", + "title": "Available memory by cell", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "a6c34327-7e71-4bf3-a057-f43de540247c", + "w": 19, + "x": 29, + "y": 23 + }, + "panelIndex": "a6c34327-7e71-4bf3-a057-f43de540247c", + "panelRefName": "panel_a6c34327-7e71-4bf3-a057-f43de540247c", + "title": "Total routes in GoRouter", + "type": "visualization", + "version": "7.9.0" + } + ], + "refreshInterval": { + "pause": true, + "value": 0 + }, + "timeFrom": "now-15m", + "timeRestore": true, + "timeTo": "now", + "title": "[Metricbeat Cloud Foundry] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "9c81cf34-f84e-11ea-a49d-f3f94f5e4fac", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "435133e4-f8d2-11ea-a49e-d36460a01dbe", + "name": "614e3c18-7b1d-4510-9308-a7c64077076b:panel_614e3c18-7b1d-4510-9308-a7c64077076b", + "type": "visualization" + }, + { + "id": "9ca39c36-f84e-11ea-9b0e-af32e8072a87", + "name": "efc5cc53-f0f5-4d09-850f-36baed6cea70:panel_efc5cc53-f0f5-4d09-850f-36baed6cea70", + "type": "visualization" + }, + { + "id": "9ca9737c-f84e-11ea-b8a5-9f245d6f7121", + "name": "77151f90-5dd1-4c52-bbc8-eae071029c74:panel_77151f90-5dd1-4c52-bbc8-eae071029c74", + "type": "visualization" + }, + { + "id": "9c9f12b0-f84e-11ea-bfe0-8f64de3dbbbd", + "name": "e3830a7f-00ba-4133-9be0-5bf881956830:panel_e3830a7f-00ba-4133-9be0-5bf881956830", + "type": "visualization" + }, + { + "id": "9c5e5c7a-f84e-11ea-9c79-3f5f46484ce3", + "name": "f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0:panel_f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0", + "type": "visualization" + }, + { + "id": "9c975020-f84e-11ea-9d35-0ba5b289cee7", + "name": "e00759d3-5853-4e0e-bb74-9c6be0f0cafe:panel_e00759d3-5853-4e0e-bb74-9c6be0f0cafe", + "type": "visualization" + }, + { + "id": "9caafdaa-f84e-11ea-8c78-43aac4b09aa5", + "name": "8ba21983-ee6b-464a-b9e6-083b8f9af911:panel_8ba21983-ee6b-464a-b9e6-083b8f9af911", + "type": "visualization" + }, + { + "id": "9c7b602c-f84e-11ea-8762-e7aef60b5522", + "name": "ffb54b2e-36b9-477e-a722-96d4c4c6f493:panel_ffb54b2e-36b9-477e-a722-96d4c4c6f493", + "type": "visualization" + }, + { + "id": "9cb33038-f84e-11ea-8929-07701f2b1c26", + "name": "1695ac40-80fd-4164-8db3-41b31604c757:panel_1695ac40-80fd-4164-8db3-41b31604c757", + "type": "visualization" + }, + { + "id": "9ca526aa-f84e-11ea-aad5-ef2777854f3d", + "name": "8f111936-e953-45c2-859f-7adc28161741:panel_8f111936-e953-45c2-859f-7adc28161741", + "type": "visualization" + }, + { + "id": "9caf798e-f84e-11ea-ac4b-4795663aee6b", + "name": "040843ca-cc51-4b6e-b15f-6cf8684ee63d:panel_040843ca-cc51-4b6e-b15f-6cf8684ee63d", + "type": "visualization" + }, + { + "id": "9cbb8cd8-f84e-11ea-9a20-af708256c3a9", + "name": "207fe6aa-ca8e-4931-abae-7c2b0f78cc1d:panel_207fe6aa-ca8e-4931-abae-7c2b0f78cc1d", + "type": "visualization" + }, + { + "id": "9c69684a-f84e-11ea-bf59-4bba486da283", + "name": "c4e3338c-f3d9-4c7d-bac7-e784f706bb57:panel_c4e3338c-f3d9-4c7d-bac7-e784f706bb57", + "type": "visualization" + }, + { + "id": "9c93270c-f84e-11ea-8b23-c7a1cc31369e", + "name": "30ed1180-cf4b-41b2-a60a-5332de7f6e46:panel_30ed1180-cf4b-41b2-a60a-5332de7f6e46", + "type": "visualization" + }, + { + "id": "9c7328ee-f84e-11ea-9259-772ddb1805fb", + "name": "d77bfe2e-7057-4cfb-829b-c4011640ae2d:panel_d77bfe2e-7057-4cfb-829b-c4011640ae2d", + "type": "visualization" + }, + { + "id": "9c99314c-f84e-11ea-92d5-9bcd6abdce0f", + "name": "b1ba0667-de29-4458-95d6-49217a6875cb:panel_b1ba0667-de29-4458-95d6-49217a6875cb", + "type": "visualization" + }, + { + "id": "9c635824-f84e-11ea-9b02-735b8407166a", + "name": "ff23d11d-8396-4245-a334-ddafc5cbc198:panel_ff23d11d-8396-4245-a334-ddafc5cbc198", + "type": "visualization" + }, + { + "id": "9caddb24-f84e-11ea-b008-df9bd2aed7cc", + "name": "ee0d79d3-92f8-4360-b724-e9ebfd73b53e:panel_ee0d79d3-92f8-4360-b724-e9ebfd73b53e", + "type": "visualization" + }, + { + "id": "9c58b248-f84e-11ea-87a9-67d346210280", + "name": "da31ae1e-e713-4d4f-b225-59824b203797:panel_da31ae1e-e713-4d4f-b225-59824b203797", + "type": "visualization" + }, + { + "id": "9ca805fa-f84e-11ea-ab90-2b00dd50450c", + "name": "a7138e23-fa21-42b8-8d09-d124c2640293:panel_a7138e23-fa21-42b8-8d09-d124c2640293", + "type": "visualization" + }, + { + "id": "9c89336e-f84e-11ea-bbcd-23e329286ac7", + "name": "2b4f53d8-a91c-447d-a8e4-f94589abe07f:panel_2b4f53d8-a91c-447d-a8e4-f94589abe07f", + "type": "visualization" + }, + { + "id": "9c9d9c14-f84e-11ea-a575-a30e017a09e9", + "name": "fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4:panel_fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4", + "type": "visualization" + }, + { + "id": "9c8ed8fa-f84e-11ea-b20d-bb82d7a8e05d", + "name": "e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b:panel_e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b", + "type": "visualization" + }, + { + "id": "9c948fb6-f84e-11ea-96f5-dff115716ba4", + "name": "5db37b04-577a-4703-a8ef-07d70299023e:panel_5db37b04-577a-4703-a8ef-07d70299023e", + "type": "visualization" + }, + { + "id": "9cac69e2-f84e-11ea-b8d4-4b40313a5eb0", + "name": "dfb10794-82ba-4da3-80b7-5e4aa82dfd5c:panel_dfb10794-82ba-4da3-80b7-5e4aa82dfd5c", + "type": "visualization" + }, + { + "id": "9c77cf84-f84e-11ea-a3ff-7f7f73eabd57", + "name": "a6c34327-7e71-4bf3-a057-f43de540247c:panel_a6c34327-7e71-4bf3-a057-f43de540247c", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2MzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-overview.ndjson b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-overview.ndjson deleted file mode 100644 index df105151b16a..000000000000 --- a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-overview.ndjson +++ /dev/null @@ -1,27 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboards Navigation Overview [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Overview** | [Platform Health](#/dashboard/94364424-f851-11ea-8206-7b08cd60917a)\",\"openLinksInNewTab\":false},\"title\":\"Dashboards Navigation [Metricbeat Cloud Foundry]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"435133e4-f8d2-11ea-a49e-d36460a01dbe","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2MzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Components health title [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"\",\"openLinksInNewTab\":false},\"title\":\"Components health title [Metricbeat Cloud Foundry]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"9ca39c36-f84e-11ea-9b0e-af32e8072a87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2MzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Job Queue [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"cc\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(188,0,19,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"failed_job_count.total\\\" \"},\"formatter\":\"number\",\"hide_in_legend\":1,\"id\":\"9c9054dc-f84e-11ea-920b-1f1a72488310\",\"label\":\"Avg Failed Job Count\",\"line_width\":1,\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c91bfd4-f84e-11ea-a2df-b7ca8c11c9b1\",\"type\":\"avg\"}],\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloudfoundry.envelope.deployment\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"job_queue_length.total\\\" \"},\"formatter\":\"number\",\"hide_in_legend\":1,\"id\":\"9c837802-f84e-11ea-8b5e-ef886d2383c6\",\"label\":\"Avg Job Queue Length\",\"line_width\":1,\"metrics\":[{\"id\":\"9c84e098-f84e-11ea-b8dc-ff0b80823e94\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloudfoundry.value.value\",\"terms_order_by\":\"_count\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Job queue [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9ca9737c-f84e-11ea-b8a5-9f245d6f7121","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2MzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell Top CPU user usage [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\",\"operator\":\"lt\",\"value\":65},{\"bar_color\":\"rgba(252,220,0,1)\",\"id\":\"9c87c1f0-f84e-11ea-abf6-9bcf7a4dd500\",\"operator\":\"gte\",\"value\":65},{\"bar_color\":\"rgba(244,78,59,1)\",\"id\":\"9c95f1b2-f84e-11ea-9ca9-53ceca17b640\",\"operator\":\"gt\",\"value\":75}],\"drilldown_url\":\"\",\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.cpu.user\\\" \"},\"formatter\":\"number\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Max CPU utilization (Load)\",\"line_width\":\"2\",\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"order\":\"desc\",\"size\":1,\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.envelope.job\",\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top CPU user usage [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c9f12b0-f84e-11ea-bfe0-8f64de3dbbbd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top ephemeral disk usage [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\",\"operator\":\"lt\",\"value\":65},{\"bar_color\":\"rgba(252,220,0,1)\",\"id\":\"9c87c1f0-f84e-11ea-abf6-9bcf7a4dd500\",\"operator\":\"gte\",\"value\":65},{\"bar_color\":\"rgba(244,78,59,1)\",\"id\":\"9c95f1b2-f84e-11ea-9ca9-53ceca17b640\",\"operator\":\"gt\",\"value\":75}],\"drilldown_url\":\"\",\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.disk.ephemeral.percent\\\" \"},\"formatter\":\"00.00\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Top Max Ephemeral Disk Usage (%)\",\"line_width\":\"2\",\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"order\":\"desc\",\"size\":1,\"type\":\"max\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.envelope.job\",\"terms_include\":\"\",\"terms_order_by\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"timeseries\",\"value_template\":\"{{value}} %\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top ephemeral disk usage [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c5e5c7a-f84e-11ea-9c79-3f5f46484ce3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top persistent disk usage [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"bar_color\":\"rgba(104,188,0,1)\",\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\",\"operator\":\"lt\",\"value\":65},{\"bar_color\":\"rgba(252,220,0,1)\",\"id\":\"9c87c1f0-f84e-11ea-abf6-9bcf7a4dd500\",\"operator\":\"gte\",\"value\":65},{\"bar_color\":\"rgba(244,78,59,1)\",\"id\":\"9c95f1b2-f84e-11ea-9ca9-53ceca17b640\",\"operator\":\"gt\",\"value\":75}],\"drilldown_url\":\"\",\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.disk.persistent.percent\\\" \"},\"formatter\":\"00.00\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Top Max Ephemeral Disk Usage (%)\",\"line_width\":\"2\",\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"order\":\"desc\",\"size\":1,\"type\":\"max\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.envelope.job\",\"terms_include\":\"\",\"terms_order_by\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"timeseries\",\"value_template\":\"{{value}} %\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top persistent disk usage [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c975020-f84e-11ea-9d35-0ba5b289cee7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Doppler health [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gte\",\"value\":1},{\"id\":\"9c6cce9a-f84e-11ea-9fea-039104d18522\",\"operator\":\"lt\",\"value\":1}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\" and cloudfoundry.envelope.job :\\\"doppler\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.healthy\\\"\"},\"formatter\":\"percent\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Doppler\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":null,\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Doppler health [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9caafdaa-f84e-11ea-8c78-43aac4b09aa5","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Router health [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gte\",\"value\":1},{\"id\":\"9c6cce9a-f84e-11ea-9fea-039104d18522\",\"operator\":\"lt\",\"value\":1}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\" and cloudfoundry.envelope.job :\\\"router\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.healthy\\\"\"},\"formatter\":\"percent\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Router\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":null,\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Router health [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c7b602c-f84e-11ea-8762-e7aef60b5522","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Backup-Restore health [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gte\",\"value\":1},{\"id\":\"9c6cce9a-f84e-11ea-9fea-039104d18522\",\"operator\":\"lt\",\"value\":1}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\" and cloudfoundry.envelope.job :\\\"backup_restore\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.healthy\\\"\"},\"formatter\":\"percent\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Backup-Restore\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":null,\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Backup-Restore health [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9cb33038-f84e-11ea-8929-07701f2b1c26","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego Brain health [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gte\",\"value\":1},{\"id\":\"9c6cce9a-f84e-11ea-9fea-039104d18522\",\"operator\":\"lt\",\"value\":1}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\" and cloudfoundry.envelope.job :\\\"diego_brain\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.healthy\\\"\"},\"formatter\":\"percent\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Diego Brain\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":null,\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego Brain health [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9ca526aa-f84e-11ea-aad5-ef2777854f3d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell health [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":null,\"id\":\"9c6cce9a-f84e-11ea-9fea-039104d18522\",\"operator\":\"lt\",\"value\":1},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9cb7224c-f84e-11ea-aedc-27587a803e41\",\"operator\":\"lt\",\"value\":0.5}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\" and cloudfoundry.envelope.job :\\\"diego_cell\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.healthy\\\"\"},\"formatter\":\"percent\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Diego cell\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":null,\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego cell health [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9caf798e-f84e-11ea-ac4b-4795663aee6b","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Outstanding Requests [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"cc\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"requests.outstanding\\\"\"},\"formatter\":\"number\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Avg Oustanding Requests\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":null,\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Outstanding Requests [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9cbb8cd8-f84e-11ea-9a20-af708256c3a9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell time to sync [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"lt\",\"value\":10000000000},{\"background_color\":\"rgba(252,220,0,1)\",\"id\":\"9cb134b8-f84e-11ea-9fd8-cb6a1b33696f\",\"operator\":\"gte\",\"value\":10000000000},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"9cb588d8-f84e-11ea-af5a-c3012766d944\",\"operator\":\"gt\",\"value\":15000000000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: cloudfoundry and cloudfoundry.envelope.origin :\\\"rep\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"RepBulkSyncDuration\\\"\"},\"formatter\":\"ns,s,2\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Max Cell Rep Time to Sync\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"max\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cf.envelope.deployment\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}} s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego cell time to sync [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c69684a-f84e-11ea-bf59-4bba486da283","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell Missing LRPs [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"lt\",\"value\":5},{\"background_color\":\"rgba(252,220,0,1)\",\"id\":\"9cb134b8-f84e-11ea-9fd8-cb6a1b33696f\",\"operator\":\"gte\",\"value\":5},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"9cb588d8-f84e-11ea-af5a-c3012766d944\",\"operator\":\"gt\",\"value\":10}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"bbs\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"LRPsMissing\\\" \"},\"formatter\":\"number\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Max Missing LRPs\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cf.envelope.deployment\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego cell Missing LRPs [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c93270c-f84e-11ea-8b23-c7a1cc31369e","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell fetch state times [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"lt\",\"value\":5000000000},{\"background_color\":\"rgba(252,220,0,1)\",\"id\":\"9cb134b8-f84e-11ea-9fd8-cb6a1b33696f\",\"operator\":\"gte\",\"value\":5000000000},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"9cb588d8-f84e-11ea-af5a-c3012766d944\",\"operator\":\"gt\",\"value\":10000000000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"auctioneer\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"AuctioneerFetchStatesDuration\\\" \"},\"formatter\":\"ns,s,\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Max fetch cell state times\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"max\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cf.envelope.deployment\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego cell fetch state times [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c7328ee-f84e-11ea-9259-772ddb1805fb","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell Apps domain freshness [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gte\",\"value\":0.9},{\"background_color\":\"rgba(252,220,0,1)\",\"id\":\"9cb134b8-f84e-11ea-9fd8-cb6a1b33696f\",\"operator\":\"lte\",\"value\":0.9},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"9cb588d8-f84e-11ea-af5a-c3012766d944\",\"operator\":\"lt\",\"value\":0.8}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"bbs\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Domain.cf-apps\\\" \"},\"formatter\":\"percent\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Avg 'cf-apps' Domain Freshness\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cf.envelope.deployment\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":null,\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego-cell Apps domain freshness [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c99314c-f84e-11ea-92d5-9bcd6abdce0f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell Router emitter sync duration [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"lt\",\"value\":10000000000},{\"background_color\":\"rgba(252,220,0,1)\",\"id\":\"9cb134b8-f84e-11ea-9fd8-cb6a1b33696f\",\"operator\":\"gte\",\"value\":10000000000},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"9cb588d8-f84e-11ea-af5a-c3012766d944\",\"operator\":\"gt\",\"value\":20000000000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"route_emitter\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"RouteEmitterSyncDuration\\\" \"},\"formatter\":\"ns,s,\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Max Router emitter sync duration\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"max\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cf.envelope.deployment\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}} s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego cell Router emitter sync duration [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c635824-f84e-11ea-9b02-735b8407166a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell convergence LRP duration [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(104,188,0,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"lt\",\"value\":10000000000},{\"background_color\":\"rgba(252,220,0,1)\",\"id\":\"9cb134b8-f84e-11ea-9fd8-cb6a1b33696f\",\"operator\":\"gte\",\"value\":10000000000},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"9cb588d8-f84e-11ea-af5a-c3012766d944\",\"operator\":\"gt\",\"value\":20000000000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"bbs\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"ConvergenceLRPDuration\\\" \"},\"formatter\":\"ns,s,\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Max Convergence LRP Duration\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"max\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cf.envelope.deployment\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}} s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego cell convergence LRP duration [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9caddb24-f84e-11ea-b008-df9bd2aed7cc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"GoRouter latency PAS [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"gorouter\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(123,100,255,1)\",\"fill\":\"0.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"latency\\\"\"},\"formatter\":\"number\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"GoRouter latency\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.envelope.deployment\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"GoRouter latency PAS [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c58b248-f84e-11ea-87a9-67d346210280","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell rep time to sync [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"rep\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"RepBulkSyncDuration\\\"\"},\"formatter\":\"ns,ms,2\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Cell Rep Time to Sync\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.envelope.deployment\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Diego cell rep time to sync [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9ca805fa-f84e-11ea-ab90-2b00dd50450c","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell total disk [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"9c8666fc-f84e-11ea-a43e-0f7a3a14396c\"}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"rep\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"CapacityTotalDisk\\\" \"},\"formatter\":\"0,0\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Total Disk\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.envelope.ip\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}} MiB\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego cell total disk [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c89336e-f84e-11ea-bbcd-23e329286ac7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell total memory [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"9c8666fc-f84e-11ea-a43e-0f7a3a14396c\"}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"rep\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"CapacityTotalMemory\\\" \"},\"formatter\":\"bytes\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Total Memory\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"},{\"id\":\"9c9ac4da-f84e-11ea-8efa-7393d43821d0\",\"script\":\"params.megabytes * 1024 * 1024\",\"type\":\"math\",\"variables\":[{\"field\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"id\":\"9c9c36e4-f84e-11ea-bba1-abb4ba65473f\",\"name\":\"megabytes\"}]}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.value.value\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Diego cell total memory [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c9d9c14-f84e-11ea-a575-a30e017a09e9","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell CPU utilization load [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"bosh-system-metrics-forwarder\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.cpu.user\\\" \"},\"formatter\":\"number\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Max CPU utilization Load\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"max\"}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":null,\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Diego cell CPU utilization load [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c8ed8fa-f84e-11ea-b20d-bb82d7a8e05d","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell remaining disk [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"9c8666fc-f84e-11ea-a43e-0f7a3a14396c\"}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin : \\\"rep\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"CapacityRemainingDisk\\\" \"},\"formatter\":\"bytes\",\"hidden\":false,\"hide_in_legend\":1,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Remaining Disk\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"},{\"id\":\"9c79728a-f84e-11ea-a0b0-cbbc2af24ed3\",\"script\":\"params.megabytes * 1024 * 1024\",\"type\":\"math\",\"variables\":[{\"field\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"id\":\"9c8030c0-f84e-11ea-acf6-13a6b4ddcd67\",\"name\":\"megabytes\"}]}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.envelope.ip\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Diego cell remaining disk [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c948fb6-f84e-11ea-96f5-dff115716ba4","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Diego cell available memory by cell [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"rep\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"CapacityRemainingMemory\\\"\"},\"formatter\":\"bytes\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Available memory by cell\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"avg\"},{\"id\":\"9ca088ac-f84e-11ea-86ca-0f96c7565718\",\"script\":\"params.megabytes*1024*1024\",\"type\":\"math\",\"variables\":[{\"field\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"id\":\"9ca214c4-f84e-11ea-a6d7-0b115dba93eb\",\"name\":\"megabytes\"}]}],\"offset_time\":\"\",\"point_size\":\"4\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_direction\":\"asc\",\"terms_field\":\"cloudfoundry.envelope.ip\",\"terms_include\":\"\",\"terms_order_by\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"timeseries\",\"value_template\":\"\"}],\"show_grid\":0,\"show_legend\":0,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Diego cell available memory by cell [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9cac69e2-f84e-11ea-b8d4-4b40313a5eb0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"GoRouter total routes [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"9c7cf130-f84e-11ea-bdee-833d96fe1a00\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9cb8a18a-f84e-11ea-bd11-836ecccfc401\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and cloudfoundry.envelope.origin :\\\"gorouter\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"9ca68d56-f84e-11ea-a6bb-f3164c0bb859\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"9c8aab7c-f84e-11ea-b4a3-e31a518913fa\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(123,100,255,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"total_routes\\\"\"},\"formatter\":\"number\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"9c8c18f4-f84e-11ea-97ff-b32117553dae\",\"label\":\"Total routes (ISO)\",\"line_width\":\"01\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9c8d7514-f84e-11ea-9457-93fdc9395544\",\"type\":\"sum\"}],\"offset_time\":\"\",\"point_size\":\"1.5\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9c753c7e-f84e-11ea-96e9-33ff984da2c7\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"cloudfoundry.envelope.index\",\"terms_include\":\"\",\"terms_order_by\":\"_key\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"GoRouter total routes [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9c77cf84-f84e-11ea-a3ff-7f7f73eabd57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2NjIsMV0="} -{"attributes":{"description":"Overview of Cloud Foundry","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":2,\"i\":\"614e3c18-7b1d-4510-9308-a7c64077076b\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"614e3c18-7b1d-4510-9308-a7c64077076b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_614e3c18-7b1d-4510-9308-a7c64077076b\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":1,\"i\":\"efc5cc53-f0f5-4d09-850f-36baed6cea70\",\"w\":15,\"x\":0,\"y\":2},\"panelIndex\":\"efc5cc53-f0f5-4d09-850f-36baed6cea70\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Components health\",\"panelRefName\":\"panel_efc5cc53-f0f5-4d09-850f-36baed6cea70\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"77151f90-5dd1-4c52-bbc8-eae071029c74\",\"w\":14,\"x\":15,\"y\":2},\"panelIndex\":\"77151f90-5dd1-4c52-bbc8-eae071029c74\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Job queue length\",\"panelRefName\":\"panel_77151f90-5dd1-4c52-bbc8-eae071029c74\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"e3830a7f-00ba-4133-9be0-5bf881956830\",\"w\":7,\"x\":29,\"y\":2},\"panelIndex\":\"e3830a7f-00ba-4133-9be0-5bf881956830\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top CPU usage\",\"panelRefName\":\"panel_e3830a7f-00ba-4133-9be0-5bf881956830\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0\",\"w\":6,\"x\":36,\"y\":2},\"panelIndex\":\"f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top ephemeral disk usage\",\"panelRefName\":\"panel_f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"e00759d3-5853-4e0e-bb74-9c6be0f0cafe\",\"w\":6,\"x\":42,\"y\":2},\"panelIndex\":\"e00759d3-5853-4e0e-bb74-9c6be0f0cafe\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top persistent disk usage\",\"panelRefName\":\"panel_e00759d3-5853-4e0e-bb74-9c6be0f0cafe\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"8ba21983-ee6b-464a-b9e6-083b8f9af911\",\"w\":3,\"x\":0,\"y\":3},\"panelIndex\":\"8ba21983-ee6b-464a-b9e6-083b8f9af911\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_8ba21983-ee6b-464a-b9e6-083b8f9af911\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"ffb54b2e-36b9-477e-a722-96d4c4c6f493\",\"w\":3,\"x\":3,\"y\":3},\"panelIndex\":\"ffb54b2e-36b9-477e-a722-96d4c4c6f493\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ffb54b2e-36b9-477e-a722-96d4c4c6f493\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"1695ac40-80fd-4164-8db3-41b31604c757\",\"w\":3,\"x\":6,\"y\":3},\"panelIndex\":\"1695ac40-80fd-4164-8db3-41b31604c757\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_1695ac40-80fd-4164-8db3-41b31604c757\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"8f111936-e953-45c2-859f-7adc28161741\",\"w\":3,\"x\":9,\"y\":3},\"panelIndex\":\"8f111936-e953-45c2-859f-7adc28161741\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_8f111936-e953-45c2-859f-7adc28161741\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"040843ca-cc51-4b6e-b15f-6cf8684ee63d\",\"w\":3,\"x\":12,\"y\":3},\"panelIndex\":\"040843ca-cc51-4b6e-b15f-6cf8684ee63d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_040843ca-cc51-4b6e-b15f-6cf8684ee63d\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"207fe6aa-ca8e-4931-abae-7c2b0f78cc1d\",\"w\":14,\"x\":15,\"y\":9},\"panelIndex\":\"207fe6aa-ca8e-4931-abae-7c2b0f78cc1d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Outstanding requests\",\"panelRefName\":\"panel_207fe6aa-ca8e-4931-abae-7c2b0f78cc1d\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"c4e3338c-f3d9-4c7d-bac7-e784f706bb57\",\"w\":5,\"x\":0,\"y\":10},\"panelIndex\":\"c4e3338c-f3d9-4c7d-bac7-e784f706bb57\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_c4e3338c-f3d9-4c7d-bac7-e784f706bb57\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"30ed1180-cf4b-41b2-a60a-5332de7f6e46\",\"w\":5,\"x\":5,\"y\":10},\"panelIndex\":\"30ed1180-cf4b-41b2-a60a-5332de7f6e46\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_30ed1180-cf4b-41b2-a60a-5332de7f6e46\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"d77bfe2e-7057-4cfb-829b-c4011640ae2d\",\"w\":5,\"x\":10,\"y\":10},\"panelIndex\":\"d77bfe2e-7057-4cfb-829b-c4011640ae2d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_d77bfe2e-7057-4cfb-829b-c4011640ae2d\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"b1ba0667-de29-4458-95d6-49217a6875cb\",\"w\":5,\"x\":0,\"y\":15},\"panelIndex\":\"b1ba0667-de29-4458-95d6-49217a6875cb\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_b1ba0667-de29-4458-95d6-49217a6875cb\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"ff23d11d-8396-4245-a334-ddafc5cbc198\",\"w\":5,\"x\":5,\"y\":15},\"panelIndex\":\"ff23d11d-8396-4245-a334-ddafc5cbc198\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ff23d11d-8396-4245-a334-ddafc5cbc198\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"ee0d79d3-92f8-4360-b724-e9ebfd73b53e\",\"w\":5,\"x\":10,\"y\":15},\"panelIndex\":\"ee0d79d3-92f8-4360-b724-e9ebfd73b53e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ee0d79d3-92f8-4360-b724-e9ebfd73b53e\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"da31ae1e-e713-4d4f-b225-59824b203797\",\"w\":19,\"x\":29,\"y\":15},\"panelIndex\":\"da31ae1e-e713-4d4f-b225-59824b203797\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"GoRouter latency PAS\",\"panelRefName\":\"panel_da31ae1e-e713-4d4f-b225-59824b203797\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"a7138e23-fa21-42b8-8d09-d124c2640293\",\"w\":14,\"x\":15,\"y\":16},\"panelIndex\":\"a7138e23-fa21-42b8-8d09-d124c2640293\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Diego cell time to sync\",\"panelRefName\":\"panel_a7138e23-fa21-42b8-8d09-d124c2640293\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":3,\"i\":\"2b4f53d8-a91c-447d-a8e4-f94589abe07f\",\"w\":7,\"x\":0,\"y\":20},\"panelIndex\":\"2b4f53d8-a91c-447d-a8e4-f94589abe07f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_2b4f53d8-a91c-447d-a8e4-f94589abe07f\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":3,\"i\":\"fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4\",\"w\":8,\"x\":7,\"y\":20},\"panelIndex\":\"fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b\",\"w\":7,\"x\":0,\"y\":23},\"panelIndex\":\"e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Maximum CPU utilization\",\"panelRefName\":\"panel_e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"5db37b04-577a-4703-a8ef-07d70299023e\",\"w\":8,\"x\":7,\"y\":23},\"panelIndex\":\"5db37b04-577a-4703-a8ef-07d70299023e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Available disk space\",\"panelRefName\":\"panel_5db37b04-577a-4703-a8ef-07d70299023e\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"dfb10794-82ba-4da3-80b7-5e4aa82dfd5c\",\"w\":14,\"x\":15,\"y\":23},\"panelIndex\":\"dfb10794-82ba-4da3-80b7-5e4aa82dfd5c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Available memory by cell\",\"panelRefName\":\"panel_dfb10794-82ba-4da3-80b7-5e4aa82dfd5c\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"a6c34327-7e71-4bf3-a057-f43de540247c\",\"w\":19,\"x\":29,\"y\":23},\"panelIndex\":\"a6c34327-7e71-4bf3-a057-f43de540247c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total routes in GoRouter\",\"panelRefName\":\"panel_a6c34327-7e71-4bf3-a057-f43de540247c\"}]","refreshInterval":{"pause":true,"value":0},"timeFrom":"now-15m","timeRestore":true,"timeTo":"now","title":"[Metricbeat Cloud Foundry] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"9c81cf34-f84e-11ea-a49d-f3f94f5e4fac","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"435133e4-f8d2-11ea-a49e-d36460a01dbe","name":"614e3c18-7b1d-4510-9308-a7c64077076b:panel_614e3c18-7b1d-4510-9308-a7c64077076b","type":"visualization"},{"id":"9ca39c36-f84e-11ea-9b0e-af32e8072a87","name":"efc5cc53-f0f5-4d09-850f-36baed6cea70:panel_efc5cc53-f0f5-4d09-850f-36baed6cea70","type":"visualization"},{"id":"9ca9737c-f84e-11ea-b8a5-9f245d6f7121","name":"77151f90-5dd1-4c52-bbc8-eae071029c74:panel_77151f90-5dd1-4c52-bbc8-eae071029c74","type":"visualization"},{"id":"9c9f12b0-f84e-11ea-bfe0-8f64de3dbbbd","name":"e3830a7f-00ba-4133-9be0-5bf881956830:panel_e3830a7f-00ba-4133-9be0-5bf881956830","type":"visualization"},{"id":"9c5e5c7a-f84e-11ea-9c79-3f5f46484ce3","name":"f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0:panel_f9d0d4bf-f7b3-45f1-9bde-2ed389ecffe0","type":"visualization"},{"id":"9c975020-f84e-11ea-9d35-0ba5b289cee7","name":"e00759d3-5853-4e0e-bb74-9c6be0f0cafe:panel_e00759d3-5853-4e0e-bb74-9c6be0f0cafe","type":"visualization"},{"id":"9caafdaa-f84e-11ea-8c78-43aac4b09aa5","name":"8ba21983-ee6b-464a-b9e6-083b8f9af911:panel_8ba21983-ee6b-464a-b9e6-083b8f9af911","type":"visualization"},{"id":"9c7b602c-f84e-11ea-8762-e7aef60b5522","name":"ffb54b2e-36b9-477e-a722-96d4c4c6f493:panel_ffb54b2e-36b9-477e-a722-96d4c4c6f493","type":"visualization"},{"id":"9cb33038-f84e-11ea-8929-07701f2b1c26","name":"1695ac40-80fd-4164-8db3-41b31604c757:panel_1695ac40-80fd-4164-8db3-41b31604c757","type":"visualization"},{"id":"9ca526aa-f84e-11ea-aad5-ef2777854f3d","name":"8f111936-e953-45c2-859f-7adc28161741:panel_8f111936-e953-45c2-859f-7adc28161741","type":"visualization"},{"id":"9caf798e-f84e-11ea-ac4b-4795663aee6b","name":"040843ca-cc51-4b6e-b15f-6cf8684ee63d:panel_040843ca-cc51-4b6e-b15f-6cf8684ee63d","type":"visualization"},{"id":"9cbb8cd8-f84e-11ea-9a20-af708256c3a9","name":"207fe6aa-ca8e-4931-abae-7c2b0f78cc1d:panel_207fe6aa-ca8e-4931-abae-7c2b0f78cc1d","type":"visualization"},{"id":"9c69684a-f84e-11ea-bf59-4bba486da283","name":"c4e3338c-f3d9-4c7d-bac7-e784f706bb57:panel_c4e3338c-f3d9-4c7d-bac7-e784f706bb57","type":"visualization"},{"id":"9c93270c-f84e-11ea-8b23-c7a1cc31369e","name":"30ed1180-cf4b-41b2-a60a-5332de7f6e46:panel_30ed1180-cf4b-41b2-a60a-5332de7f6e46","type":"visualization"},{"id":"9c7328ee-f84e-11ea-9259-772ddb1805fb","name":"d77bfe2e-7057-4cfb-829b-c4011640ae2d:panel_d77bfe2e-7057-4cfb-829b-c4011640ae2d","type":"visualization"},{"id":"9c99314c-f84e-11ea-92d5-9bcd6abdce0f","name":"b1ba0667-de29-4458-95d6-49217a6875cb:panel_b1ba0667-de29-4458-95d6-49217a6875cb","type":"visualization"},{"id":"9c635824-f84e-11ea-9b02-735b8407166a","name":"ff23d11d-8396-4245-a334-ddafc5cbc198:panel_ff23d11d-8396-4245-a334-ddafc5cbc198","type":"visualization"},{"id":"9caddb24-f84e-11ea-b008-df9bd2aed7cc","name":"ee0d79d3-92f8-4360-b724-e9ebfd73b53e:panel_ee0d79d3-92f8-4360-b724-e9ebfd73b53e","type":"visualization"},{"id":"9c58b248-f84e-11ea-87a9-67d346210280","name":"da31ae1e-e713-4d4f-b225-59824b203797:panel_da31ae1e-e713-4d4f-b225-59824b203797","type":"visualization"},{"id":"9ca805fa-f84e-11ea-ab90-2b00dd50450c","name":"a7138e23-fa21-42b8-8d09-d124c2640293:panel_a7138e23-fa21-42b8-8d09-d124c2640293","type":"visualization"},{"id":"9c89336e-f84e-11ea-bbcd-23e329286ac7","name":"2b4f53d8-a91c-447d-a8e4-f94589abe07f:panel_2b4f53d8-a91c-447d-a8e4-f94589abe07f","type":"visualization"},{"id":"9c9d9c14-f84e-11ea-a575-a30e017a09e9","name":"fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4:panel_fdd1c5d5-bd8f-41db-8d16-9d0b8adcb3a4","type":"visualization"},{"id":"9c8ed8fa-f84e-11ea-b20d-bb82d7a8e05d","name":"e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b:panel_e2291bb2-2b6d-452b-8bb0-652ed6b4ea7b","type":"visualization"},{"id":"9c948fb6-f84e-11ea-96f5-dff115716ba4","name":"5db37b04-577a-4703-a8ef-07d70299023e:panel_5db37b04-577a-4703-a8ef-07d70299023e","type":"visualization"},{"id":"9cac69e2-f84e-11ea-b8d4-4b40313a5eb0","name":"dfb10794-82ba-4da3-80b7-5e4aa82dfd5c:panel_dfb10794-82ba-4da3-80b7-5e4aa82dfd5c","type":"visualization"},{"id":"9c77cf84-f84e-11ea-a3ff-7f7f73eabd57","name":"a6c34327-7e71-4bf3-a057-f43de540247c:panel_a6c34327-7e71-4bf3-a057-f43de540247c","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:58.327Z","version":"WzM2MzYsMV0="} diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-platform-health.ndjson b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-platform-health.ndjson deleted file mode 100644 index 0f03e45614a0..000000000000 --- a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/dashboard/Metricbeat-cloudfoundry-platform-health.ndjson +++ /dev/null @@ -1,30 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average push time [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset : \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.cliCommand.pushTime\\\"\"},\"formatter\":\"ms,s,2\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Avg Push Time\",\"line_width\":1,\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}} s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Average push time [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93acc294-f851-11ea-a97a-53f837470423","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM ephemeral disk used [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93d69f74-f851-11ea-b007-0bb1f816b4f3\",\"operator\":\"gt\",\"value\":70},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93a1a36e-f851-11ea-840a-4ff3b85fd2ce\",\"operator\":\"gt\",\"value\":50},{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93ce25ba-f851-11ea-a28d-3339e0be69a9\",\"operator\":\"lte\",\"value\":50}],\"bar_color_rules\":[{\"id\":\"93a6b4d0-f851-11ea-9ff5-af33dba0a2b7\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93941cda-f851-11ea-8449-bf49cca008e8\",\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"system.disk.ephemeral.percent\\\"\"},\"formatter\":\"00.00\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Ephemeral Disk Used\",\"line_width\":1,\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9377407e-f851-11ea-a918-ab9d33748fd4\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} %\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"VM ephemeral disk used [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93f27abe-f851-11ea-90c1-670adf08e026","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM disk used [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93d69f74-f851-11ea-b007-0bb1f816b4f3\",\"operator\":\"gt\",\"value\":70},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93a1a36e-f851-11ea-840a-4ff3b85fd2ce\",\"operator\":\"gt\",\"value\":50},{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93ce25ba-f851-11ea-a28d-3339e0be69a9\",\"operator\":\"lte\",\"value\":50}],\"bar_color_rules\":[{\"id\":\"93a6b4d0-f851-11ea-9ff5-af33dba0a2b7\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93941cda-f851-11ea-8449-bf49cca008e8\",\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"system.disk.system.percent\\\"\"},\"formatter\":\"00.00\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"VM Disk Used\",\"line_width\":1,\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9377407e-f851-11ea-a918-ab9d33748fd4\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} %\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"VM disk used [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93d1bce8-f851-11ea-9e6c-e3a6ffa65309","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"VM persistent disk used [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93d69f74-f851-11ea-b007-0bb1f816b4f3\",\"operator\":\"gt\",\"value\":70},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93a1a36e-f851-11ea-840a-4ff3b85fd2ce\",\"operator\":\"gt\",\"value\":50},{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93ce25ba-f851-11ea-a28d-3339e0be69a9\",\"operator\":\"lte\",\"value\":50}],\"bar_color_rules\":[{\"id\":\"93a6b4d0-f851-11ea-9ff5-af33dba0a2b7\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93941cda-f851-11ea-8449-bf49cca008e8\",\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"1\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"system.disk.persistent.percent\\\"\"},\"formatter\":\"00.00\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Persistent Disk Used\",\"line_width\":1,\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"9377407e-f851-11ea-a918-ab9d33748fd4\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value}} %\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"VM persistent disk used [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93f86eec-f851-11ea-9ae8-ff70f6c28f02","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average push time line [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset : \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.cliCommand.pushTime\\\" \"},\"formatter\":\"ms,s,2\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Avg Push Time\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}} s\"},{\"axis_max\":\"1\",\"axis_min\":\"-1\",\"axis_position\":\"left\",\"chart_type\":\"line\",\"color\":\"rgba(101,50,148,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.cliCommand.push\\\"\"},\"formatter\":\"number\",\"id\":\"93e9e1c4-f851-11ea-a721-73ca515dcf70\",\"label\":\"Push Success\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93ebe050-f851-11ea-ba43-0f6c8946c755\",\"type\":\"avg\"}],\"point_size\":\"2\",\"separate_axis\":1,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Average push time line [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93f59bb8-f851-11ea-ab86-6757c64f8446","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total disk 6GB free chunks [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":100},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":100},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"93cfeee0-f851-11ea-b302-1f22d9deae5a\",\"operator\":\"lte\",\"value\":50}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset : \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.AvailableFreeChunksDisk\\\"\"},\"formatter\":\"'0,0'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Available 6GB Free Disk Chunks\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Total disk 6GB disk chunks [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93d3c40c-f851-11ea-ab6c-2b7686d129ce","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ISO memory 4GB free chunks [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":20},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93e80d0e-f851-11ea-ae0c-6f6e897b08b1\",\"operator\":\"lte\",\"value\":20},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"9374752e-f851-11ea-ad9f-cfee9493e6eb\",\"operator\":\"lte\",\"value\":15}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.AvailableFreeChunks\\\" and cloudfoundry.envelope.deployment: p-isolation-segment*\"},\"formatter\":\"'0,0'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"ISO 4GB Free Memory Chunks\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"min\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ISO memory 4GB free chunks [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93edb394-f851-11ea-af40-bbda53487783","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pushes past hour [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.95},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":0.95}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.CanaryApp.available\\\" \"},\"formatter\":\"percent\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Past Hour\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"1h\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Pushes past hour [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9398519c-f851-11ea-9d16-0345f5e91a95","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Applications availability past month [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.95},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":0.95}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.CanaryApp.available\\\"\"},\"formatter\":\"percent\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Past Month\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"1M\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Applications availability past month [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93c2c184-f851-11ea-93fb-fb88ecfdafdb","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Applications availability past day [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.95},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":0.95}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.CanaryApp.available\\\"\"},\"formatter\":\"percent\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Past Day\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"1d\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Applications availability past day [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"94200db2-f851-11ea-a8fa-9bfadc17852f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Applications availability line [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_max\":\"1\",\"axis_min\":\"\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.95},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":0.95}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.CanaryApp.available\\\"\"},\"formatter\":\"percent\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"App Availability\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":0,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Applications availability line [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93d9d39c-f851-11ea-b957-3f002cacae67","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"System CPU load [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(244,78,59,1)\",\"color\":null,\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":60000}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"system.cpu.sys\\\" \"},\"formatter\":\"number\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"System CPU Load\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"System CPU load [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"939a9380-f851-11ea-9a72-a3f185bef2c4","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Director health check [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_max\":\"1\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.95},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":0.95}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(30,125,77,0.84)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.bosh.director.probe.available\\\" \"},\"formatter\":\"percent\",\"hidden\":false,\"hide_in_legend\":0,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Director Probe Availability\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":0,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Director health check [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"943dcad2-f851-11ea-8923-93b64d3cea46","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Test results [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_max\":\"1\",\"axis_min\":\"\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.95},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":0.95}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_max\":\"1\",\"axis_min\":\"-1\",\"axis_position\":\"left\",\"chart_type\":\"line\",\"color\":\"rgba(30,125,77,0.84)\",\"fill\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.cliCommand.delete\\\"\"},\"formatter\":\"number\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Can Delete\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"type\":\"timeseries\",\"value_template\":\"\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"health.check.cliCommand.login\\\" \"},\"formatter\":\"number\",\"id\":\"942618ec-f851-11ea-b48a-5b9430e2ce44\",\"label\":\"Can Login\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"942c9cc6-f851-11ea-bf29-8bf7fdb78fbd\",\"type\":\"avg\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"health.check.cliCommand.push\\\" \"},\"formatter\":\"number\",\"id\":\"937fd70c-f851-11ea-a061-4fce22c4bd01\",\"label\":\"Can Push\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"9381bac2-f851-11ea-8141-4fa88748817f\",\"type\":\"avg\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(176,0,188,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"health.check.cliCommand.logs\\\" \"},\"formatter\":\"number\",\"id\":\"938694d4-f851-11ea-9158-3fa2819fcf4a\",\"label\":\"Receiving Logs\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93893126-f851-11ea-a544-3bbd4ce64fdd\",\"type\":\"avg\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"\"}],\"show_grid\":0,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Test results [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93c03f18-f851-11ea-8da1-eb649369fefa","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top CPU user deployment [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"93965a18-f851-11ea-a8db-cf27e7c12197\"}],\"bar_color_rules\":[{\"bar_color\":\"rgba(244,78,59,1)\",\"id\":\"93bd39a8-f851-11ea-9b4f-0bee117f7e32\",\"operator\":\"gte\",\"value\":70},{\"bar_color\":\"rgba(252,220,0,1)\",\"id\":\"93cc3e94-f851-11ea-8e33-6f86d8899090\",\"operator\":\"lt\",\"value\":70},{\"bar_color\":\"rgba(105,192,111,1)\",\"id\":\"93e2a558-f851-11ea-a583-8ba487ea9a5e\",\"operator\":\"lt\",\"value\":50}],\"drilldown_url\":\"\",\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"id\":\"93e46942-f851-11ea-b627-9f9d893aa443\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"system.cpu.user\\\" \"},\"formatter\":\"number\",\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Top CPU Users by Deployment\",\"line_width\":1,\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloudfoundry.envelope.deployment\",\"terms_order_by\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top CPU user deployment [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9430406a-f851-11ea-a96e-efef958606c3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Top persistent disk deployment [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"93965a18-f851-11ea-a8db-cf27e7c12197\"}],\"bar_color_rules\":[{\"bar_color\":\"rgba(244,78,59,1)\",\"id\":\"93bd39a8-f851-11ea-9b4f-0bee117f7e32\",\"operator\":\"gte\",\"value\":70},{\"bar_color\":\"rgba(252,220,0,1)\",\"id\":\"93cc3e94-f851-11ea-8e33-6f86d8899090\",\"operator\":\"lt\",\"value\":70},{\"bar_color\":\"rgba(105,192,111,1)\",\"id\":\"93e2a558-f851-11ea-a583-8ba487ea9a5e\",\"operator\":\"lt\",\"value\":50}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name:\\\"system.disk.persistent.percent\\\"\"},\"formatter\":\"number\",\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Top CPU Users by Deployment\",\"line_width\":1,\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloudfoundry.envelope.deployment\",\"terms_order_by\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"value_template\":\"\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Top persistent disk deployment [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93fd890e-f851-11ea-96db-8342eb689011","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory 4GB free chunks [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":20},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93e80d0e-f851-11ea-ae0c-6f6e897b08b1\",\"operator\":\"lte\",\"value\":20},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"93aa1f08-f851-11ea-8561-cf622005b51f\",\"operator\":\"lte\",\"value\":10}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset : \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.AvailableFreeChunks\\\" and cloudfoundry.envelope.deployment: cf*\"},\"formatter\":\"'0,0'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"CF 4GB Free Memory Chunks\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Memory 4GB free chunks [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93dcb238-f851-11ea-8c49-fb9deba7fc48","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ISO disk 6GB free chunks [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":100},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":100},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"938c1710-f851-11ea-aacc-e3f9d23bdead\",\"operator\":\"lte\",\"value\":50}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.AvailableFreeChunksDisk\\\" and cloudfoundry.envelope.deployment: p-isolation-segment*\"},\"formatter\":\"'0,0'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"ISO 6GB Free Disk Chunks\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"min\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"last_value\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ISO disk 6GB free chunks [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93e0d7d2-f851-11ea-a8ea-ab5761cc3b1c","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Disk capacity [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.4},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93e80d0e-f851-11ea-ae0c-6f6e897b08b1\",\"operator\":\"lte\",\"value\":0.4},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"93c50fb6-f851-11ea-9589-1bd31d6a8c71\",\"operator\":\"lte\",\"value\":0.35}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.TotalPercentageAvailableDiskCapacity.5M\\\" AND cloudfoundry.envelope.deployment: cf*\"},\"formatter\":\"'0.0%'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"CF Disk Capacity\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Disk capacity [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"94402c0a-f851-11ea-b3d4-f3815d5ef910","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ISO disk capacity [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.4},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93e80d0e-f851-11ea-ae0c-6f6e897b08b1\",\"operator\":\"lte\",\"value\":0.4},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"93c50fb6-f851-11ea-9589-1bd31d6a8c71\",\"operator\":\"lte\",\"value\":0.35}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.TotalPercentageAvailableDiskCapacity.5M\\\" and cloudfoundry.envelope.deployment: p-isolation-segment*\"},\"formatter\":\"'0.0%'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"ISO Disk Capacity\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ISO disk capacity [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"937d5f4a-f851-11ea-9321-07e4098558b1","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ISO memory capacity [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.4},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93e80d0e-f851-11ea-ae0c-6f6e897b08b1\",\"operator\":\"lte\",\"value\":0.4},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"93c50fb6-f851-11ea-9589-1bd31d6a8c71\",\"operator\":\"lte\",\"value\":0.35}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.TotalPercentageAvailableMemoryCapacity.5M\\\" and cloudfoundry.envelope.deployment: p-isolation-segment*\"},\"formatter\":\"'0.0%'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"ISO Memory Capacity\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ISO memory capacity [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93deea94-f851-11ea-8186-777cfa34f466","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"ISO container capacity [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.4},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93e80d0e-f851-11ea-ae0c-6f6e897b08b1\",\"operator\":\"lte\",\"value\":0.4},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"93c50fb6-f851-11ea-9589-1bd31d6a8c71\",\"operator\":\"lte\",\"value\":0.35}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset:\\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.TotalPercentageAvailableContainerCapacity.5M\\\" and cloudfoundry.envelope.deployment: p-isolation-segment*\"},\"formatter\":\"'0.0%'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"ISO Container Capacity\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"ISO container capacity [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"938e9490-f851-11ea-9fc4-93d53dd1c7c1","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Container capacity [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.4},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93e80d0e-f851-11ea-ae0c-6f6e897b08b1\",\"operator\":\"lte\",\"value\":0.4},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"93c50fb6-f851-11ea-9589-1bd31d6a8c71\",\"operator\":\"lte\",\"value\":0.35}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\"\"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"Diego.TotalPercentageAvailableContainerCapacity.5M\\\" AND cloudfoundry.envelope.deployment: cf*\"},\"formatter\":\"'0.0%'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"CF Container Capacity\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Container capacity [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"943b6bf2-f851-11ea-99e0-b300881da4b1","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Memory capacity [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.4},{\"background_color\":\"rgba(252,220,0,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93e80d0e-f851-11ea-ae0c-6f6e897b08b1\",\"operator\":\"lte\",\"value\":0.4},{\"background_color\":\"rgba(244,78,59,1)\",\"id\":\"93c50fb6-f851-11ea-9589-1bd31d6a8c71\",\"operator\":\"lte\",\"value\":0.35}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset: \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.envelope.deployment:cf* and cloudfoundry.value.name: \\\"Diego.TotalPercentageAvailableMemoryCapacity.5M\\\" \"},\"formatter\":\"'0.0%'\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"CF Memory Capacity\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Memory capacity [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9417ef10-f851-11ea-bc5c-cbb3bfb4dc2a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pushes past month [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.95},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":0.95}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset : \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.cliCommand.push\\\" \"},\"formatter\":\"percent\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Past Month\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"1M\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Pushes past month [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"93a42468-f851-11ea-8393-7791ef366bdd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pushes past day [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"background_color\":\"rgba(105,192,111,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"939ee5ac-f851-11ea-9c98-1b6b4c058d58\",\"operator\":\"gt\",\"value\":0.95},{\"background_color\":\"rgba(244,78,59,1)\",\"color\":\"rgba(255,255,255,1)\",\"id\":\"93c76824-f851-11ea-b59a-ebcfb7da714a\",\"operator\":\"lte\",\"value\":0.95}],\"bar_color_rules\":[{\"id\":\"9438fb38-f851-11ea-8cbf-2be67ccd287b\"}],\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"event.module: \\\"cloudfoundry\\\" and event.dataset : \\\"cloudfoundry.value\\\" \"},\"gauge_color_rules\":[{\"gauge\":null,\"id\":\"93f0138c-f851-11ea-bbaa-dfc0137bc600\",\"text\":null,\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"300000\",\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"93aed944-f851-11ea-ba70-fbde5471d6c0\",\"ignore_global_filter\":0,\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"cloudfoundry.value.name: \\\"health.check.cliCommand.push\\\" \"},\"formatter\":\"percent\",\"hidden\":false,\"id\":\"93b3d516-f851-11ea-b4ca-c32dfcb647e2\",\"label\":\"Past Day\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"cloudfoundry.value.value\",\"id\":\"93b9bc2e-f851-11ea-8d20-9b7927512450\",\"type\":\"avg\"}],\"offset_time\":\"1d\",\"point_size\":\"1\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"93842b7c-f851-11ea-8281-37e3b8318172\",\"label\":\"\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"name.keyword\",\"terms_include\":\"\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Pushes past day [Metricbeat Cloud Foundry]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9379c90c-f851-11ea-8313-f3c659aaac21","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2ODksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboards Navigation Platform Health [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Overview](#/dashboard/9c81cf34-f84e-11ea-a49d-f3f94f5e4fac) | **Platform Health**\",\"openLinksInNewTab\":false},\"title\":\"Dashboards Navigation [Metricbeat Cloud Foundry]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"f771b65c-f8d0-11ea-bf74-8bbda818957f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2OTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Pushes md-2 [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":15,\"markdown\":\"**CF Push**\\n**(99.0%)**\",\"openLinksInNewTab\":false},\"title\":\"Pushes md-2 [Metricbeat Cloud Foundry]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"9410e9ea-f851-11ea-b70d-9bda9c286e02","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2OTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Pushes application availability md-2 [Metricbeat Cloud Foundry]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":15,\"markdown\":\"**App Avail**\\n**(99.9%)**\",\"openLinksInNewTab\":false},\"title\":\"Pushes application availability md-2 [Metricbeat Cloud Foundry]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"93911f12-f851-11ea-9a0a-bb5ff28cf81a","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2OTIsMV0="} -{"attributes":{"description":"Cloud Foundry platform health","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1\",\"w\":4,\"x\":15,\"y\":2},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"8\",\"w\":5,\"x\":38,\"y\":36},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"9\",\"w\":5,\"x\":33,\"y\":36},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_9\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"11\",\"w\":5,\"x\":43,\"y\":36},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_11\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"13\",\"w\":15,\"x\":0,\"y\":2},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_13\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"14\",\"w\":7,\"x\":26,\"y\":10},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_14\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"15\",\"w\":7,\"x\":19,\"y\":23},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_15\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"16\",\"w\":5,\"x\":0,\"y\":27},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_16\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"17\",\"w\":5,\"x\":10,\"y\":27},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_17\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"18\",\"w\":5,\"x\":5,\"y\":27},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_18\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"19\",\"w\":19,\"x\":0,\"y\":17},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Applications availability\",\"panelRefName\":\"panel_19\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"26\",\"w\":14,\"x\":19,\"y\":2},\"panelIndex\":\"26\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_26\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"28\",\"w\":14,\"x\":19,\"y\":36},\"panelIndex\":\"28\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Director health check\",\"panelRefName\":\"panel_28\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"29\",\"w\":19,\"x\":0,\"y\":33},\"panelIndex\":\"29\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Test results\",\"panelRefName\":\"panel_29\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"30\",\"w\":15,\"x\":33,\"y\":2},\"panelIndex\":\"30\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top CPU user deployment\",\"panelRefName\":\"panel_30\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"31\",\"w\":15,\"x\":33,\"y\":18},\"panelIndex\":\"31\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Top persistent disk deployment\",\"panelRefName\":\"panel_31\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"36\",\"w\":7,\"x\":19,\"y\":10},\"panelIndex\":\"36\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_36\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"37\",\"w\":7,\"x\":26,\"y\":23},\"panelIndex\":\"37\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_37\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"38\",\"w\":4,\"x\":24,\"y\":17},\"panelIndex\":\"38\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_38\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"39\",\"w\":4,\"x\":24,\"y\":30},\"panelIndex\":\"39\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_39\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"41\",\"w\":5,\"x\":19,\"y\":30},\"panelIndex\":\"41\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_41\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"42\",\"w\":5,\"x\":28,\"y\":30},\"panelIndex\":\"42\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_42\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"43\",\"w\":5,\"x\":28,\"y\":17},\"panelIndex\":\"43\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_43\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"44\",\"w\":5,\"x\":19,\"y\":17},\"panelIndex\":\"44\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_44\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"46\",\"w\":5,\"x\":0,\"y\":10},\"panelIndex\":\"46\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_46\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"47\",\"w\":5,\"x\":10,\"y\":10},\"panelIndex\":\"47\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_47\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"48\",\"w\":5,\"x\":5,\"y\":10},\"panelIndex\":\"48\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_48\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":2,\"i\":\"f770c0d9-bc9a-4250-ad73-35a8cae0bcda\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"f770c0d9-bc9a-4250-ad73-35a8cae0bcda\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_f770c0d9-bc9a-4250-ad73-35a8cae0bcda\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5\",\"w\":4,\"x\":15,\"y\":10},\"panelIndex\":\"8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"fbd35912-3c3a-4ab9-878c-b68b598df8f0\",\"w\":4,\"x\":15,\"y\":27},\"panelIndex\":\"fbd35912-3c3a-4ab9-878c-b68b598df8f0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_fbd35912-3c3a-4ab9-878c-b68b598df8f0\"}]","refreshInterval":{"pause":true,"value":0},"timeFrom":"now-1h","timeRestore":true,"timeTo":"now","title":"[Metricbeat Cloud Foundry] Platform Health","version":1},"coreMigrationVersion":"8.0.0","id":"94364424-f851-11ea-8206-7b08cd60917a","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"93acc294-f851-11ea-a97a-53f837470423","name":"1:panel_1","type":"visualization"},{"id":"93f27abe-f851-11ea-90c1-670adf08e026","name":"8:panel_8","type":"visualization"},{"id":"93d1bce8-f851-11ea-9e6c-e3a6ffa65309","name":"9:panel_9","type":"visualization"},{"id":"93f86eec-f851-11ea-9ae8-ff70f6c28f02","name":"11:panel_11","type":"visualization"},{"id":"93f59bb8-f851-11ea-ab86-6757c64f8446","name":"13:panel_13","type":"visualization"},{"id":"93d3c40c-f851-11ea-ab6c-2b7686d129ce","name":"14:panel_14","type":"visualization"},{"id":"93edb394-f851-11ea-af40-bbda53487783","name":"15:panel_15","type":"visualization"},{"id":"9398519c-f851-11ea-9d16-0345f5e91a95","name":"16:panel_16","type":"visualization"},{"id":"93c2c184-f851-11ea-93fb-fb88ecfdafdb","name":"17:panel_17","type":"visualization"},{"id":"94200db2-f851-11ea-a8fa-9bfadc17852f","name":"18:panel_18","type":"visualization"},{"id":"93d9d39c-f851-11ea-b957-3f002cacae67","name":"19:panel_19","type":"visualization"},{"id":"939a9380-f851-11ea-9a72-a3f185bef2c4","name":"26:panel_26","type":"visualization"},{"id":"943dcad2-f851-11ea-8923-93b64d3cea46","name":"28:panel_28","type":"visualization"},{"id":"93c03f18-f851-11ea-8da1-eb649369fefa","name":"29:panel_29","type":"visualization"},{"id":"9430406a-f851-11ea-a96e-efef958606c3","name":"30:panel_30","type":"visualization"},{"id":"93fd890e-f851-11ea-96db-8342eb689011","name":"31:panel_31","type":"visualization"},{"id":"93dcb238-f851-11ea-8c49-fb9deba7fc48","name":"36:panel_36","type":"visualization"},{"id":"93e0d7d2-f851-11ea-a8ea-ab5761cc3b1c","name":"37:panel_37","type":"visualization"},{"id":"94402c0a-f851-11ea-b3d4-f3815d5ef910","name":"38:panel_38","type":"visualization"},{"id":"937d5f4a-f851-11ea-9321-07e4098558b1","name":"39:panel_39","type":"visualization"},{"id":"93deea94-f851-11ea-8186-777cfa34f466","name":"41:panel_41","type":"visualization"},{"id":"938e9490-f851-11ea-9fc4-93d53dd1c7c1","name":"42:panel_42","type":"visualization"},{"id":"943b6bf2-f851-11ea-99e0-b300881da4b1","name":"43:panel_43","type":"visualization"},{"id":"9417ef10-f851-11ea-bc5c-cbb3bfb4dc2a","name":"44:panel_44","type":"visualization"},{"id":"9398519c-f851-11ea-9d16-0345f5e91a95","name":"46:panel_46","type":"visualization"},{"id":"93a42468-f851-11ea-8393-7791ef366bdd","name":"47:panel_47","type":"visualization"},{"id":"9379c90c-f851-11ea-8313-f3c659aaac21","name":"48:panel_48","type":"visualization"},{"id":"f771b65c-f8d0-11ea-bf74-8bbda818957f","name":"f770c0d9-bc9a-4250-ad73-35a8cae0bcda:panel_f770c0d9-bc9a-4250-ad73-35a8cae0bcda","type":"visualization"},{"id":"9410e9ea-f851-11ea-b70d-9bda9c286e02","name":"8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5:panel_8a83ab84-5aa6-4e68-97cc-fd8be2b65eb5","type":"visualization"},{"id":"93911f12-f851-11ea-9a0a-bb5ff28cf81a","name":"fbd35912-3c3a-4ab9-878c-b68b598df8f0:panel_fbd35912-3c3a-4ab9-878c-b68b598df8f0","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:59.416Z","version":"WzM2NjMsMV0="} diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/435133e4-f8d2-11ea-a49e-d36460a01dbe.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/435133e4-f8d2-11ea-a49e-d36460a01dbe.json new file mode 100644 index 000000000000..b9fc4f6d50b0 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/435133e4-f8d2-11ea-a49e-d36460a01dbe.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Dashboards Navigation Overview [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "**Overview** | [Platform Health](#/dashboard/94364424-f851-11ea-8206-7b08cd60917a)", + "openLinksInNewTab": false + }, + "title": "Dashboards Navigation [Metricbeat Cloud Foundry]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "435133e4-f8d2-11ea-a49e-d36460a01dbe", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2MzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9379c90c-f851-11ea-8313-f3c659aaac21.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9379c90c-f851-11ea-8313-f3c659aaac21.json new file mode 100644 index 000000000000..e6105de229d1 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9379c90c-f851-11ea-8313-f3c659aaac21.json @@ -0,0 +1,127 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Pushes past day [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 0.95 + }, + { + "background_color": "rgba(244,78,59,1)", + "color": "rgba(255,255,255,1)", + "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", + "operator": "lte", + "value": 0.95 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset : \"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"health.check.cliCommand.push\" " + }, + "formatter": "percent", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "Past Day", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "1d", + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Pushes past day [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9379c90c-f851-11ea-8313-f3c659aaac21", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2ODksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/937d5f4a-f851-11ea-9321-07e4098558b1.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/937d5f4a-f851-11ea-9321-07e4098558b1.json new file mode 100644 index 000000000000..ca7ed73ba391 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/937d5f4a-f851-11ea-9321-07e4098558b1.json @@ -0,0 +1,133 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ISO disk capacity [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 0.4 + }, + { + "background_color": "rgba(252,220,0,1)", + "color": "rgba(255,255,255,1)", + "id": "93e80d0e-f851-11ea-ae0c-6f6e897b08b1", + "operator": "lte", + "value": 0.4 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "93c50fb6-f851-11ea-9589-1bd31d6a8c71", + "operator": "lte", + "value": 0.35 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"Diego.TotalPercentageAvailableDiskCapacity.5M\" and cloudfoundry.envelope.deployment: p-isolation-segment*" + }, + "formatter": "'0.0%'", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "ISO Disk Capacity", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "ISO disk capacity [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "937d5f4a-f851-11ea-9321-07e4098558b1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2ODMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/938e9490-f851-11ea-9fc4-93d53dd1c7c1.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/938e9490-f851-11ea-9fc4-93d53dd1c7c1.json new file mode 100644 index 000000000000..8f1824024035 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/938e9490-f851-11ea-9fc4-93d53dd1c7c1.json @@ -0,0 +1,133 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ISO container capacity [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 0.4 + }, + { + "background_color": "rgba(252,220,0,1)", + "color": "rgba(255,255,255,1)", + "id": "93e80d0e-f851-11ea-ae0c-6f6e897b08b1", + "operator": "lte", + "value": 0.4 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "93c50fb6-f851-11ea-9589-1bd31d6a8c71", + "operator": "lte", + "value": 0.35 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"Diego.TotalPercentageAvailableContainerCapacity.5M\" and cloudfoundry.envelope.deployment: p-isolation-segment*" + }, + "formatter": "'0.0%'", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "ISO Container Capacity", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "ISO container capacity [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "938e9490-f851-11ea-9fc4-93d53dd1c7c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2ODUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93911f12-f851-11ea-9a0a-bb5ff28cf81a.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93911f12-f851-11ea-9a0a-bb5ff28cf81a.json new file mode 100644 index 000000000000..7269bd908521 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93911f12-f851-11ea-9a0a-bb5ff28cf81a.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Pushes application availability md-2 [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 15, + "markdown": "**App Avail**\n**(99.9%)**", + "openLinksInNewTab": false + }, + "title": "Pushes application availability md-2 [Metricbeat Cloud Foundry]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "93911f12-f851-11ea-9a0a-bb5ff28cf81a", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2OTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9398519c-f851-11ea-9d16-0345f5e91a95.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9398519c-f851-11ea-9d16-0345f5e91a95.json new file mode 100644 index 000000000000..c74569f37c4b --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9398519c-f851-11ea-9d16-0345f5e91a95.json @@ -0,0 +1,127 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Pushes past hour [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 0.95 + }, + { + "background_color": "rgba(244,78,59,1)", + "color": "rgba(255,255,255,1)", + "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", + "operator": "lte", + "value": 0.95 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"health.check.CanaryApp.available\" " + }, + "formatter": "percent", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "Past Hour", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "1h", + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Pushes past hour [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9398519c-f851-11ea-9d16-0345f5e91a95", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/939a9380-f851-11ea-9a72-a3f185bef2c4.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/939a9380-f851-11ea-9a72-a3f185bef2c4.json new file mode 100644 index 000000000000..e3283064f892 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/939a9380-f851-11ea-9a72-a3f185bef2c4.json @@ -0,0 +1,120 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "System CPU load [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": null, + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 60000 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"system.cpu.sys\" " + }, + "formatter": "number", + "hidden": false, + "hide_in_legend": 0, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "System CPU Load", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "type": "timeseries", + "value_template": "" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "System CPU load [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "939a9380-f851-11ea-9a72-a3f185bef2c4", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93a42468-f851-11ea-8393-7791ef366bdd.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93a42468-f851-11ea-8393-7791ef366bdd.json new file mode 100644 index 000000000000..45b49e25f013 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93a42468-f851-11ea-8393-7791ef366bdd.json @@ -0,0 +1,127 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Pushes past month [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 0.95 + }, + { + "background_color": "rgba(244,78,59,1)", + "color": "rgba(255,255,255,1)", + "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", + "operator": "lte", + "value": 0.95 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset : \"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"health.check.cliCommand.push\" " + }, + "formatter": "percent", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "Past Month", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "1M", + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Pushes past month [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "93a42468-f851-11ea-8393-7791ef366bdd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2ODgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93acc294-f851-11ea-a97a-53f837470423.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93acc294-f851-11ea-a97a-53f837470423.json new file mode 100644 index 000000000000..988af476c7b3 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93acc294-f851-11ea-a97a-53f837470423.json @@ -0,0 +1,116 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Average push time [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": null, + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 60000 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset : \"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"health.check.cliCommand.pushTime\"" + }, + "formatter": "ms,s,2", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "Avg Push Time", + "line_width": 1, + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "", + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "terms_field": "name.keyword", + "terms_include": "", + "value_template": "{{value}} s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Average push time [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "93acc294-f851-11ea-a97a-53f837470423", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93c03f18-f851-11ea-8da1-eb649369fefa.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93c03f18-f851-11ea-8da1-eb649369fefa.json new file mode 100644 index 000000000000..b74b031d95e7 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93c03f18-f851-11ea-8da1-eb649369fefa.json @@ -0,0 +1,214 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Test results [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_max": "1", + "axis_min": "", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 0.95 + }, + { + "background_color": "rgba(244,78,59,1)", + "color": "rgba(255,255,255,1)", + "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", + "operator": "lte", + "value": 0.95 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_max": "1", + "axis_min": "-1", + "axis_position": "left", + "chart_type": "line", + "color": "rgba(30,125,77,0.84)", + "fill": "", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"health.check.cliCommand.delete\"" + }, + "formatter": "number", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "Can Delete", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "type": "timeseries", + "value_template": "" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(226,115,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name:\"health.check.cliCommand.login\" " + }, + "formatter": "number", + "id": "942618ec-f851-11ea-b48a-5b9430e2ce44", + "label": "Can Login", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "942c9cc6-f851-11ea-bf29-8bf7fdb78fbd", + "type": "avg" + } + ], + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name:\"health.check.cliCommand.push\" " + }, + "formatter": "number", + "id": "937fd70c-f851-11ea-a061-4fce22c4bd01", + "label": "Can Push", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9381bac2-f851-11ea-8141-4fa88748817f", + "type": "avg" + } + ], + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(176,0,188,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name:\"health.check.cliCommand.logs\" " + }, + "formatter": "number", + "id": "938694d4-f851-11ea-9158-3fa2819fcf4a", + "label": "Receiving Logs", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93893126-f851-11ea-a544-3bbd4ce64fdd", + "type": "avg" + } + ], + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "" + } + ], + "show_grid": 0, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Test results [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "93c03f18-f851-11ea-8da1-eb649369fefa", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93c2c184-f851-11ea-93fb-fb88ecfdafdb.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93c2c184-f851-11ea-93fb-fb88ecfdafdb.json new file mode 100644 index 000000000000..409084d37fe2 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93c2c184-f851-11ea-93fb-fb88ecfdafdb.json @@ -0,0 +1,127 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Applications availability past month [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 0.95 + }, + { + "background_color": "rgba(244,78,59,1)", + "color": "rgba(255,255,255,1)", + "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", + "operator": "lte", + "value": 0.95 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"health.check.CanaryApp.available\"" + }, + "formatter": "percent", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "Past Month", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "1M", + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Applications availability past month [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "93c2c184-f851-11ea-93fb-fb88ecfdafdb", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93d1bce8-f851-11ea-9e6c-e3a6ffa65309.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93d1bce8-f851-11ea-9e6c-e3a6ffa65309.json new file mode 100644 index 000000000000..43acba651460 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93d1bce8-f851-11ea-9e6c-e3a6ffa65309.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VM disk used [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": "rgba(255,255,255,1)", + "id": "93d69f74-f851-11ea-b007-0bb1f816b4f3", + "operator": "gt", + "value": 70 + }, + { + "background_color": "rgba(252,220,0,1)", + "color": "rgba(255,255,255,1)", + "id": "93a1a36e-f851-11ea-840a-4ff3b85fd2ce", + "operator": "gt", + "value": 50 + }, + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "93ce25ba-f851-11ea-a28d-3339e0be69a9", + "operator": "lte", + "value": 50 + } + ], + "bar_color_rules": [ + { + "id": "93a6b4d0-f851-11ea-9ff5-af33dba0a2b7" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93941cda-f851-11ea-8449-bf49cca008e8", + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "1", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name:\"system.disk.system.percent\"" + }, + "formatter": "00.00", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "VM Disk Used", + "line_width": 1, + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9377407e-f851-11ea-a918-ab9d33748fd4" + } + ], + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}} %" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "VM disk used [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "93d1bce8-f851-11ea-9e6c-e3a6ffa65309", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93d3c40c-f851-11ea-ab6c-2b7686d129ce.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93d3c40c-f851-11ea-ab6c-2b7686d129ce.json new file mode 100644 index 000000000000..79e3431bce78 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93d3c40c-f851-11ea-ab6c-2b7686d129ce.json @@ -0,0 +1,133 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Total disk 6GB free chunks [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 100 + }, + { + "background_color": "rgba(252,220,0,1)", + "color": "rgba(255,255,255,1)", + "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", + "operator": "lte", + "value": 100 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "93cfeee0-f851-11ea-b302-1f22d9deae5a", + "operator": "lte", + "value": 50 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset : \"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"Diego.AvailableFreeChunksDisk\"" + }, + "formatter": "'0,0'", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "Available 6GB Free Disk Chunks", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Total disk 6GB disk chunks [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "93d3c40c-f851-11ea-ab6c-2b7686d129ce", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NjksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93d9d39c-f851-11ea-b957-3f002cacae67.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93d9d39c-f851-11ea-b957-3f002cacae67.json new file mode 100644 index 000000000000..758668c6bb4d --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93d9d39c-f851-11ea-b957-3f002cacae67.json @@ -0,0 +1,128 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Applications availability line [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_max": "1", + "axis_min": "", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 0.95 + }, + { + "background_color": "rgba(244,78,59,1)", + "color": "rgba(255,255,255,1)", + "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", + "operator": "lte", + "value": 0.95 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"health.check.CanaryApp.available\"" + }, + "formatter": "percent", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "App Availability", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 0, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Applications availability line [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "93d9d39c-f851-11ea-b957-3f002cacae67", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93dcb238-f851-11ea-8c49-fb9deba7fc48.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93dcb238-f851-11ea-8c49-fb9deba7fc48.json new file mode 100644 index 000000000000..33657813437b --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93dcb238-f851-11ea-8c49-fb9deba7fc48.json @@ -0,0 +1,132 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Memory 4GB free chunks [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 20 + }, + { + "background_color": "rgba(252,220,0,1)", + "color": "rgba(255,255,255,1)", + "id": "93e80d0e-f851-11ea-ae0c-6f6e897b08b1", + "operator": "lte", + "value": 20 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "93aa1f08-f851-11ea-8561-cf622005b51f", + "operator": "lte", + "value": 10 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset : \"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"Diego.AvailableFreeChunks\" and cloudfoundry.envelope.deployment: cf*" + }, + "formatter": "'0,0'", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "CF 4GB Free Memory Chunks", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Memory 4GB free chunks [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "93dcb238-f851-11ea-8c49-fb9deba7fc48", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2ODAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93deea94-f851-11ea-8186-777cfa34f466.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93deea94-f851-11ea-8186-777cfa34f466.json new file mode 100644 index 000000000000..0677d6479d6e --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93deea94-f851-11ea-8186-777cfa34f466.json @@ -0,0 +1,133 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ISO memory capacity [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 0.4 + }, + { + "background_color": "rgba(252,220,0,1)", + "color": "rgba(255,255,255,1)", + "id": "93e80d0e-f851-11ea-ae0c-6f6e897b08b1", + "operator": "lte", + "value": 0.4 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "93c50fb6-f851-11ea-9589-1bd31d6a8c71", + "operator": "lte", + "value": 0.35 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"Diego.TotalPercentageAvailableMemoryCapacity.5M\" and cloudfoundry.envelope.deployment: p-isolation-segment*" + }, + "formatter": "'0.0%'", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "ISO Memory Capacity", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "ISO memory capacity [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "93deea94-f851-11ea-8186-777cfa34f466", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2ODQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93e0d7d2-f851-11ea-a8ea-ab5761cc3b1c.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93e0d7d2-f851-11ea-a8ea-ab5761cc3b1c.json new file mode 100644 index 000000000000..6b8fea0b21ad --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93e0d7d2-f851-11ea-a8ea-ab5761cc3b1c.json @@ -0,0 +1,133 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ISO disk 6GB free chunks [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 100 + }, + { + "background_color": "rgba(252,220,0,1)", + "color": "rgba(255,255,255,1)", + "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", + "operator": "lte", + "value": 100 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "938c1710-f851-11ea-aacc-e3f9d23bdead", + "operator": "lte", + "value": 50 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\"" + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"Diego.AvailableFreeChunksDisk\" and cloudfoundry.envelope.deployment: p-isolation-segment*" + }, + "formatter": "'0,0'", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "ISO 6GB Free Disk Chunks", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "min" + } + ], + "offset_time": "", + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "last_value", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "ISO disk 6GB free chunks [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "93e0d7d2-f851-11ea-a8ea-ab5761cc3b1c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2ODEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93edb394-f851-11ea-af40-bbda53487783.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93edb394-f851-11ea-af40-bbda53487783.json new file mode 100644 index 000000000000..7a4f614a56bf --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93edb394-f851-11ea-af40-bbda53487783.json @@ -0,0 +1,133 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "ISO memory 4GB free chunks [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 20 + }, + { + "background_color": "rgba(252,220,0,1)", + "color": "rgba(255,255,255,1)", + "id": "93e80d0e-f851-11ea-ae0c-6f6e897b08b1", + "operator": "lte", + "value": 20 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "9374752e-f851-11ea-ad9f-cfee9493e6eb", + "operator": "lte", + "value": 15 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"Diego.AvailableFreeChunks\" and cloudfoundry.envelope.deployment: p-isolation-segment*" + }, + "formatter": "'0,0'", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "ISO 4GB Free Memory Chunks", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "min" + } + ], + "offset_time": "", + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "last_value", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "ISO memory 4GB free chunks [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "93edb394-f851-11ea-af40-bbda53487783", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93f27abe-f851-11ea-90c1-670adf08e026.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93f27abe-f851-11ea-90c1-670adf08e026.json new file mode 100644 index 000000000000..d541a73816bd --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93f27abe-f851-11ea-90c1-670adf08e026.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VM ephemeral disk used [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": "rgba(255,255,255,1)", + "id": "93d69f74-f851-11ea-b007-0bb1f816b4f3", + "operator": "gt", + "value": 70 + }, + { + "background_color": "rgba(252,220,0,1)", + "color": "rgba(255,255,255,1)", + "id": "93a1a36e-f851-11ea-840a-4ff3b85fd2ce", + "operator": "gt", + "value": 50 + }, + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "93ce25ba-f851-11ea-a28d-3339e0be69a9", + "operator": "lte", + "value": 50 + } + ], + "bar_color_rules": [ + { + "id": "93a6b4d0-f851-11ea-9ff5-af33dba0a2b7" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93941cda-f851-11ea-8449-bf49cca008e8", + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "1", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name:\"system.disk.ephemeral.percent\"" + }, + "formatter": "00.00", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "Ephemeral Disk Used", + "line_width": 1, + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9377407e-f851-11ea-a918-ab9d33748fd4" + } + ], + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}} %" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "VM ephemeral disk used [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "93f27abe-f851-11ea-90c1-670adf08e026", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93f59bb8-f851-11ea-ab86-6757c64f8446.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93f59bb8-f851-11ea-ab86-6757c64f8446.json new file mode 100644 index 000000000000..d2476b22e766 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93f59bb8-f851-11ea-ab86-6757c64f8446.json @@ -0,0 +1,148 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Average push time line [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": null, + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 60000 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset : \"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"health.check.cliCommand.pushTime\" " + }, + "formatter": "ms,s,2", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "Avg Push Time", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "type": "timeseries", + "value_template": "{{value}} s" + }, + { + "axis_max": "1", + "axis_min": "-1", + "axis_position": "left", + "chart_type": "line", + "color": "rgba(101,50,148,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"health.check.cliCommand.push\"" + }, + "formatter": "number", + "id": "93e9e1c4-f851-11ea-a721-73ca515dcf70", + "label": "Push Success", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93ebe050-f851-11ea-ba43-0f6c8946c755", + "type": "avg" + } + ], + "point_size": "2", + "separate_axis": 1, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Average push time line [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "93f59bb8-f851-11ea-ab86-6757c64f8446", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93f86eec-f851-11ea-9ae8-ff70f6c28f02.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93f86eec-f851-11ea-9ae8-ff70f6c28f02.json new file mode 100644 index 000000000000..b3b2d6ae1747 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93f86eec-f851-11ea-9ae8-ff70f6c28f02.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "VM persistent disk used [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": "rgba(255,255,255,1)", + "id": "93d69f74-f851-11ea-b007-0bb1f816b4f3", + "operator": "gt", + "value": 70 + }, + { + "background_color": "rgba(252,220,0,1)", + "color": "rgba(255,255,255,1)", + "id": "93a1a36e-f851-11ea-840a-4ff3b85fd2ce", + "operator": "gt", + "value": 50 + }, + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "93ce25ba-f851-11ea-a28d-3339e0be69a9", + "operator": "lte", + "value": 50 + } + ], + "bar_color_rules": [ + { + "id": "93a6b4d0-f851-11ea-9ff5-af33dba0a2b7" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93941cda-f851-11ea-8449-bf49cca008e8", + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "1", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name:\"system.disk.persistent.percent\"" + }, + "formatter": "00.00", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "Persistent Disk Used", + "line_width": 1, + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9377407e-f851-11ea-a918-ab9d33748fd4" + } + ], + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value}} %" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "VM persistent disk used [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "93f86eec-f851-11ea-9ae8-ff70f6c28f02", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93fd890e-f851-11ea-96db-8342eb689011.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93fd890e-f851-11ea-96db-8342eb689011.json new file mode 100644 index 000000000000..366508c3eaf0 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/93fd890e-f851-11ea-96db-8342eb689011.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Top persistent disk deployment [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "93965a18-f851-11ea-a8db-cf27e7c12197" + } + ], + "bar_color_rules": [ + { + "bar_color": "rgba(244,78,59,1)", + "id": "93bd39a8-f851-11ea-9b4f-0bee117f7e32", + "operator": "gte", + "value": 70 + }, + { + "bar_color": "rgba(252,220,0,1)", + "id": "93cc3e94-f851-11ea-8e33-6f86d8899090", + "operator": "lt", + "value": 70 + }, + { + "bar_color": "rgba(105,192,111,1)", + "id": "93e2a558-f851-11ea-a583-8ba487ea9a5e", + "operator": "lt", + "value": 50 + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " + }, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name:\"system.disk.persistent.percent\"" + }, + "formatter": "number", + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "Top CPU Users by Deployment", + "line_width": 1, + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "cloudfoundry.envelope.deployment", + "terms_order_by": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "value_template": "" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Top persistent disk deployment [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "93fd890e-f851-11ea-96db-8342eb689011", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NzksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9410e9ea-f851-11ea-b70d-9bda9c286e02.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9410e9ea-f851-11ea-b70d-9bda9c286e02.json new file mode 100644 index 000000000000..a0617243deb6 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9410e9ea-f851-11ea-b70d-9bda9c286e02.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Pushes md-2 [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 15, + "markdown": "**CF Push**\n**(99.0%)**", + "openLinksInNewTab": false + }, + "title": "Pushes md-2 [Metricbeat Cloud Foundry]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9410e9ea-f851-11ea-b70d-9bda9c286e02", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2OTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9417ef10-f851-11ea-bc5c-cbb3bfb4dc2a.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9417ef10-f851-11ea-bc5c-cbb3bfb4dc2a.json new file mode 100644 index 000000000000..160288e7c208 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9417ef10-f851-11ea-bc5c-cbb3bfb4dc2a.json @@ -0,0 +1,133 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Memory capacity [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 0.4 + }, + { + "background_color": "rgba(252,220,0,1)", + "color": "rgba(255,255,255,1)", + "id": "93e80d0e-f851-11ea-ae0c-6f6e897b08b1", + "operator": "lte", + "value": 0.4 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "93c50fb6-f851-11ea-9589-1bd31d6a8c71", + "operator": "lte", + "value": 0.35 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.envelope.deployment:cf* and cloudfoundry.value.name: \"Diego.TotalPercentageAvailableMemoryCapacity.5M\" " + }, + "formatter": "'0.0%'", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "CF Memory Capacity", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Memory capacity [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9417ef10-f851-11ea-bc5c-cbb3bfb4dc2a", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2ODcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/94200db2-f851-11ea-a8fa-9bfadc17852f.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/94200db2-f851-11ea-a8fa-9bfadc17852f.json new file mode 100644 index 000000000000..8bdcf216b9a4 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/94200db2-f851-11ea-a8fa-9bfadc17852f.json @@ -0,0 +1,127 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Applications availability past day [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 0.95 + }, + { + "background_color": "rgba(244,78,59,1)", + "color": "rgba(255,255,255,1)", + "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", + "operator": "lte", + "value": 0.95 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"health.check.CanaryApp.available\"" + }, + "formatter": "percent", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "Past Day", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "1d", + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Applications availability past day [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "94200db2-f851-11ea-a8fa-9bfadc17852f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9430406a-f851-11ea-a96e-efef958606c3.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9430406a-f851-11ea-a96e-efef958606c3.json new file mode 100644 index 000000000000..44f6beca36ee --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9430406a-f851-11ea-a96e-efef958606c3.json @@ -0,0 +1,111 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Top CPU user deployment [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "93965a18-f851-11ea-a8db-cf27e7c12197" + } + ], + "bar_color_rules": [ + { + "bar_color": "rgba(244,78,59,1)", + "id": "93bd39a8-f851-11ea-9b4f-0bee117f7e32", + "operator": "gte", + "value": 70 + }, + { + "bar_color": "rgba(252,220,0,1)", + "id": "93cc3e94-f851-11ea-8e33-6f86d8899090", + "operator": "lt", + "value": 70 + }, + { + "bar_color": "rgba(105,192,111,1)", + "id": "93e2a558-f851-11ea-a583-8ba487ea9a5e", + "operator": "lt", + "value": 50 + } + ], + "drilldown_url": "", + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "id": "93e46942-f851-11ea-b627-9f9d893aa443" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name:\"system.cpu.user\" " + }, + "formatter": "number", + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "Top CPU Users by Deployment", + "line_width": 1, + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "cloudfoundry.envelope.deployment", + "terms_order_by": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Top CPU user deployment [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9430406a-f851-11ea-a96e-efef958606c3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/943b6bf2-f851-11ea-99e0-b300881da4b1.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/943b6bf2-f851-11ea-99e0-b300881da4b1.json new file mode 100644 index 000000000000..d8883a2b0ac0 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/943b6bf2-f851-11ea-99e0-b300881da4b1.json @@ -0,0 +1,133 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Container capacity [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 0.4 + }, + { + "background_color": "rgba(252,220,0,1)", + "color": "rgba(255,255,255,1)", + "id": "93e80d0e-f851-11ea-ae0c-6f6e897b08b1", + "operator": "lte", + "value": 0.4 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "93c50fb6-f851-11ea-9589-1bd31d6a8c71", + "operator": "lte", + "value": 0.35 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\"" + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"Diego.TotalPercentageAvailableContainerCapacity.5M\" AND cloudfoundry.envelope.deployment: cf*" + }, + "formatter": "'0.0%'", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "CF Container Capacity", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Container capacity [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "943b6bf2-f851-11ea-99e0-b300881da4b1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2ODYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/943dcad2-f851-11ea-8923-93b64d3cea46.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/943dcad2-f851-11ea-8923-93b64d3cea46.json new file mode 100644 index 000000000000..2b15bbb9489b --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/943dcad2-f851-11ea-8923-93b64d3cea46.json @@ -0,0 +1,128 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Director health check [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_max": "1", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 0.95 + }, + { + "background_color": "rgba(244,78,59,1)", + "color": "rgba(255,255,255,1)", + "id": "93c76824-f851-11ea-b59a-ebcfb7da714a", + "operator": "lte", + "value": 0.95 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset: \"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(30,125,77,0.84)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"health.check.bosh.director.probe.available\" " + }, + "formatter": "percent", + "hidden": false, + "hide_in_legend": 0, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "Director Probe Availability", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 0, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Director health check [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "943dcad2-f851-11ea-8923-93b64d3cea46", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2NzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/94402c0a-f851-11ea-b3d4-f3815d5ef910.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/94402c0a-f851-11ea-b3d4-f3815d5ef910.json new file mode 100644 index 000000000000..e567e273d063 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/94402c0a-f851-11ea-b3d4-f3815d5ef910.json @@ -0,0 +1,133 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Disk capacity [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(105,192,111,1)", + "color": "rgba(255,255,255,1)", + "id": "939ee5ac-f851-11ea-9c98-1b6b4c058d58", + "operator": "gt", + "value": 0.4 + }, + { + "background_color": "rgba(252,220,0,1)", + "color": "rgba(255,255,255,1)", + "id": "93e80d0e-f851-11ea-ae0c-6f6e897b08b1", + "operator": "lte", + "value": 0.4 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "93c50fb6-f851-11ea-9589-1bd31d6a8c71", + "operator": "lte", + "value": 0.35 + } + ], + "bar_color_rules": [ + { + "id": "9438fb38-f851-11ea-8cbf-2be67ccd287b" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and event.dataset:\"cloudfoundry.value\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "93f0138c-f851-11ea-bbaa-dfc0137bc600", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "93aed944-f851-11ea-ba70-fbde5471d6c0", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"Diego.TotalPercentageAvailableDiskCapacity.5M\" AND cloudfoundry.envelope.deployment: cf*" + }, + "formatter": "'0.0%'", + "hidden": false, + "id": "93b3d516-f851-11ea-b4ca-c32dfcb647e2", + "label": "CF Disk Capacity", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "93b9bc2e-f851-11ea-8d20-9b7927512450", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "93842b7c-f851-11ea-8281-37e3b8318172", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "name.keyword", + "terms_include": "", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Disk capacity [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "94402c0a-f851-11ea-b3d4-f3815d5ef910", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2ODIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c58b248-f84e-11ea-87a9-67d346210280.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c58b248-f84e-11ea-87a9-67d346210280.json new file mode 100644 index 000000000000..a4e4d2d067f3 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c58b248-f84e-11ea-87a9-67d346210280.json @@ -0,0 +1,121 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "GoRouter latency PAS [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "gt", + "value": 60000 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"gorouter\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(123,100,255,1)", + "fill": "0.2", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"latency\"" + }, + "formatter": "number", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "GoRouter latency", + "line_width": "01", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "cloudfoundry.envelope.deployment", + "terms_include": "", + "terms_order_by": "_key", + "type": "timeseries", + "value_template": "{{value}} ms" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "GoRouter latency PAS [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c58b248-f84e-11ea-87a9-67d346210280", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c5e5c7a-f84e-11ea-9c79-3f5f46484ce3.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c5e5c7a-f84e-11ea-9c79-3f5f46484ce3.json new file mode 100644 index 000000000000..9ee5a92139a2 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c5e5c7a-f84e-11ea-9c79-3f5f46484ce3.json @@ -0,0 +1,142 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Top ephemeral disk usage [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "gt", + "value": 60000 + } + ], + "bar_color_rules": [ + { + "bar_color": "rgba(104,188,0,1)", + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401", + "operator": "lt", + "value": 65 + }, + { + "bar_color": "rgba(252,220,0,1)", + "id": "9c87c1f0-f84e-11ea-abf6-9bcf7a4dd500", + "operator": "gte", + "value": 65 + }, + { + "bar_color": "rgba(244,78,59,1)", + "id": "9c95f1b2-f84e-11ea-9ca9-53ceca17b640", + "operator": "gt", + "value": 75 + } + ], + "drilldown_url": "", + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\"" + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"system.disk.ephemeral.percent\" " + }, + "formatter": "00.00", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Top Max Ephemeral Disk Usage (%)", + "line_width": "2", + "metrics": [ + { + "agg_with": "avg", + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "order": "desc", + "size": 1, + "type": "max" + } + ], + "offset_time": "", + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "cloudfoundry.envelope.job", + "terms_include": "", + "terms_order_by": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "timeseries", + "value_template": "{{value}} %" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Top ephemeral disk usage [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c5e5c7a-f84e-11ea-9c79-3f5f46484ce3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c635824-f84e-11ea-9b02-735b8407166a.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c635824-f84e-11ea-9b02-735b8407166a.json new file mode 100644 index 000000000000..0f49b6946a8b --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c635824-f84e-11ea-9b02-735b8407166a.json @@ -0,0 +1,135 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Diego cell Router emitter sync duration [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(104,188,0,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "lt", + "value": 10000000000 + }, + { + "background_color": "rgba(252,220,0,1)", + "id": "9cb134b8-f84e-11ea-9fd8-cb6a1b33696f", + "operator": "gte", + "value": 10000000000 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "9cb588d8-f84e-11ea-af5a-c3012766d944", + "operator": "gt", + "value": 20000000000 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"route_emitter\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"RouteEmitterSyncDuration\" " + }, + "formatter": "ns,s,", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Max Router emitter sync duration", + "line_width": "01", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "max" + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "cf.envelope.deployment", + "terms_include": "", + "terms_order_by": "_key", + "type": "timeseries", + "value_template": "{{value}} s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Diego cell Router emitter sync duration [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c635824-f84e-11ea-9b02-735b8407166a", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c69684a-f84e-11ea-bf59-4bba486da283.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c69684a-f84e-11ea-bf59-4bba486da283.json new file mode 100644 index 000000000000..7d001cfc5586 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c69684a-f84e-11ea-bf59-4bba486da283.json @@ -0,0 +1,135 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Diego cell time to sync [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(104,188,0,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "lt", + "value": 10000000000 + }, + { + "background_color": "rgba(252,220,0,1)", + "id": "9cb134b8-f84e-11ea-9fd8-cb6a1b33696f", + "operator": "gte", + "value": 10000000000 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "9cb588d8-f84e-11ea-af5a-c3012766d944", + "operator": "gt", + "value": 15000000000 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"rep\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"RepBulkSyncDuration\"" + }, + "formatter": "ns,s,2", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Max Cell Rep Time to Sync", + "line_width": "01", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "max" + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "cf.envelope.deployment", + "terms_include": "", + "terms_order_by": "_key", + "type": "timeseries", + "value_template": "{{value}} s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Diego cell time to sync [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c69684a-f84e-11ea-bf59-4bba486da283", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NDksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c7328ee-f84e-11ea-9259-772ddb1805fb.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c7328ee-f84e-11ea-9259-772ddb1805fb.json new file mode 100644 index 000000000000..e5d4cfa31248 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c7328ee-f84e-11ea-9259-772ddb1805fb.json @@ -0,0 +1,135 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Diego cell fetch state times [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(104,188,0,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "lt", + "value": 5000000000 + }, + { + "background_color": "rgba(252,220,0,1)", + "id": "9cb134b8-f84e-11ea-9fd8-cb6a1b33696f", + "operator": "gte", + "value": 5000000000 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "9cb588d8-f84e-11ea-af5a-c3012766d944", + "operator": "gt", + "value": 10000000000 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"auctioneer\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"AuctioneerFetchStatesDuration\" " + }, + "formatter": "ns,s,", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Max fetch cell state times", + "line_width": "01", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "max" + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "cf.envelope.deployment", + "terms_include": "", + "terms_order_by": "_key", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Diego cell fetch state times [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c7328ee-f84e-11ea-9259-772ddb1805fb", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c77cf84-f84e-11ea-a3ff-7f7f73eabd57.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c77cf84-f84e-11ea-a3ff-7f7f73eabd57.json new file mode 100644 index 000000000000..3132110b1fe6 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c77cf84-f84e-11ea-a3ff-7f7f73eabd57.json @@ -0,0 +1,121 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "GoRouter total routes [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "gt", + "value": 60000 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"gorouter\"" + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(123,100,255,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"total_routes\"" + }, + "formatter": "number", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Total routes (ISO)", + "line_width": "01", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "sum" + } + ], + "offset_time": "", + "point_size": "1.5", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "cloudfoundry.envelope.index", + "terms_include": "", + "terms_order_by": "_key", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "GoRouter total routes [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c77cf84-f84e-11ea-a3ff-7f7f73eabd57", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c7b602c-f84e-11ea-8762-e7aef60b5522.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c7b602c-f84e-11ea-8762-e7aef60b5522.json new file mode 100644 index 000000000000..9e26dd25cd45 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c7b602c-f84e-11ea-8762-e7aef60b5522.json @@ -0,0 +1,127 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Router health [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(104,188,0,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "gte", + "value": 1 + }, + { + "id": "9c6cce9a-f84e-11ea-9fea-039104d18522", + "operator": "lt", + "value": 1 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\" and cloudfoundry.envelope.job :\"router\"" + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"system.healthy\"" + }, + "formatter": "percent", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Router", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": null, + "terms_include": "", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Router health [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c7b602c-f84e-11ea-8762-e7aef60b5522", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c89336e-f84e-11ea-bbcd-23e329286ac7.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c89336e-f84e-11ea-bbcd-23e329286ac7.json new file mode 100644 index 000000000000..0394a5869d55 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c89336e-f84e-11ea-bbcd-23e329286ac7.json @@ -0,0 +1,120 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Diego cell total disk [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "9c8666fc-f84e-11ea-a43e-0f7a3a14396c" + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"rep\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"CapacityTotalDisk\" " + }, + "formatter": "0,0", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Total Disk", + "line_width": "01", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "cloudfoundry.envelope.ip", + "terms_include": "", + "terms_order_by": "_key", + "type": "timeseries", + "value_template": "{{value}} MiB" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "tooltip_mode": "show_all", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Diego cell total disk [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c89336e-f84e-11ea-bbcd-23e329286ac7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c8ed8fa-f84e-11ea-b20d-bb82d7a8e05d.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c8ed8fa-f84e-11ea-b20d-bb82d7a8e05d.json new file mode 100644 index 000000000000..5495dc337ebe --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c8ed8fa-f84e-11ea-b20d-bb82d7a8e05d.json @@ -0,0 +1,121 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Diego cell CPU utilization load [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "gt", + "value": 60000 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\"" + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"system.cpu.user\" " + }, + "formatter": "number", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Max CPU utilization Load", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "max" + } + ], + "offset_time": "", + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": null, + "terms_include": "", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Diego cell CPU utilization load [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c8ed8fa-f84e-11ea-b20d-bb82d7a8e05d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c93270c-f84e-11ea-8b23-c7a1cc31369e.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c93270c-f84e-11ea-8b23-c7a1cc31369e.json new file mode 100644 index 000000000000..41deb3fce584 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c93270c-f84e-11ea-8b23-c7a1cc31369e.json @@ -0,0 +1,135 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Diego cell Missing LRPs [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(104,188,0,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "lt", + "value": 5 + }, + { + "background_color": "rgba(252,220,0,1)", + "id": "9cb134b8-f84e-11ea-9fd8-cb6a1b33696f", + "operator": "gte", + "value": 5 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "9cb588d8-f84e-11ea-af5a-c3012766d944", + "operator": "gt", + "value": 10 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"bbs\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"LRPsMissing\" " + }, + "formatter": "number", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Max Missing LRPs", + "line_width": "01", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "cf.envelope.deployment", + "terms_include": "", + "terms_order_by": "_key", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Diego cell Missing LRPs [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c93270c-f84e-11ea-8b23-c7a1cc31369e", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c948fb6-f84e-11ea-96f5-dff115716ba4.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c948fb6-f84e-11ea-96f5-dff115716ba4.json new file mode 100644 index 000000000000..f1c60d38cfd3 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c948fb6-f84e-11ea-96f5-dff115716ba4.json @@ -0,0 +1,131 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Diego cell remaining disk [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "9c8666fc-f84e-11ea-a43e-0f7a3a14396c" + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin : \"rep\"" + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"CapacityRemainingDisk\" " + }, + "formatter": "bytes", + "hidden": false, + "hide_in_legend": 1, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Remaining Disk", + "line_width": "01", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "avg" + }, + { + "id": "9c79728a-f84e-11ea-a0b0-cbbc2af24ed3", + "script": "params.megabytes * 1024 * 1024", + "type": "math", + "variables": [ + { + "field": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "id": "9c8030c0-f84e-11ea-acf6-13a6b4ddcd67", + "name": "megabytes" + } + ] + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "cloudfoundry.envelope.ip", + "terms_include": "", + "terms_order_by": "_key", + "type": "timeseries", + "value_template": "" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Diego cell remaining disk [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c948fb6-f84e-11ea-96f5-dff115716ba4", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c975020-f84e-11ea-9d35-0ba5b289cee7.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c975020-f84e-11ea-9d35-0ba5b289cee7.json new file mode 100644 index 000000000000..1fac7db59c53 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c975020-f84e-11ea-9d35-0ba5b289cee7.json @@ -0,0 +1,143 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Top persistent disk usage [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "gt", + "value": 60000 + } + ], + "bar_color_rules": [ + { + "bar_color": "rgba(104,188,0,1)", + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401", + "operator": "lt", + "value": 65 + }, + { + "bar_color": "rgba(252,220,0,1)", + "id": "9c87c1f0-f84e-11ea-abf6-9bcf7a4dd500", + "operator": "gte", + "value": 65 + }, + { + "bar_color": "rgba(244,78,59,1)", + "id": "9c95f1b2-f84e-11ea-9ca9-53ceca17b640", + "operator": "gt", + "value": 75 + } + ], + "drilldown_url": "", + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\"" + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"system.disk.persistent.percent\" " + }, + "formatter": "00.00", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Top Max Ephemeral Disk Usage (%)", + "line_width": "2", + "metrics": [ + { + "agg_with": "avg", + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "order": "desc", + "size": 1, + "type": "max" + } + ], + "offset_time": "", + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "cloudfoundry.envelope.job", + "terms_include": "", + "terms_order_by": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "timeseries", + "value_template": "{{value}} %" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "tooltip_mode": "show_all", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Top persistent disk usage [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c975020-f84e-11ea-9d35-0ba5b289cee7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c99314c-f84e-11ea-92d5-9bcd6abdce0f.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c99314c-f84e-11ea-92d5-9bcd6abdce0f.json new file mode 100644 index 000000000000..774da709b602 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c99314c-f84e-11ea-92d5-9bcd6abdce0f.json @@ -0,0 +1,135 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Diego cell Apps domain freshness [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(104,188,0,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "gte", + "value": 0.9 + }, + { + "background_color": "rgba(252,220,0,1)", + "id": "9cb134b8-f84e-11ea-9fd8-cb6a1b33696f", + "operator": "lte", + "value": 0.9 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "9cb588d8-f84e-11ea-af5a-c3012766d944", + "operator": "lt", + "value": 0.8 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"bbs\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"Domain.cf-apps\" " + }, + "formatter": "percent", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Avg 'cf-apps' Domain Freshness", + "line_width": "01", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "cf.envelope.deployment", + "terms_include": "", + "terms_order_by": "_key", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": null, + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Diego-cell Apps domain freshness [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c99314c-f84e-11ea-92d5-9bcd6abdce0f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c9d9c14-f84e-11ea-a575-a30e017a09e9.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c9d9c14-f84e-11ea-a575-a30e017a09e9.json new file mode 100644 index 000000000000..dd58cd05d053 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c9d9c14-f84e-11ea-a575-a30e017a09e9.json @@ -0,0 +1,132 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Diego cell total memory [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "9c8666fc-f84e-11ea-a43e-0f7a3a14396c" + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"rep\"" + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"CapacityTotalMemory\" " + }, + "formatter": "bytes", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Total Memory", + "line_width": "01", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "avg" + }, + { + "id": "9c9ac4da-f84e-11ea-8efa-7393d43821d0", + "script": "params.megabytes * 1024 * 1024", + "type": "math", + "variables": [ + { + "field": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "id": "9c9c36e4-f84e-11ea-bba1-abb4ba65473f", + "name": "megabytes" + } + ] + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "cloudfoundry.value.value", + "terms_include": "", + "terms_order_by": "_key", + "type": "timeseries", + "value_template": "" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "tooltip_mode": "show_all", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Diego cell total memory [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c9d9c14-f84e-11ea-a575-a30e017a09e9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c9f12b0-f84e-11ea-bfe0-8f64de3dbbbd.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c9f12b0-f84e-11ea-bfe0-8f64de3dbbbd.json new file mode 100644 index 000000000000..6c6a88fb28ca --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9c9f12b0-f84e-11ea-bfe0-8f64de3dbbbd.json @@ -0,0 +1,142 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Diego cell Top CPU user usage [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "gt", + "value": 60000 + } + ], + "bar_color_rules": [ + { + "bar_color": "rgba(104,188,0,1)", + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401", + "operator": "lt", + "value": 65 + }, + { + "bar_color": "rgba(252,220,0,1)", + "id": "9c87c1f0-f84e-11ea-abf6-9bcf7a4dd500", + "operator": "gte", + "value": 65 + }, + { + "bar_color": "rgba(244,78,59,1)", + "id": "9c95f1b2-f84e-11ea-9ca9-53ceca17b640", + "operator": "gt", + "value": 75 + } + ], + "drilldown_url": "", + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\"" + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"system.cpu.user\" " + }, + "formatter": "number", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Max CPU utilization (Load)", + "line_width": "2", + "metrics": [ + { + "agg_with": "avg", + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "order": "desc", + "size": 1, + "type": "avg" + } + ], + "offset_time": "", + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "cloudfoundry.envelope.job", + "terms_include": "", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "tooltip_mode": "show_all", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Top CPU user usage [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9c9f12b0-f84e-11ea-bfe0-8f64de3dbbbd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9ca39c36-f84e-11ea-9b0e-af32e8072a87.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9ca39c36-f84e-11ea-9b0e-af32e8072a87.json new file mode 100644 index 000000000000..b57775e8b0cb --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9ca39c36-f84e-11ea-9b0e-af32e8072a87.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Components health title [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "", + "openLinksInNewTab": false + }, + "title": "Components health title [Metricbeat Cloud Foundry]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9ca39c36-f84e-11ea-9b0e-af32e8072a87", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2MzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9ca526aa-f84e-11ea-aad5-ef2777854f3d.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9ca526aa-f84e-11ea-aad5-ef2777854f3d.json new file mode 100644 index 000000000000..7ec094d13734 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9ca526aa-f84e-11ea-aad5-ef2777854f3d.json @@ -0,0 +1,127 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Diego Brain health [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(104,188,0,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "gte", + "value": 1 + }, + { + "id": "9c6cce9a-f84e-11ea-9fea-039104d18522", + "operator": "lt", + "value": 1 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\" and cloudfoundry.envelope.job :\"diego_brain\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"system.healthy\"" + }, + "formatter": "percent", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Diego Brain", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": null, + "terms_include": "", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Diego Brain health [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9ca526aa-f84e-11ea-aad5-ef2777854f3d", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9ca805fa-f84e-11ea-ab90-2b00dd50450c.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9ca805fa-f84e-11ea-ab90-2b00dd50450c.json new file mode 100644 index 000000000000..6d6ab2f835ec --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9ca805fa-f84e-11ea-ab90-2b00dd50450c.json @@ -0,0 +1,121 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Diego cell rep time to sync [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "gt", + "value": 60000 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"rep\"" + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"RepBulkSyncDuration\"" + }, + "formatter": "ns,ms,2", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Cell Rep Time to Sync", + "line_width": "01", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "cloudfoundry.envelope.deployment", + "terms_include": "", + "terms_order_by": "_key", + "type": "timeseries", + "value_template": "{{value}} ms" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Diego cell rep time to sync [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9ca805fa-f84e-11ea-ab90-2b00dd50450c", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9ca9737c-f84e-11ea-b8a5-9f245d6f7121.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9ca9737c-f84e-11ea-b8a5-9f245d6f7121.json new file mode 100644 index 000000000000..33d891fb9739 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9ca9737c-f84e-11ea-b8a5-9f245d6f7121.json @@ -0,0 +1,132 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Job Queue [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "gt", + "value": 60000 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"cc\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(188,0,19,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"failed_job_count.total\" " + }, + "formatter": "number", + "hide_in_legend": 1, + "id": "9c9054dc-f84e-11ea-920b-1f1a72488310", + "label": "Avg Failed Job Count", + "line_width": 1, + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c91bfd4-f84e-11ea-a2df-b7ca8c11c9b1", + "type": "avg" + } + ], + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "cloudfoundry.envelope.deployment", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name:\"job_queue_length.total\" " + }, + "formatter": "number", + "hide_in_legend": 1, + "id": "9c837802-f84e-11ea-8b5e-ef886d2383c6", + "label": "Avg Job Queue Length", + "line_width": 1, + "metrics": [ + { + "id": "9c84e098-f84e-11ea-b8dc-ff0b80823e94", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "cloudfoundry.value.value", + "terms_order_by": "_count" + } + ], + "show_grid": 1, + "show_legend": 0, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Job queue [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9ca9737c-f84e-11ea-b8a5-9f245d6f7121", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2MzksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9caafdaa-f84e-11ea-8c78-43aac4b09aa5.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9caafdaa-f84e-11ea-8c78-43aac4b09aa5.json new file mode 100644 index 000000000000..3dad8d63af30 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9caafdaa-f84e-11ea-8c78-43aac4b09aa5.json @@ -0,0 +1,128 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Doppler health [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(104,188,0,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "gte", + "value": 1 + }, + { + "id": "9c6cce9a-f84e-11ea-9fea-039104d18522", + "operator": "lt", + "value": 1 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\" and cloudfoundry.envelope.job :\"doppler\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"system.healthy\"" + }, + "formatter": "percent", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Doppler", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": null, + "terms_include": "", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "tooltip_mode": "show_all", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Doppler health [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9caafdaa-f84e-11ea-8c78-43aac4b09aa5", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9cac69e2-f84e-11ea-b8d4-4b40313a5eb0.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9cac69e2-f84e-11ea-b8d4-4b40313a5eb0.json new file mode 100644 index 000000000000..227a3d0f3604 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9cac69e2-f84e-11ea-b8d4-4b40313a5eb0.json @@ -0,0 +1,135 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Diego cell available memory by cell [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "gt", + "value": 60000 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"rep\"" + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"CapacityRemainingMemory\"" + }, + "formatter": "bytes", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Available memory by cell", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "avg" + }, + { + "id": "9ca088ac-f84e-11ea-86ca-0f96c7565718", + "script": "params.megabytes*1024*1024", + "type": "math", + "variables": [ + { + "field": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "id": "9ca214c4-f84e-11ea-a6d7-0b115dba93eb", + "name": "megabytes" + } + ] + } + ], + "offset_time": "", + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_direction": "asc", + "terms_field": "cloudfoundry.envelope.ip", + "terms_include": "", + "terms_order_by": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "timeseries", + "value_template": "" + } + ], + "show_grid": 0, + "show_legend": 0, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Diego cell available memory by cell [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9cac69e2-f84e-11ea-b8d4-4b40313a5eb0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9caddb24-f84e-11ea-b008-df9bd2aed7cc.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9caddb24-f84e-11ea-b008-df9bd2aed7cc.json new file mode 100644 index 000000000000..3415ef2ab675 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9caddb24-f84e-11ea-b008-df9bd2aed7cc.json @@ -0,0 +1,135 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Diego cell convergence LRP duration [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(104,188,0,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "lt", + "value": 10000000000 + }, + { + "background_color": "rgba(252,220,0,1)", + "id": "9cb134b8-f84e-11ea-9fd8-cb6a1b33696f", + "operator": "gte", + "value": 10000000000 + }, + { + "background_color": "rgba(244,78,59,1)", + "id": "9cb588d8-f84e-11ea-af5a-c3012766d944", + "operator": "gt", + "value": 20000000000 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: \"cloudfoundry\" and cloudfoundry.envelope.origin :\"bbs\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"ConvergenceLRPDuration\" " + }, + "formatter": "ns,s,", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Max Convergence LRP Duration", + "line_width": "01", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "max" + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "cf.envelope.deployment", + "terms_include": "", + "terms_order_by": "_key", + "type": "timeseries", + "value_template": "{{value}} s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Diego cell convergence LRP duration [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9caddb24-f84e-11ea-b008-df9bd2aed7cc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9caf798e-f84e-11ea-ac4b-4795663aee6b.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9caf798e-f84e-11ea-ac4b-4795663aee6b.json new file mode 100644 index 000000000000..acb2bef87e73 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9caf798e-f84e-11ea-ac4b-4795663aee6b.json @@ -0,0 +1,136 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Diego cell health [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(104,188,0,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "gte", + "value": 1 + }, + { + "background_color": "rgba(252,220,0,1)", + "color": null, + "id": "9c6cce9a-f84e-11ea-9fea-039104d18522", + "operator": "lt", + "value": 1 + }, + { + "background_color": "rgba(244,78,59,1)", + "color": null, + "id": "9cb7224c-f84e-11ea-aedc-27587a803e41", + "operator": "lt", + "value": 0.5 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\" and cloudfoundry.envelope.job :\"diego_cell\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"system.healthy\"" + }, + "formatter": "percent", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Diego cell", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": null, + "terms_include": "", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Diego cell health [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9caf798e-f84e-11ea-ac4b-4795663aee6b", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9cb33038-f84e-11ea-8929-07701f2b1c26.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9cb33038-f84e-11ea-8929-07701f2b1c26.json new file mode 100644 index 000000000000..5ea0fc3d6656 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9cb33038-f84e-11ea-8929-07701f2b1c26.json @@ -0,0 +1,127 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Backup-Restore health [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(104,188,0,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "gte", + "value": 1 + }, + { + "id": "9c6cce9a-f84e-11ea-9fea-039104d18522", + "operator": "lt", + "value": 1 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"bosh-system-metrics-forwarder\" and cloudfoundry.envelope.job :\"backup_restore\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"system.healthy\"" + }, + "formatter": "percent", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Backup-Restore", + "line_width": "2", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "4", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": null, + "terms_include": "", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Backup-Restore health [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9cb33038-f84e-11ea-8929-07701f2b1c26", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9cbb8cd8-f84e-11ea-9a20-af708256c3a9.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9cbb8cd8-f84e-11ea-9a20-af708256c3a9.json new file mode 100644 index 000000000000..b1c5780dba23 --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/9cbb8cd8-f84e-11ea-9a20-af708256c3a9.json @@ -0,0 +1,121 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Outstanding Requests [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "background_color": "rgba(244,78,59,1)", + "color": null, + "id": "9c7cf130-f84e-11ea-bdee-833d96fe1a00", + "operator": "gt", + "value": 60000 + } + ], + "bar_color_rules": [ + { + "id": "9cb8a18a-f84e-11ea-bd11-836ecccfc401" + } + ], + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "event.module: cloudfoundry and cloudfoundry.envelope.origin :\"cc\" " + }, + "gauge_color_rules": [ + { + "gauge": null, + "id": "9ca68d56-f84e-11ea-a6bb-f3164c0bb859", + "text": null, + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "300000", + "gauge_style": "half", + "gauge_width": 10, + "id": "9c8aab7c-f84e-11ea-b4a3-e31a518913fa", + "ignore_global_filter": 0, + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "cloudfoundry.value.name: \"requests.outstanding\"" + }, + "formatter": "number", + "hidden": false, + "hide_in_legend": 0, + "id": "9c8c18f4-f84e-11ea-97ff-b32117553dae", + "label": "Avg Oustanding Requests", + "line_width": "1", + "metrics": [ + { + "field": "cloudfoundry.value.value", + "id": "9c8d7514-f84e-11ea-9457-93fdc9395544", + "type": "avg" + } + ], + "offset_time": "", + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "9c753c7e-f84e-11ea-96e9-33ff984da2c7", + "label": "" + } + ], + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": null, + "terms_include": "", + "type": "timeseries", + "value_template": "" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Outstanding Requests [Metricbeat Cloud Foundry]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9cbb8cd8-f84e-11ea-9a20-af708256c3a9", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:58.327Z", + "version": "WzM2NDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/f771b65c-f8d0-11ea-bf74-8bbda818957f.json b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/f771b65c-f8d0-11ea-bf74-8bbda818957f.json new file mode 100644 index 000000000000..43fcca1ccf2d --- /dev/null +++ b/x-pack/metricbeat/module/cloudfoundry/_meta/kibana/7/visualization/f771b65c-f8d0-11ea-bf74-8bbda818957f.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Dashboards Navigation Platform Health [Metricbeat Cloud Foundry]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "[Overview](#/dashboard/9c81cf34-f84e-11ea-a49d-f3f94f5e4fac) | **Platform Health**", + "openLinksInNewTab": false + }, + "title": "Dashboards Navigation [Metricbeat Cloud Foundry]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f771b65c-f8d0-11ea-bf74-8bbda818957f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:59.416Z", + "version": "WzM2OTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/04b595b0-c1fc-11ea-8a94-61b423d19ae7.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/04b595b0-c1fc-11ea-8a94-61b423d19ae7.json new file mode 100644 index 000000000000..42eaa2f3282b --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/04b595b0-c1fc-11ea-8a94-61b423d19ae7.json @@ -0,0 +1,308 @@ +{ + "attributes": { + "description": "Overview of the CockroachDB server status", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "1", + "w": 19, + "x": 5, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_0", + "title": "Number of SQL connections", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "2", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_1", + "title": "SQL queries", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "3", + "w": 16, + "x": 16, + "y": 11 + }, + "panelIndex": "3", + "panelRefName": "panel_2", + "title": "Replicas per Store", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "4", + "w": 16, + "x": 32, + "y": 11 + }, + "panelIndex": "4", + "panelRefName": "panel_3", + "title": "Replica leaseholders", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "5", + "w": 16, + "x": 0, + "y": 11 + }, + "panelIndex": "5", + "panelRefName": "panel_4", + "title": "Ranges", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "6", + "w": 24, + "x": 0, + "y": 20 + }, + "panelIndex": "6", + "panelRefName": "panel_5", + "title": "Average log commit latency", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "7", + "w": 24, + "x": 24, + "y": 20 + }, + "panelIndex": "7", + "panelRefName": "panel_6", + "title": "Average command commit latency", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 11, + "i": "b9cf2afd-ae8b-409b-93f2-b69ba1e1f064", + "w": 5, + "x": 0, + "y": 0 + }, + "panelIndex": "b9cf2afd-ae8b-409b-93f2-b69ba1e1f064", + "panelRefName": "panel_7", + "title": "Dashboards Navigation", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "3b2a916c-213c-4179-93f6-067224d1f741", + "w": 24, + "x": 0, + "y": 30 + }, + "panelIndex": "3b2a916c-213c-4179-93f6-067224d1f741", + "panelRefName": "panel_8", + "title": "Live Nodes", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "725c9437-5d36-48bd-9328-e08637e42ac7", + "w": 24, + "x": 24, + "y": 30 + }, + "panelIndex": "725c9437-5d36-48bd-9328-e08637e42ac7", + "panelRefName": "panel_9", + "title": "Process Uptime", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "7d37508a-3614-4c51-b8e1-84d9101a233b", + "w": 24, + "x": 0, + "y": 40 + }, + "panelIndex": "7d37508a-3614-4c51-b8e1-84d9101a233b", + "panelRefName": "panel_10", + "title": "Capacity Usage", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "3b319d88-1798-433b-9ab8-783c53d24423", + "w": 24, + "x": 24, + "y": 40 + }, + "panelIndex": "3b319d88-1798-433b-9ab8-783c53d24423", + "panelRefName": "panel_11", + "title": "Disk Metrics", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "7cf99937-570d-4132-ab15-204a547bd986", + "w": 24, + "x": 0, + "y": 50 + }, + "panelIndex": "7cf99937-570d-4132-ab15-204a547bd986", + "panelRefName": "panel_12", + "title": "Node Clock Offset", + "version": "7.11.1" + } + ], + "timeRestore": false, + "title": "[Metricbeat CockroachDB] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "04b595b0-c1fc-11ea-8a94-61b423d19ae7", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "79691920-9766-11e9-9eea-6f554992ec1f", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "5073ed20-9760-11e9-9eea-6f554992ec1f", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "bad285b0-9769-11e9-9eea-6f554992ec1f", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "8add0960-976a-11e9-9eea-6f554992ec1f", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "2af19b90-976c-11e9-9eea-6f554992ec1f", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "74cf44b0-9771-11e9-9eea-6f554992ec1f", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "b5ab45b0-9771-11e9-9eea-6f554992ec1f", + "name": "panel_6", + "type": "visualization" + }, + { + "id": "d4177d60-75e2-11eb-b955-29bfd5c9e2dd", + "name": "panel_7", + "type": "visualization" + }, + { + "id": "643353f0-c202-11ea-8a94-61b423d19ae7", + "name": "panel_8", + "type": "visualization" + }, + { + "id": "bbd18b20-ccf4-11ea-8a94-61b423d19ae7", + "name": "panel_9", + "type": "visualization" + }, + { + "id": "57939a70-ec63-11ea-b088-6f3c0066a551", + "name": "panel_10", + "type": "visualization" + }, + { + "id": "020f6a20-ec68-11ea-b088-6f3c0066a551", + "name": "panel_11", + "type": "visualization" + }, + { + "id": "f2d065e0-ee11-11ea-b088-6f3c0066a551", + "name": "panel_12", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:00.377Z", + "version": "WzM2OTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/3975ad70-c761-11ea-8a94-61b423d19ae7.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/3975ad70-c761-11ea-8a94-61b423d19ae7.json new file mode 100644 index 000000000000..2409010581da --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/3975ad70-c761-11ea-8a94-61b423d19ae7.json @@ -0,0 +1,187 @@ +{ + "attributes": { + "description": "CockroachDB SQL Performance", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "1", + "w": 19, + "x": 5, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_0", + "title": "Number of SQL connections", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 11, + "i": "2f29ec8c-d61d-4b27-94e7-7c9437e5abda", + "w": 5, + "x": 0, + "y": 0 + }, + "panelIndex": "2f29ec8c-d61d-4b27-94e7-7c9437e5abda", + "panelRefName": "panel_1", + "title": "Dashboard Navigation", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 11, + "i": "d5e26270-2ebe-45c2-9697-f7e24dcd8492", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "d5e26270-2ebe-45c2-9697-f7e24dcd8492", + "panelRefName": "panel_2", + "title": "SQL queries", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "a63ed7f8-f4ea-411a-98d5-14427bf3237e", + "w": 24, + "x": 0, + "y": 11 + }, + "panelIndex": "a63ed7f8-f4ea-411a-98d5-14427bf3237e", + "panelRefName": "panel_3", + "title": "Average Exec latency", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "6660f8f4-c3af-4b56-9ecf-fffd8210a302", + "w": 24, + "x": 24, + "y": 11 + }, + "panelIndex": "6660f8f4-c3af-4b56-9ecf-fffd8210a302", + "panelRefName": "panel_4", + "title": "Transactions", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "98d6be7f-9aba-4181-a1a1-2152be085550", + "w": 24, + "x": 0, + "y": 26 + }, + "panelIndex": "98d6be7f-9aba-4181-a1a1-2152be085550", + "panelRefName": "panel_5", + "title": "SQL Bytes", + "version": "7.11.1" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 15, + "i": "f4c38787-07a3-431a-8b1e-df12214c5bec", + "w": 24, + "x": 24, + "y": 26 + }, + "panelIndex": "f4c38787-07a3-431a-8b1e-df12214c5bec", + "panelRefName": "panel_6", + "title": "Schema Changes", + "version": "7.11.1" + } + ], + "timeRestore": false, + "title": "[Metricbeat CockroachDB] SQL", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "3975ad70-c761-11ea-8a94-61b423d19ae7", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "79691920-9766-11e9-9eea-6f554992ec1f", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "d4177d60-75e2-11eb-b955-29bfd5c9e2dd", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "5073ed20-9760-11e9-9eea-6f554992ec1f", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "89e96120-fe7a-11ea-a589-8d7d9f58c8fd", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "61999c30-c766-11ea-8a94-61b423d19ae7", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "7d13f0d0-c763-11ea-8a94-61b423d19ae7", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "6fdbdbe0-c767-11ea-8a94-61b423d19ae7", + "name": "panel_6", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:01.383Z", + "version": "WzM3MDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-overview.ndjson b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-overview.ndjson deleted file mode 100644 index 315c0607ed16..000000000000 --- a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-overview.ndjson +++ /dev/null @@ -1,14 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of SQL connections [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of connections\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_conns\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_direction\":\"desc\",\"terms_field\":\"service.address\",\"terms_order_by\":\"_count\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Number of SQL connections [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"79691920-9766-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQL queries [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"88d6bda0-9760-11e9-b3d5-07b0ab7d6354\",\"label\":\"Selects\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_select_count\",\"id\":\"88d70bc0-9760-11e9-b3d5-07b0ab7d6354\",\"type\":\"sum\"},{\"field\":\"88d70bc0-9760-11e9-b3d5-07b0ab7d6354\",\"id\":\"658d2990-9762-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"658d2990-9762-11e9-b3d5-07b0ab7d6354\",\"function\":\"sum\",\"id\":\"ec698bc0-9762-11e9-b3d5-07b0ab7d6354\",\"sigma\":\"\",\"type\":\"positive_only\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"terms_field\":\"service.address\",\"terms_order_by\":\"88d70bc0-9760-11e9-b3d5-07b0ab7d6354\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"02d89100-9761-11e9-b3d5-07b0ab7d6354\",\"label\":\"Inserts\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_insert_count\",\"id\":\"02d89101-9761-11e9-b3d5-07b0ab7d6354\",\"type\":\"sum\"},{\"field\":\"02d89101-9761-11e9-b3d5-07b0ab7d6354\",\"id\":\"74eba420-9762-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"74eba420-9762-11e9-b3d5-07b0ab7d6354\",\"id\":\"54cb8aa0-9764-11e9-b3d5-07b0ab7d6354\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Updates\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_update_count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"9aa7ace0-9762-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"9aa7ace0-9762-11e9-b3d5-07b0ab7d6354\",\"id\":\"939af2c0-9764-11e9-b3d5-07b0ab7d6354\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"terms_field\":\"service.address\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"03f6d240-9761-11e9-b3d5-07b0ab7d6354\",\"label\":\"Deletes\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_delete_count\",\"id\":\"03f6d241-9761-11e9-b3d5-07b0ab7d6354\",\"type\":\"sum\"},{\"field\":\"03f6d241-9761-11e9-b3d5-07b0ab7d6354\",\"id\":\"a3ed7c30-9762-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"a3ed7c30-9762-11e9-b3d5-07b0ab7d6354\",\"id\":\"a13994e0-9764-11e9-b3d5-07b0ab7d6354\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQL queries [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5073ed20-9760-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Replicas per Store [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Replicas per store\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.replicas\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_direction\":\"desc\",\"terms_field\":\"service.address\",\"terms_order_by\":\"_count\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Replicas per Store [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bad285b0-9769-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM2OTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Replica leaseholders [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Replica leaseholders per store\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.replicas_leaseholders\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"service.address\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Replica leaseholders [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8add0960-976a-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM2OTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ranges [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"e4489e50-976b-11e9-b3d5-07b0ab7d6354\",\"label\":\"Underreplicated\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"prometheus.metrics.ranges_underreplicated\",\"id\":\"e4489e51-976b-11e9-b3d5-07b0ab7d6354\",\"type\":\"max\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c938f9c0-976b-11e9-b3d5-07b0ab7d6354\",\"label\":\"Overreplicated\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"prometheus.metrics.ranges_overreplicated\",\"id\":\"c938f9c1-976b-11e9-b3d5-07b0ab7d6354\",\"type\":\"max\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"0ed1bf80-976c-11e9-b3d5-07b0ab7d6354\",\"label\":\"Unavailable\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"prometheus.metrics.ranges_unavailable\",\"id\":\"0ed1bf81-976c-11e9-b3d5-07b0ab7d6354\",\"type\":\"max\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(204,204,204,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ranges\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Ranges [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2af19b90-976c-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM2OTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Log commit latency [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"ns,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average log commit latency\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"prometheus.metrics.raft_process_logcommit_latency_count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"order\":\"desc\",\"size\":1,\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4346d3b0-976f-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"prometheus.metrics.raft_process_logcommit_latency_sum\",\"id\":\"4a430120-976f-11e9-b3d5-07b0ab7d6354\",\"type\":\"max\",\"unit\":\"\"},{\"field\":\"4a430120-976f-11e9-b3d5-07b0ab7d6354\",\"id\":\"581519e0-9770-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"\"},{\"id\":\"6574b730-9770-11e9-b3d5-07b0ab7d6354\",\"script\":\"params.sum / params.count\",\"type\":\"calculation\",\"variables\":[{\"field\":\"581519e0-9770-11e9-b3d5-07b0ab7d6354\",\"id\":\"6fbb54b0-9770-11e9-b3d5-07b0ab7d6354\",\"name\":\"sum\"},{\"field\":\"4346d3b0-976f-11e9-b3d5-07b0ab7d6354\",\"id\":\"76cc90c0-9770-11e9-b3d5-07b0ab7d6354\",\"name\":\"count\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"service.address\",\"value_template\":\"{{value}}ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Log commit latency [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"74cf44b0-9771-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM2OTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Command commit latency [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"ns,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average command commit latency\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"prometheus.metrics.raft_process_commandcommit_latency_count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"order\":\"desc\",\"size\":1,\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4346d3b0-976f-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"prometheus.metrics.raft_process_commandcommit_latency_sum\",\"id\":\"4a430120-976f-11e9-b3d5-07b0ab7d6354\",\"type\":\"max\",\"unit\":\"\"},{\"field\":\"4a430120-976f-11e9-b3d5-07b0ab7d6354\",\"id\":\"581519e0-9770-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"\"},{\"id\":\"6574b730-9770-11e9-b3d5-07b0ab7d6354\",\"script\":\"params.sum / params.count\",\"type\":\"calculation\",\"variables\":[{\"field\":\"581519e0-9770-11e9-b3d5-07b0ab7d6354\",\"id\":\"6fbb54b0-9770-11e9-b3d5-07b0ab7d6354\",\"name\":\"sum\"},{\"field\":\"4346d3b0-976f-11e9-b3d5-07b0ab7d6354\",\"id\":\"76cc90c0-9770-11e9-b3d5-07b0ab7d6354\",\"name\":\"count\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"service.address\",\"value_template\":\"{{value}}ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Command commit latency [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b5ab45b0-9771-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM3MDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Overview](#/dashboard/04b595b0-c1fc-11ea-8a94-61b423d19ae7) | [SQL](#/dashboard/3975ad70-c761-11ea-8a94-61b423d19ae7)\\n\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Metricbeat CockroachDB]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4177d60-75e2-11eb-b955-29bfd5c9e2dd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Live Nodes [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4e4d6390-c1fe-11ea-bd96-b595ac63d5e9\"}],\"bar_color_rules\":[{\"id\":\"59bbdf40-c1fe-11ea-bd96-b595ac63d5e9\"}],\"gauge_color_rules\":[{\"id\":\"f1642eb0-c1fe-11ea-bd96-b595ac63d5e9\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Live Nodes\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"prometheus.metrics.node_id\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Live Nodes [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"643353f0-c202-11ea-8a94-61b423d19ae7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM3MDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Process Uptime [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"s,h,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Cockroach Process Uptime\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}} h\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Process Uptime [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bbd18b20-ccf4-11ea-8a94-61b423d19ae7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM3MDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Capacity Usage [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"68be3790-ec65-11ea-8a63-93b9b48262dc\"}],\"bar_color_rules\":[{\"id\":\"6eabb420-ec65-11ea-8a63-93b9b48262dc\"}],\"gauge_color_rules\":[{\"id\":\"71a5ba40-ec65-11ea-8a63-93b9b48262dc\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total Capacity\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"0464ddc0-ec66-11ea-8a63-93b9b48262dc\"}],\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_direction\":\"desc\",\"terms_field\":\"service.address\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"775782d0-ec64-11ea-8a63-93b9b48262dc\",\"label\":\"Capacity Available\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"775782d1-ec64-11ea-8a63-93b9b48262dc\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_direction\":\"desc\",\"terms_field\":\"service.address\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"78322b60-ec64-11ea-8a63-93b9b48262dc\",\"label\":\"Capacity Used\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"78322b61-ec64-11ea-8a63-93b9b48262dc\",\"type\":\"sum\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_direction\":\"desc\",\"terms_field\":\"service.address\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Capacity Usage [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"57939a70-ec63-11ea-b088-6f3c0066a551","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM3MDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Disk Metrics [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"e4489e50-976b-11e9-b3d5-07b0ab7d6354\",\"label\":\"Disk IOPS in Progress\",\"line_width\":\"2\",\"metrics\":[{\"field\":null,\"id\":\"e4489e51-976b-11e9-b3d5-07b0ab7d6354\",\"type\":\"max\",\"unit\":\"1s\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"host.name\",\"terms_size\":\"100\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c938f9c0-976b-11e9-b3d5-07b0ab7d6354\",\"label\":\"Disk Read Ops\",\"line_width\":\"2\",\"metrics\":[{\"field\":null,\"id\":\"c938f9c1-976b-11e9-b3d5-07b0ab7d6354\",\"type\":\"positive_rate\",\"unit\":\"1s\"},{\"function\":\"sum\",\"id\":\"b5a57e90-ec67-11ea-8a63-93b9b48262dc\",\"type\":\"series_agg\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_size\":\"100\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"0ed1bf80-976c-11e9-b3d5-07b0ab7d6354\",\"label\":\"Disk Write Ops\",\"line_width\":\"2\",\"metrics\":[{\"field\":null,\"id\":\"0ed1bf81-976c-11e9-b3d5-07b0ab7d6354\",\"type\":\"positive_rate\",\"unit\":\"1s\"},{\"function\":\"sum\",\"id\":\"d6fb6e10-ec67-11ea-8a63-93b9b48262dc\",\"type\":\"series_agg\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_order_by\":\"_key\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Disk Metrics [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"020f6a20-ec68-11ea-b088-6f3c0066a551","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM3MDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Clock Offset [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(84,179,153,1)\",\"fill\":0.5,\"formatter\":\"ns,ms,3\",\"id\":\"88d6bda0-9760-11e9-b3d5-07b0ab7d6354\",\"label\":\"Clock Offsets\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"88d70bc0-9760-11e9-b3d5-07b0ab7d6354\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":null,\"terms_order_by\":\"88d70bc0-9760-11e9-b3d5-07b0ab7d6354\",\"type\":\"timeseries\",\"value_template\":\"{{value}} ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Clock Offset [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f2d065e0-ee11-11ea-b088-6f3c0066a551","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM3MDYsMV0="} -{"attributes":{"description":"Overview of the CockroachDB server status","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":11,\"i\":\"1\",\"w\":19,\"x\":5,\"y\":0},\"panelIndex\":\"1\",\"panelRefName\":\"panel_0\",\"title\":\"Number of SQL connections\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":11,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"2\",\"panelRefName\":\"panel_1\",\"title\":\"SQL queries\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":9,\"i\":\"3\",\"w\":16,\"x\":16,\"y\":11},\"panelIndex\":\"3\",\"panelRefName\":\"panel_2\",\"title\":\"Replicas per Store\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":9,\"i\":\"4\",\"w\":16,\"x\":32,\"y\":11},\"panelIndex\":\"4\",\"panelRefName\":\"panel_3\",\"title\":\"Replica leaseholders\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":9,\"i\":\"5\",\"w\":16,\"x\":0,\"y\":11},\"panelIndex\":\"5\",\"panelRefName\":\"panel_4\",\"title\":\"Ranges\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":10,\"i\":\"6\",\"w\":24,\"x\":0,\"y\":20},\"panelIndex\":\"6\",\"panelRefName\":\"panel_5\",\"title\":\"Average log commit latency\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":10,\"i\":\"7\",\"w\":24,\"x\":24,\"y\":20},\"panelIndex\":\"7\",\"panelRefName\":\"panel_6\",\"title\":\"Average command commit latency\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":11,\"i\":\"b9cf2afd-ae8b-409b-93f2-b69ba1e1f064\",\"w\":5,\"x\":0,\"y\":0},\"panelIndex\":\"b9cf2afd-ae8b-409b-93f2-b69ba1e1f064\",\"panelRefName\":\"panel_7\",\"title\":\"Dashboards Navigation\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":10,\"i\":\"3b2a916c-213c-4179-93f6-067224d1f741\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"3b2a916c-213c-4179-93f6-067224d1f741\",\"panelRefName\":\"panel_8\",\"title\":\"Live Nodes\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":10,\"i\":\"725c9437-5d36-48bd-9328-e08637e42ac7\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"725c9437-5d36-48bd-9328-e08637e42ac7\",\"panelRefName\":\"panel_9\",\"title\":\"Process Uptime\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":10,\"i\":\"7d37508a-3614-4c51-b8e1-84d9101a233b\",\"w\":24,\"x\":0,\"y\":40},\"panelIndex\":\"7d37508a-3614-4c51-b8e1-84d9101a233b\",\"panelRefName\":\"panel_10\",\"title\":\"Capacity Usage\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":10,\"i\":\"3b319d88-1798-433b-9ab8-783c53d24423\",\"w\":24,\"x\":24,\"y\":40},\"panelIndex\":\"3b319d88-1798-433b-9ab8-783c53d24423\",\"panelRefName\":\"panel_11\",\"title\":\"Disk Metrics\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":10,\"i\":\"7cf99937-570d-4132-ab15-204a547bd986\",\"w\":24,\"x\":0,\"y\":50},\"panelIndex\":\"7cf99937-570d-4132-ab15-204a547bd986\",\"panelRefName\":\"panel_12\",\"title\":\"Node Clock Offset\",\"version\":\"7.11.1\"}]","timeRestore":false,"title":"[Metricbeat CockroachDB] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"04b595b0-c1fc-11ea-8a94-61b423d19ae7","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"79691920-9766-11e9-9eea-6f554992ec1f","name":"panel_0","type":"visualization"},{"id":"5073ed20-9760-11e9-9eea-6f554992ec1f","name":"panel_1","type":"visualization"},{"id":"bad285b0-9769-11e9-9eea-6f554992ec1f","name":"panel_2","type":"visualization"},{"id":"8add0960-976a-11e9-9eea-6f554992ec1f","name":"panel_3","type":"visualization"},{"id":"2af19b90-976c-11e9-9eea-6f554992ec1f","name":"panel_4","type":"visualization"},{"id":"74cf44b0-9771-11e9-9eea-6f554992ec1f","name":"panel_5","type":"visualization"},{"id":"b5ab45b0-9771-11e9-9eea-6f554992ec1f","name":"panel_6","type":"visualization"},{"id":"d4177d60-75e2-11eb-b955-29bfd5c9e2dd","name":"panel_7","type":"visualization"},{"id":"643353f0-c202-11ea-8a94-61b423d19ae7","name":"panel_8","type":"visualization"},{"id":"bbd18b20-ccf4-11ea-8a94-61b423d19ae7","name":"panel_9","type":"visualization"},{"id":"57939a70-ec63-11ea-b088-6f3c0066a551","name":"panel_10","type":"visualization"},{"id":"020f6a20-ec68-11ea-b088-6f3c0066a551","name":"panel_11","type":"visualization"},{"id":"f2d065e0-ee11-11ea-b088-6f3c0066a551","name":"panel_12","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:00.377Z","version":"WzM2OTMsMV0="} diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-sql.ndjson b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-sql.ndjson deleted file mode 100644 index 40ab852a03ed..000000000000 --- a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/dashboard/Metricbeat-cockroachdb-sql.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of SQL connections [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Number of connections\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_conns\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_direction\":\"desc\",\"terms_field\":\"service.address\",\"terms_order_by\":\"_count\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Number of SQL connections [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"79691920-9766-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Overview](#/dashboard/04b595b0-c1fc-11ea-8a94-61b423d19ae7) | [SQL](#/dashboard/3975ad70-c761-11ea-8a94-61b423d19ae7)\\n\",\"openLinksInNewTab\":false},\"title\":\"Navigation [Metricbeat CockroachDB]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"d4177d60-75e2-11eb-b955-29bfd5c9e2dd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"SQL queries [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[],\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"88d6bda0-9760-11e9-b3d5-07b0ab7d6354\",\"label\":\"Selects\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_select_count\",\"id\":\"88d70bc0-9760-11e9-b3d5-07b0ab7d6354\",\"type\":\"sum\"},{\"field\":\"88d70bc0-9760-11e9-b3d5-07b0ab7d6354\",\"id\":\"658d2990-9762-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"658d2990-9762-11e9-b3d5-07b0ab7d6354\",\"function\":\"sum\",\"id\":\"ec698bc0-9762-11e9-b3d5-07b0ab7d6354\",\"sigma\":\"\",\"type\":\"positive_only\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"terms_field\":\"service.address\",\"terms_order_by\":\"88d70bc0-9760-11e9-b3d5-07b0ab7d6354\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"02d89100-9761-11e9-b3d5-07b0ab7d6354\",\"label\":\"Inserts\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_insert_count\",\"id\":\"02d89101-9761-11e9-b3d5-07b0ab7d6354\",\"type\":\"sum\"},{\"field\":\"02d89101-9761-11e9-b3d5-07b0ab7d6354\",\"id\":\"74eba420-9762-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"74eba420-9762-11e9-b3d5-07b0ab7d6354\",\"id\":\"54cb8aa0-9764-11e9-b3d5-07b0ab7d6354\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Updates\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_update_count\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"9aa7ace0-9762-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"9aa7ace0-9762-11e9-b3d5-07b0ab7d6354\",\"id\":\"939af2c0-9764-11e9-b3d5-07b0ab7d6354\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"terms_field\":\"service.address\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"03f6d240-9761-11e9-b3d5-07b0ab7d6354\",\"label\":\"Deletes\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.sql_delete_count\",\"id\":\"03f6d241-9761-11e9-b3d5-07b0ab7d6354\",\"type\":\"sum\"},{\"field\":\"03f6d241-9761-11e9-b3d5-07b0ab7d6354\",\"id\":\"a3ed7c30-9762-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"1s\"},{\"field\":\"a3ed7c30-9762-11e9-b3d5-07b0ab7d6354\",\"id\":\"a13994e0-9764-11e9-b3d5-07b0ab7d6354\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"stacked\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQL queries [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5073ed20-9760-11e9-9eea-6f554992ec1f","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MTAsMV0="} -{"attributes":{"description":"Average SQL execution latency","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Average Exec latency [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"filter\":\"\",\"formatter\":\"ns,ms,2\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average log commit latency\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"avg\",\"field\":null,\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"order\":\"desc\",\"size\":1,\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"4346d3b0-976f-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":null,\"id\":\"4a430120-976f-11e9-b3d5-07b0ab7d6354\",\"type\":\"max\",\"unit\":\"\"},{\"field\":\"4a430120-976f-11e9-b3d5-07b0ab7d6354\",\"id\":\"581519e0-9770-11e9-b3d5-07b0ab7d6354\",\"type\":\"derivative\",\"unit\":\"\"},{\"id\":\"6574b730-9770-11e9-b3d5-07b0ab7d6354\",\"script\":\"params.sum / params.count\",\"type\":\"calculation\",\"variables\":[{\"field\":\"581519e0-9770-11e9-b3d5-07b0ab7d6354\",\"id\":\"6fbb54b0-9770-11e9-b3d5-07b0ab7d6354\",\"name\":\"sum\"},{\"field\":\"4346d3b0-976f-11e9-b3d5-07b0ab7d6354\",\"id\":\"76cc90c0-9770-11e9-b3d5-07b0ab7d6354\",\"name\":\"count\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}}ms\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Average Exec latency [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"89e96120-fe7a-11ea-a589-8d7d9f58c8fd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Transactions [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Transactions Begins\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"positive_rate\",\"unit\":\"1s\"},{\"function\":\"sum\",\"id\":\"6db52340-2067-11eb-96da-17d67bb2d46d\",\"type\":\"series_agg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_size\":\"50\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"1c074fc0-ccf0-11ea-8da4-c95c019bd9d5\",\"label\":\"Transaction Commits\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"1c074fc1-ccf0-11ea-8da4-c95c019bd9d5\",\"type\":\"positive_rate\",\"unit\":\"1s\"},{\"function\":\"sum\",\"id\":\"9241d3c0-2067-11eb-96da-17d67bb2d46d\",\"type\":\"series_agg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_size\":\"50\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"84ac4080-ccf0-11ea-8da4-c95c019bd9d5\",\"label\":\"Transaction Rollbacks\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"84ac4081-ccf0-11ea-8da4-c95c019bd9d5\",\"type\":\"positive_rate\",\"unit\":\"1s\"},{\"function\":\"sum\",\"id\":\"a9b7afc0-2067-11eb-96da-17d67bb2d46d\",\"type\":\"series_agg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_size\":\"50\",\"type\":\"timeseries\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"9701db00-ccf0-11ea-8da4-c95c019bd9d5\",\"label\":\"Transaction Aborts\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"9701db01-ccf0-11ea-8da4-c95c019bd9d5\",\"type\":\"positive_rate\",\"unit\":\"1s\"},{\"function\":\"sum\",\"id\":\"bc1fc0d0-2067-11eb-96da-17d67bb2d46d\",\"type\":\"series_agg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_size\":\"50\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transactions [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"61999c30-c766-11ea-8a94-61b423d19ae7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"SQL Bytes [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(84,179,153,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Bytes In\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"positive_rate\",\"unit\":\"1s\"},{\"function\":\"sum\",\"id\":\"e37c46b0-cd03-11ea-90ab-5112cd60bde7\",\"type\":\"series_agg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_size\":\"50\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(96,146,192,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"15553390-cd04-11ea-90ab-5112cd60bde7\",\"label\":\"Bytes Out\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"15553391-cd04-11ea-90ab-5112cd60bde7\",\"type\":\"positive_rate\",\"unit\":\"1s\"},{\"function\":\"sum\",\"id\":\"6bc01490-2068-11eb-96da-17d67bb2d46d\",\"type\":\"series_agg\"},{\"id\":\"789ffa90-2068-11eb-96da-17d67bb2d46d\",\"script\":\"params.rate != null && params.rate > 0 ? params.rate * -1 : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"15553391-cd04-11ea-90ab-5112cd60bde7\",\"id\":\"7ff173f0-2068-11eb-96da-17d67bb2d46d\",\"name\":\"rate\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":null,\"terms_size\":\"100\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"SQL Bytes [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7d13f0d0-c763-11ea-8a94-61b423d19ae7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Schema Changes [Metricbeat CockroachDB]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=10s\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Schema Changes\",\"line_width\":1,\"metrics\":[{\"field\":null,\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"positive_rate\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Schema Changes [Metricbeat CockroachDB]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6fdbdbe0-c767-11ea-8a94-61b423d19ae7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MTQsMV0="} -{"attributes":{"description":"CockroachDB SQL Performance","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"embeddableConfig\":{\"enhancements\":{}},\"gridData\":{\"h\":11,\"i\":\"1\",\"w\":19,\"x\":5,\"y\":0},\"panelIndex\":\"1\",\"panelRefName\":\"panel_0\",\"title\":\"Number of SQL connections\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":11,\"i\":\"2f29ec8c-d61d-4b27-94e7-7c9437e5abda\",\"w\":5,\"x\":0,\"y\":0},\"panelIndex\":\"2f29ec8c-d61d-4b27-94e7-7c9437e5abda\",\"panelRefName\":\"panel_1\",\"title\":\"Dashboard Navigation\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":11,\"i\":\"d5e26270-2ebe-45c2-9697-f7e24dcd8492\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"d5e26270-2ebe-45c2-9697-f7e24dcd8492\",\"panelRefName\":\"panel_2\",\"title\":\"SQL queries\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"a63ed7f8-f4ea-411a-98d5-14427bf3237e\",\"w\":24,\"x\":0,\"y\":11},\"panelIndex\":\"a63ed7f8-f4ea-411a-98d5-14427bf3237e\",\"panelRefName\":\"panel_3\",\"title\":\"Average Exec latency\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"6660f8f4-c3af-4b56-9ecf-fffd8210a302\",\"w\":24,\"x\":24,\"y\":11},\"panelIndex\":\"6660f8f4-c3af-4b56-9ecf-fffd8210a302\",\"panelRefName\":\"panel_4\",\"title\":\"Transactions\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"98d6be7f-9aba-4181-a1a1-2152be085550\",\"w\":24,\"x\":0,\"y\":26},\"panelIndex\":\"98d6be7f-9aba-4181-a1a1-2152be085550\",\"panelRefName\":\"panel_5\",\"title\":\"SQL Bytes\",\"version\":\"7.11.1\"},{\"embeddableConfig\":{\"enhancements\":{},\"hidePanelTitles\":false},\"gridData\":{\"h\":15,\"i\":\"f4c38787-07a3-431a-8b1e-df12214c5bec\",\"w\":24,\"x\":24,\"y\":26},\"panelIndex\":\"f4c38787-07a3-431a-8b1e-df12214c5bec\",\"panelRefName\":\"panel_6\",\"title\":\"Schema Changes\",\"version\":\"7.11.1\"}]","timeRestore":false,"title":"[Metricbeat CockroachDB] SQL","version":1},"coreMigrationVersion":"8.0.0","id":"3975ad70-c761-11ea-8a94-61b423d19ae7","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"79691920-9766-11e9-9eea-6f554992ec1f","name":"panel_0","type":"visualization"},{"id":"d4177d60-75e2-11eb-b955-29bfd5c9e2dd","name":"panel_1","type":"visualization"},{"id":"5073ed20-9760-11e9-9eea-6f554992ec1f","name":"panel_2","type":"visualization"},{"id":"89e96120-fe7a-11ea-a589-8d7d9f58c8fd","name":"panel_3","type":"visualization"},{"id":"61999c30-c766-11ea-8a94-61b423d19ae7","name":"panel_4","type":"visualization"},{"id":"7d13f0d0-c763-11ea-8a94-61b423d19ae7","name":"panel_5","type":"visualization"},{"id":"6fdbdbe0-c767-11ea-8a94-61b423d19ae7","name":"panel_6","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:01.383Z","version":"WzM3MDcsMV0="} diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/020f6a20-ec68-11ea-b088-6f3c0066a551.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/020f6a20-ec68-11ea-b088-6f3c0066a551.json new file mode 100644 index 000000000000..dab3fc4c13cb --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/020f6a20-ec68-11ea-b088-6f3c0066a551.json @@ -0,0 +1,136 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Disk Metrics [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=10s", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(254,146,0,1)", + "fill": "0", + "formatter": "number", + "id": "e4489e50-976b-11e9-b3d5-07b0ab7d6354", + "label": "Disk IOPS in Progress", + "line_width": "2", + "metrics": [ + { + "field": null, + "id": "e4489e51-976b-11e9-b3d5-07b0ab7d6354", + "type": "max", + "unit": "1s" + } + ], + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "host.name", + "terms_size": "100", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": "0", + "formatter": "number", + "id": "c938f9c0-976b-11e9-b3d5-07b0ab7d6354", + "label": "Disk Read Ops", + "line_width": "2", + "metrics": [ + { + "field": null, + "id": "c938f9c1-976b-11e9-b3d5-07b0ab7d6354", + "type": "positive_rate", + "unit": "1s" + }, + { + "function": "sum", + "id": "b5a57e90-ec67-11ea-8a63-93b9b48262dc", + "type": "series_agg" + } + ], + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_size": "100", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": "0", + "formatter": "number", + "id": "0ed1bf80-976c-11e9-b3d5-07b0ab7d6354", + "label": "Disk Write Ops", + "line_width": "2", + "metrics": [ + { + "field": null, + "id": "0ed1bf81-976c-11e9-b3d5-07b0ab7d6354", + "type": "positive_rate", + "unit": "1s" + }, + { + "function": "sum", + "id": "d6fb6e10-ec67-11ea-8a63-93b9b48262dc", + "type": "series_agg" + } + ], + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_order_by": "_key", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Disk Metrics [Metricbeat CockroachDB]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "020f6a20-ec68-11ea-b088-6f3c0066a551", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:00.377Z", + "version": "WzM3MDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/2af19b90-976c-11e9-9eea-6f554992ec1f.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/2af19b90-976c-11e9-9eea-6f554992ec1f.json new file mode 100644 index 000000000000..c06e39dba121 --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/2af19b90-976c-11e9-9eea-6f554992ec1f.json @@ -0,0 +1,134 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Ranges [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=10s", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(254,146,0,1)", + "fill": "0", + "formatter": "number", + "id": "e4489e50-976b-11e9-b3d5-07b0ab7d6354", + "label": "Underreplicated", + "line_width": "2", + "metrics": [ + { + "field": "prometheus.metrics.ranges_underreplicated", + "id": "e4489e51-976b-11e9-b3d5-07b0ab7d6354", + "type": "max" + } + ], + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": null + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": "0", + "formatter": "number", + "id": "c938f9c0-976b-11e9-b3d5-07b0ab7d6354", + "label": "Overreplicated", + "line_width": "2", + "metrics": [ + { + "field": "prometheus.metrics.ranges_overreplicated", + "id": "c938f9c1-976b-11e9-b3d5-07b0ab7d6354", + "type": "max" + } + ], + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": null + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": "0", + "formatter": "number", + "id": "0ed1bf80-976c-11e9-b3d5-07b0ab7d6354", + "label": "Unavailable", + "line_width": "2", + "metrics": [ + { + "field": "prometheus.metrics.ranges_unavailable", + "id": "0ed1bf81-976c-11e9-b3d5-07b0ab7d6354", + "type": "max" + } + ], + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": null + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(204,204,204,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Total", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ranges", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": null + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Ranges [Metricbeat CockroachDB]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2af19b90-976c-11e9-9eea-6f554992ec1f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:00.377Z", + "version": "WzM2OTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/5073ed20-9760-11e9-9eea-6f554992ec1f.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/5073ed20-9760-11e9-9eea-6f554992ec1f.json new file mode 100644 index 000000000000..cf1ca9db9ac3 --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/5073ed20-9760-11e9-9eea-6f554992ec1f.json @@ -0,0 +1,190 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "SQL queries [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [], + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=10s", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "88d6bda0-9760-11e9-b3d5-07b0ab7d6354", + "label": "Selects", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.sql_select_count", + "id": "88d70bc0-9760-11e9-b3d5-07b0ab7d6354", + "type": "sum" + }, + { + "field": "88d70bc0-9760-11e9-b3d5-07b0ab7d6354", + "id": "658d2990-9762-11e9-b3d5-07b0ab7d6354", + "type": "derivative", + "unit": "1s" + }, + { + "field": "658d2990-9762-11e9-b3d5-07b0ab7d6354", + "function": "sum", + "id": "ec698bc0-9762-11e9-b3d5-07b0ab7d6354", + "sigma": "", + "type": "positive_only" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "stacked", + "terms_field": "service.address", + "terms_order_by": "88d70bc0-9760-11e9-b3d5-07b0ab7d6354", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": 0.5, + "formatter": "number", + "hidden": false, + "id": "02d89100-9761-11e9-b3d5-07b0ab7d6354", + "label": "Inserts", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.sql_insert_count", + "id": "02d89101-9761-11e9-b3d5-07b0ab7d6354", + "type": "sum" + }, + { + "field": "02d89101-9761-11e9-b3d5-07b0ab7d6354", + "id": "74eba420-9762-11e9-b3d5-07b0ab7d6354", + "type": "derivative", + "unit": "1s" + }, + { + "field": "74eba420-9762-11e9-b3d5-07b0ab7d6354", + "id": "54cb8aa0-9764-11e9-b3d5-07b0ab7d6354", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "stacked", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": 0.5, + "formatter": "number", + "hidden": false, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Updates", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.sql_update_count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "9aa7ace0-9762-11e9-b3d5-07b0ab7d6354", + "type": "derivative", + "unit": "1s" + }, + { + "field": "9aa7ace0-9762-11e9-b3d5-07b0ab7d6354", + "id": "939af2c0-9764-11e9-b3d5-07b0ab7d6354", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "stacked", + "terms_field": "service.address", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": 0.5, + "formatter": "number", + "hidden": false, + "id": "03f6d240-9761-11e9-b3d5-07b0ab7d6354", + "label": "Deletes", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.sql_delete_count", + "id": "03f6d241-9761-11e9-b3d5-07b0ab7d6354", + "type": "sum" + }, + { + "field": "03f6d241-9761-11e9-b3d5-07b0ab7d6354", + "id": "a3ed7c30-9762-11e9-b3d5-07b0ab7d6354", + "type": "derivative", + "unit": "1s" + }, + { + "field": "a3ed7c30-9762-11e9-b3d5-07b0ab7d6354", + "id": "a13994e0-9764-11e9-b3d5-07b0ab7d6354", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "stacked", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SQL queries [Metricbeat CockroachDB]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5073ed20-9760-11e9-9eea-6f554992ec1f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:01.383Z", + "version": "WzM3MTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/57939a70-ec63-11ea-b088-6f3c0066a551.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/57939a70-ec63-11ea-b088-6f3c0066a551.json new file mode 100644 index 000000000000..2243859f30d1 --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/57939a70-ec63-11ea-b088-6f3c0066a551.json @@ -0,0 +1,155 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Capacity Usage [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "68be3790-ec65-11ea-8a63-93b9b48262dc" + } + ], + "bar_color_rules": [ + { + "id": "6eabb420-ec65-11ea-8a63-93b9b48262dc" + } + ], + "gauge_color_rules": [ + { + "id": "71a5ba40-ec65-11ea-8a63-93b9b48262dc" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=10s", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "hidden": false, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Total Capacity", + "line_width": 1, + "metrics": [ + { + "field": null, + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "0464ddc0-ec66-11ea-8a63-93b9b48262dc" + } + ], + "split_mode": "everything", + "stacked": "none", + "terms_direction": "desc", + "terms_field": "service.address", + "terms_order_by": "_count", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "775782d0-ec64-11ea-8a63-93b9b48262dc", + "label": "Capacity Available", + "line_width": 1, + "metrics": [ + { + "field": null, + "id": "775782d1-ec64-11ea-8a63-93b9b48262dc", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "everything", + "stacked": "none", + "terms_direction": "desc", + "terms_field": "service.address", + "terms_order_by": "_count", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(254,146,0,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "78322b60-ec64-11ea-8a63-93b9b48262dc", + "label": "Capacity Used", + "line_width": 1, + "metrics": [ + { + "field": null, + "id": "78322b61-ec64-11ea-8a63-93b9b48262dc", + "type": "sum" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "everything", + "stacked": "none", + "terms_direction": "desc", + "terms_field": "service.address", + "terms_order_by": "_count", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Capacity Usage [Metricbeat CockroachDB]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "57939a70-ec63-11ea-b088-6f3c0066a551", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:00.377Z", + "version": "WzM3MDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/61999c30-c766-11ea-8a94-61b423d19ae7.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/61999c30-c766-11ea-8a94-61b423d19ae7.json new file mode 100644 index 000000000000..939ad7ac9149 --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/61999c30-c766-11ea-8a94-61b423d19ae7.json @@ -0,0 +1,169 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Transactions [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=10s", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Transactions Begins", + "line_width": 1, + "metrics": [ + { + "field": null, + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "positive_rate", + "unit": "1s" + }, + { + "function": "sum", + "id": "6db52340-2067-11eb-96da-17d67bb2d46d", + "type": "series_agg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_size": "50", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "1c074fc0-ccf0-11ea-8da4-c95c019bd9d5", + "label": "Transaction Commits", + "line_width": 1, + "metrics": [ + { + "field": null, + "id": "1c074fc1-ccf0-11ea-8da4-c95c019bd9d5", + "type": "positive_rate", + "unit": "1s" + }, + { + "function": "sum", + "id": "9241d3c0-2067-11eb-96da-17d67bb2d46d", + "type": "series_agg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_size": "50", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "84ac4080-ccf0-11ea-8da4-c95c019bd9d5", + "label": "Transaction Rollbacks", + "line_width": 1, + "metrics": [ + { + "field": null, + "id": "84ac4081-ccf0-11ea-8da4-c95c019bd9d5", + "type": "positive_rate", + "unit": "1s" + }, + { + "function": "sum", + "id": "a9b7afc0-2067-11eb-96da-17d67bb2d46d", + "type": "series_agg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_size": "50", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": 0.5, + "formatter": "number", + "id": "9701db00-ccf0-11ea-8da4-c95c019bd9d5", + "label": "Transaction Aborts", + "line_width": 1, + "metrics": [ + { + "field": null, + "id": "9701db01-ccf0-11ea-8da4-c95c019bd9d5", + "type": "positive_rate", + "unit": "1s" + }, + { + "function": "sum", + "id": "bc1fc0d0-2067-11eb-96da-17d67bb2d46d", + "type": "series_agg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_size": "50", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Transactions [Metricbeat CockroachDB]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "61999c30-c766-11ea-8a94-61b423d19ae7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:01.383Z", + "version": "WzM3MTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/643353f0-c202-11ea-8a94-61b423d19ae7.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/643353f0-c202-11ea-8a94-61b423d19ae7.json new file mode 100644 index 000000000000..8738fe37fa25 --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/643353f0-c202-11ea-8a94-61b423d19ae7.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Live Nodes [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "4e4d6390-c1fe-11ea-bd96-b595ac63d5e9" + } + ], + "bar_color_rules": [ + { + "id": "59bbdf40-c1fe-11ea-bd96-b595ac63d5e9" + } + ], + "gauge_color_rules": [ + { + "id": "f1642eb0-c1fe-11ea-bd96-b595ac63d5e9" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=10s", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0.5", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Live Nodes", + "line_width": 1, + "metrics": [ + { + "field": null, + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "everything", + "stacked": "none", + "terms_field": "prometheus.metrics.node_id", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Live Nodes [Metricbeat CockroachDB]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "643353f0-c202-11ea-8a94-61b423d19ae7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:00.377Z", + "version": "WzM3MDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/6fdbdbe0-c767-11ea-8a94-61b423d19ae7.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/6fdbdbe0-c767-11ea-8a94-61b423d19ae7.json new file mode 100644 index 000000000000..e1ce8d3b08e9 --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/6fdbdbe0-c767-11ea-8a94-61b423d19ae7.json @@ -0,0 +1,72 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Schema Changes [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=10s", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Schema Changes", + "line_width": 1, + "metrics": [ + { + "field": null, + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "positive_rate", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Schema Changes [Metricbeat CockroachDB]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6fdbdbe0-c767-11ea-8a94-61b423d19ae7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:01.383Z", + "version": "WzM3MTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/74cf44b0-9771-11e9-9eea-6f554992ec1f.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/74cf44b0-9771-11e9-9eea-6f554992ec1f.json new file mode 100644 index 000000000000..d19ffe2bd1d1 --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/74cf44b0-9771-11e9-9eea-6f554992ec1f.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Log commit latency [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=10s", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": 0.5, + "filter": "", + "formatter": "ns,ms,2", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Average log commit latency", + "line_width": 1, + "metrics": [ + { + "agg_with": "avg", + "field": "prometheus.metrics.raft_process_logcommit_latency_count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "order": "desc", + "size": 1, + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "4346d3b0-976f-11e9-b3d5-07b0ab7d6354", + "type": "derivative", + "unit": "" + }, + { + "field": "prometheus.metrics.raft_process_logcommit_latency_sum", + "id": "4a430120-976f-11e9-b3d5-07b0ab7d6354", + "type": "max", + "unit": "" + }, + { + "field": "4a430120-976f-11e9-b3d5-07b0ab7d6354", + "id": "581519e0-9770-11e9-b3d5-07b0ab7d6354", + "type": "derivative", + "unit": "" + }, + { + "id": "6574b730-9770-11e9-b3d5-07b0ab7d6354", + "script": "params.sum / params.count", + "type": "calculation", + "variables": [ + { + "field": "581519e0-9770-11e9-b3d5-07b0ab7d6354", + "id": "6fbb54b0-9770-11e9-b3d5-07b0ab7d6354", + "name": "sum" + }, + { + "field": "4346d3b0-976f-11e9-b3d5-07b0ab7d6354", + "id": "76cc90c0-9770-11e9-b3d5-07b0ab7d6354", + "name": "count" + } + ] + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "service.address", + "value_template": "{{value}}ms" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Log commit latency [Metricbeat CockroachDB]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "74cf44b0-9771-11e9-9eea-6f554992ec1f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:00.377Z", + "version": "WzM2OTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/79691920-9766-11e9-9eea-6f554992ec1f.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/79691920-9766-11e9-9eea-6f554992ec1f.json new file mode 100644 index 000000000000..dd12f0a83e37 --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/79691920-9766-11e9-9eea-6f554992ec1f.json @@ -0,0 +1,65 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Number of SQL connections [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Number of connections", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.sql_conns", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "stacked", + "terms_direction": "desc", + "terms_field": "service.address", + "terms_order_by": "_count" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Number of SQL connections [Metricbeat CockroachDB]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "79691920-9766-11e9-9eea-6f554992ec1f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:01.383Z", + "version": "WzM3MDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/7d13f0d0-c763-11ea-8a94-61b423d19ae7.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/7d13f0d0-c763-11ea-8a94-61b423d19ae7.json new file mode 100644 index 000000000000..b6fb2caaa2c7 --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/7d13f0d0-c763-11ea-8a94-61b423d19ae7.json @@ -0,0 +1,124 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "SQL Bytes [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=10s", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(84,179,153,1)", + "fill": "0.5", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Bytes In", + "line_width": 1, + "metrics": [ + { + "field": null, + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "positive_rate", + "unit": "1s" + }, + { + "function": "sum", + "id": "e37c46b0-cd03-11ea-90ab-5112cd60bde7", + "type": "series_agg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_size": "50", + "type": "timeseries", + "value_template": "{{value}}/s" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(96,146,192,1)", + "fill": "0.5", + "formatter": "bytes", + "id": "15553390-cd04-11ea-90ab-5112cd60bde7", + "label": "Bytes Out", + "line_width": 1, + "metrics": [ + { + "field": null, + "id": "15553391-cd04-11ea-90ab-5112cd60bde7", + "type": "positive_rate", + "unit": "1s" + }, + { + "function": "sum", + "id": "6bc01490-2068-11eb-96da-17d67bb2d46d", + "type": "series_agg" + }, + { + "id": "789ffa90-2068-11eb-96da-17d67bb2d46d", + "script": "params.rate != null && params.rate > 0 ? params.rate * -1 : null", + "type": "calculation", + "variables": [ + { + "field": "15553391-cd04-11ea-90ab-5112cd60bde7", + "id": "7ff173f0-2068-11eb-96da-17d67bb2d46d", + "name": "rate" + } + ] + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "terms_size": "100", + "type": "timeseries", + "value_template": "{{value}}/s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "SQL Bytes [Metricbeat CockroachDB]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7d13f0d0-c763-11ea-8a94-61b423d19ae7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:01.383Z", + "version": "WzM3MTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/89e96120-fe7a-11ea-a589-8d7d9f58c8fd.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/89e96120-fe7a-11ea-a589-8d7d9f58c8fd.json new file mode 100644 index 000000000000..b18ea7c2fcef --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/89e96120-fe7a-11ea-a589-8d7d9f58c8fd.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "Average SQL execution latency", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Average Exec latency [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=10s", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": 0.5, + "filter": "", + "formatter": "ns,ms,2", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Average log commit latency", + "line_width": 1, + "metrics": [ + { + "agg_with": "avg", + "field": null, + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "order": "desc", + "size": 1, + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "4346d3b0-976f-11e9-b3d5-07b0ab7d6354", + "type": "derivative", + "unit": "" + }, + { + "field": null, + "id": "4a430120-976f-11e9-b3d5-07b0ab7d6354", + "type": "max", + "unit": "" + }, + { + "field": "4a430120-976f-11e9-b3d5-07b0ab7d6354", + "id": "581519e0-9770-11e9-b3d5-07b0ab7d6354", + "type": "derivative", + "unit": "" + }, + { + "id": "6574b730-9770-11e9-b3d5-07b0ab7d6354", + "script": "params.sum / params.count", + "type": "calculation", + "variables": [ + { + "field": "581519e0-9770-11e9-b3d5-07b0ab7d6354", + "id": "6fbb54b0-9770-11e9-b3d5-07b0ab7d6354", + "name": "sum" + }, + { + "field": "4346d3b0-976f-11e9-b3d5-07b0ab7d6354", + "id": "76cc90c0-9770-11e9-b3d5-07b0ab7d6354", + "name": "count" + } + ] + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "type": "timeseries", + "value_template": "{{value}}ms" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Average Exec latency [Metricbeat CockroachDB]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "89e96120-fe7a-11ea-a589-8d7d9f58c8fd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:01.383Z", + "version": "WzM3MTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/8add0960-976a-11e9-9eea-6f554992ec1f.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/8add0960-976a-11e9-9eea-6f554992ec1f.json new file mode 100644 index 000000000000..6e6ec884f9b5 --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/8add0960-976a-11e9-9eea-6f554992ec1f.json @@ -0,0 +1,65 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Replica leaseholders [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=10s", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Replica leaseholders per store", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.replicas_leaseholders", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "stacked", + "terms_field": "service.address" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Replica leaseholders [Metricbeat CockroachDB]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8add0960-976a-11e9-9eea-6f554992ec1f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:00.377Z", + "version": "WzM2OTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/b5ab45b0-9771-11e9-9eea-6f554992ec1f.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/b5ab45b0-9771-11e9-9eea-6f554992ec1f.json new file mode 100644 index 000000000000..a5920236ee90 --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/b5ab45b0-9771-11e9-9eea-6f554992ec1f.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Command commit latency [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=10s", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": 0.5, + "filter": "", + "formatter": "ns,ms,2", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Average command commit latency", + "line_width": 1, + "metrics": [ + { + "agg_with": "avg", + "field": "prometheus.metrics.raft_process_commandcommit_latency_count", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "order": "desc", + "size": 1, + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "4346d3b0-976f-11e9-b3d5-07b0ab7d6354", + "type": "derivative", + "unit": "" + }, + { + "field": "prometheus.metrics.raft_process_commandcommit_latency_sum", + "id": "4a430120-976f-11e9-b3d5-07b0ab7d6354", + "type": "max", + "unit": "" + }, + { + "field": "4a430120-976f-11e9-b3d5-07b0ab7d6354", + "id": "581519e0-9770-11e9-b3d5-07b0ab7d6354", + "type": "derivative", + "unit": "" + }, + { + "id": "6574b730-9770-11e9-b3d5-07b0ab7d6354", + "script": "params.sum / params.count", + "type": "calculation", + "variables": [ + { + "field": "581519e0-9770-11e9-b3d5-07b0ab7d6354", + "id": "6fbb54b0-9770-11e9-b3d5-07b0ab7d6354", + "name": "sum" + }, + { + "field": "4346d3b0-976f-11e9-b3d5-07b0ab7d6354", + "id": "76cc90c0-9770-11e9-b3d5-07b0ab7d6354", + "name": "count" + } + ] + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "service.address", + "value_template": "{{value}}ms" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Command commit latency [Metricbeat CockroachDB]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b5ab45b0-9771-11e9-9eea-6f554992ec1f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:00.377Z", + "version": "WzM3MDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/bad285b0-9769-11e9-9eea-6f554992ec1f.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/bad285b0-9769-11e9-9eea-6f554992ec1f.json new file mode 100644 index 000000000000..c06f99c6a96d --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/bad285b0-9769-11e9-9eea-6f554992ec1f.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Replicas per Store [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=10s", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Replicas per store", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.replicas", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "stacked", + "terms_direction": "desc", + "terms_field": "service.address", + "terms_order_by": "_count" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Replicas per Store [Metricbeat CockroachDB]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bad285b0-9769-11e9-9eea-6f554992ec1f", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:00.377Z", + "version": "WzM2OTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/bbd18b20-ccf4-11ea-8a94-61b423d19ae7.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/bbd18b20-ccf4-11ea-8a94-61b423d19ae7.json new file mode 100644 index 000000000000..4cfe6d7d2402 --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/bbd18b20-ccf4-11ea-8a94-61b423d19ae7.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Process Uptime [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=10s", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "s,h,2", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Cockroach Process Uptime", + "line_width": 1, + "metrics": [ + { + "field": null, + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "terms", + "stacked": "none", + "terms_field": null, + "type": "timeseries", + "value_template": "{{value}} h" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Process Uptime [Metricbeat CockroachDB]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bbd18b20-ccf4-11ea-8a94-61b423d19ae7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:00.377Z", + "version": "WzM3MDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/d4177d60-75e2-11eb-b955-29bfd5c9e2dd.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/d4177d60-75e2-11eb-b955-29bfd5c9e2dd.json new file mode 100644 index 000000000000..1f50b17ac799 --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/d4177d60-75e2-11eb-b955-29bfd5c9e2dd.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Navigation [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "[Overview](#/dashboard/04b595b0-c1fc-11ea-8a94-61b423d19ae7) | [SQL](#/dashboard/3975ad70-c761-11ea-8a94-61b423d19ae7)\n", + "openLinksInNewTab": false + }, + "title": "Navigation [Metricbeat CockroachDB]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d4177d60-75e2-11eb-b955-29bfd5c9e2dd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:01.383Z", + "version": "WzM3MDksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/f2d065e0-ee11-11ea-b088-6f3c0066a551.json b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/f2d065e0-ee11-11ea-b088-6f3c0066a551.json new file mode 100644 index 000000000000..81d5fb876b8c --- /dev/null +++ b/x-pack/metricbeat/module/cockroachdb/_meta/kibana/7/visualization/f2d065e0-ee11-11ea-b088-6f3c0066a551.json @@ -0,0 +1,75 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Clock Offset [Metricbeat CockroachDB]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [], + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=10s", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(84,179,153,1)", + "fill": 0.5, + "formatter": "ns,ms,3", + "id": "88d6bda0-9760-11e9-b3d5-07b0ab7d6354", + "label": "Clock Offsets", + "line_width": 1, + "metrics": [ + { + "field": null, + "id": "88d70bc0-9760-11e9-b3d5-07b0ab7d6354", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "stacked", + "terms_field": null, + "terms_order_by": "88d70bc0-9760-11e9-b3d5-07b0ab7d6354", + "type": "timeseries", + "value_template": "{{value}} ms" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Clock Offset [Metricbeat CockroachDB]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f2d065e0-ee11-11ea-b088-6f3c0066a551", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:00.377Z", + "version": "WzM3MDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/coredns/_meta/kibana/7/dashboard/Metricbeat-CoreDNS-Dashboard-ecs.json b/x-pack/metricbeat/module/coredns/_meta/kibana/7/dashboard/Metricbeat-CoreDNS-Dashboard-ecs.json new file mode 100644 index 000000000000..5be6be169266 --- /dev/null +++ b/x-pack/metricbeat/module/coredns/_meta/kibana/7/dashboard/Metricbeat-CoreDNS-Dashboard-ecs.json @@ -0,0 +1,215 @@ +{ + "attributes": { + "description": "Overview of CoreDNS server metrics.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "lucene", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "1", + "w": 10, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "2", + "w": 14, + "x": 10, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "NXDOMAIN": "#99440A" + } + } + }, + "gridData": { + "h": 15, + "i": "3", + "w": 19, + "x": 24, + "y": 25 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "10", + "w": 24, + "x": 0, + "y": 40 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "colors": { + "tcp - 1": "#B7DBAB", + "udp - 1": "#5195CE" + }, + "legendOpen": true + } + }, + "gridData": { + "h": 10, + "i": "11", + "w": 19, + "x": 24, + "y": 0 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "12", + "w": 19, + "x": 24, + "y": 10 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "15", + "w": 24, + "x": 0, + "y": 10 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "type": "visualization", + "version": "7.3.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "16", + "w": 24, + "x": 0, + "y": 25 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "type": "visualization", + "version": "7.3.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat CoreDNS] Overview ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "Metricbeat-CoreDNS-Dashboard-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "36e08510-53c4-11e9-b466-9be470bbd327-ecs", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "a19df590-53c4-11e9-b466-9be470bbd327-ecs", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "27da53f0-53d5-11e9-b466-9be470bbd327-ecs", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "277fc650-67a9-11e9-a534-715561d0bf42", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "86177430-728d-11e9-b0d0-414c3011ddbb", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "a58345f0-7298-11e9-b0d0-414c3011ddbb", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "57c74300-7308-11e9-b0d0-414c3011ddbb", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "4804eaa0-7315-11e9-b0d0-414c3011ddbb", + "name": "16:panel_16", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:04.459Z", + "version": "WzM3MjksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/coredns/_meta/kibana/7/dashboard/Metricbeat-coredns-overview.ndjson b/x-pack/metricbeat/module/coredns/_meta/kibana/7/dashboard/Metricbeat-coredns-overview.ndjson deleted file mode 100644 index ee4ceafcb9d2..000000000000 --- a/x-pack/metricbeat/module/coredns/_meta/kibana/7/dashboard/Metricbeat-coredns-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"coredns.stats.panic.count\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"coredns.stats.panic.count\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Panic Count [Metricbeat CoreDNS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"coredns.stats.panic.count\",\"percents\":[100]},\"schema\":\"metric\",\"type\":\"percentiles\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":false},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Panic Count [Metricbeat CoreDNS] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"36e08510-53c4-11e9-b466-9be470bbd327-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"exists\": {\"field\": \"coredns.stats.dns.request.do.count\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"coredns.stats.dns.request.do.count\", \"negate\": false, \"type\": \"exists\", \"value\": \"exists\"}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"DO Count [Metricbeat CoreDNS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"DO Count\",\"field\":\"coredns.stats.dns.request.do.count\",\"percents\":[100]},\"schema\":\"metric\",\"type\":\"percentiles\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":false},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"DO Count [Metricbeat CoreDNS] ECS\",\"type\":\"metric\"}"},"coreMigrationVersion":"8.0.0","id":"a19df590-53c4-11e9-b466-9be470bbd327-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Responses by Rcode [Metricbeat CoreDNS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Response per rcode\",\"field\":\"coredns.stats.dns.response.rcode.count\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"server\",\"field\":\"coredns.stats.server\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"coredns.stats.rcode\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"field\":\"coredns.stats.zone\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Response per rcode\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":1,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Response per rcode\"},\"type\":\"value\"}],\"row\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Responses by Rcode [Metricbeat CoreDNS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"27da53f0-53d5-11e9-b466-9be470bbd327-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":" Cache Hits, Misses [Metricbeat CoreDNS] ECS","uiStateJSON":"{\"vis\": {\"colors\": {\"Average coredns.stats.dns.cache.misses.count\": \"#E24D42\", \"Hits\": \"#9AC48A\", \"Misses\": \"#EA6460\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Hits\",\"field\":\"coredns.stats.dns.cache.hits.count\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":0,\"timeRange\":{\"from\":\"now-30m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Misses\",\"field\":\"coredns.stats.dns.cache.misses.count\"},\"schema\":\"metric\",\"type\":\"max\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"server\",\"field\":\"coredns.stats.server\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"style\":{\"color\":\"#eee\"}},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Hits\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"},{\"data\":{\"id\":\"3\",\"label\":\"Misses\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-2\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Hits\"},\"type\":\"value\"},{\"id\":\"ValueAxis-2\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"RightAxis-1\",\"position\":\"right\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Misses\"},\"type\":\"value\"}],\"row\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\" Cache Hits, Misses [Metricbeat CoreDNS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"277fc650-67a9-11e9-a534-715561d0bf42","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Requests by Zone [Metricbeat CoreDNS] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"aggregate\":\"max\",\"customLabel\":\"Request count\",\"field\":\"coredns.stats.dns.request.count\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"server\",\"field\":\"coredns.stats.server\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"zone\",\"field\":\"coredns.stats.zone\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"protocol\",\"field\":\"coredns.stats.proto\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"family\",\"field\":\"coredns.stats.family\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"rotate\":0,\"show\":true,\"truncate\":200},\"position\":\"left\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"orderBucketsBySum\":false,\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Request count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":75,\"show\":true,\"truncate\":100},\"name\":\"BottomAxis-1\",\"position\":\"bottom\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Request count\"},\"type\":\"value\"}],\"row\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Requests by Zone [Metricbeat CoreDNS] ECS\",\"type\":\"horizontal_bar\"}"},"coreMigrationVersion":"8.0.0","id":"86177430-728d-11e9-b0d0-414c3011ddbb","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Requests by Type [Metricbeat CoreDNS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"aggregate\":\"max\",\"customLabel\":\"Requests\",\"field\":\"coredns.stats.dns.request.type.count\",\"size\":1,\"sortField\":\"@timestamp\",\"sortOrder\":\"desc\"},\"schema\":\"metric\",\"type\":\"top_hits\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"server\",\"field\":\"coredns.stats.server\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"split\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"timeRange\":{\"from\":\"now-15m\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"field\":\"coredns.stats.zone\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"field\":\"coredns.stats.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"_key\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Requests\"},\"drawLinesBetweenPoints\":true,\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Requests\"},\"type\":\"value\"}],\"row\":true,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Requests by Type [Metricbeat CoreDNS] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"a58345f0-7298-11e9-b0d0-414c3011ddbb","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Avg Request Duration (cumulative) [Metricbeat CoreDNS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.1\",\"filter\":\"\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Avg Request Duration (ms)\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"max\",\"field\":\"coredns.stats.dns.request.duration.ns.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"sum\"},{\"agg_with\":\"max\",\"field\":\"coredns.stats.dns.request.duration.ns.count\",\"id\":\"f6c82d30-7307-11e9-aba0-4f43d70788c6\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"sum\"},{\"id\":\"1d9de350-7308-11e9-aba0-4f43d70788c6\",\"script\":\"params.sum / params.count / 1e6\",\"type\":\"calculation\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"20eee310-7308-11e9-aba0-4f43d70788c6\",\"name\":\"sum\"},{\"field\":\"f6c82d30-7307-11e9-aba0-4f43d70788c6\",\"id\":\"2e4139f0-7308-11e9-aba0-4f43d70788c6\",\"name\":\"count\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"filter\":{\"query\":\"\",\"language\":\"lucene\"},\"id\":\"505e0670-7309-11e9-aba0-4f43d70788c6\",\"label\":\"\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"coredns.stats.zone\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"value_template\":\"{{value}} ms\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Avg Request Duration (cumulative) [Metricbeat CoreDNS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"57c74300-7308-11e9-b0d0-414c3011ddbb","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Avg Request Size (cumulative) [Metricbeat CoreDNS] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(228,155,238,1)\",\"fill\":\"0.1\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Avg Request Size (bytes)\",\"line_width\":1,\"metrics\":[{\"field\":\"coredns.stats.dns.request.size.bytes.sum\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"sum\"},{\"field\":\"coredns.stats.dns.request.size.bytes.count\",\"id\":\"98fe65e0-7314-11e9-8e06-d9a616f1e6f2\",\"type\":\"sum\"},{\"id\":\"ab81ee30-7314-11e9-8e06-d9a616f1e6f2\",\"script\":\"params.sum / params.count\",\"type\":\"calculation\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"aeed53c0-7314-11e9-8e06-d9a616f1e6f2\",\"name\":\"sum\"},{\"field\":\"98fe65e0-7314-11e9-8e06-d9a616f1e6f2\",\"id\":\"b84dd700-7314-11e9-8e06-d9a616f1e6f2\",\"name\":\"count\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"coredns.stats.zone\",\"value_template\":\"{{value}} bytes\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Avg Request Size (cumulative) [Metricbeat CoreDNS] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4804eaa0-7315-11e9-b0d0-414c3011ddbb","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MzcsMV0="} -{"attributes":{"description":"Overview of CoreDNS server metrics.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"lucene\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"2\",\"w\":14,\"x\":10,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":19,\"x\":24,\"y\":25},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"NXDOMAIN\":\"#99440A\"}},\"enhancements\":{}},\"panelRefName\":\"panel_3\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"10\",\"w\":24,\"x\":0,\"y\":40},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"11\",\"w\":19,\"x\":24,\"y\":0},\"panelIndex\":\"11\",\"embeddableConfig\":{\"vis\":{\"colors\":{\"tcp - 1\":\"#B7DBAB\",\"udp - 1\":\"#5195CE\"},\"legendOpen\":true},\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"12\",\"w\":19,\"x\":24,\"y\":10},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"15\",\"w\":24,\"x\":0,\"y\":10},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_15\"},{\"version\":\"7.3.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"16\",\"w\":24,\"x\":0,\"y\":25},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_16\"}]","timeRestore":false,"title":"[Metricbeat CoreDNS] Overview ECS","version":1},"coreMigrationVersion":"8.0.0","id":"Metricbeat-CoreDNS-Dashboard-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"36e08510-53c4-11e9-b466-9be470bbd327-ecs","name":"1:panel_1","type":"visualization"},{"id":"a19df590-53c4-11e9-b466-9be470bbd327-ecs","name":"2:panel_2","type":"visualization"},{"id":"27da53f0-53d5-11e9-b466-9be470bbd327-ecs","name":"3:panel_3","type":"visualization"},{"id":"277fc650-67a9-11e9-a534-715561d0bf42","name":"10:panel_10","type":"visualization"},{"id":"86177430-728d-11e9-b0d0-414c3011ddbb","name":"11:panel_11","type":"visualization"},{"id":"a58345f0-7298-11e9-b0d0-414c3011ddbb","name":"12:panel_12","type":"visualization"},{"id":"57c74300-7308-11e9-b0d0-414c3011ddbb","name":"15:panel_15","type":"visualization"},{"id":"4804eaa0-7315-11e9-b0d0-414c3011ddbb","name":"16:panel_16","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:04.459Z","version":"WzM3MjksMV0="} diff --git a/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/277fc650-67a9-11e9-a534-715561d0bf42.json b/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/277fc650-67a9-11e9-a534-715561d0bf42.json new file mode 100644 index 000000000000..178426ff07cd --- /dev/null +++ b/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/277fc650-67a9-11e9-a534-715561d0bf42.json @@ -0,0 +1,214 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "" + } + } + }, + "title": " Cache Hits, Misses [Metricbeat CoreDNS] ECS", + "uiStateJSON": { + "vis": { + "colors": { + "Average coredns.stats.dns.cache.misses.count": "#E24D42", + "Hits": "#9AC48A", + "Misses": "#EA6460" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Hits", + "field": "coredns.stats.dns.cache.hits.count" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 0, + "timeRange": { + "from": "now-30m", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Misses", + "field": "coredns.stats.dns.cache.misses.count" + }, + "schema": "metric", + "type": "max" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "server", + "field": "coredns.stats.server", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "split", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "row": true, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Hits" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + }, + { + "data": { + "id": "3", + "label": "Misses" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-2" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "defaultYExtents": false, + "mode": "normal", + "setYExtents": false, + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Hits" + }, + "type": "value" + }, + { + "id": "ValueAxis-2", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "RightAxis-1", + "position": "right", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Misses" + }, + "type": "value" + } + ] + }, + "title": " Cache Hits, Misses [Metricbeat CoreDNS] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "277fc650-67a9-11e9-a534-715561d0bf42", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:04.459Z", + "version": "WzM3MzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/27da53f0-53d5-11e9-b466-9be470bbd327-ecs.json b/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/27da53f0-53d5-11e9-b466-9be470bbd327-ecs.json new file mode 100644 index 000000000000..54087bf0fb0e --- /dev/null +++ b/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/27da53f0-53d5-11e9-b466-9be470bbd327-ecs.json @@ -0,0 +1,195 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "" + } + } + }, + "title": "Responses by Rcode [Metricbeat CoreDNS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Response per rcode", + "field": "coredns.stats.dns.response.rcode.count" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "server", + "field": "coredns.stats.server", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "split", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "timeRange": { + "from": "now-15m", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "4", + "params": { + "field": "coredns.stats.rcode", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + }, + { + "enabled": true, + "id": "6", + "params": { + "field": "coredns.stats.zone", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false, + "style": { + "color": "#eee" + } + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "row": true, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Response per rcode" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "lineWidth": 1, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Response per rcode" + }, + "type": "value" + } + ] + }, + "title": "Responses by Rcode [Metricbeat CoreDNS] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "27da53f0-53d5-11e9-b466-9be470bbd327-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:04.459Z", + "version": "WzM3MzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/36e08510-53c4-11e9-b466-9be470bbd327-ecs.json b/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/36e08510-53c4-11e9-b466-9be470bbd327-ecs.json new file mode 100644 index 000000000000..e4adcfa17456 --- /dev/null +++ b/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/36e08510-53c4-11e9-b466-9be470bbd327-ecs.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "coredns.stats.panic.count" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "coredns.stats.panic.count", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "" + } + } + }, + "title": "Panic Count [Metricbeat CoreDNS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "coredns.stats.panic.count", + "percents": [ + 100 + ] + }, + "schema": "metric", + "type": "percentiles" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": false + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Panic Count [Metricbeat CoreDNS] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "36e08510-53c4-11e9-b466-9be470bbd327-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:04.459Z", + "version": "WzM3MzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/4804eaa0-7315-11e9-b0d0-414c3011ddbb.json b/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/4804eaa0-7315-11e9-b0d0-414c3011ddbb.json new file mode 100644 index 000000000000..0030dbd34c7a --- /dev/null +++ b/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/4804eaa0-7315-11e9-b0d0-414c3011ddbb.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Avg Request Size (cumulative) [Metricbeat CoreDNS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(228,155,238,1)", + "fill": "0.1", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Avg Request Size (bytes)", + "line_width": 1, + "metrics": [ + { + "field": "coredns.stats.dns.request.size.bytes.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "sum" + }, + { + "field": "coredns.stats.dns.request.size.bytes.count", + "id": "98fe65e0-7314-11e9-8e06-d9a616f1e6f2", + "type": "sum" + }, + { + "id": "ab81ee30-7314-11e9-8e06-d9a616f1e6f2", + "script": "params.sum / params.count", + "type": "calculation", + "variables": [ + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "aeed53c0-7314-11e9-8e06-d9a616f1e6f2", + "name": "sum" + }, + { + "field": "98fe65e0-7314-11e9-8e06-d9a616f1e6f2", + "id": "b84dd700-7314-11e9-8e06-d9a616f1e6f2", + "name": "count" + } + ] + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "coredns.stats.zone", + "value_template": "{{value}} bytes" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Avg Request Size (cumulative) [Metricbeat CoreDNS] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4804eaa0-7315-11e9-b0d0-414c3011ddbb", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:04.459Z", + "version": "WzM3MzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/57c74300-7308-11e9-b0d0-414c3011ddbb.json b/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/57c74300-7308-11e9-b0d0-414c3011ddbb.json new file mode 100644 index 000000000000..4de703426cbd --- /dev/null +++ b/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/57c74300-7308-11e9-b0d0-414c3011ddbb.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Avg Request Duration (cumulative) [Metricbeat CoreDNS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0.1", + "filter": "", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Avg Request Duration (ms)", + "line_width": 1, + "metrics": [ + { + "agg_with": "max", + "field": "coredns.stats.dns.request.duration.ns.sum", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "sum" + }, + { + "agg_with": "max", + "field": "coredns.stats.dns.request.duration.ns.count", + "id": "f6c82d30-7307-11e9-aba0-4f43d70788c6", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "sum" + }, + { + "id": "1d9de350-7308-11e9-aba0-4f43d70788c6", + "script": "params.sum / params.count / 1e6", + "type": "calculation", + "variables": [ + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "20eee310-7308-11e9-aba0-4f43d70788c6", + "name": "sum" + }, + { + "field": "f6c82d30-7307-11e9-aba0-4f43d70788c6", + "id": "2e4139f0-7308-11e9-aba0-4f43d70788c6", + "name": "count" + } + ] + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "filter": { + "language": "lucene", + "query": "" + }, + "id": "505e0670-7309-11e9-aba0-4f43d70788c6", + "label": "" + } + ], + "split_mode": "terms", + "stacked": "none", + "steps": 0, + "terms_field": "coredns.stats.zone", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "value_template": "{{value}} ms" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Avg Request Duration (cumulative) [Metricbeat CoreDNS] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "57c74300-7308-11e9-b0d0-414c3011ddbb", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:04.459Z", + "version": "WzM3MzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/86177430-728d-11e9-b0d0-414c3011ddbb.json b/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/86177430-728d-11e9-b0d0-414c3011ddbb.json new file mode 100644 index 000000000000..2fe394db0205 --- /dev/null +++ b/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/86177430-728d-11e9-b0d0-414c3011ddbb.json @@ -0,0 +1,200 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Requests by Zone [Metricbeat CoreDNS] ECS", + "uiStateJSON": { + "vis": { + "legendOpen": true + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "aggregate": "max", + "customLabel": "Request count", + "field": "coredns.stats.dns.request.count", + "size": 1, + "sortField": "@timestamp", + "sortOrder": "desc" + }, + "schema": "metric", + "type": "top_hits" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "server", + "field": "coredns.stats.server", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "split", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "zone", + "field": "coredns.stats.zone", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "protocol", + "field": "coredns.stats.proto", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "family", + "field": "coredns.stats.family", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "rotate": 0, + "show": true, + "truncate": 200 + }, + "position": "left", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "legendPosition": "right", + "orderBucketsBySum": false, + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "row": true, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Request count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": true, + "rotate": 75, + "show": true, + "truncate": 100 + }, + "name": "BottomAxis-1", + "position": "bottom", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Request count" + }, + "type": "value" + } + ] + }, + "title": "Requests by Zone [Metricbeat CoreDNS] ECS", + "type": "horizontal_bar" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "86177430-728d-11e9-b0d0-414c3011ddbb", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:04.459Z", + "version": "WzM3MzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/a19df590-53c4-11e9-b466-9be470bbd327-ecs.json b/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/a19df590-53c4-11e9-b466-9be470bbd327-ecs.json new file mode 100644 index 000000000000..96b411000deb --- /dev/null +++ b/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/a19df590-53c4-11e9-b466-9be470bbd327-ecs.json @@ -0,0 +1,103 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "exists": { + "field": "coredns.stats.dns.request.do.count" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "coredns.stats.dns.request.do.count", + "negate": false, + "type": "exists", + "value": "exists" + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "" + } + } + }, + "title": "DO Count [Metricbeat CoreDNS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "DO Count", + "field": "coredns.stats.dns.request.do.count", + "percents": [ + 100 + ] + }, + "schema": "metric", + "type": "percentiles" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": false + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "DO Count [Metricbeat CoreDNS] ECS", + "type": "metric" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a19df590-53c4-11e9-b466-9be470bbd327-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:04.459Z", + "version": "WzM3MzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/a58345f0-7298-11e9-b0d0-414c3011ddbb.json b/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/a58345f0-7298-11e9-b0d0-414c3011ddbb.json new file mode 100644 index 000000000000..69d6b4bbf960 --- /dev/null +++ b/x-pack/metricbeat/module/coredns/_meta/kibana/7/visualization/a58345f0-7298-11e9-b0d0-414c3011ddbb.json @@ -0,0 +1,194 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Requests by Type [Metricbeat CoreDNS] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "aggregate": "max", + "customLabel": "Requests", + "field": "coredns.stats.dns.request.type.count", + "size": 1, + "sortField": "@timestamp", + "sortOrder": "desc" + }, + "schema": "metric", + "type": "top_hits" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "server", + "field": "coredns.stats.server", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "split", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "timeRange": { + "from": "now-15m", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "4", + "params": { + "field": "coredns.stats.zone", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "field": "coredns.stats.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "_key", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "row": true, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Requests" + }, + "drawLinesBetweenPoints": true, + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Requests" + }, + "type": "value" + } + ] + }, + "title": "Requests by Type [Metricbeat CoreDNS] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a58345f0-7298-11e9-b0d0-414c3011ddbb", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:04.459Z", + "version": "WzM3MzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/2b0fd7b0-feac-11ea-b032-d59f894a5072.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/2b0fd7b0-feac-11ea-b032-d59f894a5072.json new file mode 100644 index 000000000000..720bea2b42b4 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/2b0fd7b0-feac-11ea-b032-d59f894a5072.json @@ -0,0 +1,254 @@ +{ + "attributes": { + "description": "Overview of GCP PubSub Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "3674673e-83e6-42df-8392-5284960a12ea", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "3674673e-83e6-42df-8392-5284960a12ea", + "panelRefName": "panel_3674673e-83e6-42df-8392-5284960a12ea", + "title": "Filters", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "c1d89f36-43ed-42e6-98a0-8820b28f7953", + "w": 16, + "x": 0, + "y": 6 + }, + "panelIndex": "c1d89f36-43ed-42e6-98a0-8820b28f7953", + "panelRefName": "panel_c1d89f36-43ed-42e6-98a0-8820b28f7953", + "title": "Topic Send Request", + "type": "lens", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "b26a6238-b982-4082-9e4e-3e3d9361a865", + "w": 16, + "x": 16, + "y": 6 + }, + "panelIndex": "b26a6238-b982-4082-9e4e-3e3d9361a865", + "panelRefName": "panel_b26a6238-b982-4082-9e4e-3e3d9361a865", + "title": "Topic Oldest Retained Acked Message Age", + "type": "lens", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "c7bbeabc-b158-4bdd-9ba3-9d45264d250b", + "w": 16, + "x": 32, + "y": 6 + }, + "panelIndex": "c7bbeabc-b158-4bdd-9ba3-9d45264d250b", + "panelRefName": "panel_c7bbeabc-b158-4bdd-9ba3-9d45264d250b", + "title": "Topic Oldest Unacked Message Age", + "type": "lens", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "b822a795-7086-4559-b7c0-176dfcc7380e", + "w": 16, + "x": 0, + "y": 19 + }, + "panelIndex": "b822a795-7086-4559-b7c0-176dfcc7380e", + "panelRefName": "panel_b822a795-7086-4559-b7c0-176dfcc7380e", + "title": "Subsciption Oldest Unacked Message", + "type": "lens", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "9c99d7bb-88f0-415c-abc1-c12ec1295236", + "w": 16, + "x": 16, + "y": 19 + }, + "panelIndex": "9c99d7bb-88f0-415c-abc1-c12ec1295236", + "panelRefName": "panel_9c99d7bb-88f0-415c-abc1-c12ec1295236", + "title": "Subscription Number of Undelivered Messages", + "type": "lens", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "8cc0ccbd-5798-4d68-a519-07ef1d9693fd", + "w": 16, + "x": 32, + "y": 32 + }, + "panelIndex": "8cc0ccbd-5798-4d68-a519-07ef1d9693fd", + "panelRefName": "panel_8cc0ccbd-5798-4d68-a519-07ef1d9693fd", + "title": "Snapshot Oldest Message", + "type": "lens", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "f9e45ec1-72e5-4f49-82cf-2132162d642c", + "w": 16, + "x": 0, + "y": 32 + }, + "panelIndex": "f9e45ec1-72e5-4f49-82cf-2132162d642c", + "panelRefName": "panel_f9e45ec1-72e5-4f49-82cf-2132162d642c", + "title": "Snapshot Number of Messages", + "type": "lens", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "d8876e62-daf0-4654-8618-8746d5da43e0", + "w": 16, + "x": 16, + "y": 32 + }, + "panelIndex": "d8876e62-daf0-4654-8618-8746d5da43e0", + "panelRefName": "panel_d8876e62-daf0-4654-8618-8746d5da43e0", + "title": "Snapshot Backlog Bytes", + "type": "lens", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "6079e9ed-da9f-4457-bb3a-7ed20f98605e", + "w": 16, + "x": 32, + "y": 19 + }, + "panelIndex": "6079e9ed-da9f-4457-bb3a-7ed20f98605e", + "panelRefName": "panel_6079e9ed-da9f-4457-bb3a-7ed20f98605e", + "title": "Subscription Backlog Bytes", + "type": "lens", + "version": "7.9.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat GCP] PubSub Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "2b0fd7b0-feac-11ea-b032-d59f894a5072", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "f6e33a00-feaf-11ea-b032-d59f894a5072", + "name": "3674673e-83e6-42df-8392-5284960a12ea:panel_3674673e-83e6-42df-8392-5284960a12ea", + "type": "visualization" + }, + { + "id": "bd399790-01a2-11eb-b032-d59f894a5072", + "name": "c1d89f36-43ed-42e6-98a0-8820b28f7953:panel_c1d89f36-43ed-42e6-98a0-8820b28f7953", + "type": "lens" + }, + { + "id": "25b76dc0-01a2-11eb-b032-d59f894a5072", + "name": "b26a6238-b982-4082-9e4e-3e3d9361a865:panel_b26a6238-b982-4082-9e4e-3e3d9361a865", + "type": "lens" + }, + { + "id": "5f97d300-01a1-11eb-b032-d59f894a5072", + "name": "c7bbeabc-b158-4bdd-9ba3-9d45264d250b:panel_c7bbeabc-b158-4bdd-9ba3-9d45264d250b", + "type": "lens" + }, + { + "id": "403d81e0-01a0-11eb-b032-d59f894a5072", + "name": "b822a795-7086-4559-b7c0-176dfcc7380e:panel_b822a795-7086-4559-b7c0-176dfcc7380e", + "type": "lens" + }, + { + "id": "11d06fc0-01a0-11eb-b032-d59f894a5072", + "name": "9c99d7bb-88f0-415c-abc1-c12ec1295236:panel_9c99d7bb-88f0-415c-abc1-c12ec1295236", + "type": "lens" + }, + { + "id": "f3e92c10-019d-11eb-b032-d59f894a5072", + "name": "8cc0ccbd-5798-4d68-a519-07ef1d9693fd:panel_8cc0ccbd-5798-4d68-a519-07ef1d9693fd", + "type": "lens" + }, + { + "id": "6de1f430-019d-11eb-b032-d59f894a5072", + "name": "f9e45ec1-72e5-4f49-82cf-2132162d642c:panel_f9e45ec1-72e5-4f49-82cf-2132162d642c", + "type": "lens" + }, + { + "id": "0776dbf0-019f-11eb-b032-d59f894a5072", + "name": "d8876e62-daf0-4654-8618-8746d5da43e0:panel_d8876e62-daf0-4654-8618-8746d5da43e0", + "type": "lens" + }, + { + "id": "79d80f10-01a0-11eb-b032-d59f894a5072", + "name": "6079e9ed-da9f-4457-bb3a-7ed20f98605e:panel_6079e9ed-da9f-4457-bb3a-7ed20f98605e", + "type": "lens" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:13.736Z", + "version": "WzM4MDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/6041d970-a6ae-11ea-950e-d57608e3aa51.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/6041d970-a6ae-11ea-950e-d57608e3aa51.json new file mode 100644 index 000000000000..a28f137fb35f --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/6041d970-a6ae-11ea-950e-d57608e3aa51.json @@ -0,0 +1,166 @@ +{ + "attributes": { + "description": "Overview of Google Cloud Load Balancing TCP SSL Proxy Metrics\n\n", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "02422b42-6d8c-4924-acc1-0d7f4fb9a1b1", + "w": 10, + "x": 0, + "y": 0 + }, + "panelIndex": "02422b42-6d8c-4924-acc1-0d7f4fb9a1b1", + "panelRefName": "panel_02422b42-6d8c-4924-acc1-0d7f4fb9a1b1", + "title": "Filters", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "da16e443-8524-47ea-83e1-6a16250ed61c", + "w": 13, + "x": 10, + "y": 0 + }, + "panelIndex": "da16e443-8524-47ea-83e1-6a16250ed61c", + "panelRefName": "panel_da16e443-8524-47ea-83e1-6a16250ed61c", + "title": "Open Connections", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "305f8fc3-e763-4b2c-8998-9e0e057ce713", + "w": 13, + "x": 23, + "y": 0 + }, + "panelIndex": "305f8fc3-e763-4b2c-8998-9e0e057ce713", + "panelRefName": "panel_305f8fc3-e763-4b2c-8998-9e0e057ce713", + "title": "Closed Connections", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "e4fe30c7-906a-4878-bec7-7a78a06d98d0", + "w": 12, + "x": 36, + "y": 0 + }, + "panelIndex": "e4fe30c7-906a-4878-bec7-7a78a06d98d0", + "panelRefName": "panel_e4fe30c7-906a-4878-bec7-7a78a06d98d0", + "title": "New Connections", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "c2bec6ee-96e8-440c-bfa4-6e0def7b0095", + "w": 23, + "x": 0, + "y": 16 + }, + "panelIndex": "c2bec6ee-96e8-440c-bfa4-6e0def7b0095", + "panelRefName": "panel_c2bec6ee-96e8-440c-bfa4-6e0def7b0095", + "title": "Egress Bytes", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "fbaeaa8f-262d-41b1-a621-d6dbff52ff59", + "w": 25, + "x": 23, + "y": 16 + }, + "panelIndex": "fbaeaa8f-262d-41b1-a621-d6dbff52ff59", + "panelRefName": "panel_fbaeaa8f-262d-41b1-a621-d6dbff52ff59", + "title": "Ingress Bytes", + "type": "visualization", + "version": "7.6.2" + } + ], + "timeRestore": false, + "title": "[Metricbeat GCP] Load Balancing TCP SSL Proxy Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "6041d970-a6ae-11ea-950e-d57608e3aa51", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "6958ed10-a6ad-11ea-950e-d57608e3aa51", + "name": "02422b42-6d8c-4924-acc1-0d7f4fb9a1b1:panel_02422b42-6d8c-4924-acc1-0d7f4fb9a1b1", + "type": "visualization" + }, + { + "id": "f86c26f0-a6aa-11ea-950e-d57608e3aa51", + "name": "da16e443-8524-47ea-83e1-6a16250ed61c:panel_da16e443-8524-47ea-83e1-6a16250ed61c", + "type": "visualization" + }, + { + "id": "c4e1e090-a6aa-11ea-950e-d57608e3aa51", + "name": "305f8fc3-e763-4b2c-8998-9e0e057ce713:panel_305f8fc3-e763-4b2c-8998-9e0e057ce713", + "type": "visualization" + }, + { + "id": "eed05d80-a6ac-11ea-950e-d57608e3aa51", + "name": "e4fe30c7-906a-4878-bec7-7a78a06d98d0:panel_e4fe30c7-906a-4878-bec7-7a78a06d98d0", + "type": "visualization" + }, + { + "id": "afeb98a0-a6ac-11ea-950e-d57608e3aa51", + "name": "c2bec6ee-96e8-440c-bfa4-6e0def7b0095:panel_c2bec6ee-96e8-440c-bfa4-6e0def7b0095", + "type": "visualization" + }, + { + "id": "be27b340-a6ac-11ea-950e-d57608e3aa51", + "name": "fbaeaa8f-262d-41b1-a621-d6dbff52ff59:panel_fbaeaa8f-262d-41b1-a621-d6dbff52ff59", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:12.649Z", + "version": "WzM3OTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/76c9e920-e890-11ea-bf8c-d13ebf358a78.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/76c9e920-e890-11ea-bf8c-d13ebf358a78.json new file mode 100644 index 000000000000..351339079bbf --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/76c9e920-e890-11ea-bf8c-d13ebf358a78.json @@ -0,0 +1,166 @@ +{ + "attributes": { + "description": "Overview of Google Cloud Billing Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "2552123b-6ad6-4d63-89c3-0672ab428580", + "w": 8, + "x": 0, + "y": 0 + }, + "panelIndex": "2552123b-6ad6-4d63-89c3-0672ab428580", + "panelRefName": "panel_2552123b-6ad6-4d63-89c3-0672ab428580", + "title": "Filters", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "2d3d3b79-0656-45c2-b051-4489484b625c", + "w": 10, + "x": 8, + "y": 0 + }, + "panelIndex": "2d3d3b79-0656-45c2-b051-4489484b625c", + "panelRefName": "panel_2d3d3b79-0656-45c2-b051-4489484b625c", + "title": "Cost Per Month", + "type": "lens", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "b737e597-cc4d-4437-859c-6d491679599d", + "w": 30, + "x": 18, + "y": 0 + }, + "panelIndex": "b737e597-cc4d-4437-859c-6d491679599d", + "panelRefName": "panel_b737e597-cc4d-4437-859c-6d491679599d", + "title": "Cost Per Project ID", + "type": "lens", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "9eedb0c7-2089-4e0f-af98-721034203aad", + "w": 8, + "x": 0, + "y": 14 + }, + "panelIndex": "9eedb0c7-2089-4e0f-af98-721034203aad", + "panelRefName": "panel_9eedb0c7-2089-4e0f-af98-721034203aad", + "title": "Total Number Of Projects", + "type": "lens", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a", + "w": 48, + "x": 0, + "y": 20 + }, + "panelIndex": "f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a", + "panelRefName": "panel_f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a", + "title": "Cost Per Invoice Month", + "type": "lens", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "991e60a8-68eb-4c2b-ac9a-b553e90dd49d", + "w": 48, + "x": 0, + "y": 35 + }, + "panelIndex": "991e60a8-68eb-4c2b-ac9a-b553e90dd49d", + "panelRefName": "panel_991e60a8-68eb-4c2b-ac9a-b553e90dd49d", + "title": "Total Billing Cost", + "type": "lens", + "version": "7.9.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat GCP] Billing Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "76c9e920-e890-11ea-bf8c-d13ebf358a78", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "5d2f9160-e88e-11ea-bf8c-d13ebf358a78", + "name": "2552123b-6ad6-4d63-89c3-0672ab428580:panel_2552123b-6ad6-4d63-89c3-0672ab428580", + "type": "visualization" + }, + { + "id": "520c6f10-ec8a-11ea-a0ed-7fe6b565d158", + "name": "2d3d3b79-0656-45c2-b051-4489484b625c:panel_2d3d3b79-0656-45c2-b051-4489484b625c", + "type": "lens" + }, + { + "id": "057de170-e88d-11ea-bf8c-d13ebf358a78", + "name": "b737e597-cc4d-4437-859c-6d491679599d:panel_b737e597-cc4d-4437-859c-6d491679599d", + "type": "lens" + }, + { + "id": "dd835300-e88f-11ea-bf8c-d13ebf358a78", + "name": "9eedb0c7-2089-4e0f-af98-721034203aad:panel_9eedb0c7-2089-4e0f-af98-721034203aad", + "type": "lens" + }, + { + "id": "e6933020-e88d-11ea-bf8c-d13ebf358a78", + "name": "f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a:panel_f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a", + "type": "lens" + }, + { + "id": "73346db0-e88d-11ea-bf8c-d13ebf358a78", + "name": "991e60a8-68eb-4c2b-ac9a-b553e90dd49d:panel_991e60a8-68eb-4c2b-ac9a-b553e90dd49d", + "type": "lens" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:08.618Z", + "version": "WzM3NjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/8f9c6cc0-909d-11ea-8180-7b0dacd9df87.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/8f9c6cc0-909d-11ea-8180-7b0dacd9df87.json new file mode 100644 index 000000000000..339f4ccdf9d7 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/8f9c6cc0-909d-11ea-8180-7b0dacd9df87.json @@ -0,0 +1,144 @@ +{ + "attributes": { + "description": "Overview of GCP Load Balancing L3 Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "8b86e712-4709-458a-b8e9-40e79305b1aa", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "8b86e712-4709-458a-b8e9-40e79305b1aa", + "panelRefName": "panel_8b86e712-4709-458a-b8e9-40e79305b1aa", + "title": "Filters", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "44d18a84-d060-4149-825d-eacc61f946f3", + "w": 24, + "x": 24, + "y": 6 + }, + "panelIndex": "44d18a84-d060-4149-825d-eacc61f946f3", + "panelRefName": "panel_44d18a84-d060-4149-825d-eacc61f946f3", + "title": "Egress Packets", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86", + "w": 24, + "x": 0, + "y": 6 + }, + "panelIndex": "c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86", + "panelRefName": "panel_c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86", + "title": "Egress Bytes", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "c5782327-dc55-466d-97d8-b79618f0b47a", + "w": 24, + "x": 24, + "y": 21 + }, + "panelIndex": "c5782327-dc55-466d-97d8-b79618f0b47a", + "panelRefName": "panel_c5782327-dc55-466d-97d8-b79618f0b47a", + "title": "Ingress Packets", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "beaf5f45-5217-4aed-b663-69e5e9ca35c3", + "w": 24, + "x": 0, + "y": 21 + }, + "panelIndex": "beaf5f45-5217-4aed-b663-69e5e9ca35c3", + "panelRefName": "panel_beaf5f45-5217-4aed-b663-69e5e9ca35c3", + "title": "Ingress Bytes", + "type": "visualization", + "version": "7.6.2" + } + ], + "timeRestore": false, + "title": "[Metricbeat GCP] Load Balancing L3 Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "8f9c6cc0-909d-11ea-8180-7b0dacd9df87", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "3f4e9040-909d-11ea-8180-7b0dacd9df87", + "name": "8b86e712-4709-458a-b8e9-40e79305b1aa:panel_8b86e712-4709-458a-b8e9-40e79305b1aa", + "type": "visualization" + }, + { + "id": "2f6b6740-909b-11ea-8180-7b0dacd9df87", + "name": "44d18a84-d060-4149-825d-eacc61f946f3:panel_44d18a84-d060-4149-825d-eacc61f946f3", + "type": "visualization" + }, + { + "id": "e562eb50-909a-11ea-8180-7b0dacd9df87", + "name": "c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86:panel_c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86", + "type": "visualization" + }, + { + "id": "543dac40-909b-11ea-8180-7b0dacd9df87", + "name": "c5782327-dc55-466d-97d8-b79618f0b47a:panel_c5782327-dc55-466d-97d8-b79618f0b47a", + "type": "visualization" + }, + { + "id": "434f69f0-909b-11ea-8180-7b0dacd9df87", + "name": "beaf5f45-5217-4aed-b663-69e5e9ca35c3:panel_beaf5f45-5217-4aed-b663-69e5e9ca35c3", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:11.683Z", + "version": "WzM3OTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-billing-overview.ndjson b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-billing-overview.ndjson deleted file mode 100644 index a10b4a0d53c3..000000000000 --- a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-billing-overview.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Account ID Filter [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.provider\",\"id\":\"1598550838945\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Cloud Provider \",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"cloud.account.id\",\"id\":\"1598893530938\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Account ID\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"1598550838945\",\"type\":\"list\"},{\"fieldName\":\"gcp.billing.invoice_month\",\"id\":\"1598988595566\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Invoice Month\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Account ID Filter [Metricbeat GCP]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"5d2f9160-e88e-11ea-bf8c-d13ebf358a78","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:08.618Z","version":"WzM3NjgsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"e12171da-25a4-41ea-86d3-8fd71205c263":{"columnOrder":["6011e524-4646-410b-8d1c-06c281e8f7ed","f8ab301c-f139-4573-b233-ed8a3f717e24"],"columns":{"6011e524-4646-410b-8d1c-06c281e8f7ed":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Invoice Month","operationType":"terms","params":{"orderBy":{"columnId":"f8ab301c-f139-4573-b233-ed8a3f717e24","type":"column"},"orderDirection":"desc","size":12},"scale":"ordinal","sourceField":"gcp.billing.invoice_month"},"f8ab301c-f139-4573-b233-ed8a3f717e24":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total Billing Cost","operationType":"sum","scale":"ratio","sourceField":"gcp.billing.total"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"columns":[{"columnId":"6011e524-4646-410b-8d1c-06c281e8f7ed"},{"columnId":"f8ab301c-f139-4573-b233-ed8a3f717e24"}],"layerId":"e12171da-25a4-41ea-86d3-8fd71205c263"}},"title":"Total Cost Table [Metricbeat GCP]","visualizationType":"lnsDatatable"},"coreMigrationVersion":"8.0.0","id":"520c6f10-ec8a-11ea-a0ed-7fe6b565d158","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-e12171da-25a4-41ea-86d3-8fd71205c263","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:08.618Z","version":"WzM3NjksMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"4ca843af-63d7-46b9-a719-51a81eebf1f7":{"columnOrder":["2477291e-9021-4eb2-9fce-8da1ee792c49","10b91492-efef-490d-bc7a-c2074b2eae84"],"columns":{"10b91492-efef-490d-bc7a-c2074b2eae84":{"dataType":"number","isBucketed":false,"label":"Maximum of gcp.billing.total","operationType":"max","scale":"ratio","sourceField":"gcp.billing.total"},"2477291e-9021-4eb2-9fce-8da1ee792c49":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Cost Per Project ID","operationType":"terms","params":{"orderBy":{"columnId":"10b91492-efef-490d-bc7a-c2074b2eae84","type":"column"},"orderDirection":"desc","size":20},"scale":"ordinal","sourceField":"gcp.billing.project_id"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"layers":[{"categoryDisplay":"default","groups":["2477291e-9021-4eb2-9fce-8da1ee792c49"],"layerId":"4ca843af-63d7-46b9-a719-51a81eebf1f7","legendDisplay":"default","metric":"10b91492-efef-490d-bc7a-c2074b2eae84","nestedLegend":false,"numberDisplay":"percent"}],"shape":"pie"}},"title":"Cost Per Project ID [Metricbeat GCP]","visualizationType":"lnsPie"},"coreMigrationVersion":"8.0.0","id":"057de170-e88d-11ea-bf8c-d13ebf358a78","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-4ca843af-63d7-46b9-a719-51a81eebf1f7","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:08.618Z","version":"WzM3NzAsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"4cb00ce3-c62e-46f3-90ce-b69c876b9605":{"columnOrder":["2f66b924-5392-4e5e-93fe-5b23a87068c1"],"columns":{"2f66b924-5392-4e5e-93fe-5b23a87068c1":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"","operationType":"unique_count","scale":"ratio","sourceField":"gcp.billing.project_id"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"accessor":"2f66b924-5392-4e5e-93fe-5b23a87068c1","layerId":"4cb00ce3-c62e-46f3-90ce-b69c876b9605"}},"title":"Total Number Of Projects [Metricbeat GCP]","visualizationType":"lnsMetric"},"coreMigrationVersion":"8.0.0","id":"dd835300-e88f-11ea-bf8c-d13ebf358a78","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-4cb00ce3-c62e-46f3-90ce-b69c876b9605","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:08.618Z","version":"WzM3NzEsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"4ca843af-63d7-46b9-a719-51a81eebf1f7":{"columnOrder":["e25f49de-f161-4be8-a8fc-519188a7776c","b92edf5e-58bc-4382-9cd5-19db2c332c93","af747bf6-66e9-4760-bbd8-3dae9c97159d"],"columns":{"af747bf6-66e9-4760-bbd8-3dae9c97159d":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total Billing Cost","operationType":"max","scale":"ratio","sourceField":"gcp.billing.total"},"b92edf5e-58bc-4382-9cd5-19db2c332c93":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Invoice Month","operationType":"terms","params":{"orderBy":{"type":"alphabetical"},"orderDirection":"asc","size":5},"scale":"ordinal","sourceField":"gcp.billing.invoice_month"},"e25f49de-f161-4be8-a8fc-519188a7776c":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Monthly Cost","operationType":"terms","params":{"orderBy":{"columnId":"af747bf6-66e9-4760-bbd8-3dae9c97159d","type":"column"},"orderDirection":"desc","size":10},"scale":"ordinal","sourceField":"gcp.billing.project_id"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["af747bf6-66e9-4760-bbd8-3dae9c97159d"],"layerId":"4ca843af-63d7-46b9-a719-51a81eebf1f7","seriesType":"bar_stacked","splitAccessor":"b92edf5e-58bc-4382-9cd5-19db2c332c93","xAccessor":"e25f49de-f161-4be8-a8fc-519188a7776c"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar_stacked"}},"title":"Monthly Cost Per Project [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"e6933020-e88d-11ea-bf8c-d13ebf358a78","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-4ca843af-63d7-46b9-a719-51a81eebf1f7","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:08.618Z","version":"WzM3NzIsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"325e60ce-0fbd-42b0-82f6-b10df31fef6c":{"columnOrder":["faaaaf23-f362-4a00-be9e-8a155208a39e","c4bc659c-3e7c-41f2-bc38-32d9edee95e8","3041fc1b-ceb8-4188-b55d-d354819f267e"],"columns":{"3041fc1b-ceb8-4188-b55d-d354819f267e":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total Billing","operationType":"max","scale":"ratio","sourceField":"gcp.billing.total"},"c4bc659c-3e7c-41f2-bc38-32d9edee95e8":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1d"},"scale":"interval","sourceField":"@timestamp"},"faaaaf23-f362-4a00-be9e-8a155208a39e":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Project ID","operationType":"terms","params":{"orderBy":{"columnId":"3041fc1b-ceb8-4188-b55d-d354819f267e","type":"column"},"orderDirection":"desc","size":10},"scale":"ordinal","sourceField":"gcp.billing.project_id"}}},"4ca843af-63d7-46b9-a719-51a81eebf1f7":{"columnOrder":["1164563d-d2b3-4067-bc7b-d694179182ed","10b91492-efef-490d-bc7a-c2074b2eae84"],"columns":{"10b91492-efef-490d-bc7a-c2074b2eae84":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Total Billing Cost","operationType":"sum","scale":"ratio","sourceField":"gcp.billing.total"},"1164563d-d2b3-4067-bc7b-d694179182ed":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1d"},"scale":"interval","sourceField":"@timestamp"},"e25f49de-f161-4be8-a8fc-519188a7776c":{"customLabel":true,"dataType":"string","isBucketed":true,"label":"Cost","operationType":"terms","params":{"orderBy":{"columnId":"10b91492-efef-490d-bc7a-c2074b2eae84","type":"column"},"orderDirection":"desc","size":15},"scale":"ordinal","sourceField":"gcp.billing.project_id"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["3041fc1b-ceb8-4188-b55d-d354819f267e"],"layerId":"325e60ce-0fbd-42b0-82f6-b10df31fef6c","seriesType":"bar_stacked","splitAccessor":"faaaaf23-f362-4a00-be9e-8a155208a39e","xAccessor":"c4bc659c-3e7c-41f2-bc38-32d9edee95e8"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"bar_stacked"}},"title":"Total Cost Bar Chart [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"73346db0-e88d-11ea-bf8c-d13ebf358a78","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-325e60ce-0fbd-42b0-82f6-b10df31fef6c","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-4ca843af-63d7-46b9-a719-51a81eebf1f7","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:08.618Z","version":"WzM3NzMsMV0="} -{"attributes":{"description":"Overview of Google Cloud Billing Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"2552123b-6ad6-4d63-89c3-0672ab428580\",\"w\":8,\"x\":0,\"y\":0},\"panelIndex\":\"2552123b-6ad6-4d63-89c3-0672ab428580\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_2552123b-6ad6-4d63-89c3-0672ab428580\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":20,\"i\":\"2d3d3b79-0656-45c2-b051-4489484b625c\",\"w\":10,\"x\":8,\"y\":0},\"panelIndex\":\"2d3d3b79-0656-45c2-b051-4489484b625c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cost Per Month\",\"panelRefName\":\"panel_2d3d3b79-0656-45c2-b051-4489484b625c\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":20,\"i\":\"b737e597-cc4d-4437-859c-6d491679599d\",\"w\":30,\"x\":18,\"y\":0},\"panelIndex\":\"b737e597-cc4d-4437-859c-6d491679599d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cost Per Project ID\",\"panelRefName\":\"panel_b737e597-cc4d-4437-859c-6d491679599d\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":6,\"i\":\"9eedb0c7-2089-4e0f-af98-721034203aad\",\"w\":8,\"x\":0,\"y\":14},\"panelIndex\":\"9eedb0c7-2089-4e0f-af98-721034203aad\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Number Of Projects\",\"panelRefName\":\"panel_9eedb0c7-2089-4e0f-af98-721034203aad\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a\",\"w\":48,\"x\":0,\"y\":20},\"panelIndex\":\"f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cost Per Invoice Month\",\"panelRefName\":\"panel_f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":15,\"i\":\"991e60a8-68eb-4c2b-ac9a-b553e90dd49d\",\"w\":48,\"x\":0,\"y\":35},\"panelIndex\":\"991e60a8-68eb-4c2b-ac9a-b553e90dd49d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Billing Cost\",\"panelRefName\":\"panel_991e60a8-68eb-4c2b-ac9a-b553e90dd49d\"}]","timeRestore":false,"title":"[Metricbeat GCP] Billing Overview","version":1},"coreMigrationVersion":"8.0.0","id":"76c9e920-e890-11ea-bf8c-d13ebf358a78","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"5d2f9160-e88e-11ea-bf8c-d13ebf358a78","name":"2552123b-6ad6-4d63-89c3-0672ab428580:panel_2552123b-6ad6-4d63-89c3-0672ab428580","type":"visualization"},{"id":"520c6f10-ec8a-11ea-a0ed-7fe6b565d158","name":"2d3d3b79-0656-45c2-b051-4489484b625c:panel_2d3d3b79-0656-45c2-b051-4489484b625c","type":"lens"},{"id":"057de170-e88d-11ea-bf8c-d13ebf358a78","name":"b737e597-cc4d-4437-859c-6d491679599d:panel_b737e597-cc4d-4437-859c-6d491679599d","type":"lens"},{"id":"dd835300-e88f-11ea-bf8c-d13ebf358a78","name":"9eedb0c7-2089-4e0f-af98-721034203aad:panel_9eedb0c7-2089-4e0f-af98-721034203aad","type":"lens"},{"id":"e6933020-e88d-11ea-bf8c-d13ebf358a78","name":"f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a:panel_f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a","type":"lens"},{"id":"73346db0-e88d-11ea-bf8c-d13ebf358a78","name":"991e60a8-68eb-4c2b-ac9a-b553e90dd49d:panel_991e60a8-68eb-4c2b-ac9a-b553e90dd49d","type":"lens"}],"type":"dashboard","updated_at":"2021-08-04T16:31:08.618Z","version":"WzM3NjcsMV0="} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-compute-overview.ndjson b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-compute-overview.ndjson deleted file mode 100644 index 9eef5be33595..000000000000 --- a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-compute-overview.ndjson +++ /dev/null @@ -1,10 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"az-instance-account Filter [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"cloud.availability_zone\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"availability zone\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"cloud.instance.name\",\"id\":\"1583510592540\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"instance name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"cloud.account.id\",\"id\":\"1583510650472\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"account id\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"az-instance-account Filter [Metricbeat GCP]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"3aa96470-5fc4-11ea-a4f6-717338406083","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3NzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Compute Instance Uptime Gauge [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"74a18260-63df-11ea-9543-55b68a4bcad3\"}],\"bar_color_rules\":[{\"id\":\"77a54c80-63df-11ea-9543-55b68a4bcad3\"}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"777371a0-63e0-11ea-9543-55b68a4bcad3\",\"value\":0}],\"gauge_inner_width\":10,\"gauge_max\":\"\",\"gauge_style\":\"circle\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average Uptime\",\"line_width\":1,\"metrics\":[{\"denominator\":\"60\",\"field\":\"gcp.compute.instance.uptime.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"numerator\":\"gcp.compute.instance.uptime.value\",\"type\":\"avg\",\"values\":[\"60\"]},{\"id\":\"81dc6000-63e7-11ea-994d-3b2599babc53\",\"script\":\"params.uptime / 60\\n\",\"type\":\"math\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"85f3bd00-63e7-11ea-994d-3b2599babc53\",\"name\":\"uptime\"}]}],\"override_index_pattern\":0,\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"tooltip_mode\":\"show_all\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Compute Instance Uptime Gauge [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"da5bc460-63e1-11ea-b0ac-95d4ecb1fecd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3NzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Compute CPU Utilization [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.compute.instance.cpu.utilization.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Compute CPU Utilization [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3f472ea0-5e47-11ea-a4f6-717338406083","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3NzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Compute Read I/O [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.compute.instance.disk.read_ops_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Compute Read I/O [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"89513bc0-5e48-11ea-a4f6-717338406083","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3NzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Compute Write I/O [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.compute.instance.disk.write_ops_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Compute Write I/O [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"95e1f050-5e48-11ea-a4f6-717338406083","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3NzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Compute Network Sent Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.compute.instance.network.sent_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Compute Network Sent Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6f795e70-5e49-11ea-a4f6-717338406083","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3ODAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Compute Network Received Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":0,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.compute.instance.network.received_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Compute Network Received Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"43f45ba0-5e4a-11ea-a4f6-717338406083","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3ODEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Compute Firewall Dropped Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"3ece14c0-5e4c-11ea-9061-37f24ca5b01f\"}],\"bar_color_rules\":[{\"id\":\"3b9c35c0-5e4c-11ea-9061-37f24ca5b01f\"}],\"drop_last_bucket\":0,\"gauge_color_rules\":[{\"id\":\"3b27a200-5e4c-11ea-9061-37f24ca5b01f\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.compute.firewall.dropped_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Compute Firewall Dropped Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9d919d00-5e4d-11ea-a4f6-717338406083","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3ODIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Compute Firewall Dropped Packets [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"3ece14c0-5e4c-11ea-9061-37f24ca5b01f\"}],\"bar_color_rules\":[{\"id\":\"3b9c35c0-5e4c-11ea-9061-37f24ca5b01f\"}],\"drop_last_bucket\":0,\"gauge_color_rules\":[{\"id\":\"3b27a200-5e4c-11ea-9061-37f24ca5b01f\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"3\",\"metrics\":[{\"field\":\"gcp.compute.firewall.dropped_packets_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"2\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Compute Firewall Dropped Packets [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"ef1508c0-5e4c-11ea-a4f6-717338406083","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3ODMsMV0="} -{"attributes":{"description":"Overview of GCP Compute Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":17,\"i\":\"28706ab2-1142-401d-9143-f4176a034c10\",\"w\":7,\"x\":0,\"y\":0},\"panelIndex\":\"28706ab2-1142-401d-9143-f4176a034c10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_28706ab2-1142-401d-9143-f4176a034c10\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":17,\"i\":\"2034fcc8-5cd7-4ee8-8c8f-99054f025b05\",\"w\":10,\"x\":7,\"y\":0},\"panelIndex\":\"2034fcc8-5cd7-4ee8-8c8f-99054f025b05\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Instance Uptime\",\"panelRefName\":\"panel_2034fcc8-5cd7-4ee8-8c8f-99054f025b05\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":17,\"i\":\"5f6f2ecd-dcaf-4455-967c-ede6b38f431f\",\"w\":31,\"x\":17,\"y\":0},\"panelIndex\":\"5f6f2ecd-dcaf-4455-967c-ede6b38f431f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"CPU Utilization\",\"panelRefName\":\"panel_5f6f2ecd-dcaf-4455-967c-ede6b38f431f\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"9c6f36f5-c2b2-40f5-8ee3-af6131168842\",\"w\":24,\"x\":0,\"y\":17},\"panelIndex\":\"9c6f36f5-c2b2-40f5-8ee3-af6131168842\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Read I/O\",\"panelRefName\":\"panel_9c6f36f5-c2b2-40f5-8ee3-af6131168842\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"93906f63-42c9-4f30-9b2c-05041a9e1efe\",\"w\":24,\"x\":24,\"y\":17},\"panelIndex\":\"93906f63-42c9-4f30-9b2c-05041a9e1efe\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Write I/O\",\"panelRefName\":\"panel_93906f63-42c9-4f30-9b2c-05041a9e1efe\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"e1a4e862-dd00-409f-8746-8a8e4bc82807\",\"w\":24,\"x\":0,\"y\":32},\"panelIndex\":\"e1a4e862-dd00-409f-8746-8a8e4bc82807\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Network Sent Bytes\",\"panelRefName\":\"panel_e1a4e862-dd00-409f-8746-8a8e4bc82807\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce\",\"w\":24,\"x\":24,\"y\":32},\"panelIndex\":\"6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Network Received Bytes\",\"panelRefName\":\"panel_6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"00689e12-4cb3-49ad-ac33-dbe4279f446e\",\"w\":24,\"x\":0,\"y\":47},\"panelIndex\":\"00689e12-4cb3-49ad-ac33-dbe4279f446e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Firewall Dropped Bytes\",\"panelRefName\":\"panel_00689e12-4cb3-49ad-ac33-dbe4279f446e\"},{\"version\":\"7.9.1\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"901e7bf5-35f5-4c1a-9627-27f6c20d2514\",\"w\":24,\"x\":24,\"y\":47},\"panelIndex\":\"901e7bf5-35f5-4c1a-9627-27f6c20d2514\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Firewall Dropped Packets\",\"panelRefName\":\"panel_901e7bf5-35f5-4c1a-9627-27f6c20d2514\"}]","timeRestore":false,"title":"[Metricbeat GCP] Compute Overview","version":1},"coreMigrationVersion":"8.0.0","id":"f40ee870-5e4a-11ea-a4f6-717338406083","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"3aa96470-5fc4-11ea-a4f6-717338406083","name":"28706ab2-1142-401d-9143-f4176a034c10:panel_28706ab2-1142-401d-9143-f4176a034c10","type":"visualization"},{"id":"da5bc460-63e1-11ea-b0ac-95d4ecb1fecd","name":"2034fcc8-5cd7-4ee8-8c8f-99054f025b05:panel_2034fcc8-5cd7-4ee8-8c8f-99054f025b05","type":"visualization"},{"id":"3f472ea0-5e47-11ea-a4f6-717338406083","name":"5f6f2ecd-dcaf-4455-967c-ede6b38f431f:panel_5f6f2ecd-dcaf-4455-967c-ede6b38f431f","type":"visualization"},{"id":"89513bc0-5e48-11ea-a4f6-717338406083","name":"9c6f36f5-c2b2-40f5-8ee3-af6131168842:panel_9c6f36f5-c2b2-40f5-8ee3-af6131168842","type":"visualization"},{"id":"95e1f050-5e48-11ea-a4f6-717338406083","name":"93906f63-42c9-4f30-9b2c-05041a9e1efe:panel_93906f63-42c9-4f30-9b2c-05041a9e1efe","type":"visualization"},{"id":"6f795e70-5e49-11ea-a4f6-717338406083","name":"e1a4e862-dd00-409f-8746-8a8e4bc82807:panel_e1a4e862-dd00-409f-8746-8a8e4bc82807","type":"visualization"},{"id":"43f45ba0-5e4a-11ea-a4f6-717338406083","name":"6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce:panel_6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce","type":"visualization"},{"id":"9d919d00-5e4d-11ea-a4f6-717338406083","name":"00689e12-4cb3-49ad-ac33-dbe4279f446e:panel_00689e12-4cb3-49ad-ac33-dbe4279f446e","type":"visualization"},{"id":"ef1508c0-5e4c-11ea-a4f6-717338406083","name":"901e7bf5-35f5-4c1a-9627-27f6c20d2514:panel_901e7bf5-35f5-4c1a-9627-27f6c20d2514","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:09.611Z","version":"WzM3NzQsMV0="} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-load-balancing-https-overview.ndjson b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-load-balancing-https-overview.ndjson deleted file mode 100644 index f579b0506639..000000000000 --- a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-load-balancing-https-overview.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing HTTPS Filters [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"gcp.labels.resource.url_map_name\",\"id\":\"1588961027791\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"URL Map Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.resource.region\",\"id\":\"1588961077426\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.metrics.client_country\",\"id\":\"1588961157559\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Client Country\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Load Balancing HTTPS Filters [Metricbeat GCP]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"d5418f80-9156-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:10.632Z","version":"WzM3ODUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing HTTPS Backend Request Count [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.https.backend_request_count.value : * \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.https.backend_request_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.url_map_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":null,\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing HTTPS Backend Request Count [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"dff87070-9155-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:10.632Z","version":"WzM3ODYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing HTTPS Request Count [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.https.request_count.value : * \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.https.request_count.value : * \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.https.request_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.url_map_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":null,\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing HTTPS Request Count [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6f933ef0-9155-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:10.632Z","version":"WzM3ODcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing HTTPS Backend Request Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.https.backend_request_bytes_count.value : * \"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.https.backend_request_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.url_map_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":null,\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing HTTPS Backend Request Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"eb891a20-9155-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:10.632Z","version":"WzM3ODgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing HTTPS Request Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.https.request_bytes_count.value : * \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.https.request_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.url_map_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":null,\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing HTTPS Request Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8d4ddf40-9155-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:10.632Z","version":"WzM3ODksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing HTTPS Backend Response Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.https.backend_response_bytes_count.value : * \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.https.backend_response_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.url_map_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":null,\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing HTTPS Backend Response Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0bd0a6e0-9156-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:10.632Z","version":"WzM3OTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing HTTPS Response Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.https.response_bytes_count.value : * \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.https.response_bytes_count.value : * \"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.https.response_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.url_map_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":null,\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing HTTPS Response Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d63465e0-9154-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:10.632Z","version":"WzM3OTEsMV0="} -{"attributes":{"description":"Overview of GCP Load Balancing HTTPS Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"f89112f9-0f3a-4712-a317-23230cd66213\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"f89112f9-0f3a-4712-a317-23230cd66213\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_f89112f9-0f3a-4712-a317-23230cd66213\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"8f4baaa9-6f4d-40fa-a77f-9f68f83a379c\",\"w\":24,\"x\":24,\"y\":6},\"panelIndex\":\"8f4baaa9-6f4d-40fa-a77f-9f68f83a379c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Backend Request Count\",\"panelRefName\":\"panel_8f4baaa9-6f4d-40fa-a77f-9f68f83a379c\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"10490530-a766-4f87-824a-3fc18bf2e85b\",\"w\":24,\"x\":0,\"y\":6},\"panelIndex\":\"10490530-a766-4f87-824a-3fc18bf2e85b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Request Count\",\"panelRefName\":\"panel_10490530-a766-4f87-824a-3fc18bf2e85b\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"e737b020-eb94-4eb1-b53d-50fa551df648\",\"w\":24,\"x\":24,\"y\":21},\"panelIndex\":\"e737b020-eb94-4eb1-b53d-50fa551df648\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Backend Request Bytes\",\"panelRefName\":\"panel_e737b020-eb94-4eb1-b53d-50fa551df648\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"b90db52e-982e-4360-b5ed-71147ba79246\",\"w\":24,\"x\":0,\"y\":21},\"panelIndex\":\"b90db52e-982e-4360-b5ed-71147ba79246\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Request Bytes\",\"panelRefName\":\"panel_b90db52e-982e-4360-b5ed-71147ba79246\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"a2a5c845-d426-425f-b2e6-e8df6038fd9d\",\"w\":24,\"x\":24,\"y\":36},\"panelIndex\":\"a2a5c845-d426-425f-b2e6-e8df6038fd9d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Backend Response Bytes\",\"panelRefName\":\"panel_a2a5c845-d426-425f-b2e6-e8df6038fd9d\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2bf5bf09-e743-4c6d-8251-d12c9c70f273\",\"w\":24,\"x\":0,\"y\":36},\"panelIndex\":\"2bf5bf09-e743-4c6d-8251-d12c9c70f273\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Response Bytes\",\"panelRefName\":\"panel_2bf5bf09-e743-4c6d-8251-d12c9c70f273\"}]","timeRestore":false,"title":"[Metricbeat GCP] Load Balancing HTTPS Overview","version":1},"coreMigrationVersion":"8.0.0","id":"aa5b8bd0-9157-11ea-8180-7b0dacd9df87","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"d5418f80-9156-11ea-8180-7b0dacd9df87","name":"f89112f9-0f3a-4712-a317-23230cd66213:panel_f89112f9-0f3a-4712-a317-23230cd66213","type":"visualization"},{"id":"dff87070-9155-11ea-8180-7b0dacd9df87","name":"8f4baaa9-6f4d-40fa-a77f-9f68f83a379c:panel_8f4baaa9-6f4d-40fa-a77f-9f68f83a379c","type":"visualization"},{"id":"6f933ef0-9155-11ea-8180-7b0dacd9df87","name":"10490530-a766-4f87-824a-3fc18bf2e85b:panel_10490530-a766-4f87-824a-3fc18bf2e85b","type":"visualization"},{"id":"eb891a20-9155-11ea-8180-7b0dacd9df87","name":"e737b020-eb94-4eb1-b53d-50fa551df648:panel_e737b020-eb94-4eb1-b53d-50fa551df648","type":"visualization"},{"id":"8d4ddf40-9155-11ea-8180-7b0dacd9df87","name":"b90db52e-982e-4360-b5ed-71147ba79246:panel_b90db52e-982e-4360-b5ed-71147ba79246","type":"visualization"},{"id":"0bd0a6e0-9156-11ea-8180-7b0dacd9df87","name":"a2a5c845-d426-425f-b2e6-e8df6038fd9d:panel_a2a5c845-d426-425f-b2e6-e8df6038fd9d","type":"visualization"},{"id":"d63465e0-9154-11ea-8180-7b0dacd9df87","name":"2bf5bf09-e743-4c6d-8251-d12c9c70f273:panel_2bf5bf09-e743-4c6d-8251-d12c9c70f273","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:10.632Z","version":"WzM3ODQsMV0="} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-l3-overview.ndjson b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-l3-overview.ndjson deleted file mode 100644 index 7de83b061f64..000000000000 --- a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-l3-overview.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing L3 Filters [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"gcp.labels.resource.backend_name\",\"id\":\"1588881306802\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Backend Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.metrics.client_zone\",\"id\":\"1588881320708\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Client Zone\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.metrics.client_network\",\"id\":\"1588881383318\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Client Network\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.metrics.client_subnetwork\",\"id\":\"1588881498842\",\"indexPatternRefName\":\"control_3_index_pattern\",\"label\":\"Client Sub-network\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Load Balancing L3 Filters [Metricbeat GCP]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"3f4e9040-909d-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_3_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:11.683Z","version":"WzM3OTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing L3 Egress Packets [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.l3.internal.egress_packets_count.value : * \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.l3.internal.egress_packets_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing L3 Egress Packets [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2f6b6740-909b-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:11.683Z","version":"WzM3OTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing L3 Egress Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.l3.internal.egress_bytes_count.value : * \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.l3.internal.egress_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing L3 Egress Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e562eb50-909a-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:11.683Z","version":"WzM3OTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing L3 Ingress Packets [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.l3.internal.ingress_packets_count.value : * \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.l3.internal.ingress_packets_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing L3 Ingress Packets [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"543dac40-909b-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:11.683Z","version":"WzM3OTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing L3 Ingress Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"drop_last_bucket\":1,\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.loadbalancing.l3.internal.ingress_bytes_count.value : * \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.l3.internal.ingress_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing L3 Ingress Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"434f69f0-909b-11ea-8180-7b0dacd9df87","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:11.683Z","version":"WzM3OTcsMV0="} -{"attributes":{"description":"Overview of GCP Load Balancing L3 Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"8b86e712-4709-458a-b8e9-40e79305b1aa\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"8b86e712-4709-458a-b8e9-40e79305b1aa\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_8b86e712-4709-458a-b8e9-40e79305b1aa\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"44d18a84-d060-4149-825d-eacc61f946f3\",\"w\":24,\"x\":24,\"y\":6},\"panelIndex\":\"44d18a84-d060-4149-825d-eacc61f946f3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Egress Packets\",\"panelRefName\":\"panel_44d18a84-d060-4149-825d-eacc61f946f3\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86\",\"w\":24,\"x\":0,\"y\":6},\"panelIndex\":\"c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Egress Bytes\",\"panelRefName\":\"panel_c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"c5782327-dc55-466d-97d8-b79618f0b47a\",\"w\":24,\"x\":24,\"y\":21},\"panelIndex\":\"c5782327-dc55-466d-97d8-b79618f0b47a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ingress Packets\",\"panelRefName\":\"panel_c5782327-dc55-466d-97d8-b79618f0b47a\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"beaf5f45-5217-4aed-b663-69e5e9ca35c3\",\"w\":24,\"x\":0,\"y\":21},\"panelIndex\":\"beaf5f45-5217-4aed-b663-69e5e9ca35c3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ingress Bytes\",\"panelRefName\":\"panel_beaf5f45-5217-4aed-b663-69e5e9ca35c3\"}]","timeRestore":false,"title":"[Metricbeat GCP] Load Balancing L3 Overview","version":1},"coreMigrationVersion":"8.0.0","id":"8f9c6cc0-909d-11ea-8180-7b0dacd9df87","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"3f4e9040-909d-11ea-8180-7b0dacd9df87","name":"8b86e712-4709-458a-b8e9-40e79305b1aa:panel_8b86e712-4709-458a-b8e9-40e79305b1aa","type":"visualization"},{"id":"2f6b6740-909b-11ea-8180-7b0dacd9df87","name":"44d18a84-d060-4149-825d-eacc61f946f3:panel_44d18a84-d060-4149-825d-eacc61f946f3","type":"visualization"},{"id":"e562eb50-909a-11ea-8180-7b0dacd9df87","name":"c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86:panel_c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86","type":"visualization"},{"id":"543dac40-909b-11ea-8180-7b0dacd9df87","name":"c5782327-dc55-466d-97d8-b79618f0b47a:panel_c5782327-dc55-466d-97d8-b79618f0b47a","type":"visualization"},{"id":"434f69f0-909b-11ea-8180-7b0dacd9df87","name":"beaf5f45-5217-4aed-b663-69e5e9ca35c3:panel_beaf5f45-5217-4aed-b663-69e5e9ca35c3","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:11.683Z","version":"WzM3OTIsMV0="} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-tcp-ssl-proxy-overview.ndjson b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-tcp-ssl-proxy-overview.ndjson deleted file mode 100644 index 73eb68bba501..000000000000 --- a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-loadbalancing-tcp-ssl-proxy-overview.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Load Balancing TCP SSL Proxy Filters [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"gcp.labels.resource.backend_name\",\"id\":\"1588881306802\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Backend Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.metrics.client_country\",\"id\":\"1588881320708\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Client Country\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.metrics.proxy_continent\",\"id\":\"1588881383318\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Proxy Continent\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Load Balancing TCP SSL Proxy Filters [Metricbeat GCP]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"6958ed10-a6ad-11ea-950e-d57608e3aa51","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:12.649Z","version":"WzM3OTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing TCP SSL Proxy Open Connections [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cd2ddc00-a6a9-11ea-9765-5f34a0c2e541\"}],\"bar_color_rules\":[{\"id\":\"d26268d0-a6a9-11ea-9765-5f34a0c2e541\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=15m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"gcp.loadbalancing.tcp_ssl_proxy.open_connections.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Load Balancing TCP SSL Proxy Open Connections [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f86c26f0-a6aa-11ea-950e-d57608e3aa51","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:12.649Z","version":"WzM4MDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing TCP SSL Proxy Closed Connections [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cd2ddc00-a6a9-11ea-9765-5f34a0c2e541\"}],\"bar_color_rules\":[{\"id\":\"d26268d0-a6a9-11ea-9765-5f34a0c2e541\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"gcp.loadbalancing.tcp_ssl_proxy.closed_connections.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Load Balancing TCP SSL Proxy Closed Connections [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c4e1e090-a6aa-11ea-950e-d57608e3aa51","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:12.649Z","version":"WzM4MDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing TCP SSL Proxy New Connections [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cd2ddc00-a6a9-11ea-9765-5f34a0c2e541\"}],\"bar_color_rules\":[{\"id\":\"d26268d0-a6a9-11ea-9765-5f34a0c2e541\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=15m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.tcp_ssl_proxy.new_connections.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Load Balancing TCP SSL Proxy New Connections [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"eed05d80-a6ac-11ea-950e-d57608e3aa51","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:12.649Z","version":"WzM4MDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing TCP SSL Proxy Egress Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cd2ddc00-a6a9-11ea-9765-5f34a0c2e541\"}],\"bar_color_rules\":[{\"id\":\"d26268d0-a6a9-11ea-9765-5f34a0c2e541\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.tcp_ssl_proxy.egress_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing TCP SSL Proxy Egress Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"afeb98a0-a6ac-11ea-950e-d57608e3aa51","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:12.649Z","version":"WzM4MDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Load Balancing TCP SSL Proxy Ingress Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"cd2ddc00-a6a9-11ea-9765-5f34a0c2e541\"}],\"bar_color_rules\":[{\"id\":\"d26268d0-a6a9-11ea-9765-5f34a0c2e541\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=1m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.loadbalancing.tcp_ssl_proxy.ingress_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"kibana\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.backend_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Load Balancing TCP SSL Proxy Ingress Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"be27b340-a6ac-11ea-950e-d57608e3aa51","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:12.649Z","version":"WzM4MDQsMV0="} -{"attributes":{"description":"Overview of Google Cloud Load Balancing TCP SSL Proxy Metrics\n\n","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"02422b42-6d8c-4924-acc1-0d7f4fb9a1b1\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"02422b42-6d8c-4924-acc1-0d7f4fb9a1b1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_02422b42-6d8c-4924-acc1-0d7f4fb9a1b1\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"da16e443-8524-47ea-83e1-6a16250ed61c\",\"w\":13,\"x\":10,\"y\":0},\"panelIndex\":\"da16e443-8524-47ea-83e1-6a16250ed61c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Open Connections\",\"panelRefName\":\"panel_da16e443-8524-47ea-83e1-6a16250ed61c\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"305f8fc3-e763-4b2c-8998-9e0e057ce713\",\"w\":13,\"x\":23,\"y\":0},\"panelIndex\":\"305f8fc3-e763-4b2c-8998-9e0e057ce713\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Closed Connections\",\"panelRefName\":\"panel_305f8fc3-e763-4b2c-8998-9e0e057ce713\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"e4fe30c7-906a-4878-bec7-7a78a06d98d0\",\"w\":12,\"x\":36,\"y\":0},\"panelIndex\":\"e4fe30c7-906a-4878-bec7-7a78a06d98d0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"New Connections\",\"panelRefName\":\"panel_e4fe30c7-906a-4878-bec7-7a78a06d98d0\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"c2bec6ee-96e8-440c-bfa4-6e0def7b0095\",\"w\":23,\"x\":0,\"y\":16},\"panelIndex\":\"c2bec6ee-96e8-440c-bfa4-6e0def7b0095\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Egress Bytes\",\"panelRefName\":\"panel_c2bec6ee-96e8-440c-bfa4-6e0def7b0095\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"fbaeaa8f-262d-41b1-a621-d6dbff52ff59\",\"w\":25,\"x\":23,\"y\":16},\"panelIndex\":\"fbaeaa8f-262d-41b1-a621-d6dbff52ff59\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ingress Bytes\",\"panelRefName\":\"panel_fbaeaa8f-262d-41b1-a621-d6dbff52ff59\"}]","timeRestore":false,"title":"[Metricbeat GCP] Load Balancing TCP SSL Proxy Overview","version":1},"coreMigrationVersion":"8.0.0","id":"6041d970-a6ae-11ea-950e-d57608e3aa51","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"6958ed10-a6ad-11ea-950e-d57608e3aa51","name":"02422b42-6d8c-4924-acc1-0d7f4fb9a1b1:panel_02422b42-6d8c-4924-acc1-0d7f4fb9a1b1","type":"visualization"},{"id":"f86c26f0-a6aa-11ea-950e-d57608e3aa51","name":"da16e443-8524-47ea-83e1-6a16250ed61c:panel_da16e443-8524-47ea-83e1-6a16250ed61c","type":"visualization"},{"id":"c4e1e090-a6aa-11ea-950e-d57608e3aa51","name":"305f8fc3-e763-4b2c-8998-9e0e057ce713:panel_305f8fc3-e763-4b2c-8998-9e0e057ce713","type":"visualization"},{"id":"eed05d80-a6ac-11ea-950e-d57608e3aa51","name":"e4fe30c7-906a-4878-bec7-7a78a06d98d0:panel_e4fe30c7-906a-4878-bec7-7a78a06d98d0","type":"visualization"},{"id":"afeb98a0-a6ac-11ea-950e-d57608e3aa51","name":"c2bec6ee-96e8-440c-bfa4-6e0def7b0095:panel_c2bec6ee-96e8-440c-bfa4-6e0def7b0095","type":"visualization"},{"id":"be27b340-a6ac-11ea-950e-d57608e3aa51","name":"fbaeaa8f-262d-41b1-a621-d6dbff52ff59:panel_fbaeaa8f-262d-41b1-a621-d6dbff52ff59","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:12.649Z","version":"WzM3OTgsMV0="} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-pubsub-overview.ndjson b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-pubsub-overview.ndjson deleted file mode 100644 index 60d80c729ee7..000000000000 --- a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-pubsub-overview.ndjson +++ /dev/null @@ -1,11 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"PubSub Filter [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"gcp.labels.resource.subscription_id\",\"id\":\"1600984143264\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Subscription ID\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.resource.topic_id\",\"id\":\"1600984164459\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Topic ID\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.resource.snapshot_id\",\"id\":\"1601305675297\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Snapshot ID\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.metrics.region\",\"id\":\"1601307561260\",\"indexPatternRefName\":\"control_3_index_pattern\",\"label\":\"Region\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"PubSub Filter [Metricbeat GCP]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"f6e33a00-feaf-11ea-b032-d59f894a5072","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_3_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MDYsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["4f8dae5f-b49c-4a10-8f94-a29039f93919","f0d11f8d-e2f9-408a-9114-a0b9b18142d4","27a71166-d245-471d-b550-ee0b1899ea88"],"columns":{"27a71166-d245-471d-b550-ee0b1899ea88":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Topic Send Request Count","operationType":"average","scale":"ratio","sourceField":"gcp.pubsub.topic.send_request_count.value"},"4f8dae5f-b49c-4a10-8f94-a29039f93919":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.resource.topic_id","operationType":"terms","params":{"orderBy":{"columnId":"27a71166-d245-471d-b550-ee0b1899ea88","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.resource.topic_id"},"f0d11f8d-e2f9-408a-9114-a0b9b18142d4":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1m"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["27a71166-d245-471d-b550-ee0b1899ea88"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","seriesType":"line","splitAccessor":"4f8dae5f-b49c-4a10-8f94-a29039f93919","xAccessor":"f0d11f8d-e2f9-408a-9114-a0b9b18142d4"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Topic Send Request [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"bd399790-01a2-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MDcsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["f0d11f8d-e2f9-408a-9114-a0b9b18142d4","89c8d41d-6896-470d-8318-c0a691fa638e","27a71166-d245-471d-b550-ee0b1899ea88"],"columns":{"27a71166-d245-471d-b550-ee0b1899ea88":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Topic Oldest Retained Acked Message Age By Region","operationType":"average","scale":"ratio","sourceField":"gcp.pubsub.topic.oldest_retained_acked_message_age_by_region.value"},"89c8d41d-6896-470d-8318-c0a691fa638e":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.metrics.region","operationType":"terms","params":{"orderBy":{"columnId":"27a71166-d245-471d-b550-ee0b1899ea88","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.metrics.region"},"f0d11f8d-e2f9-408a-9114-a0b9b18142d4":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1m"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["27a71166-d245-471d-b550-ee0b1899ea88"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","seriesType":"line","splitAccessor":"89c8d41d-6896-470d-8318-c0a691fa638e","xAccessor":"f0d11f8d-e2f9-408a-9114-a0b9b18142d4"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Topic Oldest Retained Acked Message Age By Region [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"25b76dc0-01a2-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MDgsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["ed36f31e-ed2a-460a-a881-18e191f75d04","6be62612-437b-448d-9631-c6cc0938225d","5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"columns":{"0888bf93-1ecf-467a-b0b5-9e0deee6545c":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.resource.topic_id","operationType":"terms","params":{"orderBy":{"columnId":"5424865c-c988-4e26-b00b-b3cf90e1e4cf","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.resource.topic_id"},"5424865c-c988-4e26-b00b-b3cf90e1e4cf":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Topic Oldest Unacked Message Age By Region","operationType":"average","scale":"ratio","sourceField":"gcp.pubsub.topic.oldest_unacked_message_age_by_region.value"},"6be62612-437b-448d-9631-c6cc0938225d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1m"},"scale":"interval","sourceField":"@timestamp"},"ed36f31e-ed2a-460a-a881-18e191f75d04":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.metrics.region","operationType":"terms","params":{"orderBy":{"columnId":"5424865c-c988-4e26-b00b-b3cf90e1e4cf","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.metrics.region"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"ed36f31e-ed2a-460a-a881-18e191f75d04","xAccessor":"6be62612-437b-448d-9631-c6cc0938225d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Topic Oldest Unacked Message Age By Region [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"5f97d300-01a1-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MDksMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["6be62612-437b-448d-9631-c6cc0938225d","2251f8b6-6091-4386-890b-4d0d33e79a96","5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"columns":{"2251f8b6-6091-4386-890b-4d0d33e79a96":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.resource.subscription_id","operationType":"terms","params":{"orderBy":{"columnId":"5424865c-c988-4e26-b00b-b3cf90e1e4cf","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.resource.subscription_id"},"5424865c-c988-4e26-b00b-b3cf90e1e4cf":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Subscription Oldest Unacked Message Age","operationType":"average","scale":"ratio","sourceField":"gcp.pubsub.subscription.oldest_unacked_message_age.value"},"6be62612-437b-448d-9631-c6cc0938225d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1m"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"2251f8b6-6091-4386-890b-4d0d33e79a96","xAccessor":"6be62612-437b-448d-9631-c6cc0938225d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Subscription Oldest Unacked Message [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"403d81e0-01a0-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MTAsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["6be62612-437b-448d-9631-c6cc0938225d","2251f8b6-6091-4386-890b-4d0d33e79a96","5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"columns":{"2251f8b6-6091-4386-890b-4d0d33e79a96":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.resource.subscription_id","operationType":"terms","params":{"orderBy":{"columnId":"5424865c-c988-4e26-b00b-b3cf90e1e4cf","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.resource.subscription_id"},"5424865c-c988-4e26-b00b-b3cf90e1e4cf":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Subscription Number of Undelivered Messages","operationType":"average","params":{"format":{"id":"bytes","params":{"decimals":0}}},"scale":"ratio","sourceField":"gcp.pubsub.subscription.num_undelivered_messages.value"},"6be62612-437b-448d-9631-c6cc0938225d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1m"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"2251f8b6-6091-4386-890b-4d0d33e79a96","xAccessor":"6be62612-437b-448d-9631-c6cc0938225d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Subscription Number of Undelivered Messages [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"11d06fc0-01a0-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MTEsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["6be62612-437b-448d-9631-c6cc0938225d","921ee447-0c37-4e9d-9f42-a491f412baef","5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"columns":{"5424865c-c988-4e26-b00b-b3cf90e1e4cf":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Snapshot Oldest Message","operationType":"average","scale":"ratio","sourceField":"gcp.pubsub.snapshot.oldest_message_age.value"},"6be62612-437b-448d-9631-c6cc0938225d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"921ee447-0c37-4e9d-9f42-a491f412baef":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.resource.snapshot_id","operationType":"terms","params":{"orderBy":{"columnId":"5424865c-c988-4e26-b00b-b3cf90e1e4cf","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.resource.snapshot_id"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"921ee447-0c37-4e9d-9f42-a491f412baef","xAccessor":"6be62612-437b-448d-9631-c6cc0938225d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Snapshot Oldest Message [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"f3e92c10-019d-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MTIsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["6be62612-437b-448d-9631-c6cc0938225d","ef2fc668-040b-4c82-9f65-5d3fb25c9536","5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"columns":{"5424865c-c988-4e26-b00b-b3cf90e1e4cf":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Snapshot Number of Messages","operationType":"average","scale":"ratio","sourceField":"gcp.pubsub.snapshot.num_messages.value"},"6be62612-437b-448d-9631-c6cc0938225d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"ef2fc668-040b-4c82-9f65-5d3fb25c9536":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.resource.snapshot_id","operationType":"terms","params":{"orderBy":{"type":"alphabetical"},"orderDirection":"asc","size":3},"scale":"ordinal","sourceField":"gcp.labels.resource.snapshot_id"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"ef2fc668-040b-4c82-9f65-5d3fb25c9536","xAccessor":"6be62612-437b-448d-9631-c6cc0938225d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Snapshot Number of Messages [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"6de1f430-019d-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MTMsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["6be62612-437b-448d-9631-c6cc0938225d","921ee447-0c37-4e9d-9f42-a491f412baef","5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"columns":{"5424865c-c988-4e26-b00b-b3cf90e1e4cf":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Snapshot Backlog Bytes","operationType":"average","params":{"format":{"id":"bytes","params":{"decimals":0}}},"scale":"ratio","sourceField":"gcp.pubsub.snapshot.backlog_bytes.value"},"6be62612-437b-448d-9631-c6cc0938225d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"auto"},"scale":"interval","sourceField":"@timestamp"},"921ee447-0c37-4e9d-9f42-a491f412baef":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.resource.snapshot_id","operationType":"terms","params":{"orderBy":{"columnId":"5424865c-c988-4e26-b00b-b3cf90e1e4cf","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.resource.snapshot_id"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"921ee447-0c37-4e9d-9f42-a491f412baef","xAccessor":"6be62612-437b-448d-9631-c6cc0938225d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Snapshot Backlog Bytes [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"0776dbf0-019f-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MTQsMV0="} -{"attributes":{"state":{"datasourceStates":{"indexpattern":{"layers":{"91e62734-6524-424c-b2b5-3974c835dd6c":{"columnOrder":["6be62612-437b-448d-9631-c6cc0938225d","2251f8b6-6091-4386-890b-4d0d33e79a96","5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"columns":{"2251f8b6-6091-4386-890b-4d0d33e79a96":{"dataType":"string","isBucketed":true,"label":"Top values of gcp.labels.resource.subscription_id","operationType":"terms","params":{"orderBy":{"columnId":"5424865c-c988-4e26-b00b-b3cf90e1e4cf","type":"column"},"orderDirection":"desc","size":3},"scale":"ordinal","sourceField":"gcp.labels.resource.subscription_id"},"5424865c-c988-4e26-b00b-b3cf90e1e4cf":{"customLabel":true,"dataType":"number","isBucketed":false,"label":"Subscription Backlog Bytes","operationType":"average","params":{"format":{"id":"bytes","params":{"decimals":0}}},"scale":"ratio","sourceField":"gcp.pubsub.subscription.backlog_bytes.value"},"6be62612-437b-448d-9631-c6cc0938225d":{"dataType":"date","isBucketed":true,"label":"@timestamp","operationType":"date_histogram","params":{"interval":"1m"},"scale":"interval","sourceField":"@timestamp"}}}}}},"filters":[],"query":{"language":"kuery","query":""},"visualization":{"fittingFunction":"None","layers":[{"accessors":["5424865c-c988-4e26-b00b-b3cf90e1e4cf"],"layerId":"91e62734-6524-424c-b2b5-3974c835dd6c","position":"top","seriesType":"line","showGridlines":false,"splitAccessor":"2251f8b6-6091-4386-890b-4d0d33e79a96","xAccessor":"6be62612-437b-448d-9631-c6cc0938225d"}],"legend":{"isVisible":true,"position":"right"},"preferredSeriesType":"line"}},"title":"Subscription Backlog [Metricbeat GCP]","visualizationType":"lnsXY"},"coreMigrationVersion":"8.0.0","id":"79d80f10-01a0-11eb-b032-d59f894a5072","migrationVersion":{"lens":"7.13.1"},"references":[{"id":"metricbeat-*","name":"indexpattern-datasource-current-indexpattern","type":"index-pattern"},{"id":"metricbeat-*","name":"indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c","type":"index-pattern"}],"type":"lens","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MTUsMV0="} -{"attributes":{"description":"Overview of GCP PubSub Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"3674673e-83e6-42df-8392-5284960a12ea\",\"w\":48,\"x\":0,\"y\":0},\"panelIndex\":\"3674673e-83e6-42df-8392-5284960a12ea\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_3674673e-83e6-42df-8392-5284960a12ea\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"c1d89f36-43ed-42e6-98a0-8820b28f7953\",\"w\":16,\"x\":0,\"y\":6},\"panelIndex\":\"c1d89f36-43ed-42e6-98a0-8820b28f7953\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Topic Send Request\",\"panelRefName\":\"panel_c1d89f36-43ed-42e6-98a0-8820b28f7953\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"b26a6238-b982-4082-9e4e-3e3d9361a865\",\"w\":16,\"x\":16,\"y\":6},\"panelIndex\":\"b26a6238-b982-4082-9e4e-3e3d9361a865\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Topic Oldest Retained Acked Message Age\",\"panelRefName\":\"panel_b26a6238-b982-4082-9e4e-3e3d9361a865\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"c7bbeabc-b158-4bdd-9ba3-9d45264d250b\",\"w\":16,\"x\":32,\"y\":6},\"panelIndex\":\"c7bbeabc-b158-4bdd-9ba3-9d45264d250b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Topic Oldest Unacked Message Age\",\"panelRefName\":\"panel_c7bbeabc-b158-4bdd-9ba3-9d45264d250b\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"b822a795-7086-4559-b7c0-176dfcc7380e\",\"w\":16,\"x\":0,\"y\":19},\"panelIndex\":\"b822a795-7086-4559-b7c0-176dfcc7380e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Subsciption Oldest Unacked Message\",\"panelRefName\":\"panel_b822a795-7086-4559-b7c0-176dfcc7380e\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"9c99d7bb-88f0-415c-abc1-c12ec1295236\",\"w\":16,\"x\":16,\"y\":19},\"panelIndex\":\"9c99d7bb-88f0-415c-abc1-c12ec1295236\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Subscription Number of Undelivered Messages\",\"panelRefName\":\"panel_9c99d7bb-88f0-415c-abc1-c12ec1295236\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"8cc0ccbd-5798-4d68-a519-07ef1d9693fd\",\"w\":16,\"x\":32,\"y\":32},\"panelIndex\":\"8cc0ccbd-5798-4d68-a519-07ef1d9693fd\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Snapshot Oldest Message\",\"panelRefName\":\"panel_8cc0ccbd-5798-4d68-a519-07ef1d9693fd\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"f9e45ec1-72e5-4f49-82cf-2132162d642c\",\"w\":16,\"x\":0,\"y\":32},\"panelIndex\":\"f9e45ec1-72e5-4f49-82cf-2132162d642c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Snapshot Number of Messages\",\"panelRefName\":\"panel_f9e45ec1-72e5-4f49-82cf-2132162d642c\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"d8876e62-daf0-4654-8618-8746d5da43e0\",\"w\":16,\"x\":16,\"y\":32},\"panelIndex\":\"d8876e62-daf0-4654-8618-8746d5da43e0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Snapshot Backlog Bytes\",\"panelRefName\":\"panel_d8876e62-daf0-4654-8618-8746d5da43e0\"},{\"version\":\"7.9.0\",\"type\":\"lens\",\"gridData\":{\"h\":13,\"i\":\"6079e9ed-da9f-4457-bb3a-7ed20f98605e\",\"w\":16,\"x\":32,\"y\":19},\"panelIndex\":\"6079e9ed-da9f-4457-bb3a-7ed20f98605e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Subscription Backlog Bytes\",\"panelRefName\":\"panel_6079e9ed-da9f-4457-bb3a-7ed20f98605e\"}]","timeRestore":false,"title":"[Metricbeat GCP] PubSub Overview","version":1},"coreMigrationVersion":"8.0.0","id":"2b0fd7b0-feac-11ea-b032-d59f894a5072","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"f6e33a00-feaf-11ea-b032-d59f894a5072","name":"3674673e-83e6-42df-8392-5284960a12ea:panel_3674673e-83e6-42df-8392-5284960a12ea","type":"visualization"},{"id":"bd399790-01a2-11eb-b032-d59f894a5072","name":"c1d89f36-43ed-42e6-98a0-8820b28f7953:panel_c1d89f36-43ed-42e6-98a0-8820b28f7953","type":"lens"},{"id":"25b76dc0-01a2-11eb-b032-d59f894a5072","name":"b26a6238-b982-4082-9e4e-3e3d9361a865:panel_b26a6238-b982-4082-9e4e-3e3d9361a865","type":"lens"},{"id":"5f97d300-01a1-11eb-b032-d59f894a5072","name":"c7bbeabc-b158-4bdd-9ba3-9d45264d250b:panel_c7bbeabc-b158-4bdd-9ba3-9d45264d250b","type":"lens"},{"id":"403d81e0-01a0-11eb-b032-d59f894a5072","name":"b822a795-7086-4559-b7c0-176dfcc7380e:panel_b822a795-7086-4559-b7c0-176dfcc7380e","type":"lens"},{"id":"11d06fc0-01a0-11eb-b032-d59f894a5072","name":"9c99d7bb-88f0-415c-abc1-c12ec1295236:panel_9c99d7bb-88f0-415c-abc1-c12ec1295236","type":"lens"},{"id":"f3e92c10-019d-11eb-b032-d59f894a5072","name":"8cc0ccbd-5798-4d68-a519-07ef1d9693fd:panel_8cc0ccbd-5798-4d68-a519-07ef1d9693fd","type":"lens"},{"id":"6de1f430-019d-11eb-b032-d59f894a5072","name":"f9e45ec1-72e5-4f49-82cf-2132162d642c:panel_f9e45ec1-72e5-4f49-82cf-2132162d642c","type":"lens"},{"id":"0776dbf0-019f-11eb-b032-d59f894a5072","name":"d8876e62-daf0-4654-8618-8746d5da43e0:panel_d8876e62-daf0-4654-8618-8746d5da43e0","type":"lens"},{"id":"79d80f10-01a0-11eb-b032-d59f894a5072","name":"6079e9ed-da9f-4457-bb3a-7ed20f98605e:panel_6079e9ed-da9f-4457-bb3a-7ed20f98605e","type":"lens"}],"type":"dashboard","updated_at":"2021-08-04T16:31:13.736Z","version":"WzM4MDUsMV0="} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-storage-overview.ndjson b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-storage-overview.ndjson deleted file mode 100644 index 194a7e33cc09..000000000000 --- a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/Metricbeat-gcp-storage-overview.ndjson +++ /dev/null @@ -1,7 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Filters [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"gcp.labels.resource.bucket_name\",\"id\":\"1588628954328\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Bucket Name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.resource.location\",\"id\":\"1588628981768\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"Location\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"gcp.labels.metrics.storage_class\",\"id\":\"1588629001851\",\"indexPatternRefName\":\"control_2_index_pattern\",\"label\":\"Storage Class\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Storage Filters [Metricbeat GCP]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"4b44b2b0-8e51-11ea-9fa6-4d675d5290dc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_2_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:14.792Z","version":"WzM4MTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Total Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"8ec10ba0-8e52-11ea-8164-1ddf506ac7af\"}],\"bar_color_rules\":[{\"id\":\"8fdd7820-8e52-11ea-8164-1ddf506ac7af\"}],\"drop_last_bucket\":1,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=15m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.storage.storage.total_bytes.value : * \"},\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.storage.storage.total_bytes.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.bucket_name\",\"terms_include\":\"\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"last_value\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Total Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"239e2290-8e52-11ea-9fa6-4d675d5290dc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:14.792Z","version":"WzM4MTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Object Count [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"23042750-8e64-11ea-9fba-216938b39761\"}],\"gauge_color_rules\":[{\"id\":\"2268f8c0-8e64-11ea-9fba-216938b39761\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=15m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"gcp.storage.storage.object_count.value : * \"},\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.storage.storage.object_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.bucket_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Storage Object Count [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"02b3c620-8e52-11ea-9fa6-4d675d5290dc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:14.792Z","version":"WzM4MTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage API Request Count [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.storage.api.request_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.bucket_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage API Request Count [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"91eb8d10-8e51-11ea-9fa6-4d675d5290dc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:14.792Z","version":"WzM4MjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Network Received Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.storage.network.received_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.bucket_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Network Received Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d4cc5ec0-8e51-11ea-9fa6-4d675d5290dc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:14.792Z","version":"WzM4MjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Storage Network Sent Bytes [Metricbeat GCP]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\">=5m\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"gcp.storage.network.sent_bytes_count.value\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"3\",\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"gcp.labels.resource.bucket_name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"timeseries\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Storage Network Sent Bytes [Metricbeat GCP]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e9e44d90-8e51-11ea-9fa6-4d675d5290dc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:14.792Z","version":"WzM4MjIsMV0="} -{"attributes":{"description":"Overview of GCP Storage Metrics","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"8d4e63d8-5747-4ebc-aeae-02d20e304526\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"8d4e63d8-5747-4ebc-aeae-02d20e304526\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_8d4e63d8-5747-4ebc-aeae-02d20e304526\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"70c46ee3-be59-4fb1-a437-c8e92a1d0b2a\",\"w\":38,\"x\":10,\"y\":0},\"panelIndex\":\"70c46ee3-be59-4fb1-a437-c8e92a1d0b2a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Size of Objects\",\"panelRefName\":\"panel_70c46ee3-be59-4fb1-a437-c8e92a1d0b2a\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Number of Objects\",\"panelRefName\":\"panel_ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"77f185ba-74ad-4102-bca7-08587cd1bf6c\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"77f185ba-74ad-4102-bca7-08587cd1bf6c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"API Request Count\",\"panelRefName\":\"panel_77f185ba-74ad-4102-bca7-08587cd1bf6c\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"f2ab3410-44b0-4b01-bb93-1394d6a64257\",\"w\":24,\"x\":0,\"y\":30},\"panelIndex\":\"f2ab3410-44b0-4b01-bb93-1394d6a64257\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Number of Bytes Received Over Network\",\"panelRefName\":\"panel_f2ab3410-44b0-4b01-bb93-1394d6a64257\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"75d342a5-f67b-4c61-b31d-b0b2db2ab50a\",\"w\":24,\"x\":24,\"y\":30},\"panelIndex\":\"75d342a5-f67b-4c61-b31d-b0b2db2ab50a\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Number of Bytes Sent Over Network\",\"panelRefName\":\"panel_75d342a5-f67b-4c61-b31d-b0b2db2ab50a\"}]","timeRestore":false,"title":"[Metricbeat GCP] Storage Overview","version":1},"coreMigrationVersion":"8.0.0","id":"ca401040-8e52-11ea-9fa6-4d675d5290dc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"4b44b2b0-8e51-11ea-9fa6-4d675d5290dc","name":"8d4e63d8-5747-4ebc-aeae-02d20e304526:panel_8d4e63d8-5747-4ebc-aeae-02d20e304526","type":"visualization"},{"id":"239e2290-8e52-11ea-9fa6-4d675d5290dc","name":"70c46ee3-be59-4fb1-a437-c8e92a1d0b2a:panel_70c46ee3-be59-4fb1-a437-c8e92a1d0b2a","type":"visualization"},{"id":"02b3c620-8e52-11ea-9fa6-4d675d5290dc","name":"ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8:panel_ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8","type":"visualization"},{"id":"91eb8d10-8e51-11ea-9fa6-4d675d5290dc","name":"77f185ba-74ad-4102-bca7-08587cd1bf6c:panel_77f185ba-74ad-4102-bca7-08587cd1bf6c","type":"visualization"},{"id":"d4cc5ec0-8e51-11ea-9fa6-4d675d5290dc","name":"f2ab3410-44b0-4b01-bb93-1394d6a64257:panel_f2ab3410-44b0-4b01-bb93-1394d6a64257","type":"visualization"},{"id":"e9e44d90-8e51-11ea-9fa6-4d675d5290dc","name":"75d342a5-f67b-4c61-b31d-b0b2db2ab50a:panel_75d342a5-f67b-4c61-b31d-b0b2db2ab50a","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:14.792Z","version":"WzM4MTYsMV0="} diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/aa5b8bd0-9157-11ea-8180-7b0dacd9df87.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/aa5b8bd0-9157-11ea-8180-7b0dacd9df87.json new file mode 100644 index 000000000000..fc7da9172f28 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/aa5b8bd0-9157-11ea-8180-7b0dacd9df87.json @@ -0,0 +1,188 @@ +{ + "attributes": { + "description": "Overview of GCP Load Balancing HTTPS Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "f89112f9-0f3a-4712-a317-23230cd66213", + "w": 48, + "x": 0, + "y": 0 + }, + "panelIndex": "f89112f9-0f3a-4712-a317-23230cd66213", + "panelRefName": "panel_f89112f9-0f3a-4712-a317-23230cd66213", + "title": "Filters", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "8f4baaa9-6f4d-40fa-a77f-9f68f83a379c", + "w": 24, + "x": 24, + "y": 6 + }, + "panelIndex": "8f4baaa9-6f4d-40fa-a77f-9f68f83a379c", + "panelRefName": "panel_8f4baaa9-6f4d-40fa-a77f-9f68f83a379c", + "title": "Backend Request Count", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "10490530-a766-4f87-824a-3fc18bf2e85b", + "w": 24, + "x": 0, + "y": 6 + }, + "panelIndex": "10490530-a766-4f87-824a-3fc18bf2e85b", + "panelRefName": "panel_10490530-a766-4f87-824a-3fc18bf2e85b", + "title": "Request Count", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "e737b020-eb94-4eb1-b53d-50fa551df648", + "w": 24, + "x": 24, + "y": 21 + }, + "panelIndex": "e737b020-eb94-4eb1-b53d-50fa551df648", + "panelRefName": "panel_e737b020-eb94-4eb1-b53d-50fa551df648", + "title": "Backend Request Bytes", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "b90db52e-982e-4360-b5ed-71147ba79246", + "w": 24, + "x": 0, + "y": 21 + }, + "panelIndex": "b90db52e-982e-4360-b5ed-71147ba79246", + "panelRefName": "panel_b90db52e-982e-4360-b5ed-71147ba79246", + "title": "Request Bytes", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "a2a5c845-d426-425f-b2e6-e8df6038fd9d", + "w": 24, + "x": 24, + "y": 36 + }, + "panelIndex": "a2a5c845-d426-425f-b2e6-e8df6038fd9d", + "panelRefName": "panel_a2a5c845-d426-425f-b2e6-e8df6038fd9d", + "title": "Backend Response Bytes", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "2bf5bf09-e743-4c6d-8251-d12c9c70f273", + "w": 24, + "x": 0, + "y": 36 + }, + "panelIndex": "2bf5bf09-e743-4c6d-8251-d12c9c70f273", + "panelRefName": "panel_2bf5bf09-e743-4c6d-8251-d12c9c70f273", + "title": "Response Bytes", + "type": "visualization", + "version": "7.6.2" + } + ], + "timeRestore": false, + "title": "[Metricbeat GCP] Load Balancing HTTPS Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "aa5b8bd0-9157-11ea-8180-7b0dacd9df87", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "d5418f80-9156-11ea-8180-7b0dacd9df87", + "name": "f89112f9-0f3a-4712-a317-23230cd66213:panel_f89112f9-0f3a-4712-a317-23230cd66213", + "type": "visualization" + }, + { + "id": "dff87070-9155-11ea-8180-7b0dacd9df87", + "name": "8f4baaa9-6f4d-40fa-a77f-9f68f83a379c:panel_8f4baaa9-6f4d-40fa-a77f-9f68f83a379c", + "type": "visualization" + }, + { + "id": "6f933ef0-9155-11ea-8180-7b0dacd9df87", + "name": "10490530-a766-4f87-824a-3fc18bf2e85b:panel_10490530-a766-4f87-824a-3fc18bf2e85b", + "type": "visualization" + }, + { + "id": "eb891a20-9155-11ea-8180-7b0dacd9df87", + "name": "e737b020-eb94-4eb1-b53d-50fa551df648:panel_e737b020-eb94-4eb1-b53d-50fa551df648", + "type": "visualization" + }, + { + "id": "8d4ddf40-9155-11ea-8180-7b0dacd9df87", + "name": "b90db52e-982e-4360-b5ed-71147ba79246:panel_b90db52e-982e-4360-b5ed-71147ba79246", + "type": "visualization" + }, + { + "id": "0bd0a6e0-9156-11ea-8180-7b0dacd9df87", + "name": "a2a5c845-d426-425f-b2e6-e8df6038fd9d:panel_a2a5c845-d426-425f-b2e6-e8df6038fd9d", + "type": "visualization" + }, + { + "id": "d63465e0-9154-11ea-8180-7b0dacd9df87", + "name": "2bf5bf09-e743-4c6d-8251-d12c9c70f273:panel_2bf5bf09-e743-4c6d-8251-d12c9c70f273", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:10.632Z", + "version": "WzM3ODQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/ca401040-8e52-11ea-9fa6-4d675d5290dc.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/ca401040-8e52-11ea-9fa6-4d675d5290dc.json new file mode 100644 index 000000000000..5fb298f445a4 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/ca401040-8e52-11ea-9fa6-4d675d5290dc.json @@ -0,0 +1,166 @@ +{ + "attributes": { + "description": "Overview of GCP Storage Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "8d4e63d8-5747-4ebc-aeae-02d20e304526", + "w": 10, + "x": 0, + "y": 0 + }, + "panelIndex": "8d4e63d8-5747-4ebc-aeae-02d20e304526", + "panelRefName": "panel_8d4e63d8-5747-4ebc-aeae-02d20e304526", + "title": "Filters", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "70c46ee3-be59-4fb1-a437-c8e92a1d0b2a", + "w": 38, + "x": 10, + "y": 0 + }, + "panelIndex": "70c46ee3-be59-4fb1-a437-c8e92a1d0b2a", + "panelRefName": "panel_70c46ee3-be59-4fb1-a437-c8e92a1d0b2a", + "title": "Total Size of Objects", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8", + "w": 24, + "x": 0, + "y": 15 + }, + "panelIndex": "ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8", + "panelRefName": "panel_ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8", + "title": "Total Number of Objects", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "77f185ba-74ad-4102-bca7-08587cd1bf6c", + "w": 24, + "x": 24, + "y": 15 + }, + "panelIndex": "77f185ba-74ad-4102-bca7-08587cd1bf6c", + "panelRefName": "panel_77f185ba-74ad-4102-bca7-08587cd1bf6c", + "title": "API Request Count", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "f2ab3410-44b0-4b01-bb93-1394d6a64257", + "w": 24, + "x": 0, + "y": 30 + }, + "panelIndex": "f2ab3410-44b0-4b01-bb93-1394d6a64257", + "panelRefName": "panel_f2ab3410-44b0-4b01-bb93-1394d6a64257", + "title": "Number of Bytes Received Over Network", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "75d342a5-f67b-4c61-b31d-b0b2db2ab50a", + "w": 24, + "x": 24, + "y": 30 + }, + "panelIndex": "75d342a5-f67b-4c61-b31d-b0b2db2ab50a", + "panelRefName": "panel_75d342a5-f67b-4c61-b31d-b0b2db2ab50a", + "title": "Number of Bytes Sent Over Network", + "type": "visualization", + "version": "7.6.2" + } + ], + "timeRestore": false, + "title": "[Metricbeat GCP] Storage Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "ca401040-8e52-11ea-9fa6-4d675d5290dc", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "4b44b2b0-8e51-11ea-9fa6-4d675d5290dc", + "name": "8d4e63d8-5747-4ebc-aeae-02d20e304526:panel_8d4e63d8-5747-4ebc-aeae-02d20e304526", + "type": "visualization" + }, + { + "id": "239e2290-8e52-11ea-9fa6-4d675d5290dc", + "name": "70c46ee3-be59-4fb1-a437-c8e92a1d0b2a:panel_70c46ee3-be59-4fb1-a437-c8e92a1d0b2a", + "type": "visualization" + }, + { + "id": "02b3c620-8e52-11ea-9fa6-4d675d5290dc", + "name": "ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8:panel_ba356b1b-ec2b-4a05-8a70-19a43b3dc3a8", + "type": "visualization" + }, + { + "id": "91eb8d10-8e51-11ea-9fa6-4d675d5290dc", + "name": "77f185ba-74ad-4102-bca7-08587cd1bf6c:panel_77f185ba-74ad-4102-bca7-08587cd1bf6c", + "type": "visualization" + }, + { + "id": "d4cc5ec0-8e51-11ea-9fa6-4d675d5290dc", + "name": "f2ab3410-44b0-4b01-bb93-1394d6a64257:panel_f2ab3410-44b0-4b01-bb93-1394d6a64257", + "type": "visualization" + }, + { + "id": "e9e44d90-8e51-11ea-9fa6-4d675d5290dc", + "name": "75d342a5-f67b-4c61-b31d-b0b2db2ab50a:panel_75d342a5-f67b-4c61-b31d-b0b2db2ab50a", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:14.792Z", + "version": "WzM4MTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/f40ee870-5e4a-11ea-a4f6-717338406083.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/f40ee870-5e4a-11ea-a4f6-717338406083.json new file mode 100644 index 000000000000..81e8c6747ea5 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/dashboard/f40ee870-5e4a-11ea-a4f6-717338406083.json @@ -0,0 +1,232 @@ +{ + "attributes": { + "description": "Overview of GCP Compute Metrics", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "28706ab2-1142-401d-9143-f4176a034c10", + "w": 7, + "x": 0, + "y": 0 + }, + "panelIndex": "28706ab2-1142-401d-9143-f4176a034c10", + "panelRefName": "panel_28706ab2-1142-401d-9143-f4176a034c10", + "title": "Filters", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "2034fcc8-5cd7-4ee8-8c8f-99054f025b05", + "w": 10, + "x": 7, + "y": 0 + }, + "panelIndex": "2034fcc8-5cd7-4ee8-8c8f-99054f025b05", + "panelRefName": "panel_2034fcc8-5cd7-4ee8-8c8f-99054f025b05", + "title": "Instance Uptime", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "5f6f2ecd-dcaf-4455-967c-ede6b38f431f", + "w": 31, + "x": 17, + "y": 0 + }, + "panelIndex": "5f6f2ecd-dcaf-4455-967c-ede6b38f431f", + "panelRefName": "panel_5f6f2ecd-dcaf-4455-967c-ede6b38f431f", + "title": "CPU Utilization", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "9c6f36f5-c2b2-40f5-8ee3-af6131168842", + "w": 24, + "x": 0, + "y": 17 + }, + "panelIndex": "9c6f36f5-c2b2-40f5-8ee3-af6131168842", + "panelRefName": "panel_9c6f36f5-c2b2-40f5-8ee3-af6131168842", + "title": "Read I/O", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "93906f63-42c9-4f30-9b2c-05041a9e1efe", + "w": 24, + "x": 24, + "y": 17 + }, + "panelIndex": "93906f63-42c9-4f30-9b2c-05041a9e1efe", + "panelRefName": "panel_93906f63-42c9-4f30-9b2c-05041a9e1efe", + "title": "Write I/O", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "e1a4e862-dd00-409f-8746-8a8e4bc82807", + "w": 24, + "x": 0, + "y": 32 + }, + "panelIndex": "e1a4e862-dd00-409f-8746-8a8e4bc82807", + "panelRefName": "panel_e1a4e862-dd00-409f-8746-8a8e4bc82807", + "title": "Network Sent Bytes", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce", + "w": 24, + "x": 24, + "y": 32 + }, + "panelIndex": "6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce", + "panelRefName": "panel_6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce", + "title": "Network Received Bytes", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "00689e12-4cb3-49ad-ac33-dbe4279f446e", + "w": 24, + "x": 0, + "y": 47 + }, + "panelIndex": "00689e12-4cb3-49ad-ac33-dbe4279f446e", + "panelRefName": "panel_00689e12-4cb3-49ad-ac33-dbe4279f446e", + "title": "Firewall Dropped Bytes", + "type": "visualization", + "version": "7.9.1" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "901e7bf5-35f5-4c1a-9627-27f6c20d2514", + "w": 24, + "x": 24, + "y": 47 + }, + "panelIndex": "901e7bf5-35f5-4c1a-9627-27f6c20d2514", + "panelRefName": "panel_901e7bf5-35f5-4c1a-9627-27f6c20d2514", + "title": "Firewall Dropped Packets", + "type": "visualization", + "version": "7.9.1" + } + ], + "timeRestore": false, + "title": "[Metricbeat GCP] Compute Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "f40ee870-5e4a-11ea-a4f6-717338406083", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "3aa96470-5fc4-11ea-a4f6-717338406083", + "name": "28706ab2-1142-401d-9143-f4176a034c10:panel_28706ab2-1142-401d-9143-f4176a034c10", + "type": "visualization" + }, + { + "id": "da5bc460-63e1-11ea-b0ac-95d4ecb1fecd", + "name": "2034fcc8-5cd7-4ee8-8c8f-99054f025b05:panel_2034fcc8-5cd7-4ee8-8c8f-99054f025b05", + "type": "visualization" + }, + { + "id": "3f472ea0-5e47-11ea-a4f6-717338406083", + "name": "5f6f2ecd-dcaf-4455-967c-ede6b38f431f:panel_5f6f2ecd-dcaf-4455-967c-ede6b38f431f", + "type": "visualization" + }, + { + "id": "89513bc0-5e48-11ea-a4f6-717338406083", + "name": "9c6f36f5-c2b2-40f5-8ee3-af6131168842:panel_9c6f36f5-c2b2-40f5-8ee3-af6131168842", + "type": "visualization" + }, + { + "id": "95e1f050-5e48-11ea-a4f6-717338406083", + "name": "93906f63-42c9-4f30-9b2c-05041a9e1efe:panel_93906f63-42c9-4f30-9b2c-05041a9e1efe", + "type": "visualization" + }, + { + "id": "6f795e70-5e49-11ea-a4f6-717338406083", + "name": "e1a4e862-dd00-409f-8746-8a8e4bc82807:panel_e1a4e862-dd00-409f-8746-8a8e4bc82807", + "type": "visualization" + }, + { + "id": "43f45ba0-5e4a-11ea-a4f6-717338406083", + "name": "6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce:panel_6f47ff85-3ec1-4f6f-a63b-1a56f0cfc9ce", + "type": "visualization" + }, + { + "id": "9d919d00-5e4d-11ea-a4f6-717338406083", + "name": "00689e12-4cb3-49ad-ac33-dbe4279f446e:panel_00689e12-4cb3-49ad-ac33-dbe4279f446e", + "type": "visualization" + }, + { + "id": "ef1508c0-5e4c-11ea-a4f6-717338406083", + "name": "901e7bf5-35f5-4c1a-9627-27f6c20d2514:panel_901e7bf5-35f5-4c1a-9627-27f6c20d2514", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:09.611Z", + "version": "WzM3NzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/057de170-e88d-11ea-bf8c-d13ebf358a78.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/057de170-e88d-11ea-bf8c-d13ebf358a78.json new file mode 100644 index 000000000000..709aae25d964 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/057de170-e88d-11ea-bf8c-d13ebf358a78.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "4ca843af-63d7-46b9-a719-51a81eebf1f7": { + "columnOrder": [ + "2477291e-9021-4eb2-9fce-8da1ee792c49", + "10b91492-efef-490d-bc7a-c2074b2eae84" + ], + "columns": { + "10b91492-efef-490d-bc7a-c2074b2eae84": { + "dataType": "number", + "isBucketed": false, + "label": "Maximum of gcp.billing.total", + "operationType": "max", + "scale": "ratio", + "sourceField": "gcp.billing.total" + }, + "2477291e-9021-4eb2-9fce-8da1ee792c49": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Cost Per Project ID", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "10b91492-efef-490d-bc7a-c2074b2eae84", + "type": "column" + }, + "orderDirection": "desc", + "size": 20 + }, + "scale": "ordinal", + "sourceField": "gcp.billing.project_id" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "groups": [ + "2477291e-9021-4eb2-9fce-8da1ee792c49" + ], + "layerId": "4ca843af-63d7-46b9-a719-51a81eebf1f7", + "legendDisplay": "default", + "metric": "10b91492-efef-490d-bc7a-c2074b2eae84", + "nestedLegend": false, + "numberDisplay": "percent" + } + ], + "shape": "pie" + } + }, + "title": "Cost Per Project ID [Metricbeat GCP]", + "visualizationType": "lnsPie" + }, + "coreMigrationVersion": "8.0.0", + "id": "057de170-e88d-11ea-bf8c-d13ebf358a78", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-4ca843af-63d7-46b9-a719-51a81eebf1f7", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:31:08.618Z", + "version": "WzM3NzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/0776dbf0-019f-11eb-b032-d59f894a5072.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/0776dbf0-019f-11eb-b032-d59f894a5072.json new file mode 100644 index 000000000000..26ef4cf9f807 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/0776dbf0-019f-11eb-b032-d59f894a5072.json @@ -0,0 +1,113 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "91e62734-6524-424c-b2b5-3974c835dd6c": { + "columnOrder": [ + "6be62612-437b-448d-9631-c6cc0938225d", + "921ee447-0c37-4e9d-9f42-a491f412baef", + "5424865c-c988-4e26-b00b-b3cf90e1e4cf" + ], + "columns": { + "5424865c-c988-4e26-b00b-b3cf90e1e4cf": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Snapshot Backlog Bytes", + "operationType": "average", + "params": { + "format": { + "id": "bytes", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "gcp.pubsub.snapshot.backlog_bytes.value" + }, + "6be62612-437b-448d-9631-c6cc0938225d": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "921ee447-0c37-4e9d-9f42-a491f412baef": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of gcp.labels.resource.snapshot_id", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "5424865c-c988-4e26-b00b-b3cf90e1e4cf", + "type": "column" + }, + "orderDirection": "desc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "gcp.labels.resource.snapshot_id" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "5424865c-c988-4e26-b00b-b3cf90e1e4cf" + ], + "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "921ee447-0c37-4e9d-9f42-a491f412baef", + "xAccessor": "6be62612-437b-448d-9631-c6cc0938225d" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line" + } + }, + "title": "Snapshot Backlog Bytes [Metricbeat GCP]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "0776dbf0-019f-11eb-b032-d59f894a5072", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:31:13.736Z", + "version": "WzM4MTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/11d06fc0-01a0-11eb-b032-d59f894a5072.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/11d06fc0-01a0-11eb-b032-d59f894a5072.json new file mode 100644 index 000000000000..246b3b63efaf --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/11d06fc0-01a0-11eb-b032-d59f894a5072.json @@ -0,0 +1,113 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "91e62734-6524-424c-b2b5-3974c835dd6c": { + "columnOrder": [ + "6be62612-437b-448d-9631-c6cc0938225d", + "2251f8b6-6091-4386-890b-4d0d33e79a96", + "5424865c-c988-4e26-b00b-b3cf90e1e4cf" + ], + "columns": { + "2251f8b6-6091-4386-890b-4d0d33e79a96": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of gcp.labels.resource.subscription_id", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "5424865c-c988-4e26-b00b-b3cf90e1e4cf", + "type": "column" + }, + "orderDirection": "desc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "gcp.labels.resource.subscription_id" + }, + "5424865c-c988-4e26-b00b-b3cf90e1e4cf": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Subscription Number of Undelivered Messages", + "operationType": "average", + "params": { + "format": { + "id": "bytes", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "gcp.pubsub.subscription.num_undelivered_messages.value" + }, + "6be62612-437b-448d-9631-c6cc0938225d": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "1m" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "5424865c-c988-4e26-b00b-b3cf90e1e4cf" + ], + "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "2251f8b6-6091-4386-890b-4d0d33e79a96", + "xAccessor": "6be62612-437b-448d-9631-c6cc0938225d" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line" + } + }, + "title": "Subscription Number of Undelivered Messages [Metricbeat GCP]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "11d06fc0-01a0-11eb-b032-d59f894a5072", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:31:13.736Z", + "version": "WzM4MTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/25b76dc0-01a2-11eb-b032-d59f894a5072.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/25b76dc0-01a2-11eb-b032-d59f894a5072.json new file mode 100644 index 000000000000..afe7cb25c0b0 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/25b76dc0-01a2-11eb-b032-d59f894a5072.json @@ -0,0 +1,103 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "91e62734-6524-424c-b2b5-3974c835dd6c": { + "columnOrder": [ + "f0d11f8d-e2f9-408a-9114-a0b9b18142d4", + "89c8d41d-6896-470d-8318-c0a691fa638e", + "27a71166-d245-471d-b550-ee0b1899ea88" + ], + "columns": { + "27a71166-d245-471d-b550-ee0b1899ea88": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Topic Oldest Retained Acked Message Age By Region", + "operationType": "average", + "scale": "ratio", + "sourceField": "gcp.pubsub.topic.oldest_retained_acked_message_age_by_region.value" + }, + "89c8d41d-6896-470d-8318-c0a691fa638e": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of gcp.labels.metrics.region", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "27a71166-d245-471d-b550-ee0b1899ea88", + "type": "column" + }, + "orderDirection": "desc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "gcp.labels.metrics.region" + }, + "f0d11f8d-e2f9-408a-9114-a0b9b18142d4": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "1m" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "27a71166-d245-471d-b550-ee0b1899ea88" + ], + "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", + "seriesType": "line", + "splitAccessor": "89c8d41d-6896-470d-8318-c0a691fa638e", + "xAccessor": "f0d11f8d-e2f9-408a-9114-a0b9b18142d4" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line" + } + }, + "title": "Topic Oldest Retained Acked Message Age By Region [Metricbeat GCP]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "25b76dc0-01a2-11eb-b032-d59f894a5072", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:31:13.736Z", + "version": "WzM4MDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/403d81e0-01a0-11eb-b032-d59f894a5072.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/403d81e0-01a0-11eb-b032-d59f894a5072.json new file mode 100644 index 000000000000..aaefc07d8115 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/403d81e0-01a0-11eb-b032-d59f894a5072.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "91e62734-6524-424c-b2b5-3974c835dd6c": { + "columnOrder": [ + "6be62612-437b-448d-9631-c6cc0938225d", + "2251f8b6-6091-4386-890b-4d0d33e79a96", + "5424865c-c988-4e26-b00b-b3cf90e1e4cf" + ], + "columns": { + "2251f8b6-6091-4386-890b-4d0d33e79a96": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of gcp.labels.resource.subscription_id", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "5424865c-c988-4e26-b00b-b3cf90e1e4cf", + "type": "column" + }, + "orderDirection": "desc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "gcp.labels.resource.subscription_id" + }, + "5424865c-c988-4e26-b00b-b3cf90e1e4cf": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Subscription Oldest Unacked Message Age", + "operationType": "average", + "scale": "ratio", + "sourceField": "gcp.pubsub.subscription.oldest_unacked_message_age.value" + }, + "6be62612-437b-448d-9631-c6cc0938225d": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "1m" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "5424865c-c988-4e26-b00b-b3cf90e1e4cf" + ], + "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "2251f8b6-6091-4386-890b-4d0d33e79a96", + "xAccessor": "6be62612-437b-448d-9631-c6cc0938225d" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line" + } + }, + "title": "Subscription Oldest Unacked Message [Metricbeat GCP]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "403d81e0-01a0-11eb-b032-d59f894a5072", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:31:13.736Z", + "version": "WzM4MTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/520c6f10-ec8a-11ea-a0ed-7fe6b565d158.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/520c6f10-ec8a-11ea-a0ed-7fe6b565d158.json new file mode 100644 index 000000000000..e743cf281ee0 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/520c6f10-ec8a-11ea-a0ed-7fe6b565d158.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "e12171da-25a4-41ea-86d3-8fd71205c263": { + "columnOrder": [ + "6011e524-4646-410b-8d1c-06c281e8f7ed", + "f8ab301c-f139-4573-b233-ed8a3f717e24" + ], + "columns": { + "6011e524-4646-410b-8d1c-06c281e8f7ed": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Invoice Month", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "f8ab301c-f139-4573-b233-ed8a3f717e24", + "type": "column" + }, + "orderDirection": "desc", + "size": 12 + }, + "scale": "ordinal", + "sourceField": "gcp.billing.invoice_month" + }, + "f8ab301c-f139-4573-b233-ed8a3f717e24": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Total Billing Cost", + "operationType": "sum", + "scale": "ratio", + "sourceField": "gcp.billing.total" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "columns": [ + { + "columnId": "6011e524-4646-410b-8d1c-06c281e8f7ed" + }, + { + "columnId": "f8ab301c-f139-4573-b233-ed8a3f717e24" + } + ], + "layerId": "e12171da-25a4-41ea-86d3-8fd71205c263" + } + }, + "title": "Total Cost Table [Metricbeat GCP]", + "visualizationType": "lnsDatatable" + }, + "coreMigrationVersion": "8.0.0", + "id": "520c6f10-ec8a-11ea-a0ed-7fe6b565d158", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-e12171da-25a4-41ea-86d3-8fd71205c263", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:31:08.618Z", + "version": "WzM3NjksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/5f97d300-01a1-11eb-b032-d59f894a5072.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/5f97d300-01a1-11eb-b032-d59f894a5072.json new file mode 100644 index 000000000000..f8effb331f0d --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/5f97d300-01a1-11eb-b032-d59f894a5072.json @@ -0,0 +1,121 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "91e62734-6524-424c-b2b5-3974c835dd6c": { + "columnOrder": [ + "ed36f31e-ed2a-460a-a881-18e191f75d04", + "6be62612-437b-448d-9631-c6cc0938225d", + "5424865c-c988-4e26-b00b-b3cf90e1e4cf" + ], + "columns": { + "0888bf93-1ecf-467a-b0b5-9e0deee6545c": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of gcp.labels.resource.topic_id", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "5424865c-c988-4e26-b00b-b3cf90e1e4cf", + "type": "column" + }, + "orderDirection": "desc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "gcp.labels.resource.topic_id" + }, + "5424865c-c988-4e26-b00b-b3cf90e1e4cf": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Topic Oldest Unacked Message Age By Region", + "operationType": "average", + "scale": "ratio", + "sourceField": "gcp.pubsub.topic.oldest_unacked_message_age_by_region.value" + }, + "6be62612-437b-448d-9631-c6cc0938225d": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "1m" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "ed36f31e-ed2a-460a-a881-18e191f75d04": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of gcp.labels.metrics.region", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "5424865c-c988-4e26-b00b-b3cf90e1e4cf", + "type": "column" + }, + "orderDirection": "desc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "gcp.labels.metrics.region" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "5424865c-c988-4e26-b00b-b3cf90e1e4cf" + ], + "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "ed36f31e-ed2a-460a-a881-18e191f75d04", + "xAccessor": "6be62612-437b-448d-9631-c6cc0938225d" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line" + } + }, + "title": "Topic Oldest Unacked Message Age By Region [Metricbeat GCP]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "5f97d300-01a1-11eb-b032-d59f894a5072", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:31:13.736Z", + "version": "WzM4MDksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/6de1f430-019d-11eb-b032-d59f894a5072.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/6de1f430-019d-11eb-b032-d59f894a5072.json new file mode 100644 index 000000000000..58ae2d60ad1d --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/6de1f430-019d-11eb-b032-d59f894a5072.json @@ -0,0 +1,104 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "91e62734-6524-424c-b2b5-3974c835dd6c": { + "columnOrder": [ + "6be62612-437b-448d-9631-c6cc0938225d", + "ef2fc668-040b-4c82-9f65-5d3fb25c9536", + "5424865c-c988-4e26-b00b-b3cf90e1e4cf" + ], + "columns": { + "5424865c-c988-4e26-b00b-b3cf90e1e4cf": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Snapshot Number of Messages", + "operationType": "average", + "scale": "ratio", + "sourceField": "gcp.pubsub.snapshot.num_messages.value" + }, + "6be62612-437b-448d-9631-c6cc0938225d": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "ef2fc668-040b-4c82-9f65-5d3fb25c9536": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of gcp.labels.resource.snapshot_id", + "operationType": "terms", + "params": { + "orderBy": { + "type": "alphabetical" + }, + "orderDirection": "asc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "gcp.labels.resource.snapshot_id" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "5424865c-c988-4e26-b00b-b3cf90e1e4cf" + ], + "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "ef2fc668-040b-4c82-9f65-5d3fb25c9536", + "xAccessor": "6be62612-437b-448d-9631-c6cc0938225d" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line" + } + }, + "title": "Snapshot Number of Messages [Metricbeat GCP]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "6de1f430-019d-11eb-b032-d59f894a5072", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:31:13.736Z", + "version": "WzM4MTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/73346db0-e88d-11ea-bf8c-d13ebf358a78.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/73346db0-e88d-11ea-bf8c-d13ebf358a78.json new file mode 100644 index 000000000000..032e87dd1c0b --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/73346db0-e88d-11ea-bf8c-d13ebf358a78.json @@ -0,0 +1,154 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "325e60ce-0fbd-42b0-82f6-b10df31fef6c": { + "columnOrder": [ + "faaaaf23-f362-4a00-be9e-8a155208a39e", + "c4bc659c-3e7c-41f2-bc38-32d9edee95e8", + "3041fc1b-ceb8-4188-b55d-d354819f267e" + ], + "columns": { + "3041fc1b-ceb8-4188-b55d-d354819f267e": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Total Billing", + "operationType": "max", + "scale": "ratio", + "sourceField": "gcp.billing.total" + }, + "c4bc659c-3e7c-41f2-bc38-32d9edee95e8": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "1d" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "faaaaf23-f362-4a00-be9e-8a155208a39e": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Project ID", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "3041fc1b-ceb8-4188-b55d-d354819f267e", + "type": "column" + }, + "orderDirection": "desc", + "size": 10 + }, + "scale": "ordinal", + "sourceField": "gcp.billing.project_id" + } + } + }, + "4ca843af-63d7-46b9-a719-51a81eebf1f7": { + "columnOrder": [ + "1164563d-d2b3-4067-bc7b-d694179182ed", + "10b91492-efef-490d-bc7a-c2074b2eae84" + ], + "columns": { + "10b91492-efef-490d-bc7a-c2074b2eae84": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Total Billing Cost", + "operationType": "sum", + "scale": "ratio", + "sourceField": "gcp.billing.total" + }, + "1164563d-d2b3-4067-bc7b-d694179182ed": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "1d" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "e25f49de-f161-4be8-a8fc-519188a7776c": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Cost", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "10b91492-efef-490d-bc7a-c2074b2eae84", + "type": "column" + }, + "orderDirection": "desc", + "size": 15 + }, + "scale": "ordinal", + "sourceField": "gcp.billing.project_id" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "3041fc1b-ceb8-4188-b55d-d354819f267e" + ], + "layerId": "325e60ce-0fbd-42b0-82f6-b10df31fef6c", + "seriesType": "bar_stacked", + "splitAccessor": "faaaaf23-f362-4a00-be9e-8a155208a39e", + "xAccessor": "c4bc659c-3e7c-41f2-bc38-32d9edee95e8" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar_stacked" + } + }, + "title": "Total Cost Bar Chart [Metricbeat GCP]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "73346db0-e88d-11ea-bf8c-d13ebf358a78", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-325e60ce-0fbd-42b0-82f6-b10df31fef6c", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-4ca843af-63d7-46b9-a719-51a81eebf1f7", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:31:08.618Z", + "version": "WzM3NzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/79d80f10-01a0-11eb-b032-d59f894a5072.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/79d80f10-01a0-11eb-b032-d59f894a5072.json new file mode 100644 index 000000000000..a2ded7323d5c --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/79d80f10-01a0-11eb-b032-d59f894a5072.json @@ -0,0 +1,113 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "91e62734-6524-424c-b2b5-3974c835dd6c": { + "columnOrder": [ + "6be62612-437b-448d-9631-c6cc0938225d", + "2251f8b6-6091-4386-890b-4d0d33e79a96", + "5424865c-c988-4e26-b00b-b3cf90e1e4cf" + ], + "columns": { + "2251f8b6-6091-4386-890b-4d0d33e79a96": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of gcp.labels.resource.subscription_id", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "5424865c-c988-4e26-b00b-b3cf90e1e4cf", + "type": "column" + }, + "orderDirection": "desc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "gcp.labels.resource.subscription_id" + }, + "5424865c-c988-4e26-b00b-b3cf90e1e4cf": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Subscription Backlog Bytes", + "operationType": "average", + "params": { + "format": { + "id": "bytes", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "gcp.pubsub.subscription.backlog_bytes.value" + }, + "6be62612-437b-448d-9631-c6cc0938225d": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "1m" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "5424865c-c988-4e26-b00b-b3cf90e1e4cf" + ], + "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "2251f8b6-6091-4386-890b-4d0d33e79a96", + "xAccessor": "6be62612-437b-448d-9631-c6cc0938225d" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line" + } + }, + "title": "Subscription Backlog [Metricbeat GCP]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "79d80f10-01a0-11eb-b032-d59f894a5072", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:31:13.736Z", + "version": "WzM4MTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/bd399790-01a2-11eb-b032-d59f894a5072.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/bd399790-01a2-11eb-b032-d59f894a5072.json new file mode 100644 index 000000000000..83cb4c66bfa0 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/bd399790-01a2-11eb-b032-d59f894a5072.json @@ -0,0 +1,103 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "91e62734-6524-424c-b2b5-3974c835dd6c": { + "columnOrder": [ + "4f8dae5f-b49c-4a10-8f94-a29039f93919", + "f0d11f8d-e2f9-408a-9114-a0b9b18142d4", + "27a71166-d245-471d-b550-ee0b1899ea88" + ], + "columns": { + "27a71166-d245-471d-b550-ee0b1899ea88": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Topic Send Request Count", + "operationType": "average", + "scale": "ratio", + "sourceField": "gcp.pubsub.topic.send_request_count.value" + }, + "4f8dae5f-b49c-4a10-8f94-a29039f93919": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of gcp.labels.resource.topic_id", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "27a71166-d245-471d-b550-ee0b1899ea88", + "type": "column" + }, + "orderDirection": "desc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "gcp.labels.resource.topic_id" + }, + "f0d11f8d-e2f9-408a-9114-a0b9b18142d4": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "1m" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "27a71166-d245-471d-b550-ee0b1899ea88" + ], + "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", + "seriesType": "line", + "splitAccessor": "4f8dae5f-b49c-4a10-8f94-a29039f93919", + "xAccessor": "f0d11f8d-e2f9-408a-9114-a0b9b18142d4" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line" + } + }, + "title": "Topic Send Request [Metricbeat GCP]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "bd399790-01a2-11eb-b032-d59f894a5072", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:31:13.736Z", + "version": "WzM4MDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/dd835300-e88f-11ea-bf8c-d13ebf358a78.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/dd835300-e88f-11ea-bf8c-d13ebf358a78.json new file mode 100644 index 000000000000..1f7b39cc04a8 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/dd835300-e88f-11ea-bf8c-d13ebf358a78.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "4cb00ce3-c62e-46f3-90ce-b69c876b9605": { + "columnOrder": [ + "2f66b924-5392-4e5e-93fe-5b23a87068c1" + ], + "columns": { + "2f66b924-5392-4e5e-93fe-5b23a87068c1": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "", + "operationType": "unique_count", + "scale": "ratio", + "sourceField": "gcp.billing.project_id" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "accessor": "2f66b924-5392-4e5e-93fe-5b23a87068c1", + "layerId": "4cb00ce3-c62e-46f3-90ce-b69c876b9605" + } + }, + "title": "Total Number Of Projects [Metricbeat GCP]", + "visualizationType": "lnsMetric" + }, + "coreMigrationVersion": "8.0.0", + "id": "dd835300-e88f-11ea-bf8c-d13ebf358a78", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-4cb00ce3-c62e-46f3-90ce-b69c876b9605", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:31:08.618Z", + "version": "WzM3NzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/e6933020-e88d-11ea-bf8c-d13ebf358a78.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/e6933020-e88d-11ea-bf8c-d13ebf358a78.json new file mode 100644 index 000000000000..0a8b8543e0ad --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/e6933020-e88d-11ea-bf8c-d13ebf358a78.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "4ca843af-63d7-46b9-a719-51a81eebf1f7": { + "columnOrder": [ + "e25f49de-f161-4be8-a8fc-519188a7776c", + "b92edf5e-58bc-4382-9cd5-19db2c332c93", + "af747bf6-66e9-4760-bbd8-3dae9c97159d" + ], + "columns": { + "af747bf6-66e9-4760-bbd8-3dae9c97159d": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Total Billing Cost", + "operationType": "max", + "scale": "ratio", + "sourceField": "gcp.billing.total" + }, + "b92edf5e-58bc-4382-9cd5-19db2c332c93": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Invoice Month", + "operationType": "terms", + "params": { + "orderBy": { + "type": "alphabetical" + }, + "orderDirection": "asc", + "size": 5 + }, + "scale": "ordinal", + "sourceField": "gcp.billing.invoice_month" + }, + "e25f49de-f161-4be8-a8fc-519188a7776c": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Monthly Cost", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "af747bf6-66e9-4760-bbd8-3dae9c97159d", + "type": "column" + }, + "orderDirection": "desc", + "size": 10 + }, + "scale": "ordinal", + "sourceField": "gcp.billing.project_id" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "af747bf6-66e9-4760-bbd8-3dae9c97159d" + ], + "layerId": "4ca843af-63d7-46b9-a719-51a81eebf1f7", + "seriesType": "bar_stacked", + "splitAccessor": "b92edf5e-58bc-4382-9cd5-19db2c332c93", + "xAccessor": "e25f49de-f161-4be8-a8fc-519188a7776c" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar_stacked" + } + }, + "title": "Monthly Cost Per Project [Metricbeat GCP]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "e6933020-e88d-11ea-bf8c-d13ebf358a78", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-4ca843af-63d7-46b9-a719-51a81eebf1f7", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:31:08.618Z", + "version": "WzM3NzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/f3e92c10-019d-11eb-b032-d59f894a5072.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/f3e92c10-019d-11eb-b032-d59f894a5072.json new file mode 100644 index 000000000000..61fbffaf8a02 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/lens/f3e92c10-019d-11eb-b032-d59f894a5072.json @@ -0,0 +1,105 @@ +{ + "attributes": { + "state": { + "datasourceStates": { + "indexpattern": { + "layers": { + "91e62734-6524-424c-b2b5-3974c835dd6c": { + "columnOrder": [ + "6be62612-437b-448d-9631-c6cc0938225d", + "921ee447-0c37-4e9d-9f42-a491f412baef", + "5424865c-c988-4e26-b00b-b3cf90e1e4cf" + ], + "columns": { + "5424865c-c988-4e26-b00b-b3cf90e1e4cf": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Snapshot Oldest Message", + "operationType": "average", + "scale": "ratio", + "sourceField": "gcp.pubsub.snapshot.oldest_message_age.value" + }, + "6be62612-437b-448d-9631-c6cc0938225d": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "921ee447-0c37-4e9d-9f42-a491f412baef": { + "dataType": "string", + "isBucketed": true, + "label": "Top values of gcp.labels.resource.snapshot_id", + "operationType": "terms", + "params": { + "orderBy": { + "columnId": "5424865c-c988-4e26-b00b-b3cf90e1e4cf", + "type": "column" + }, + "orderDirection": "desc", + "size": 3 + }, + "scale": "ordinal", + "sourceField": "gcp.labels.resource.snapshot_id" + } + } + } + } + } + }, + "filters": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "fittingFunction": "None", + "layers": [ + { + "accessors": [ + "5424865c-c988-4e26-b00b-b3cf90e1e4cf" + ], + "layerId": "91e62734-6524-424c-b2b5-3974c835dd6c", + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "921ee447-0c37-4e9d-9f42-a491f412baef", + "xAccessor": "6be62612-437b-448d-9631-c6cc0938225d" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line" + } + }, + "title": "Snapshot Oldest Message [Metricbeat GCP]", + "visualizationType": "lnsXY" + }, + "coreMigrationVersion": "8.0.0", + "id": "f3e92c10-019d-11eb-b032-d59f894a5072", + "migrationVersion": { + "lens": "7.13.1" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-current-indexpattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "indexpattern-datasource-layer-91e62734-6524-424c-b2b5-3974c835dd6c", + "type": "index-pattern" + } + ], + "type": "lens", + "updated_at": "2021-08-04T16:31:13.736Z", + "version": "WzM4MTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/02b3c620-8e52-11ea-9fa6-4d675d5290dc.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/02b3c620-8e52-11ea-9fa6-4d675d5290dc.json new file mode 100644 index 000000000000..c104777606ed --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/02b3c620-8e52-11ea-9fa6-4d675d5290dc.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Object Count [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "23042750-8e64-11ea-9fba-216938b39761" + } + ], + "gauge_color_rules": [ + { + "id": "2268f8c0-8e64-11ea-9fba-216938b39761" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=15m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "gcp.storage.storage.object_count.value : * " + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.storage.storage.object_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.bucket_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Storage Object Count [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "02b3c620-8e52-11ea-9fa6-4d675d5290dc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:14.792Z", + "version": "WzM4MTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/0bd0a6e0-9156-11ea-8180-7b0dacd9df87.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/0bd0a6e0-9156-11ea-8180-7b0dacd9df87.json new file mode 100644 index 000000000000..69f87c50ad26 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/0bd0a6e0-9156-11ea-8180-7b0dacd9df87.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing HTTPS Backend Response Bytes [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "gcp.loadbalancing.https.backend_response_bytes_count.value : * " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.loadbalancing.https.backend_response_bytes_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.url_map_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": null, + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Load Balancing HTTPS Backend Response Bytes [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0bd0a6e0-9156-11ea-8180-7b0dacd9df87", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:10.632Z", + "version": "WzM3OTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/239e2290-8e52-11ea-9fa6-4d675d5290dc.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/239e2290-8e52-11ea-9fa6-4d675d5290dc.json new file mode 100644 index 000000000000..a1e1f63a332e --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/239e2290-8e52-11ea-9fa6-4d675d5290dc.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Total Bytes [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "8ec10ba0-8e52-11ea-8164-1ddf506ac7af" + } + ], + "bar_color_rules": [ + { + "id": "8fdd7820-8e52-11ea-8164-1ddf506ac7af" + } + ], + "drop_last_bucket": 1, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=15m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "gcp.storage.storage.total_bytes.value : * " + }, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.storage.storage.total_bytes.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.bucket_name", + "terms_include": "", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "time_range_mode": "last_value", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Storage Total Bytes [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "239e2290-8e52-11ea-9fa6-4d675d5290dc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:14.792Z", + "version": "WzM4MTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/2f6b6740-909b-11ea-8180-7b0dacd9df87.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/2f6b6740-909b-11ea-8180-7b0dacd9df87.json new file mode 100644 index 000000000000..36db34cb9870 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/2f6b6740-909b-11ea-8180-7b0dacd9df87.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing L3 Egress Packets [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "gcp.loadbalancing.l3.internal.egress_packets_count.value : * " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.loadbalancing.l3.internal.egress_packets_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.backend_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Load Balancing L3 Egress Packets [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2f6b6740-909b-11ea-8180-7b0dacd9df87", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:11.683Z", + "version": "WzM3OTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/3aa96470-5fc4-11ea-a4f6-717338406083.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/3aa96470-5fc4-11ea-a4f6-717338406083.json new file mode 100644 index 000000000000..6628acba0431 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/3aa96470-5fc4-11ea-a4f6-717338406083.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "az-instance-account Filter [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "cloud.availability_zone", + "id": "1549397251041", + "indexPatternRefName": "control_0_index_pattern", + "label": "availability zone", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "cloud.instance.name", + "id": "1583510592540", + "indexPatternRefName": "control_1_index_pattern", + "label": "instance name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "cloud.account.id", + "id": "1583510650472", + "indexPatternRefName": "control_2_index_pattern", + "label": "account id", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "az-instance-account Filter [Metricbeat GCP]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3aa96470-5fc4-11ea-a4f6-717338406083", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:09.611Z", + "version": "WzM3NzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/3f472ea0-5e47-11ea-a4f6-717338406083.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/3f472ea0-5e47-11ea-a4f6-717338406083.json new file mode 100644 index 000000000000..be250642d013 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/3f472ea0-5e47-11ea-a4f6-717338406083.json @@ -0,0 +1,67 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Compute CPU Utilization [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "percent", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.compute.instance.cpu.utilization.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Compute CPU Utilization [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3f472ea0-5e47-11ea-a4f6-717338406083", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:09.611Z", + "version": "WzM3NzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/3f4e9040-909d-11ea-8180-7b0dacd9df87.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/3f4e9040-909d-11ea-8180-7b0dacd9df87.json new file mode 100644 index 000000000000..dc85354b5905 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/3f4e9040-909d-11ea-8180-7b0dacd9df87.json @@ -0,0 +1,113 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing L3 Filters [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "gcp.labels.resource.backend_name", + "id": "1588881306802", + "indexPatternRefName": "control_0_index_pattern", + "label": "Backend Name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "gcp.labels.metrics.client_zone", + "id": "1588881320708", + "indexPatternRefName": "control_1_index_pattern", + "label": "Client Zone", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "gcp.labels.metrics.client_network", + "id": "1588881383318", + "indexPatternRefName": "control_2_index_pattern", + "label": "Client Network", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "gcp.labels.metrics.client_subnetwork", + "id": "1588881498842", + "indexPatternRefName": "control_3_index_pattern", + "label": "Client Sub-network", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": false, + "useTimeFilter": false + }, + "title": "Load Balancing L3 Filters [Metricbeat GCP]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3f4e9040-909d-11ea-8180-7b0dacd9df87", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_3_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:11.683Z", + "version": "WzM3OTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/434f69f0-909b-11ea-8180-7b0dacd9df87.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/434f69f0-909b-11ea-8180-7b0dacd9df87.json new file mode 100644 index 000000000000..797eded2bf70 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/434f69f0-909b-11ea-8180-7b0dacd9df87.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing L3 Ingress Bytes [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "gcp.loadbalancing.l3.internal.ingress_bytes_count.value : * " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.loadbalancing.l3.internal.ingress_bytes_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.backend_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Load Balancing L3 Ingress Bytes [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "434f69f0-909b-11ea-8180-7b0dacd9df87", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:11.683Z", + "version": "WzM3OTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/43f45ba0-5e4a-11ea-a4f6-717338406083.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/43f45ba0-5e4a-11ea-a4f6-717338406083.json new file mode 100644 index 000000000000..9be114b52f35 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/43f45ba0-5e4a-11ea-a4f6-717338406083.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Compute Network Received Bytes [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.compute.instance.network.received_bytes_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "cloud.instance.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Compute Network Received Bytes [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "43f45ba0-5e4a-11ea-a4f6-717338406083", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:09.611Z", + "version": "WzM3ODEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/4b44b2b0-8e51-11ea-9fa6-4d675d5290dc.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/4b44b2b0-8e51-11ea-9fa6-4d675d5290dc.json new file mode 100644 index 000000000000..d326ab302f03 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/4b44b2b0-8e51-11ea-9fa6-4d675d5290dc.json @@ -0,0 +1,93 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Filters [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "gcp.labels.resource.bucket_name", + "id": "1588628954328", + "indexPatternRefName": "control_0_index_pattern", + "label": "Bucket Name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "gcp.labels.resource.location", + "id": "1588628981768", + "indexPatternRefName": "control_1_index_pattern", + "label": "Location", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "gcp.labels.metrics.storage_class", + "id": "1588629001851", + "indexPatternRefName": "control_2_index_pattern", + "label": "Storage Class", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": false, + "useTimeFilter": false + }, + "title": "Storage Filters [Metricbeat GCP]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4b44b2b0-8e51-11ea-9fa6-4d675d5290dc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:14.792Z", + "version": "WzM4MTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/543dac40-909b-11ea-8180-7b0dacd9df87.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/543dac40-909b-11ea-8180-7b0dacd9df87.json new file mode 100644 index 000000000000..40057207f7a3 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/543dac40-909b-11ea-8180-7b0dacd9df87.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing L3 Ingress Packets [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "gcp.loadbalancing.l3.internal.ingress_packets_count.value : * " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.loadbalancing.l3.internal.ingress_packets_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.backend_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Load Balancing L3 Ingress Packets [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "543dac40-909b-11ea-8180-7b0dacd9df87", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:11.683Z", + "version": "WzM3OTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/5d2f9160-e88e-11ea-bf8c-d13ebf358a78.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/5d2f9160-e88e-11ea-bf8c-d13ebf358a78.json new file mode 100644 index 000000000000..50e07f62c029 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/5d2f9160-e88e-11ea-bf8c-d13ebf358a78.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Account ID Filter [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "cloud.provider", + "id": "1598550838945", + "indexPatternRefName": "control_0_index_pattern", + "label": "Cloud Provider ", + "options": { + "dynamicOptions": true, + "multiselect": false, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "cloud.account.id", + "id": "1598893530938", + "indexPatternRefName": "control_1_index_pattern", + "label": "Account ID", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "1598550838945", + "type": "list" + }, + { + "fieldName": "gcp.billing.invoice_month", + "id": "1598988595566", + "indexPatternRefName": "control_2_index_pattern", + "label": "Invoice Month", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": false, + "useTimeFilter": false + }, + "title": "Account ID Filter [Metricbeat GCP]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5d2f9160-e88e-11ea-bf8c-d13ebf358a78", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:08.618Z", + "version": "WzM3NjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/6958ed10-a6ad-11ea-950e-d57608e3aa51.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/6958ed10-a6ad-11ea-950e-d57608e3aa51.json new file mode 100644 index 000000000000..4194bf9447b5 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/6958ed10-a6ad-11ea-950e-d57608e3aa51.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Load Balancing TCP SSL Proxy Filters [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "gcp.labels.resource.backend_name", + "id": "1588881306802", + "indexPatternRefName": "control_0_index_pattern", + "label": "Backend Name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "gcp.labels.metrics.client_country", + "id": "1588881320708", + "indexPatternRefName": "control_1_index_pattern", + "label": "Client Country", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "gcp.labels.metrics.proxy_continent", + "id": "1588881383318", + "indexPatternRefName": "control_2_index_pattern", + "label": "Proxy Continent", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": false, + "useTimeFilter": false + }, + "title": "Load Balancing TCP SSL Proxy Filters [Metricbeat GCP]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6958ed10-a6ad-11ea-950e-d57608e3aa51", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:12.649Z", + "version": "WzM3OTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/6f795e70-5e49-11ea-a4f6-717338406083.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/6f795e70-5e49-11ea-a4f6-717338406083.json new file mode 100644 index 000000000000..4832c725587b --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/6f795e70-5e49-11ea-a4f6-717338406083.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Compute Network Sent Bytes [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.compute.instance.network.sent_bytes_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "cloud.instance.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Compute Network Sent Bytes [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6f795e70-5e49-11ea-a4f6-717338406083", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:09.611Z", + "version": "WzM3ODAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/6f933ef0-9155-11ea-8180-7b0dacd9df87.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/6f933ef0-9155-11ea-8180-7b0dacd9df87.json new file mode 100644 index 000000000000..0f93a6082deb --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/6f933ef0-9155-11ea-8180-7b0dacd9df87.json @@ -0,0 +1,74 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing HTTPS Request Count [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "gcp.loadbalancing.https.request_count.value : * " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "gcp.loadbalancing.https.request_count.value : * " + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.loadbalancing.https.request_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.url_map_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": null, + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Load Balancing HTTPS Request Count [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6f933ef0-9155-11ea-8180-7b0dacd9df87", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:10.632Z", + "version": "WzM3ODcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/89513bc0-5e48-11ea-a4f6-717338406083.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/89513bc0-5e48-11ea-a4f6-717338406083.json new file mode 100644 index 000000000000..25dc6d8bd4c4 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/89513bc0-5e48-11ea-a4f6-717338406083.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Compute Read I/O [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.compute.instance.disk.read_ops_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "cloud.instance.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Compute Read I/O [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "89513bc0-5e48-11ea-a4f6-717338406083", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:09.611Z", + "version": "WzM3NzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/8d4ddf40-9155-11ea-8180-7b0dacd9df87.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/8d4ddf40-9155-11ea-8180-7b0dacd9df87.json new file mode 100644 index 000000000000..def7754d7b47 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/8d4ddf40-9155-11ea-8180-7b0dacd9df87.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing HTTPS Request Bytes [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "gcp.loadbalancing.https.request_bytes_count.value : * " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.loadbalancing.https.request_bytes_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.url_map_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": null, + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Load Balancing HTTPS Request Bytes [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8d4ddf40-9155-11ea-8180-7b0dacd9df87", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:10.632Z", + "version": "WzM3ODksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/91eb8d10-8e51-11ea-9fa6-4d675d5290dc.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/91eb8d10-8e51-11ea-9fa6-4d675d5290dc.json new file mode 100644 index 000000000000..073e6fec889d --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/91eb8d10-8e51-11ea-9fa6-4d675d5290dc.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage API Request Count [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.storage.api.request_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.bucket_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Storage API Request Count [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "91eb8d10-8e51-11ea-9fa6-4d675d5290dc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:14.792Z", + "version": "WzM4MjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/95e1f050-5e48-11ea-a4f6-717338406083.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/95e1f050-5e48-11ea-a4f6-717338406083.json new file mode 100644 index 000000000000..5fd1a5d7a196 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/95e1f050-5e48-11ea-a4f6-717338406083.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Compute Write I/O [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 0, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.compute.instance.disk.write_ops_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "cloud.instance.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Compute Write I/O [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "95e1f050-5e48-11ea-a4f6-717338406083", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:09.611Z", + "version": "WzM3NzksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/9d919d00-5e4d-11ea-a4f6-717338406083.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/9d919d00-5e4d-11ea-a4f6-717338406083.json new file mode 100644 index 000000000000..0173d49b3bdf --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/9d919d00-5e4d-11ea-a4f6-717338406083.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Compute Firewall Dropped Bytes [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "3ece14c0-5e4c-11ea-9061-37f24ca5b01f" + } + ], + "bar_color_rules": [ + { + "id": "3b9c35c0-5e4c-11ea-9061-37f24ca5b01f" + } + ], + "drop_last_bucket": 0, + "gauge_color_rules": [ + { + "id": "3b27a200-5e4c-11ea-9061-37f24ca5b01f" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.compute.firewall.dropped_bytes_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Compute Firewall Dropped Bytes [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9d919d00-5e4d-11ea-a4f6-717338406083", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:09.611Z", + "version": "WzM3ODIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/afeb98a0-a6ac-11ea-950e-d57608e3aa51.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/afeb98a0-a6ac-11ea-950e-d57608e3aa51.json new file mode 100644 index 000000000000..5d9de74b9d85 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/afeb98a0-a6ac-11ea-950e-d57608e3aa51.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing TCP SSL Proxy Egress Bytes [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "cd2ddc00-a6a9-11ea-9765-5f34a0c2e541" + } + ], + "bar_color_rules": [ + { + "id": "d26268d0-a6a9-11ea-9765-5f34a0c2e541" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.loadbalancing.tcp_ssl_proxy.egress_bytes_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.backend_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Load Balancing TCP SSL Proxy Egress Bytes [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "afeb98a0-a6ac-11ea-950e-d57608e3aa51", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:12.649Z", + "version": "WzM4MDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/be27b340-a6ac-11ea-950e-d57608e3aa51.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/be27b340-a6ac-11ea-950e-d57608e3aa51.json new file mode 100644 index 000000000000..9a4e26a193b4 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/be27b340-a6ac-11ea-950e-d57608e3aa51.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing TCP SSL Proxy Ingress Bytes [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "cd2ddc00-a6a9-11ea-9765-5f34a0c2e541" + } + ], + "bar_color_rules": [ + { + "id": "d26268d0-a6a9-11ea-9765-5f34a0c2e541" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.loadbalancing.tcp_ssl_proxy.ingress_bytes_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.backend_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Load Balancing TCP SSL Proxy Ingress Bytes [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "be27b340-a6ac-11ea-950e-d57608e3aa51", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:12.649Z", + "version": "WzM4MDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/c4e1e090-a6aa-11ea-950e-d57608e3aa51.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/c4e1e090-a6aa-11ea-950e-d57608e3aa51.json new file mode 100644 index 000000000000..6d7a384b5a9a --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/c4e1e090-a6aa-11ea-950e-d57608e3aa51.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing TCP SSL Proxy Closed Connections [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "cd2ddc00-a6a9-11ea-9765-5f34a0c2e541" + } + ], + "bar_color_rules": [ + { + "id": "d26268d0-a6a9-11ea-9765-5f34a0c2e541" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "gcp.loadbalancing.tcp_ssl_proxy.closed_connections.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.backend_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Load Balancing TCP SSL Proxy Closed Connections [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c4e1e090-a6aa-11ea-950e-d57608e3aa51", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:12.649Z", + "version": "WzM4MDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/d4cc5ec0-8e51-11ea-9fa6-4d675d5290dc.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/d4cc5ec0-8e51-11ea-9fa6-4d675d5290dc.json new file mode 100644 index 000000000000..2beac437b2e3 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/d4cc5ec0-8e51-11ea-9fa6-4d675d5290dc.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Network Received Bytes [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.storage.network.received_bytes_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.bucket_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Storage Network Received Bytes [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d4cc5ec0-8e51-11ea-9fa6-4d675d5290dc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:14.792Z", + "version": "WzM4MjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/d5418f80-9156-11ea-8180-7b0dacd9df87.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/d5418f80-9156-11ea-8180-7b0dacd9df87.json new file mode 100644 index 000000000000..c925f398de65 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/d5418f80-9156-11ea-8180-7b0dacd9df87.json @@ -0,0 +1,93 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing HTTPS Filters [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "gcp.labels.resource.url_map_name", + "id": "1588961027791", + "indexPatternRefName": "control_0_index_pattern", + "label": "URL Map Name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "gcp.labels.resource.region", + "id": "1588961077426", + "indexPatternRefName": "control_1_index_pattern", + "label": "Region", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "gcp.labels.metrics.client_country", + "id": "1588961157559", + "indexPatternRefName": "control_2_index_pattern", + "label": "Client Country", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": false, + "useTimeFilter": false + }, + "title": "Load Balancing HTTPS Filters [Metricbeat GCP]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d5418f80-9156-11ea-8180-7b0dacd9df87", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:10.632Z", + "version": "WzM3ODUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/d63465e0-9154-11ea-8180-7b0dacd9df87.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/d63465e0-9154-11ea-8180-7b0dacd9df87.json new file mode 100644 index 000000000000..45db6236719b --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/d63465e0-9154-11ea-8180-7b0dacd9df87.json @@ -0,0 +1,74 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing HTTPS Response Bytes [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "gcp.loadbalancing.https.response_bytes_count.value : * " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "gcp.loadbalancing.https.response_bytes_count.value : * " + }, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.loadbalancing.https.response_bytes_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.url_map_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": null, + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Load Balancing HTTPS Response Bytes [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d63465e0-9154-11ea-8180-7b0dacd9df87", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:10.632Z", + "version": "WzM3OTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/da5bc460-63e1-11ea-b0ac-95d4ecb1fecd.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/da5bc460-63e1-11ea-b0ac-95d4ecb1fecd.json new file mode 100644 index 000000000000..e36647f548f7 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/da5bc460-63e1-11ea-b0ac-95d4ecb1fecd.json @@ -0,0 +1,116 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Compute Instance Uptime Gauge [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "74a18260-63df-11ea-9543-55b68a4bcad3" + } + ], + "bar_color_rules": [ + { + "id": "77a54c80-63df-11ea-9543-55b68a4bcad3" + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "777371a0-63e0-11ea-9543-55b68a4bcad3", + "value": 0 + } + ], + "gauge_inner_width": 10, + "gauge_max": "", + "gauge_style": "circle", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "#68BC00", + "fill": 0.5, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "percent", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Average Uptime", + "line_width": 1, + "metrics": [ + { + "denominator": "60", + "field": "gcp.compute.instance.uptime.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "numerator": "gcp.compute.instance.uptime.value", + "type": "avg", + "values": [ + "60" + ] + }, + { + "id": "81dc6000-63e7-11ea-994d-3b2599babc53", + "script": "params.uptime / 60\n", + "type": "math", + "variables": [ + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "85f3bd00-63e7-11ea-994d-3b2599babc53", + "name": "uptime" + } + ] + } + ], + "override_index_pattern": 0, + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "tooltip_mode": "show_all", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Compute Instance Uptime Gauge [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "da5bc460-63e1-11ea-b0ac-95d4ecb1fecd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:09.611Z", + "version": "WzM3NzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/dff87070-9155-11ea-8180-7b0dacd9df87.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/dff87070-9155-11ea-8180-7b0dacd9df87.json new file mode 100644 index 000000000000..68c641e64001 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/dff87070-9155-11ea-8180-7b0dacd9df87.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing HTTPS Backend Request Count [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "gcp.loadbalancing.https.backend_request_count.value : * " + }, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.loadbalancing.https.backend_request_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.url_map_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": null, + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Load Balancing HTTPS Backend Request Count [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dff87070-9155-11ea-8180-7b0dacd9df87", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:10.632Z", + "version": "WzM3ODYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/e562eb50-909a-11ea-8180-7b0dacd9df87.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/e562eb50-909a-11ea-8180-7b0dacd9df87.json new file mode 100644 index 000000000000..3e1da0d0d823 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/e562eb50-909a-11ea-8180-7b0dacd9df87.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing L3 Egress Bytes [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "drop_last_bucket": 1, + "filter": { + "language": "kuery", + "query": "gcp.loadbalancing.l3.internal.egress_bytes_count.value : * " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.loadbalancing.l3.internal.egress_bytes_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.backend_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Load Balancing L3 Egress Bytes [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e562eb50-909a-11ea-8180-7b0dacd9df87", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:11.683Z", + "version": "WzM3OTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/e9e44d90-8e51-11ea-9fa6-4d675d5290dc.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/e9e44d90-8e51-11ea-9fa6-4d675d5290dc.json new file mode 100644 index 000000000000..252d7dfb34b8 --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/e9e44d90-8e51-11ea-9fa6-4d675d5290dc.json @@ -0,0 +1,66 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Storage Network Sent Bytes [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.storage.network.sent_bytes_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.bucket_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Storage Network Sent Bytes [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e9e44d90-8e51-11ea-9fa6-4d675d5290dc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:14.792Z", + "version": "WzM4MjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/eb891a20-9155-11ea-8180-7b0dacd9df87.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/eb891a20-9155-11ea-8180-7b0dacd9df87.json new file mode 100644 index 000000000000..5fe0da3f19cc --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/eb891a20-9155-11ea-8180-7b0dacd9df87.json @@ -0,0 +1,70 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing HTTPS Backend Request Bytes [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "filter": { + "language": "kuery", + "query": "gcp.loadbalancing.https.backend_request_bytes_count.value : * " + }, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.loadbalancing.https.backend_request_bytes_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.url_map_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": null, + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Load Balancing HTTPS Backend Request Bytes [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "eb891a20-9155-11ea-8180-7b0dacd9df87", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:10.632Z", + "version": "WzM3ODgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/eed05d80-a6ac-11ea-950e-d57608e3aa51.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/eed05d80-a6ac-11ea-950e-d57608e3aa51.json new file mode 100644 index 000000000000..3365e7e4801b --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/eed05d80-a6ac-11ea-950e-d57608e3aa51.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing TCP SSL Proxy New Connections [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "cd2ddc00-a6a9-11ea-9765-5f34a0c2e541" + } + ], + "bar_color_rules": [ + { + "id": "d26268d0-a6a9-11ea-9765-5f34a0c2e541" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=15m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "2", + "metrics": [ + { + "field": "gcp.loadbalancing.tcp_ssl_proxy.new_connections.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "3", + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.backend_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Load Balancing TCP SSL Proxy New Connections [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "eed05d80-a6ac-11ea-950e-d57608e3aa51", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:12.649Z", + "version": "WzM4MDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/ef1508c0-5e4c-11ea-a4f6-717338406083.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/ef1508c0-5e4c-11ea-a4f6-717338406083.json new file mode 100644 index 000000000000..82c6d2d28d8f --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/ef1508c0-5e4c-11ea-a4f6-717338406083.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Compute Firewall Dropped Packets [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "3ece14c0-5e4c-11ea-9061-37f24ca5b01f" + } + ], + "bar_color_rules": [ + { + "id": "3b9c35c0-5e4c-11ea-9061-37f24ca5b01f" + } + ], + "drop_last_bucket": 0, + "gauge_color_rules": [ + { + "id": "3b27a200-5e4c-11ea-9061-37f24ca5b01f" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "5m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": "3", + "metrics": [ + { + "field": "gcp.compute.firewall.dropped_packets_count.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "2", + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "time_range_mode": "entire_time_range", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Compute Firewall Dropped Packets [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ef1508c0-5e4c-11ea-a4f6-717338406083", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:09.611Z", + "version": "WzM3ODMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/f6e33a00-feaf-11ea-b032-d59f894a5072.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/f6e33a00-feaf-11ea-b032-d59f894a5072.json new file mode 100644 index 000000000000..65d29f1a740d --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/f6e33a00-feaf-11ea-b032-d59f894a5072.json @@ -0,0 +1,119 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "PubSub Filter [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "gcp.labels.resource.subscription_id", + "id": "1600984143264", + "indexPatternRefName": "control_0_index_pattern", + "label": "Subscription ID", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "gcp.labels.resource.topic_id", + "id": "1600984164459", + "indexPatternRefName": "control_1_index_pattern", + "label": "Topic ID", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "gcp.labels.resource.snapshot_id", + "id": "1601305675297", + "indexPatternRefName": "control_2_index_pattern", + "label": "Snapshot ID", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "gcp.labels.metrics.region", + "id": "1601307561260", + "indexPatternRefName": "control_3_index_pattern", + "label": "Region", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": false, + "useTimeFilter": false + }, + "title": "PubSub Filter [Metricbeat GCP]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f6e33a00-feaf-11ea-b032-d59f894a5072", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_2_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_3_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:13.736Z", + "version": "WzM4MDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/f86c26f0-a6aa-11ea-950e-d57608e3aa51.json b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/f86c26f0-a6aa-11ea-950e-d57608e3aa51.json new file mode 100644 index 000000000000..5a18eda3792a --- /dev/null +++ b/x-pack/metricbeat/module/gcp/_meta/kibana/7/visualization/f86c26f0-a6aa-11ea-950e-d57608e3aa51.json @@ -0,0 +1,77 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Load Balancing TCP SSL Proxy Open Connections [Metricbeat GCP]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "cd2ddc00-a6a9-11ea-9765-5f34a0c2e541" + } + ], + "bar_color_rules": [ + { + "id": "d26268d0-a6a9-11ea-9765-5f34a0c2e541" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": ">=15m", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "gcp.loadbalancing.tcp_ssl_proxy.open_connections.value", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "kibana", + "split_mode": "terms", + "stacked": "none", + "terms_field": "gcp.labels.resource.backend_name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Load Balancing TCP SSL Proxy Open Connections [Metricbeat GCP]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f86c26f0-a6aa-11ea-950e-d57608e3aa51", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:12.649Z", + "version": "WzM4MDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/8f788c70-36c9-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/8f788c70-36c9-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..db23889eb32e --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/8f788c70-36c9-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,181 @@ +{ + "attributes": { + "description": "The dashboard presents metric data describing IBM MQ subscriptions. Metrics show statistics of actions performed on durable and non-durable subscriptions, collected by a queue manager.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "e17294e6-0911-47dc-b28b-de87507924b5", + "w": 16, + "x": 0, + "y": 0 + }, + "panelIndex": "e17294e6-0911-47dc-b28b-de87507924b5", + "panelRefName": "panel_e17294e6-0911-47dc-b28b-de87507924b5", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "040d5750-fa77-45c6-82c1-26fc6f3859a6", + "w": 16, + "x": 16, + "y": 0 + }, + "panelIndex": "040d5750-fa77-45c6-82c1-26fc6f3859a6", + "panelRefName": "panel_040d5750-fa77-45c6-82c1-26fc6f3859a6", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "fe5933aa-17b4-455e-8ab4-88d1f50ba73a", + "w": 16, + "x": 32, + "y": 0 + }, + "panelIndex": "fe5933aa-17b4-455e-8ab4-88d1f50ba73a", + "panelRefName": "panel_fe5933aa-17b4-455e-8ab4-88d1f50ba73a", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "87a5c31a-6456-4839-a9ec-24802f51889d", + "w": 16, + "x": 0, + "y": 12 + }, + "panelIndex": "87a5c31a-6456-4839-a9ec-24802f51889d", + "panelRefName": "panel_87a5c31a-6456-4839-a9ec-24802f51889d", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1af1ab03-5cfd-4495-9d50-7dd77f43f1a4", + "w": 16, + "x": 16, + "y": 12 + }, + "panelIndex": "1af1ab03-5cfd-4495-9d50-7dd77f43f1a4", + "panelRefName": "panel_1af1ab03-5cfd-4495-9d50-7dd77f43f1a4", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "a9a53a87-592f-480f-997d-73fcb1843167", + "w": 16, + "x": 32, + "y": 12 + }, + "panelIndex": "a9a53a87-592f-480f-997d-73fcb1843167", + "panelRefName": "panel_a9a53a87-592f-480f-997d-73fcb1843167", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "38525462-b0f6-4cc9-a052-6e5f66f1cba3", + "w": 16, + "x": 0, + "y": 24 + }, + "panelIndex": "38525462-b0f6-4cc9-a052-6e5f66f1cba3", + "panelRefName": "panel_38525462-b0f6-4cc9-a052-6e5f66f1cba3", + "type": "visualization", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat IBM MQ] Subscriptions Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "8f788c70-36c9-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "b455bc00-36cb-11ea-9f7a-097fe7ab3ddd", + "name": "e17294e6-0911-47dc-b28b-de87507924b5:panel_e17294e6-0911-47dc-b28b-de87507924b5", + "type": "visualization" + }, + { + "id": "bdf17380-36cb-11ea-9f7a-097fe7ab3ddd", + "name": "040d5750-fa77-45c6-82c1-26fc6f3859a6:panel_040d5750-fa77-45c6-82c1-26fc6f3859a6", + "type": "visualization" + }, + { + "id": "9939e270-36cb-11ea-9f7a-097fe7ab3ddd", + "name": "fe5933aa-17b4-455e-8ab4-88d1f50ba73a:panel_fe5933aa-17b4-455e-8ab4-88d1f50ba73a", + "type": "visualization" + }, + { + "id": "89984460-36cb-11ea-9f7a-097fe7ab3ddd", + "name": "87a5c31a-6456-4839-a9ec-24802f51889d:panel_87a5c31a-6456-4839-a9ec-24802f51889d", + "type": "visualization" + }, + { + "id": "908afbf0-36cb-11ea-9f7a-097fe7ab3ddd", + "name": "1af1ab03-5cfd-4495-9d50-7dd77f43f1a4:panel_1af1ab03-5cfd-4495-9d50-7dd77f43f1a4", + "type": "visualization" + }, + { + "id": "d8dbdcd0-36cb-11ea-9f7a-097fe7ab3ddd", + "name": "a9a53a87-592f-480f-997d-73fcb1843167:panel_a9a53a87-592f-480f-997d-73fcb1843167", + "type": "visualization" + }, + { + "id": "3901ed30-36cb-11ea-9f7a-097fe7ab3ddd", + "name": "38525462-b0f6-4cc9-a052-6e5f66f1cba3:panel_38525462-b0f6-4cc9-a052-6e5f66f1cba3", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:27.109Z", + "version": "WzM4OTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-calls-overview.ndjson b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-calls-overview.ndjson deleted file mode 100644 index 02559efd238c..000000000000 --- a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-calls-overview.ndjson +++ /dev/null @@ -1,11 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQCB calls succeeded/failed [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqcb_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_failed_mqcb_total\",\"id\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"max\"},{\"field\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"id\":\"bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQCB calls succeeded/failed [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"07262080-36d3-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4NzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQCLOSE calls succeeded/failed [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqclose_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_failed_mqclose_total\",\"id\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"max\"},{\"field\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"id\":\"bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQCLOSE calls succeeded/failed [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1dba2700-36de-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4NzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQCONN/MQCONNX calls succeeded/failed [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqconn_mqconnx_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqconn_mqconnx_total\",\"id\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"max\"},{\"field\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"id\":\"bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQCONN/MQCONNX calls succeeded/failed [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2fcbdab0-36de-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4NzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQDISC calls succeeded [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqdisc_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQDISC calls succeeded [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d781db00-36df-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4NzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQCTL calls succeeded [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqctl_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQCTL calls succeeded [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4ODAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQSTAT calls succeeded [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqstat_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQSTAT calls succeeded [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"aa90ec20-36e0-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4ODEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQOPEN calls succeeded/failed [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqopen_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_failed_mqopen_total\",\"id\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"max\"},{\"field\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"id\":\"bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQOPEN calls succeeded/failed [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"56b63f60-36e0-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4ODIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQINQ calls succeeded/failed [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqinq_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_failed_mqinq_total\",\"id\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"max\"},{\"field\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"id\":\"bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQINQ calls succeeded/failed [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"74874de0-36e0-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4ODMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQSET calls succeeded/failed [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqset_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_failed_mqset_total\",\"id\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"max\"},{\"field\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"id\":\"bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQSET calls succeeded/failed [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"92bf3480-36e0-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4ODQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"MQSUBRQ calls succeeded/failed [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_mqsubrq_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"92c00030-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_failed_mqsubrq_total\",\"id\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"max\"},{\"field\":\"a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33\",\"id\":\"bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"MQSUBRQ calls succeeded/failed [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c4be1ff0-36e0-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4ODUsMV0="} -{"attributes":{"description":"The dashboard presents metric data describing IBM MQ calls, collected by a queue manager.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"68140594-23bf-4e1e-a062-19b21e557e1a\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"68140594-23bf-4e1e-a062-19b21e557e1a\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_68140594-23bf-4e1e-a062-19b21e557e1a\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"2bb94f86-2fa8-4e3e-b91d-9838a29b9674\",\"w\":16,\"x\":16,\"y\":0},\"panelIndex\":\"2bb94f86-2fa8-4e3e-b91d-9838a29b9674\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2bb94f86-2fa8-4e3e-b91d-9838a29b9674\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"0b68733f-6f86-4686-9580-1354f5d6bc4d\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"0b68733f-6f86-4686-9580-1354f5d6bc4d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0b68733f-6f86-4686-9580-1354f5d6bc4d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"0423a3f2-8f1f-4402-842b-9423008ac5c1\",\"w\":16,\"x\":0,\"y\":12},\"panelIndex\":\"0423a3f2-8f1f-4402-842b-9423008ac5c1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0423a3f2-8f1f-4402-842b-9423008ac5c1\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6936c053-8168-4eb9-9964-fc0e892b9130\",\"w\":16,\"x\":16,\"y\":12},\"panelIndex\":\"6936c053-8168-4eb9-9964-fc0e892b9130\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6936c053-8168-4eb9-9964-fc0e892b9130\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"084602cd-6b17-4f8f-97a8-c33ac2bafb14\",\"w\":16,\"x\":32,\"y\":12},\"panelIndex\":\"084602cd-6b17-4f8f-97a8-c33ac2bafb14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_084602cd-6b17-4f8f-97a8-c33ac2bafb14\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"50a75e9d-e345-45c7-93fb-54e29d0863f2\",\"w\":16,\"x\":0,\"y\":24},\"panelIndex\":\"50a75e9d-e345-45c7-93fb-54e29d0863f2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_50a75e9d-e345-45c7-93fb-54e29d0863f2\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"9cae147d-66d9-4bff-b916-f3b82adc07be\",\"w\":16,\"x\":16,\"y\":24},\"panelIndex\":\"9cae147d-66d9-4bff-b916-f3b82adc07be\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_9cae147d-66d9-4bff-b916-f3b82adc07be\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"fc84cd97-80a9-406d-ab2b-c1d9ce5dca72\",\"w\":16,\"x\":32,\"y\":24},\"panelIndex\":\"fc84cd97-80a9-406d-ab2b-c1d9ce5dca72\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_fc84cd97-80a9-406d-ab2b-c1d9ce5dca72\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"d8c19a6d-a25b-4950-9ef4-6a15a894f725\",\"w\":16,\"x\":0,\"y\":36},\"panelIndex\":\"d8c19a6d-a25b-4950-9ef4-6a15a894f725\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_d8c19a6d-a25b-4950-9ef4-6a15a894f725\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"d76eb9f9-2198-475b-a058-7204244d5597\",\"w\":16,\"x\":16,\"y\":36},\"panelIndex\":\"d76eb9f9-2198-475b-a058-7204244d5597\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_d76eb9f9-2198-475b-a058-7204244d5597\"}]","timeRestore":false,"title":"[Metricbeat IBM MQ] Calls Overview","version":1},"coreMigrationVersion":"8.0.0","id":"fc5512c0-36d1-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"07262080-36d3-11ea-9f7a-097fe7ab3ddd","name":"68140594-23bf-4e1e-a062-19b21e557e1a:panel_68140594-23bf-4e1e-a062-19b21e557e1a","type":"visualization"},{"id":"1dba2700-36de-11ea-9f7a-097fe7ab3ddd","name":"2bb94f86-2fa8-4e3e-b91d-9838a29b9674:panel_2bb94f86-2fa8-4e3e-b91d-9838a29b9674","type":"visualization"},{"id":"2fcbdab0-36de-11ea-9f7a-097fe7ab3ddd","name":"0b68733f-6f86-4686-9580-1354f5d6bc4d:panel_0b68733f-6f86-4686-9580-1354f5d6bc4d","type":"visualization"},{"id":"d781db00-36df-11ea-9f7a-097fe7ab3ddd","name":"0423a3f2-8f1f-4402-842b-9423008ac5c1:panel_0423a3f2-8f1f-4402-842b-9423008ac5c1","type":"visualization"},{"id":"fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd","name":"6936c053-8168-4eb9-9964-fc0e892b9130:panel_6936c053-8168-4eb9-9964-fc0e892b9130","type":"visualization"},{"id":"aa90ec20-36e0-11ea-9f7a-097fe7ab3ddd","name":"084602cd-6b17-4f8f-97a8-c33ac2bafb14:panel_084602cd-6b17-4f8f-97a8-c33ac2bafb14","type":"visualization"},{"id":"fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd","name":"50a75e9d-e345-45c7-93fb-54e29d0863f2:panel_50a75e9d-e345-45c7-93fb-54e29d0863f2","type":"visualization"},{"id":"56b63f60-36e0-11ea-9f7a-097fe7ab3ddd","name":"9cae147d-66d9-4bff-b916-f3b82adc07be:panel_9cae147d-66d9-4bff-b916-f3b82adc07be","type":"visualization"},{"id":"74874de0-36e0-11ea-9f7a-097fe7ab3ddd","name":"fc84cd97-80a9-406d-ab2b-c1d9ce5dca72:panel_fc84cd97-80a9-406d-ab2b-c1d9ce5dca72","type":"visualization"},{"id":"92bf3480-36e0-11ea-9f7a-097fe7ab3ddd","name":"d8c19a6d-a25b-4950-9ef4-6a15a894f725:panel_d8c19a6d-a25b-4950-9ef4-6a15a894f725","type":"visualization"},{"id":"c4be1ff0-36e0-11ea-9f7a-097fe7ab3ddd","name":"d76eb9f9-2198-475b-a058-7204244d5597:panel_d76eb9f9-2198-475b-a058-7204244d5597","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:25.034Z","version":"WzM4NzUsMV0="} diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-messages-overview.ndjson b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-messages-overview.ndjson deleted file mode 100644 index cacfa86ee95b..000000000000 --- a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-messages-overview.ndjson +++ /dev/null @@ -1,13 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Message commits [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_commit_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Message commits [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"49abed00-36eb-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4ODcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Expired messages [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_expired_message_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Expired messages [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0abb72e0-36ec-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4ODgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Purged queue [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_purged_queue_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Purged queue [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"195b5860-36ec-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4ODksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Failed browse count [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_failed_browse_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Failed browse count [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"60b5a440-36ec-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Non-persistent message MQPUT1 [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_non_persistent_message_mqput1_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Non-persistent message MQPUT1 [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e98d7660-36ee-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Non-persistent message MQPUT [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_non_persistent_message_mqput_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Non-persistent message MQPUT [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d82919b0-36ee-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Non-persistent message browse count [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_non_persistent_message_browse_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Non-persistent message browse count [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"23c5f140-36ef-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Non-persistent message destructive get count [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_non_persistent_message_destructive_get_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Non-persistent message destructive get count [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3ed28890-36ef-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Persistent message MQPUT count [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_persistent_message_mqput_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Persistent message MQPUT count [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"58abd000-36ef-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Persistent message MQPUT1 count [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_persistent_message_mqput1_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Persistent message MQPUT1 count [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"67eeac40-36ef-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Persistent message destructive get count [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_persistent_message_destructive_get_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Persistent message destructive get count [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"96d27500-36ef-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Persistent message browse count [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_persistent_message_browse_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Persistent message browse count [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"855debb0-36ef-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4OTgsMV0="} -{"attributes":{"description":"The dashboard presents metric data describing IBM MQ persistent and non-persistent messages. Metric data are collected by a queue manager.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"31635dc4-663e-4ad1-adae-eb96687c7810\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"31635dc4-663e-4ad1-adae-eb96687c7810\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_31635dc4-663e-4ad1-adae-eb96687c7810\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"5452998b-5149-4ac6-93df-b3fccab74f58\",\"w\":16,\"x\":16,\"y\":0},\"panelIndex\":\"5452998b-5149-4ac6-93df-b3fccab74f58\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5452998b-5149-4ac6-93df-b3fccab74f58\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"0e58849b-8742-4ed4-aae2-33ca19553ac2\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"0e58849b-8742-4ed4-aae2-33ca19553ac2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0e58849b-8742-4ed4-aae2-33ca19553ac2\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f\",\"w\":16,\"x\":0,\"y\":12},\"panelIndex\":\"45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"2fbdb686-f624-4b2d-a26d-4e7f70e8d902\",\"w\":16,\"x\":16,\"y\":12},\"panelIndex\":\"2fbdb686-f624-4b2d-a26d-4e7f70e8d902\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2fbdb686-f624-4b2d-a26d-4e7f70e8d902\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"355b12f6-56cb-4b8c-8498-b379d3e7d8b0\",\"w\":16,\"x\":32,\"y\":12},\"panelIndex\":\"355b12f6-56cb-4b8c-8498-b379d3e7d8b0\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_355b12f6-56cb-4b8c-8498-b379d3e7d8b0\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"c1eed75c-610c-4741-b384-de866f30b79b\",\"w\":16,\"x\":0,\"y\":24},\"panelIndex\":\"c1eed75c-610c-4741-b384-de866f30b79b\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_c1eed75c-610c-4741-b384-de866f30b79b\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"78bd7680-0f3f-4d3f-994b-eeb58ef0a340\",\"w\":16,\"x\":16,\"y\":24},\"panelIndex\":\"78bd7680-0f3f-4d3f-994b-eeb58ef0a340\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_78bd7680-0f3f-4d3f-994b-eeb58ef0a340\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6edef0c3-4c5f-4d0a-8e58-076cb5249ca2\",\"w\":16,\"x\":32,\"y\":24},\"panelIndex\":\"6edef0c3-4c5f-4d0a-8e58-076cb5249ca2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6edef0c3-4c5f-4d0a-8e58-076cb5249ca2\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"0ecb7983-d4f9-453d-ade4-d02dfa6b6c72\",\"w\":16,\"x\":0,\"y\":36},\"panelIndex\":\"0ecb7983-d4f9-453d-ade4-d02dfa6b6c72\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_0ecb7983-d4f9-453d-ade4-d02dfa6b6c72\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"1c8071e7-c89a-45b1-aae6-31471939b73c\",\"w\":16,\"x\":32,\"y\":36},\"panelIndex\":\"1c8071e7-c89a-45b1-aae6-31471939b73c\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1c8071e7-c89a-45b1-aae6-31471939b73c\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"e27955d6-ce96-48b9-b9d0-04f4d61a757f\",\"w\":16,\"x\":16,\"y\":36},\"panelIndex\":\"e27955d6-ce96-48b9-b9d0-04f4d61a757f\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e27955d6-ce96-48b9-b9d0-04f4d61a757f\"}]","timeRestore":false,"title":"[Metricbeat IBM MQ] Messages Overview","version":1},"coreMigrationVersion":"8.0.0","id":"d2112e90-36ea-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"49abed00-36eb-11ea-9f7a-097fe7ab3ddd","name":"31635dc4-663e-4ad1-adae-eb96687c7810:panel_31635dc4-663e-4ad1-adae-eb96687c7810","type":"visualization"},{"id":"0abb72e0-36ec-11ea-9f7a-097fe7ab3ddd","name":"5452998b-5149-4ac6-93df-b3fccab74f58:panel_5452998b-5149-4ac6-93df-b3fccab74f58","type":"visualization"},{"id":"195b5860-36ec-11ea-9f7a-097fe7ab3ddd","name":"0e58849b-8742-4ed4-aae2-33ca19553ac2:panel_0e58849b-8742-4ed4-aae2-33ca19553ac2","type":"visualization"},{"id":"60b5a440-36ec-11ea-9f7a-097fe7ab3ddd","name":"45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f:panel_45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f","type":"visualization"},{"id":"e98d7660-36ee-11ea-9f7a-097fe7ab3ddd","name":"2fbdb686-f624-4b2d-a26d-4e7f70e8d902:panel_2fbdb686-f624-4b2d-a26d-4e7f70e8d902","type":"visualization"},{"id":"d82919b0-36ee-11ea-9f7a-097fe7ab3ddd","name":"355b12f6-56cb-4b8c-8498-b379d3e7d8b0:panel_355b12f6-56cb-4b8c-8498-b379d3e7d8b0","type":"visualization"},{"id":"23c5f140-36ef-11ea-9f7a-097fe7ab3ddd","name":"c1eed75c-610c-4741-b384-de866f30b79b:panel_c1eed75c-610c-4741-b384-de866f30b79b","type":"visualization"},{"id":"3ed28890-36ef-11ea-9f7a-097fe7ab3ddd","name":"78bd7680-0f3f-4d3f-994b-eeb58ef0a340:panel_78bd7680-0f3f-4d3f-994b-eeb58ef0a340","type":"visualization"},{"id":"58abd000-36ef-11ea-9f7a-097fe7ab3ddd","name":"6edef0c3-4c5f-4d0a-8e58-076cb5249ca2:panel_6edef0c3-4c5f-4d0a-8e58-076cb5249ca2","type":"visualization"},{"id":"67eeac40-36ef-11ea-9f7a-097fe7ab3ddd","name":"0ecb7983-d4f9-453d-ade4-d02dfa6b6c72:panel_0ecb7983-d4f9-453d-ade4-d02dfa6b6c72","type":"visualization"},{"id":"96d27500-36ef-11ea-9f7a-097fe7ab3ddd","name":"1c8071e7-c89a-45b1-aae6-31471939b73c:panel_1c8071e7-c89a-45b1-aae6-31471939b73c","type":"visualization"},{"id":"855debb0-36ef-11ea-9f7a-097fe7ab3ddd","name":"e27955d6-ce96-48b9-b9d0-04f4d61a757f:panel_e27955d6-ce96-48b9-b9d0-04f4d61a757f","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:26.059Z","version":"WzM4ODYsMV0="} diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-subscriptions-overview.ndjson b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-subscriptions-overview.ndjson deleted file mode 100644 index c10083113351..000000000000 --- a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/Metricbeat-ibmmq-subscriptions-overview.ndjson +++ /dev/null @@ -1,8 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Create non-durable subscription [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_non_durable_subscription_create_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"b5619140-36cc-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Create non-durable subscription [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b455bc00-36cb-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:27.109Z","version":"WzM5MDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Delete non-durable subscription [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_non_durable_subscription_delete_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"cd9fed60-36cc-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Delete non-durable subscription [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"bdf17380-36cb-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:27.109Z","version":"WzM5MDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Resume durable subscription [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_durable_subscription_resume_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"e0ece030-36cc-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Resume durable subscription [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9939e270-36cb-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:27.109Z","version":"WzM5MDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Create durable subscription [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_durable_subscription_create_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"alpha\":0.3,\"beta\":0.1,\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"gamma\":0.3,\"id\":\"f9af6070-36cc-11ea-b7bc-e7f346d59677\",\"model_type\":\"simple\",\"multiplicative\":true,\"period\":1,\"type\":\"derivative\",\"unit\":\"\",\"window\":5}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Create durable subscription [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"89984460-36cb-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:27.109Z","version":"WzM5MDMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Delete durable subscription [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_durable_subscription_delete_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"0a276150-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Delete durable subscription [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"908afbf0-36cb-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:27.109Z","version":"WzM5MDQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Failed create/alter/resume subscription count [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_failed_subscription_create_alter_resume_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"2809d4f0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Failed create/alter/resume subscription count [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d8dbdcd0-36cb-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:27.109Z","version":"WzM5MDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Alter durable subscription [Metricbeat IBM MQ]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"6fa6af70-36ca-11ea-b7bc-e7f346d59677\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"prometheus.metrics.ibmmq_qmgr_durable_subscription_alter_total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"3b91ade0-36cd-11ea-b7bc-e7f346d59677\",\"type\":\"derivative\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.qmgr\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Alter durable subscription [Metricbeat IBM MQ]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3901ed30-36cb-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:27.109Z","version":"WzM5MDYsMV0="} -{"attributes":{"description":"The dashboard presents metric data describing IBM MQ subscriptions. Metrics show statistics of actions performed on durable and non-durable subscriptions, collected by a queue manager.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"e17294e6-0911-47dc-b28b-de87507924b5\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"e17294e6-0911-47dc-b28b-de87507924b5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e17294e6-0911-47dc-b28b-de87507924b5\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"040d5750-fa77-45c6-82c1-26fc6f3859a6\",\"w\":16,\"x\":16,\"y\":0},\"panelIndex\":\"040d5750-fa77-45c6-82c1-26fc6f3859a6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_040d5750-fa77-45c6-82c1-26fc6f3859a6\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"fe5933aa-17b4-455e-8ab4-88d1f50ba73a\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"fe5933aa-17b4-455e-8ab4-88d1f50ba73a\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_fe5933aa-17b4-455e-8ab4-88d1f50ba73a\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"87a5c31a-6456-4839-a9ec-24802f51889d\",\"w\":16,\"x\":0,\"y\":12},\"panelIndex\":\"87a5c31a-6456-4839-a9ec-24802f51889d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_87a5c31a-6456-4839-a9ec-24802f51889d\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"1af1ab03-5cfd-4495-9d50-7dd77f43f1a4\",\"w\":16,\"x\":16,\"y\":12},\"panelIndex\":\"1af1ab03-5cfd-4495-9d50-7dd77f43f1a4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1af1ab03-5cfd-4495-9d50-7dd77f43f1a4\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"a9a53a87-592f-480f-997d-73fcb1843167\",\"w\":16,\"x\":32,\"y\":12},\"panelIndex\":\"a9a53a87-592f-480f-997d-73fcb1843167\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a9a53a87-592f-480f-997d-73fcb1843167\"},{\"version\":\"7.4.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"38525462-b0f6-4cc9-a052-6e5f66f1cba3\",\"w\":16,\"x\":0,\"y\":24},\"panelIndex\":\"38525462-b0f6-4cc9-a052-6e5f66f1cba3\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_38525462-b0f6-4cc9-a052-6e5f66f1cba3\"}]","timeRestore":false,"title":"[Metricbeat IBM MQ] Subscriptions Overview","version":1},"coreMigrationVersion":"8.0.0","id":"8f788c70-36c9-11ea-9f7a-097fe7ab3ddd","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"b455bc00-36cb-11ea-9f7a-097fe7ab3ddd","name":"e17294e6-0911-47dc-b28b-de87507924b5:panel_e17294e6-0911-47dc-b28b-de87507924b5","type":"visualization"},{"id":"bdf17380-36cb-11ea-9f7a-097fe7ab3ddd","name":"040d5750-fa77-45c6-82c1-26fc6f3859a6:panel_040d5750-fa77-45c6-82c1-26fc6f3859a6","type":"visualization"},{"id":"9939e270-36cb-11ea-9f7a-097fe7ab3ddd","name":"fe5933aa-17b4-455e-8ab4-88d1f50ba73a:panel_fe5933aa-17b4-455e-8ab4-88d1f50ba73a","type":"visualization"},{"id":"89984460-36cb-11ea-9f7a-097fe7ab3ddd","name":"87a5c31a-6456-4839-a9ec-24802f51889d:panel_87a5c31a-6456-4839-a9ec-24802f51889d","type":"visualization"},{"id":"908afbf0-36cb-11ea-9f7a-097fe7ab3ddd","name":"1af1ab03-5cfd-4495-9d50-7dd77f43f1a4:panel_1af1ab03-5cfd-4495-9d50-7dd77f43f1a4","type":"visualization"},{"id":"d8dbdcd0-36cb-11ea-9f7a-097fe7ab3ddd","name":"a9a53a87-592f-480f-997d-73fcb1843167:panel_a9a53a87-592f-480f-997d-73fcb1843167","type":"visualization"},{"id":"3901ed30-36cb-11ea-9f7a-097fe7ab3ddd","name":"38525462-b0f6-4cc9-a052-6e5f66f1cba3:panel_38525462-b0f6-4cc9-a052-6e5f66f1cba3","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:27.109Z","version":"WzM4OTksMV0="} diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/d2112e90-36ea-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/d2112e90-36ea-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..6435e2b4bf2d --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/d2112e90-36ea-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,286 @@ +{ + "attributes": { + "description": "The dashboard presents metric data describing IBM MQ persistent and non-persistent messages. Metric data are collected by a queue manager.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "31635dc4-663e-4ad1-adae-eb96687c7810", + "w": 16, + "x": 0, + "y": 0 + }, + "panelIndex": "31635dc4-663e-4ad1-adae-eb96687c7810", + "panelRefName": "panel_31635dc4-663e-4ad1-adae-eb96687c7810", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "5452998b-5149-4ac6-93df-b3fccab74f58", + "w": 16, + "x": 16, + "y": 0 + }, + "panelIndex": "5452998b-5149-4ac6-93df-b3fccab74f58", + "panelRefName": "panel_5452998b-5149-4ac6-93df-b3fccab74f58", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "0e58849b-8742-4ed4-aae2-33ca19553ac2", + "w": 16, + "x": 32, + "y": 0 + }, + "panelIndex": "0e58849b-8742-4ed4-aae2-33ca19553ac2", + "panelRefName": "panel_0e58849b-8742-4ed4-aae2-33ca19553ac2", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f", + "w": 16, + "x": 0, + "y": 12 + }, + "panelIndex": "45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f", + "panelRefName": "panel_45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2fbdb686-f624-4b2d-a26d-4e7f70e8d902", + "w": 16, + "x": 16, + "y": 12 + }, + "panelIndex": "2fbdb686-f624-4b2d-a26d-4e7f70e8d902", + "panelRefName": "panel_2fbdb686-f624-4b2d-a26d-4e7f70e8d902", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "355b12f6-56cb-4b8c-8498-b379d3e7d8b0", + "w": 16, + "x": 32, + "y": 12 + }, + "panelIndex": "355b12f6-56cb-4b8c-8498-b379d3e7d8b0", + "panelRefName": "panel_355b12f6-56cb-4b8c-8498-b379d3e7d8b0", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "c1eed75c-610c-4741-b384-de866f30b79b", + "w": 16, + "x": 0, + "y": 24 + }, + "panelIndex": "c1eed75c-610c-4741-b384-de866f30b79b", + "panelRefName": "panel_c1eed75c-610c-4741-b384-de866f30b79b", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "78bd7680-0f3f-4d3f-994b-eeb58ef0a340", + "w": 16, + "x": 16, + "y": 24 + }, + "panelIndex": "78bd7680-0f3f-4d3f-994b-eeb58ef0a340", + "panelRefName": "panel_78bd7680-0f3f-4d3f-994b-eeb58ef0a340", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6edef0c3-4c5f-4d0a-8e58-076cb5249ca2", + "w": 16, + "x": 32, + "y": 24 + }, + "panelIndex": "6edef0c3-4c5f-4d0a-8e58-076cb5249ca2", + "panelRefName": "panel_6edef0c3-4c5f-4d0a-8e58-076cb5249ca2", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "0ecb7983-d4f9-453d-ade4-d02dfa6b6c72", + "w": 16, + "x": 0, + "y": 36 + }, + "panelIndex": "0ecb7983-d4f9-453d-ade4-d02dfa6b6c72", + "panelRefName": "panel_0ecb7983-d4f9-453d-ade4-d02dfa6b6c72", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1c8071e7-c89a-45b1-aae6-31471939b73c", + "w": 16, + "x": 32, + "y": 36 + }, + "panelIndex": "1c8071e7-c89a-45b1-aae6-31471939b73c", + "panelRefName": "panel_1c8071e7-c89a-45b1-aae6-31471939b73c", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "e27955d6-ce96-48b9-b9d0-04f4d61a757f", + "w": 16, + "x": 16, + "y": 36 + }, + "panelIndex": "e27955d6-ce96-48b9-b9d0-04f4d61a757f", + "panelRefName": "panel_e27955d6-ce96-48b9-b9d0-04f4d61a757f", + "type": "visualization", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat IBM MQ] Messages Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "d2112e90-36ea-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "49abed00-36eb-11ea-9f7a-097fe7ab3ddd", + "name": "31635dc4-663e-4ad1-adae-eb96687c7810:panel_31635dc4-663e-4ad1-adae-eb96687c7810", + "type": "visualization" + }, + { + "id": "0abb72e0-36ec-11ea-9f7a-097fe7ab3ddd", + "name": "5452998b-5149-4ac6-93df-b3fccab74f58:panel_5452998b-5149-4ac6-93df-b3fccab74f58", + "type": "visualization" + }, + { + "id": "195b5860-36ec-11ea-9f7a-097fe7ab3ddd", + "name": "0e58849b-8742-4ed4-aae2-33ca19553ac2:panel_0e58849b-8742-4ed4-aae2-33ca19553ac2", + "type": "visualization" + }, + { + "id": "60b5a440-36ec-11ea-9f7a-097fe7ab3ddd", + "name": "45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f:panel_45cd1f23-ef32-4785-b8c0-dcd4cf4c0c1f", + "type": "visualization" + }, + { + "id": "e98d7660-36ee-11ea-9f7a-097fe7ab3ddd", + "name": "2fbdb686-f624-4b2d-a26d-4e7f70e8d902:panel_2fbdb686-f624-4b2d-a26d-4e7f70e8d902", + "type": "visualization" + }, + { + "id": "d82919b0-36ee-11ea-9f7a-097fe7ab3ddd", + "name": "355b12f6-56cb-4b8c-8498-b379d3e7d8b0:panel_355b12f6-56cb-4b8c-8498-b379d3e7d8b0", + "type": "visualization" + }, + { + "id": "23c5f140-36ef-11ea-9f7a-097fe7ab3ddd", + "name": "c1eed75c-610c-4741-b384-de866f30b79b:panel_c1eed75c-610c-4741-b384-de866f30b79b", + "type": "visualization" + }, + { + "id": "3ed28890-36ef-11ea-9f7a-097fe7ab3ddd", + "name": "78bd7680-0f3f-4d3f-994b-eeb58ef0a340:panel_78bd7680-0f3f-4d3f-994b-eeb58ef0a340", + "type": "visualization" + }, + { + "id": "58abd000-36ef-11ea-9f7a-097fe7ab3ddd", + "name": "6edef0c3-4c5f-4d0a-8e58-076cb5249ca2:panel_6edef0c3-4c5f-4d0a-8e58-076cb5249ca2", + "type": "visualization" + }, + { + "id": "67eeac40-36ef-11ea-9f7a-097fe7ab3ddd", + "name": "0ecb7983-d4f9-453d-ade4-d02dfa6b6c72:panel_0ecb7983-d4f9-453d-ade4-d02dfa6b6c72", + "type": "visualization" + }, + { + "id": "96d27500-36ef-11ea-9f7a-097fe7ab3ddd", + "name": "1c8071e7-c89a-45b1-aae6-31471939b73c:panel_1c8071e7-c89a-45b1-aae6-31471939b73c", + "type": "visualization" + }, + { + "id": "855debb0-36ef-11ea-9f7a-097fe7ab3ddd", + "name": "e27955d6-ce96-48b9-b9d0-04f4d61a757f:panel_e27955d6-ce96-48b9-b9d0-04f4d61a757f", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:26.059Z", + "version": "WzM4ODYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/fc5512c0-36d1-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/fc5512c0-36d1-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..6cbbb4e6dfa5 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/dashboard/fc5512c0-36d1-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,265 @@ +{ + "attributes": { + "description": "The dashboard presents metric data describing IBM MQ calls, collected by a queue manager.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "68140594-23bf-4e1e-a062-19b21e557e1a", + "w": 16, + "x": 0, + "y": 0 + }, + "panelIndex": "68140594-23bf-4e1e-a062-19b21e557e1a", + "panelRefName": "panel_68140594-23bf-4e1e-a062-19b21e557e1a", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "2bb94f86-2fa8-4e3e-b91d-9838a29b9674", + "w": 16, + "x": 16, + "y": 0 + }, + "panelIndex": "2bb94f86-2fa8-4e3e-b91d-9838a29b9674", + "panelRefName": "panel_2bb94f86-2fa8-4e3e-b91d-9838a29b9674", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "0b68733f-6f86-4686-9580-1354f5d6bc4d", + "w": 16, + "x": 32, + "y": 0 + }, + "panelIndex": "0b68733f-6f86-4686-9580-1354f5d6bc4d", + "panelRefName": "panel_0b68733f-6f86-4686-9580-1354f5d6bc4d", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "0423a3f2-8f1f-4402-842b-9423008ac5c1", + "w": 16, + "x": 0, + "y": 12 + }, + "panelIndex": "0423a3f2-8f1f-4402-842b-9423008ac5c1", + "panelRefName": "panel_0423a3f2-8f1f-4402-842b-9423008ac5c1", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6936c053-8168-4eb9-9964-fc0e892b9130", + "w": 16, + "x": 16, + "y": 12 + }, + "panelIndex": "6936c053-8168-4eb9-9964-fc0e892b9130", + "panelRefName": "panel_6936c053-8168-4eb9-9964-fc0e892b9130", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "084602cd-6b17-4f8f-97a8-c33ac2bafb14", + "w": 16, + "x": 32, + "y": 12 + }, + "panelIndex": "084602cd-6b17-4f8f-97a8-c33ac2bafb14", + "panelRefName": "panel_084602cd-6b17-4f8f-97a8-c33ac2bafb14", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "50a75e9d-e345-45c7-93fb-54e29d0863f2", + "w": 16, + "x": 0, + "y": 24 + }, + "panelIndex": "50a75e9d-e345-45c7-93fb-54e29d0863f2", + "panelRefName": "panel_50a75e9d-e345-45c7-93fb-54e29d0863f2", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "9cae147d-66d9-4bff-b916-f3b82adc07be", + "w": 16, + "x": 16, + "y": 24 + }, + "panelIndex": "9cae147d-66d9-4bff-b916-f3b82adc07be", + "panelRefName": "panel_9cae147d-66d9-4bff-b916-f3b82adc07be", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "fc84cd97-80a9-406d-ab2b-c1d9ce5dca72", + "w": 16, + "x": 32, + "y": 24 + }, + "panelIndex": "fc84cd97-80a9-406d-ab2b-c1d9ce5dca72", + "panelRefName": "panel_fc84cd97-80a9-406d-ab2b-c1d9ce5dca72", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "d8c19a6d-a25b-4950-9ef4-6a15a894f725", + "w": 16, + "x": 0, + "y": 36 + }, + "panelIndex": "d8c19a6d-a25b-4950-9ef4-6a15a894f725", + "panelRefName": "panel_d8c19a6d-a25b-4950-9ef4-6a15a894f725", + "type": "visualization", + "version": "7.4.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "d76eb9f9-2198-475b-a058-7204244d5597", + "w": 16, + "x": 16, + "y": 36 + }, + "panelIndex": "d76eb9f9-2198-475b-a058-7204244d5597", + "panelRefName": "panel_d76eb9f9-2198-475b-a058-7204244d5597", + "type": "visualization", + "version": "7.4.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat IBM MQ] Calls Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "fc5512c0-36d1-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "07262080-36d3-11ea-9f7a-097fe7ab3ddd", + "name": "68140594-23bf-4e1e-a062-19b21e557e1a:panel_68140594-23bf-4e1e-a062-19b21e557e1a", + "type": "visualization" + }, + { + "id": "1dba2700-36de-11ea-9f7a-097fe7ab3ddd", + "name": "2bb94f86-2fa8-4e3e-b91d-9838a29b9674:panel_2bb94f86-2fa8-4e3e-b91d-9838a29b9674", + "type": "visualization" + }, + { + "id": "2fcbdab0-36de-11ea-9f7a-097fe7ab3ddd", + "name": "0b68733f-6f86-4686-9580-1354f5d6bc4d:panel_0b68733f-6f86-4686-9580-1354f5d6bc4d", + "type": "visualization" + }, + { + "id": "d781db00-36df-11ea-9f7a-097fe7ab3ddd", + "name": "0423a3f2-8f1f-4402-842b-9423008ac5c1:panel_0423a3f2-8f1f-4402-842b-9423008ac5c1", + "type": "visualization" + }, + { + "id": "fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd", + "name": "6936c053-8168-4eb9-9964-fc0e892b9130:panel_6936c053-8168-4eb9-9964-fc0e892b9130", + "type": "visualization" + }, + { + "id": "aa90ec20-36e0-11ea-9f7a-097fe7ab3ddd", + "name": "084602cd-6b17-4f8f-97a8-c33ac2bafb14:panel_084602cd-6b17-4f8f-97a8-c33ac2bafb14", + "type": "visualization" + }, + { + "id": "fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd", + "name": "50a75e9d-e345-45c7-93fb-54e29d0863f2:panel_50a75e9d-e345-45c7-93fb-54e29d0863f2", + "type": "visualization" + }, + { + "id": "56b63f60-36e0-11ea-9f7a-097fe7ab3ddd", + "name": "9cae147d-66d9-4bff-b916-f3b82adc07be:panel_9cae147d-66d9-4bff-b916-f3b82adc07be", + "type": "visualization" + }, + { + "id": "74874de0-36e0-11ea-9f7a-097fe7ab3ddd", + "name": "fc84cd97-80a9-406d-ab2b-c1d9ce5dca72:panel_fc84cd97-80a9-406d-ab2b-c1d9ce5dca72", + "type": "visualization" + }, + { + "id": "92bf3480-36e0-11ea-9f7a-097fe7ab3ddd", + "name": "d8c19a6d-a25b-4950-9ef4-6a15a894f725:panel_d8c19a6d-a25b-4950-9ef4-6a15a894f725", + "type": "visualization" + }, + { + "id": "c4be1ff0-36e0-11ea-9f7a-097fe7ab3ddd", + "name": "d76eb9f9-2198-475b-a058-7204244d5597:panel_d76eb9f9-2198-475b-a058-7204244d5597", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:25.034Z", + "version": "WzM4NzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/07262080-36d3-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/07262080-36d3-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..c745de573998 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/07262080-36d3-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,103 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "MQCB calls succeeded/failed [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_mqcb_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": 0.5, + "formatter": "number", + "id": "a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_failed_mqcb_total", + "id": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "max" + }, + { + "field": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", + "id": "bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "MQCB calls succeeded/failed [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "07262080-36d3-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:25.034Z", + "version": "WzM4NzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/0abb72e0-36ec-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/0abb72e0-36ec-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..2625dece2033 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/0abb72e0-36ec-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Expired messages [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_expired_message_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Expired messages [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0abb72e0-36ec-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:26.059Z", + "version": "WzM4ODgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/195b5860-36ec-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/195b5860-36ec-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..b6c1319e0b19 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/195b5860-36ec-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Purged queue [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_purged_queue_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Purged queue [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "195b5860-36ec-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:26.059Z", + "version": "WzM4ODksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/1dba2700-36de-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/1dba2700-36de-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..c6a6a0d37929 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/1dba2700-36de-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,103 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "MQCLOSE calls succeeded/failed [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_mqclose_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": 0.5, + "formatter": "number", + "id": "a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_failed_mqclose_total", + "id": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "max" + }, + { + "field": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", + "id": "bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "MQCLOSE calls succeeded/failed [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1dba2700-36de-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:25.034Z", + "version": "WzM4NzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/23c5f140-36ef-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/23c5f140-36ef-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..3a5561972a91 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/23c5f140-36ef-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Non-persistent message browse count [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_non_persistent_message_browse_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Non-persistent message browse count [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "23c5f140-36ef-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:26.059Z", + "version": "WzM4OTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/2fcbdab0-36de-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/2fcbdab0-36de-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..40b8f487339b --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/2fcbdab0-36de-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,103 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "MQCONN/MQCONNX calls succeeded/failed [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_mqconn_mqconnx_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": 0.5, + "formatter": "number", + "id": "a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_mqconn_mqconnx_total", + "id": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "max" + }, + { + "field": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", + "id": "bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "MQCONN/MQCONNX calls succeeded/failed [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2fcbdab0-36de-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:25.034Z", + "version": "WzM4NzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/3901ed30-36cb-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/3901ed30-36cb-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..9f627fe210f0 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/3901ed30-36cb-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Alter durable subscription [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_durable_subscription_alter_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Alter durable subscription [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3901ed30-36cb-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:27.109Z", + "version": "WzM5MDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/3ed28890-36ef-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/3ed28890-36ef-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..25d20b85b9d1 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/3ed28890-36ef-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Non-persistent message destructive get count [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_non_persistent_message_destructive_get_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Non-persistent message destructive get count [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3ed28890-36ef-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:26.059Z", + "version": "WzM4OTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/49abed00-36eb-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/49abed00-36eb-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..81ed12215e07 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/49abed00-36eb-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Message commits [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_commit_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Message commits [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "49abed00-36eb-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:26.059Z", + "version": "WzM4ODcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/56b63f60-36e0-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/56b63f60-36e0-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..71564a1ac6f9 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/56b63f60-36e0-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,103 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "MQOPEN calls succeeded/failed [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_mqopen_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": 0.5, + "formatter": "number", + "id": "a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_failed_mqopen_total", + "id": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "max" + }, + { + "field": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", + "id": "bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "MQOPEN calls succeeded/failed [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "56b63f60-36e0-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:25.034Z", + "version": "WzM4ODIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/58abd000-36ef-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/58abd000-36ef-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..e18e208263af --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/58abd000-36ef-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Persistent message MQPUT count [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_persistent_message_mqput_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Persistent message MQPUT count [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "58abd000-36ef-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:26.059Z", + "version": "WzM4OTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/60b5a440-36ec-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/60b5a440-36ec-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..a40eaf49f994 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/60b5a440-36ec-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Failed browse count [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_failed_browse_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Failed browse count [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "60b5a440-36ec-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:26.059Z", + "version": "WzM4OTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/67eeac40-36ef-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/67eeac40-36ef-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..0ae1c01c3d3d --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/67eeac40-36ef-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Persistent message MQPUT1 count [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_persistent_message_mqput1_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Persistent message MQPUT1 count [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "67eeac40-36ef-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:26.059Z", + "version": "WzM4OTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/74874de0-36e0-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/74874de0-36e0-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..fcc86390faef --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/74874de0-36e0-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,103 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "MQINQ calls succeeded/failed [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_mqinq_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": 0.5, + "formatter": "number", + "id": "a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_failed_mqinq_total", + "id": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "max" + }, + { + "field": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", + "id": "bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "MQINQ calls succeeded/failed [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "74874de0-36e0-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:25.034Z", + "version": "WzM4ODMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/855debb0-36ef-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/855debb0-36ef-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..86bea6d03fa5 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/855debb0-36ef-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Persistent message browse count [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_persistent_message_browse_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Persistent message browse count [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "855debb0-36ef-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:26.059Z", + "version": "WzM4OTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/89984460-36cb-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/89984460-36cb-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..b2208ee4a3a7 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/89984460-36cb-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Create durable subscription [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_durable_subscription_create_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "alpha": 0.3, + "beta": 0.1, + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "gamma": 0.3, + "id": "f9af6070-36cc-11ea-b7bc-e7f346d59677", + "model_type": "simple", + "multiplicative": true, + "period": 1, + "type": "derivative", + "unit": "", + "window": 5 + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Create durable subscription [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "89984460-36cb-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:27.109Z", + "version": "WzM5MDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/908afbf0-36cb-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/908afbf0-36cb-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..0acf9d9f15e9 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/908afbf0-36cb-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Delete durable subscription [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_durable_subscription_delete_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "0a276150-36cd-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Delete durable subscription [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "908afbf0-36cb-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:27.109Z", + "version": "WzM5MDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/92bf3480-36e0-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/92bf3480-36e0-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..96a2a9a07722 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/92bf3480-36e0-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,103 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "MQSET calls succeeded/failed [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_mqset_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": 0.5, + "formatter": "number", + "id": "a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_failed_mqset_total", + "id": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "max" + }, + { + "field": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", + "id": "bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "MQSET calls succeeded/failed [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "92bf3480-36e0-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:25.034Z", + "version": "WzM4ODQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/96d27500-36ef-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/96d27500-36ef-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..a3182dbc6e50 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/96d27500-36ef-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Persistent message destructive get count [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_persistent_message_destructive_get_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Persistent message destructive get count [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "96d27500-36ef-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:26.059Z", + "version": "WzM4OTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/9939e270-36cb-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/9939e270-36cb-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..72a94cedf01c --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/9939e270-36cb-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Resume durable subscription [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_durable_subscription_resume_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "e0ece030-36cc-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Resume durable subscription [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9939e270-36cb-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:27.109Z", + "version": "WzM5MDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/aa90ec20-36e0-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/aa90ec20-36e0-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..0415a1a6f1cd --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/aa90ec20-36e0-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "MQSTAT calls succeeded [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_mqstat_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "MQSTAT calls succeeded [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "aa90ec20-36e0-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:25.034Z", + "version": "WzM4ODEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/b455bc00-36cb-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/b455bc00-36cb-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..3a63aaa4e31a --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/b455bc00-36cb-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Create non-durable subscription [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_non_durable_subscription_create_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "b5619140-36cc-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Create non-durable subscription [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b455bc00-36cb-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:27.109Z", + "version": "WzM5MDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/bdf17380-36cb-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/bdf17380-36cb-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..f77e7fc057c8 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/bdf17380-36cb-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Delete non-durable subscription [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_non_durable_subscription_delete_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "cd9fed60-36cc-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Delete non-durable subscription [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bdf17380-36cb-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:27.109Z", + "version": "WzM5MDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/c4be1ff0-36e0-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/c4be1ff0-36e0-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..f6695eec13dd --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/c4be1ff0-36e0-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,103 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "MQSUBRQ calls succeeded/failed [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_mqsubrq_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": 0.5, + "formatter": "number", + "id": "a8f2add0-36d2-11ea-8b7d-bfeb3bd2cf33", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_failed_mqsubrq_total", + "id": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "max" + }, + { + "field": "a8f2add1-36d2-11ea-8b7d-bfeb3bd2cf33", + "id": "bb30c8b0-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "MQSUBRQ calls succeeded/failed [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c4be1ff0-36e0-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:25.034Z", + "version": "WzM4ODUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/d781db00-36df-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/d781db00-36df-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..d6becd267020 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/d781db00-36df-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "MQDISC calls succeeded [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_mqdisc_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "MQDISC calls succeeded [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d781db00-36df-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:25.034Z", + "version": "WzM4NzksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/d82919b0-36ee-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/d82919b0-36ee-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..59d0bee29ad9 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/d82919b0-36ee-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Non-persistent message MQPUT [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_non_persistent_message_mqput_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Non-persistent message MQPUT [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d82919b0-36ee-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:26.059Z", + "version": "WzM4OTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/d8dbdcd0-36cb-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/d8dbdcd0-36cb-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..8e8bcbedb78d --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/d8dbdcd0-36cb-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Failed create/alter/resume subscription count [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_failed_subscription_create_alter_resume_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "2809d4f0-36cd-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Failed create/alter/resume subscription count [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d8dbdcd0-36cb-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:27.109Z", + "version": "WzM5MDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/e98d7660-36ee-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/e98d7660-36ee-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..5f18e8c9b316 --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/e98d7660-36ee-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Non-persistent message MQPUT1 [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "6fa6af70-36ca-11ea-b7bc-e7f346d59677" + } + ], + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_non_persistent_message_mqput1_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "3b91ade0-36cd-11ea-b7bc-e7f346d59677", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Non-persistent message MQPUT1 [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e98d7660-36ee-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:26.059Z", + "version": "WzM4OTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd.json b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd.json new file mode 100644 index 000000000000..28ed24edce3d --- /dev/null +++ b/x-pack/metricbeat/module/ibmmq/_meta/kibana/7/visualization/fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "MQCTL calls succeeded [Metricbeat IBM MQ]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "prometheus.metrics.ibmmq_qmgr_mqctl_total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "92c00030-36d2-11ea-8b7d-bfeb3bd2cf33", + "type": "derivative", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.qmgr", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "MQCTL calls succeeded [Metricbeat IBM MQ]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "fd0e16a0-36de-11ea-9f7a-097fe7ab3ddd", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:25.034Z", + "version": "WzM4ODAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..746f563049f6 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,298 @@ +{ + "attributes": { + "description": "This dashboard shows process and cache metrics for the IIS server.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "8c503a52-2cfb-4922-97db-b91bf343285d", + "w": 10, + "x": 0, + "y": 0 + }, + "panelIndex": "8c503a52-2cfb-4922-97db-b91bf343285d", + "panelRefName": "panel_8c503a52-2cfb-4922-97db-b91bf343285d", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "1bfd458d-84ff-4b0c-b091-9bfd7ac15de1", + "w": 8, + "x": 10, + "y": 0 + }, + "panelIndex": "1bfd458d-84ff-4b0c-b091-9bfd7ac15de1", + "panelRefName": "panel_1bfd458d-84ff-4b0c-b091-9bfd7ac15de1", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "c0111c35-69be-41b9-a6be-b83f83721aeb", + "w": 10, + "x": 18, + "y": 0 + }, + "panelIndex": "c0111c35-69be-41b9-a6be-b83f83721aeb", + "panelRefName": "panel_c0111c35-69be-41b9-a6be-b83f83721aeb", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "b857a52c-865a-4f99-9acb-cc6b64b4508b", + "w": 10, + "x": 28, + "y": 0 + }, + "panelIndex": "b857a52c-865a-4f99-9acb-cc6b64b4508b", + "panelRefName": "panel_b857a52c-865a-4f99-9acb-cc6b64b4508b", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "dfbef78c-4636-4c5f-ad52-45f931b6a101", + "w": 10, + "x": 38, + "y": 0 + }, + "panelIndex": "dfbef78c-4636-4c5f-ad52-45f931b6a101", + "panelRefName": "panel_dfbef78c-4636-4c5f-ad52-45f931b6a101", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "552a8182-6705-4faa-95e5-2cde2a3e77c0", + "w": 5, + "x": 0, + "y": 5 + }, + "panelIndex": "552a8182-6705-4faa-95e5-2cde2a3e77c0", + "panelRefName": "panel_552a8182-6705-4faa-95e5-2cde2a3e77c0", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "1f8299eb-beef-4851-ac58-4416891629c2", + "w": 5, + "x": 5, + "y": 5 + }, + "panelIndex": "1f8299eb-beef-4851-ac58-4416891629c2", + "panelRefName": "panel_1f8299eb-beef-4851-ac58-4416891629c2", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "5b29dd93-bdc2-4539-a08f-023638a8ccdb", + "w": 38, + "x": 10, + "y": 11 + }, + "panelIndex": "5b29dd93-bdc2-4539-a08f-023638a8ccdb", + "panelRefName": "panel_5b29dd93-bdc2-4539-a08f-023638a8ccdb", + "title": "IO Operations", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "c0d58d03-1af7-46d0-a01d-6d9c2d05d703", + "w": 5, + "x": 0, + "y": 14 + }, + "panelIndex": "c0d58d03-1af7-46d0-a01d-6d9c2d05d703", + "panelRefName": "panel_c0d58d03-1af7-46d0-a01d-6d9c2d05d703", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "ddc9edcc-d8ee-4953-9f8e-0c24328a90e3", + "w": 5, + "x": 5, + "y": 14 + }, + "panelIndex": "ddc9edcc-d8ee-4953-9f8e-0c24328a90e3", + "panelRefName": "panel_ddc9edcc-d8ee-4953-9f8e-0c24328a90e3", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "12a8098a-9dfa-464b-b4b7-c08a02829aa1", + "w": 24, + "x": 24, + "y": 23 + }, + "panelIndex": "12a8098a-9dfa-464b-b4b7-c08a02829aa1", + "panelRefName": "panel_12a8098a-9dfa-464b-b4b7-c08a02829aa1", + "title": "Memory Usage", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "4b54bddb-c2e7-47a1-ab7c-71c51e91a931", + "w": 24, + "x": 0, + "y": 23 + }, + "panelIndex": "4b54bddb-c2e7-47a1-ab7c-71c51e91a931", + "panelRefName": "panel_4b54bddb-c2e7-47a1-ab7c-71c51e91a931", + "title": "CPU Usage", + "type": "visualization", + "version": "7.6.2" + } + ], + "timeRestore": false, + "title": "[Metricbeat IIS] Webserver Process Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "2c171500-858b-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "e6fab5c0-858b-11ea-91bc-ab084c7ec0e7", + "name": "8c503a52-2cfb-4922-97db-b91bf343285d:panel_8c503a52-2cfb-4922-97db-b91bf343285d", + "type": "visualization" + }, + { + "id": "1084a0e0-8d57-11ea-817c-a9b6d42fd8a0", + "name": "1bfd458d-84ff-4b0c-b091-9bfd7ac15de1:panel_1bfd458d-84ff-4b0c-b091-9bfd7ac15de1", + "type": "visualization" + }, + { + "id": "55755550-858c-11ea-91bc-ab084c7ec0e7", + "name": "c0111c35-69be-41b9-a6be-b83f83721aeb:panel_c0111c35-69be-41b9-a6be-b83f83721aeb", + "type": "visualization" + }, + { + "id": "6c1272a0-858e-11ea-91bc-ab084c7ec0e7", + "name": "b857a52c-865a-4f99-9acb-cc6b64b4508b:panel_b857a52c-865a-4f99-9acb-cc6b64b4508b", + "type": "visualization" + }, + { + "id": "92dcde20-858e-11ea-91bc-ab084c7ec0e7", + "name": "dfbef78c-4636-4c5f-ad52-45f931b6a101:panel_dfbef78c-4636-4c5f-ad52-45f931b6a101", + "type": "visualization" + }, + { + "id": "d9dc78b0-8d56-11ea-817c-a9b6d42fd8a0", + "name": "552a8182-6705-4faa-95e5-2cde2a3e77c0:panel_552a8182-6705-4faa-95e5-2cde2a3e77c0", + "type": "visualization" + }, + { + "id": "b5c6f400-8d56-11ea-817c-a9b6d42fd8a0", + "name": "1f8299eb-beef-4851-ac58-4416891629c2:panel_1f8299eb-beef-4851-ac58-4416891629c2", + "type": "visualization" + }, + { + "id": "e26479e0-858d-11ea-91bc-ab084c7ec0e7", + "name": "5b29dd93-bdc2-4539-a08f-023638a8ccdb:panel_5b29dd93-bdc2-4539-a08f-023638a8ccdb", + "type": "visualization" + }, + { + "id": "7d9e1f40-8d56-11ea-817c-a9b6d42fd8a0", + "name": "c0d58d03-1af7-46d0-a01d-6d9c2d05d703:panel_c0d58d03-1af7-46d0-a01d-6d9c2d05d703", + "type": "visualization" + }, + { + "id": "945f7850-8d56-11ea-817c-a9b6d42fd8a0", + "name": "ddc9edcc-d8ee-4953-9f8e-0c24328a90e3:panel_ddc9edcc-d8ee-4953-9f8e-0c24328a90e3", + "type": "visualization" + }, + { + "id": "e4d91170-858f-11ea-91bc-ab084c7ec0e7", + "name": "12a8098a-9dfa-464b-b4b7-c08a02829aa1:panel_12a8098a-9dfa-464b-b4b7-c08a02829aa1", + "type": "visualization" + }, + { + "id": "2dd099f0-858d-11ea-91bc-ab084c7ec0e7", + "name": "4b54bddb-c2e7-47a1-ab7c-71c51e91a931:panel_4b54bddb-c2e7-47a1-ab7c-71c51e91a931", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:30.134Z", + "version": "WzM5MzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..1dca2ca66e62 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,386 @@ +{ + "attributes": { + "description": "This dashboard shows metrics for the websites running on IIS.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "e8bd7244-57bf-4e16-b096-4fa7cb8cbba8", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "e8bd7244-57bf-4e16-b096-4fa7cb8cbba8", + "panelRefName": "panel_e8bd7244-57bf-4e16-b096-4fa7cb8cbba8", + "title": "", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "193cca9a-a5c3-40c4-a9af-1020b279b845", + "w": 13, + "x": 9, + "y": 0 + }, + "panelIndex": "193cca9a-a5c3-40c4-a9af-1020b279b845", + "panelRefName": "panel_193cca9a-a5c3-40c4-a9af-1020b279b845", + "title": "Current Connections", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "7b5d1298-0480-443a-bf0e-5b594903c680", + "w": 13, + "x": 22, + "y": 0 + }, + "panelIndex": "7b5d1298-0480-443a-bf0e-5b594903c680", + "panelRefName": "panel_7b5d1298-0480-443a-bf0e-5b594903c680", + "title": "Maximum Connections", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "fd0c5fd7-4df8-44d9-905f-5634f49ae875", + "w": 13, + "x": 35, + "y": 0 + }, + "panelIndex": "fd0c5fd7-4df8-44d9-905f-5634f49ae875", + "panelRefName": "panel_fd0c5fd7-4df8-44d9-905f-5634f49ae875", + "title": "Total Connection Attempts", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "69a127c6-8c4f-403a-aded-7a49dc3d3cd9", + "w": 9, + "x": 0, + "y": 6 + }, + "panelIndex": "69a127c6-8c4f-403a-aded-7a49dc3d3cd9", + "panelRefName": "panel_69a127c6-8c4f-403a-aded-7a49dc3d3cd9", + "title": "Filters", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "545b1abe-fd22-455b-8bc6-68bd48c2d384", + "w": 9, + "x": 0, + "y": 12 + }, + "panelIndex": "545b1abe-fd22-455b-8bc6-68bd48c2d384", + "panelRefName": "panel_545b1abe-fd22-455b-8bc6-68bd48c2d384", + "title": "Service Uptime", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "c026e461-8b64-4952-be07-744773cb18b9", + "w": 20, + "x": 9, + "y": 12 + }, + "panelIndex": "c026e461-8b64-4952-be07-744773cb18b9", + "panelRefName": "panel_c026e461-8b64-4952-be07-744773cb18b9", + "title": "Bytes Sent/sec", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "98b6e727-3343-43df-84e1-12933856f432", + "w": 19, + "x": 29, + "y": 12 + }, + "panelIndex": "98b6e727-3343-43df-84e1-12933856f432", + "panelRefName": "panel_98b6e727-3343-43df-84e1-12933856f432", + "title": "Bytes Received/sec", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "d4b32bd4-dee2-44e2-930d-91e4607c0668", + "w": 12, + "x": 0, + "y": 24 + }, + "panelIndex": "d4b32bd4-dee2-44e2-930d-91e4607c0668", + "panelRefName": "panel_d4b32bd4-dee2-44e2-930d-91e4607c0668", + "title": "GET Requests/sec", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa", + "w": 12, + "x": 12, + "y": 24 + }, + "panelIndex": "d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa", + "panelRefName": "panel_d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa", + "title": "POST Requests/sec", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8", + "w": 12, + "x": 24, + "y": 24 + }, + "panelIndex": "c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8", + "panelRefName": "panel_c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8", + "title": "PUT Requests/sec", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "41b4d631-4878-49af-b34b-f04f473599c8", + "w": 12, + "x": 36, + "y": 24 + }, + "panelIndex": "41b4d631-4878-49af-b34b-f04f473599c8", + "panelRefName": "panel_41b4d631-4878-49af-b34b-f04f473599c8", + "title": "DELETE Requests/sec", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "90d9d209-6ef9-4ab7-b9a2-48a1f420e555", + "w": 12, + "x": 36, + "y": 36 + }, + "panelIndex": "90d9d209-6ef9-4ab7-b9a2-48a1f420e555", + "panelRefName": "panel_90d9d209-6ef9-4ab7-b9a2-48a1f420e555", + "title": "Total DELETE Requests", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "c7379d87-3da3-4be4-a8bd-8db04da66ba4", + "w": 12, + "x": 0, + "y": 36 + }, + "panelIndex": "c7379d87-3da3-4be4-a8bd-8db04da66ba4", + "panelRefName": "panel_c7379d87-3da3-4be4-a8bd-8db04da66ba4", + "title": "Total GET Requests", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "9a22a36c-5fe8-4cc2-be23-4d9db2d7beda", + "w": 12, + "x": 12, + "y": 36 + }, + "panelIndex": "9a22a36c-5fe8-4cc2-be23-4d9db2d7beda", + "panelRefName": "panel_9a22a36c-5fe8-4cc2-be23-4d9db2d7beda", + "title": "Total POST Requests", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6cf940a0-eb04-447b-8f7e-d4561f8838ac", + "w": 12, + "x": 24, + "y": 36 + }, + "panelIndex": "6cf940a0-eb04-447b-8f7e-d4561f8838ac", + "panelRefName": "panel_6cf940a0-eb04-447b-8f7e-d4561f8838ac", + "title": "Total PUT Requests ", + "type": "visualization", + "version": "7.6.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat IIS] Website Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "4b975820-85a1-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "f9723710-8602-11ea-91bc-ab084c7ec0e7", + "name": "e8bd7244-57bf-4e16-b096-4fa7cb8cbba8:panel_e8bd7244-57bf-4e16-b096-4fa7cb8cbba8", + "type": "visualization" + }, + { + "id": "57d914d0-860e-11ea-91bc-ab084c7ec0e7", + "name": "193cca9a-a5c3-40c4-a9af-1020b279b845:panel_193cca9a-a5c3-40c4-a9af-1020b279b845", + "type": "visualization" + }, + { + "id": "6db58c20-860e-11ea-91bc-ab084c7ec0e7", + "name": "7b5d1298-0480-443a-bf0e-5b594903c680:panel_7b5d1298-0480-443a-bf0e-5b594903c680", + "type": "visualization" + }, + { + "id": "e3ee4990-860e-11ea-91bc-ab084c7ec0e7", + "name": "fd0c5fd7-4df8-44d9-905f-5634f49ae875:panel_fd0c5fd7-4df8-44d9-905f-5634f49ae875", + "type": "visualization" + }, + { + "id": "b7230190-8603-11ea-91bc-ab084c7ec0e7", + "name": "69a127c6-8c4f-403a-aded-7a49dc3d3cd9:panel_69a127c6-8c4f-403a-aded-7a49dc3d3cd9", + "type": "visualization" + }, + { + "id": "4557d670-860e-11ea-91bc-ab084c7ec0e7", + "name": "545b1abe-fd22-455b-8bc6-68bd48c2d384:panel_545b1abe-fd22-455b-8bc6-68bd48c2d384", + "type": "visualization" + }, + { + "id": "c784f9b0-8614-11ea-91bc-ab084c7ec0e7", + "name": "c026e461-8b64-4952-be07-744773cb18b9:panel_c026e461-8b64-4952-be07-744773cb18b9", + "type": "visualization" + }, + { + "id": "96fe7d70-8614-11ea-91bc-ab084c7ec0e7", + "name": "98b6e727-3343-43df-84e1-12933856f432:panel_98b6e727-3343-43df-84e1-12933856f432", + "type": "visualization" + }, + { + "id": "4921d5c0-8619-11ea-91bc-ab084c7ec0e7", + "name": "d4b32bd4-dee2-44e2-930d-91e4607c0668:panel_d4b32bd4-dee2-44e2-930d-91e4607c0668", + "type": "visualization" + }, + { + "id": "7dabd8e0-8619-11ea-91bc-ab084c7ec0e7", + "name": "d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa:panel_d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa", + "type": "visualization" + }, + { + "id": "a9427270-8619-11ea-91bc-ab084c7ec0e7", + "name": "c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8:panel_c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8", + "type": "visualization" + }, + { + "id": "7453b910-8624-11ea-91bc-ab084c7ec0e7", + "name": "41b4d631-4878-49af-b34b-f04f473599c8:panel_41b4d631-4878-49af-b34b-f04f473599c8", + "type": "visualization" + }, + { + "id": "8ee988d0-861b-11ea-91bc-ab084c7ec0e7", + "name": "90d9d209-6ef9-4ab7-b9a2-48a1f420e555:panel_90d9d209-6ef9-4ab7-b9a2-48a1f420e555", + "type": "visualization" + }, + { + "id": "1b4f8790-861a-11ea-91bc-ab084c7ec0e7", + "name": "c7379d87-3da3-4be4-a8bd-8db04da66ba4:panel_c7379d87-3da3-4be4-a8bd-8db04da66ba4", + "type": "visualization" + }, + { + "id": "31ed84b0-861b-11ea-91bc-ab084c7ec0e7", + "name": "9a22a36c-5fe8-4cc2-be23-4d9db2d7beda:panel_9a22a36c-5fe8-4cc2-be23-4d9db2d7beda", + "type": "visualization" + }, + { + "id": "54038fe0-861b-11ea-91bc-ab084c7ec0e7", + "name": "6cf940a0-eb04-447b-8f7e-d4561f8838ac:panel_6cf940a0-eb04-447b-8f7e-d4561f8838ac", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-application-pool-overview.ndjson b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-application-pool-overview.ndjson deleted file mode 100644 index 8c9966841c32..000000000000 --- a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-application-pool-overview.ndjson +++ /dev/null @@ -1,11 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Application Pool Overview [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### IIS\\n\\n[Webserver](#/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7)| [Webserver processes](#/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7) | [Websites](#/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7) | [**Application Pools**](#/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Application Pool Overview [Metricbeat IIS]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"dc97bec0-861c-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Application Pool Thread Count [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Thread Count\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.application_pool.process.thread_count\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.application_pool.name\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Application Pool Thread Count [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"41324ad0-861d-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Application Pool Handle Count [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(101,50,148,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Handle Count\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.application_pool.process.handle_count\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.application_pool.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Application Pool Handle Count [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"98b90fa0-861d-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Application Pool Filters [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"iis.application_pool.name\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Application Pools\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Application Pool Filters [Metricbeat IIS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"dd419de0-861d-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Application Pool IO Write Operations [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"IO Write Operations/s\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.application_pool.process.io_write_operations_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.application_pool.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Application Pool IO Write Operations [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"442a86c0-861e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Application Pool IO Read Operations [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"IO Read Operations/s\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.application_pool.process.io_read_operations_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.application_pool.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Application Pool IO Read Operations [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"29a23aa0-861e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Application Pool Working Set [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Working Set\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.application_pool.process.working_set\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.application_pool.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Application Pool Working Set [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"34bfec50-8620-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Application Pool Virtual Bytes [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,98,177,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Virtual Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.application_pool.process.virtual_bytes\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.application_pool.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Application Pool Virtual Bytes [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"14300bf0-8620-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Application Pool Private Bytes [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Private Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.application_pool.process.private_bytes\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.application_pool.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Application Pool Private Bytes [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f7194cc0-861f-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Application Pool CPU Usage [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0\",\"formatter\":\"percent\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"CPU Usage\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.application_pool.process.cpu_usage_perc\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.application_pool.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Application Pool CPU Usage [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"90fe3b30-861f-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MTcsMV0="} -{"attributes":{"description":"This dashboard shows application pools metrics for the IIS server.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"43790631-73f5-4f5e-824e-aa9d3f4f5664\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"43790631-73f5-4f5e-824e-aa9d3f4f5664\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_43790631-73f5-4f5e-824e-aa9d3f4f5664\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"b94f6dac-0f16-4781-ac08-d632154458a6\",\"w\":20,\"x\":9,\"y\":0},\"panelIndex\":\"b94f6dac-0f16-4781-ac08-d632154458a6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Thread Count\",\"panelRefName\":\"panel_b94f6dac-0f16-4781-ac08-d632154458a6\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"a3c19f11-99d4-4794-8ebb-aa2b3583577b\",\"w\":19,\"x\":29,\"y\":0},\"panelIndex\":\"a3c19f11-99d4-4794-8ebb-aa2b3583577b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Handle Count\",\"panelRefName\":\"panel_a3c19f11-99d4-4794-8ebb-aa2b3583577b\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"10fe7306-655b-4bc6-b078-892f91d0d9ea\",\"w\":9,\"x\":0,\"y\":5},\"panelIndex\":\"10fe7306-655b-4bc6-b078-892f91d0d9ea\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_10fe7306-655b-4bc6-b078-892f91d0d9ea\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4dfc6a98-4749-47a8-a92e-ee955cf20c00\",\"w\":24,\"x\":0,\"y\":11},\"panelIndex\":\"4dfc6a98-4749-47a8-a92e-ee955cf20c00\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"IO Write Operations\",\"panelRefName\":\"panel_4dfc6a98-4749-47a8-a92e-ee955cf20c00\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"bae63734-a752-46c3-8083-8c12eabca5aa\",\"w\":24,\"x\":24,\"y\":11},\"panelIndex\":\"bae63734-a752-46c3-8083-8c12eabca5aa\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"IO Read Operations\",\"panelRefName\":\"panel_bae63734-a752-46c3-8083-8c12eabca5aa\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"ce663f89-7cf9-4659-af06-2128f7d2f74b\",\"w\":24,\"x\":0,\"y\":26},\"panelIndex\":\"ce663f89-7cf9-4659-af06-2128f7d2f74b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Working Set\",\"panelRefName\":\"panel_ce663f89-7cf9-4659-af06-2128f7d2f74b\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"99da2951-fb14-4a18-8a0c-4647daa9b626\",\"w\":24,\"x\":24,\"y\":41},\"panelIndex\":\"99da2951-fb14-4a18-8a0c-4647daa9b626\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Virtual Bytes\",\"panelRefName\":\"panel_99da2951-fb14-4a18-8a0c-4647daa9b626\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"71985962-b5c9-412e-a99f-b55ed988f4ea\",\"w\":24,\"x\":0,\"y\":41},\"panelIndex\":\"71985962-b5c9-412e-a99f-b55ed988f4ea\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Private Bytes\",\"panelRefName\":\"panel_71985962-b5c9-412e-a99f-b55ed988f4ea\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"347b6893-0ab0-47fc-9e80-efc9bf47f13e\",\"w\":24,\"x\":24,\"y\":26},\"panelIndex\":\"347b6893-0ab0-47fc-9e80-efc9bf47f13e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"CPU Usage\",\"panelRefName\":\"panel_347b6893-0ab0-47fc-9e80-efc9bf47f13e\"}]","timeRestore":false,"title":"[Metricbeat IIS] Application Pool Overview","version":1},"coreMigrationVersion":"8.0.0","id":"b4108810-861c-11ea-91bc-ab084c7ec0e7","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"dc97bec0-861c-11ea-91bc-ab084c7ec0e7","name":"43790631-73f5-4f5e-824e-aa9d3f4f5664:panel_43790631-73f5-4f5e-824e-aa9d3f4f5664","type":"visualization"},{"id":"41324ad0-861d-11ea-91bc-ab084c7ec0e7","name":"b94f6dac-0f16-4781-ac08-d632154458a6:panel_b94f6dac-0f16-4781-ac08-d632154458a6","type":"visualization"},{"id":"98b90fa0-861d-11ea-91bc-ab084c7ec0e7","name":"a3c19f11-99d4-4794-8ebb-aa2b3583577b:panel_a3c19f11-99d4-4794-8ebb-aa2b3583577b","type":"visualization"},{"id":"dd419de0-861d-11ea-91bc-ab084c7ec0e7","name":"10fe7306-655b-4bc6-b078-892f91d0d9ea:panel_10fe7306-655b-4bc6-b078-892f91d0d9ea","type":"visualization"},{"id":"442a86c0-861e-11ea-91bc-ab084c7ec0e7","name":"4dfc6a98-4749-47a8-a92e-ee955cf20c00:panel_4dfc6a98-4749-47a8-a92e-ee955cf20c00","type":"visualization"},{"id":"29a23aa0-861e-11ea-91bc-ab084c7ec0e7","name":"bae63734-a752-46c3-8083-8c12eabca5aa:panel_bae63734-a752-46c3-8083-8c12eabca5aa","type":"visualization"},{"id":"34bfec50-8620-11ea-91bc-ab084c7ec0e7","name":"ce663f89-7cf9-4659-af06-2128f7d2f74b:panel_ce663f89-7cf9-4659-af06-2128f7d2f74b","type":"visualization"},{"id":"14300bf0-8620-11ea-91bc-ab084c7ec0e7","name":"99da2951-fb14-4a18-8a0c-4647daa9b626:panel_99da2951-fb14-4a18-8a0c-4647daa9b626","type":"visualization"},{"id":"f7194cc0-861f-11ea-91bc-ab084c7ec0e7","name":"71985962-b5c9-412e-a99f-b55ed988f4ea:panel_71985962-b5c9-412e-a99f-b55ed988f4ea","type":"visualization"},{"id":"90fe3b30-861f-11ea-91bc-ab084c7ec0e7","name":"347b6893-0ab0-47fc-9e80-efc9bf47f13e:panel_347b6893-0ab0-47fc-9e80-efc9bf47f13e","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:28.083Z","version":"WzM5MDcsMV0="} diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-overview.ndjson b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-overview.ndjson deleted file mode 100644 index c8187675d074..000000000000 --- a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-overview.ndjson +++ /dev/null @@ -1,13 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Webserver Overview [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### IIS\\n\\n[**Webserver**](#/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7)| [Webserver processes](#/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7) | [Websites](#/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7) | [Application Pools](#/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7) \\n\\n\\n\\n\",\"openLinksInNewTab\":false},\"title\":\"Navigation Webserver Overview [Metricbeat IIS]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"40614070-8573-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Service Uptime [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"s,h,\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Service Uptime\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.service_uptime\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} h\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Service Uptime [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"82f1d7d0-858a-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Current Connections [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Current Connections\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.current_connections\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Current Connections [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c92e0b80-8574-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Maximum Connections [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Maximum Connections\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.maximum_connections\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Maximum Connections [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"348c4fe0-8575-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Total Connection Attempts [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Total Connection Attempts\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.total_connection_attempts\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Total Connection Attempts [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"461a8640-8576-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Overview Current Anonymous Users [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(49,211,21,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Current Anonymous Users\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.current_anonymous_users\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Overview Current Anonymous Users [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c8e467d0-8d55-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Overview Total Anonymous Users [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(21,68,211,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Total Anonymous Users\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.total_anonymous_users\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Overview Total Anonymous Users [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"df9d0e50-8d55-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Total Requests [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Total Get Requests\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.network.total_get_requests\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}}\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"55ef6fb0-857e-11ea-87b6-db4d36ae5839\",\"label\":\"Total Post Requests\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.network.total_post_requests\",\"id\":\"55ef6fb1-857e-11ea-87b6-db4d36ae5839\",\"type\":\"avg\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(149,0,188,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"7501b0c0-857e-11ea-87b6-db4d36ae5839\",\"label\":\"Total Delete Requests\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.network.total_delete_requests\",\"id\":\"7501b0c1-857e-11ea-87b6-db4d36ae5839\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Webserver Total Requests [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"75812480-857f-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Overview Current Non Anonymous Users [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(171,21,211,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Current Non Anonymous Users\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.current_non_anonymous_users\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Overview Current Non Anonymous Users [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"14e77b40-8d56-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Overview Total Non Anonymous Users [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,21,105,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Total Non Anonymous Users\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.total_non_anonymous_users\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Overview Total Non Anonymous Users [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2d802c60-8d56-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Total Bytes Transfered [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Total Bytes Sent \",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.total_bytes_sent\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"cb6910f0-8580-11ea-8d9f-cf59f8572d31\",\"label\":\"Total Bytes Received\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.network.total_bytes_received\",\"id\":\"cb693800-8580-11ea-8d9f-cf59f8572d31\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Webserver Total Bytes Transfered [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"68a9df20-8581-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Bytes Transfered Per Sec [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Bytes Sent/sec\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.network.bytes_sent_per_sec\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(250,40,255,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"cb6910f0-8580-11ea-8d9f-cf59f8572d31\",\"label\":\"Bytes Received/sec\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.network.bytes_received_per_sec\",\"id\":\"cb693800-8580-11ea-8d9f-cf59f8572d31\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Webserver Bytes Transfered Per Sec [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"92acc3e0-8582-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MzAsMV0="} -{"attributes":{"description":"This dashboard shows metrics for the IIS server.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"55b62196-f0fa-4473-a578-c5197ae7581c\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"55b62196-f0fa-4473-a578-c5197ae7581c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_55b62196-f0fa-4473-a578-c5197ae7581c\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"9f1c724a-e57a-4667-8930-b60997efeee5\",\"w\":9,\"x\":10,\"y\":0},\"panelIndex\":\"9f1c724a-e57a-4667-8930-b60997efeee5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_9f1c724a-e57a-4667-8930-b60997efeee5\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"5aeeab99-314c-4732-b731-ebd390fa9210\",\"w\":10,\"x\":19,\"y\":0},\"panelIndex\":\"5aeeab99-314c-4732-b731-ebd390fa9210\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_5aeeab99-314c-4732-b731-ebd390fa9210\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"88113bca-98b0-4877-b768-46f9b1c29751\",\"w\":10,\"x\":29,\"y\":0},\"panelIndex\":\"88113bca-98b0-4877-b768-46f9b1c29751\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_88113bca-98b0-4877-b768-46f9b1c29751\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"0add6210-d7d5-4b66-afaa-bcec0bc445d9\",\"w\":9,\"x\":39,\"y\":0},\"panelIndex\":\"0add6210-d7d5-4b66-afaa-bcec0bc445d9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_0add6210-d7d5-4b66-afaa-bcec0bc445d9\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"e809e015-29b2-496b-aaf1-f461d59b1568\",\"w\":5,\"x\":0,\"y\":5},\"panelIndex\":\"e809e015-29b2-496b-aaf1-f461d59b1568\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_e809e015-29b2-496b-aaf1-f461d59b1568\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"6ebec04f-3df0-4995-ae9c-836774f05ea7\",\"w\":5,\"x\":5,\"y\":5},\"panelIndex\":\"6ebec04f-3df0-4995-ae9c-836774f05ea7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_6ebec04f-3df0-4995-ae9c-836774f05ea7\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"41de633b-40aa-4456-967a-5737d139a374\",\"w\":38,\"x\":10,\"y\":9},\"panelIndex\":\"41de633b-40aa-4456-967a-5737d139a374\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Requests\",\"panelRefName\":\"panel_41de633b-40aa-4456-967a-5737d139a374\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3\",\"w\":5,\"x\":0,\"y\":13},\"panelIndex\":\"3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"983e0c36-04f7-4ec0-b6a6-8d2599a63065\",\"w\":5,\"x\":5,\"y\":13},\"panelIndex\":\"983e0c36-04f7-4ec0-b6a6-8d2599a63065\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_983e0c36-04f7-4ec0-b6a6-8d2599a63065\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0\",\"w\":24,\"x\":24,\"y\":21},\"panelIndex\":\"aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Bytes Transferred\",\"panelRefName\":\"panel_aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"623596fb-3f1f-4f2e-b15b-800d197ce1aa\",\"w\":24,\"x\":0,\"y\":21},\"panelIndex\":\"623596fb-3f1f-4f2e-b15b-800d197ce1aa\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Transferred/sec\",\"panelRefName\":\"panel_623596fb-3f1f-4f2e-b15b-800d197ce1aa\"}]","timeRestore":false,"title":"[Metricbeat IIS] Webserver Overview","version":1},"coreMigrationVersion":"8.0.0","id":"ebc23240-8572-11ea-91bc-ab084c7ec0e7","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"40614070-8573-11ea-91bc-ab084c7ec0e7","name":"55b62196-f0fa-4473-a578-c5197ae7581c:panel_55b62196-f0fa-4473-a578-c5197ae7581c","type":"visualization"},{"id":"82f1d7d0-858a-11ea-91bc-ab084c7ec0e7","name":"9f1c724a-e57a-4667-8930-b60997efeee5:panel_9f1c724a-e57a-4667-8930-b60997efeee5","type":"visualization"},{"id":"c92e0b80-8574-11ea-91bc-ab084c7ec0e7","name":"5aeeab99-314c-4732-b731-ebd390fa9210:panel_5aeeab99-314c-4732-b731-ebd390fa9210","type":"visualization"},{"id":"348c4fe0-8575-11ea-91bc-ab084c7ec0e7","name":"88113bca-98b0-4877-b768-46f9b1c29751:panel_88113bca-98b0-4877-b768-46f9b1c29751","type":"visualization"},{"id":"461a8640-8576-11ea-91bc-ab084c7ec0e7","name":"0add6210-d7d5-4b66-afaa-bcec0bc445d9:panel_0add6210-d7d5-4b66-afaa-bcec0bc445d9","type":"visualization"},{"id":"c8e467d0-8d55-11ea-817c-a9b6d42fd8a0","name":"e809e015-29b2-496b-aaf1-f461d59b1568:panel_e809e015-29b2-496b-aaf1-f461d59b1568","type":"visualization"},{"id":"df9d0e50-8d55-11ea-817c-a9b6d42fd8a0","name":"6ebec04f-3df0-4995-ae9c-836774f05ea7:panel_6ebec04f-3df0-4995-ae9c-836774f05ea7","type":"visualization"},{"id":"75812480-857f-11ea-91bc-ab084c7ec0e7","name":"41de633b-40aa-4456-967a-5737d139a374:panel_41de633b-40aa-4456-967a-5737d139a374","type":"visualization"},{"id":"14e77b40-8d56-11ea-817c-a9b6d42fd8a0","name":"3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3:panel_3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3","type":"visualization"},{"id":"2d802c60-8d56-11ea-817c-a9b6d42fd8a0","name":"983e0c36-04f7-4ec0-b6a6-8d2599a63065:panel_983e0c36-04f7-4ec0-b6a6-8d2599a63065","type":"visualization"},{"id":"68a9df20-8581-11ea-91bc-ab084c7ec0e7","name":"aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0:panel_aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0","type":"visualization"},{"id":"92acc3e0-8582-11ea-91bc-ab084c7ec0e7","name":"623596fb-3f1f-4f2e-b15b-800d197ce1aa:panel_623596fb-3f1f-4f2e-b15b-800d197ce1aa","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:29.081Z","version":"WzM5MTgsMV0="} diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-process-overview.ndjson b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-process-overview.ndjson deleted file mode 100644 index 7874efde4535..000000000000 --- a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-webserver-process-overview.ndjson +++ /dev/null @@ -1,13 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Webserver Process Overview [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### IIS\\n\\n[Webserver](#/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7)| [**Webserver processes**](#/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7) | [Websites](#/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7) | [Application Pools](#/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7) \",\"openLinksInNewTab\":false},\"title\":\"Navigation Webserver Process Overview [Metricbeat IIS]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"e6fab5c0-858b-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process Output Cache Current Memory Usage [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,181,21,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"bytes\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Output Cache Current Memory Usage\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.cache.output_cache_current_memory_usage\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Process Output Cache Current Memory Usage [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1084a0e0-8d57-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process Worker Process Count [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Worker Processes\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.process.worker_process_count\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Process Worker Process Count [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"55755550-858c-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process Thread Count [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Thread Count\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.process.thread_count\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Process Thread Count [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6c1272a0-858e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process Handle Count [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(101,50,148,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Handle Count\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.process.handle_count\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Process Handle Count [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"92dcde20-858e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process Current Files Cached [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(21,211,162,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Current Files Cached\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.cache.current_files_cached\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Process Current Files Cached [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"d9dc78b0-8d56-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process Total Files Cached [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(21,162,211,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Total Files Cached\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.cache.total_files_cached\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Process Total Files Cached [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b5c6f400-8d56-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process IO Operations [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"IO Read Operations/s\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.process.io_read_operations_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"55ef6fb0-857e-11ea-87b6-db4d36ae5839\",\"label\":\"IO Write Operations/s\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.process.io_write_operations_per_sec\",\"id\":\"55ef6fb1-857e-11ea-87b6-db4d36ae5839\",\"type\":\"avg\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Webserver Process IO Operations [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e26479e0-858d-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Current Uris Cached [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,21,105,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Current Uris Cached\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.cache.current_uris_cached\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Current Uris Cached [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7d9e1f40-8d56-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5NDAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Total Uris Cached [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(92,21,211,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Total Uris Cached\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.webserver.cache.total_uris_cached\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"cloud.instance.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}} \"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Webserver Total Uris Cached [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"945f7850-8d56-11ea-817c-a9b6d42fd8a0","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5NDEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process Memory Usage [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Private Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.process.private_bytes\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}}\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"55ef6fb0-857e-11ea-87b6-db4d36ae5839\",\"label\":\"Virtual Bytes\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.process.virtual_bytes\",\"id\":\"55ef6fb1-857e-11ea-87b6-db4d36ae5839\",\"type\":\"avg\"}],\"point_size\":\"0\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(149,0,188,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"7501b0c0-857e-11ea-87b6-db4d36ae5839\",\"label\":\"Working Set\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.process.working_set\",\"id\":\"7501b0c1-857e-11ea-87b6-db4d36ae5839\",\"type\":\"avg\"}],\"point_size\":\"\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Webserver Process Memory Usage [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e4d91170-858f-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5NDIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Webserver Process CPU Usage [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#3185FC\",\"fill\":\"0\",\"formatter\":\"percent\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"CPU Usage\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.webserver.process.cpu_usage_perc\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":null,\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Webserver Process CPU Usage [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2dd099f0-858d-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5NDMsMV0="} -{"attributes":{"description":"This dashboard shows process and cache metrics for the IIS server.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":5,\"i\":\"8c503a52-2cfb-4922-97db-b91bf343285d\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"8c503a52-2cfb-4922-97db-b91bf343285d\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_8c503a52-2cfb-4922-97db-b91bf343285d\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"1bfd458d-84ff-4b0c-b091-9bfd7ac15de1\",\"w\":8,\"x\":10,\"y\":0},\"panelIndex\":\"1bfd458d-84ff-4b0c-b091-9bfd7ac15de1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_1bfd458d-84ff-4b0c-b091-9bfd7ac15de1\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"c0111c35-69be-41b9-a6be-b83f83721aeb\",\"w\":10,\"x\":18,\"y\":0},\"panelIndex\":\"c0111c35-69be-41b9-a6be-b83f83721aeb\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_c0111c35-69be-41b9-a6be-b83f83721aeb\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"b857a52c-865a-4f99-9acb-cc6b64b4508b\",\"w\":10,\"x\":28,\"y\":0},\"panelIndex\":\"b857a52c-865a-4f99-9acb-cc6b64b4508b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_b857a52c-865a-4f99-9acb-cc6b64b4508b\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"dfbef78c-4636-4c5f-ad52-45f931b6a101\",\"w\":10,\"x\":38,\"y\":0},\"panelIndex\":\"dfbef78c-4636-4c5f-ad52-45f931b6a101\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_dfbef78c-4636-4c5f-ad52-45f931b6a101\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"552a8182-6705-4faa-95e5-2cde2a3e77c0\",\"w\":5,\"x\":0,\"y\":5},\"panelIndex\":\"552a8182-6705-4faa-95e5-2cde2a3e77c0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_552a8182-6705-4faa-95e5-2cde2a3e77c0\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1f8299eb-beef-4851-ac58-4416891629c2\",\"w\":5,\"x\":5,\"y\":5},\"panelIndex\":\"1f8299eb-beef-4851-ac58-4416891629c2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_1f8299eb-beef-4851-ac58-4416891629c2\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"5b29dd93-bdc2-4539-a08f-023638a8ccdb\",\"w\":38,\"x\":10,\"y\":11},\"panelIndex\":\"5b29dd93-bdc2-4539-a08f-023638a8ccdb\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"IO Operations\",\"panelRefName\":\"panel_5b29dd93-bdc2-4539-a08f-023638a8ccdb\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"c0d58d03-1af7-46d0-a01d-6d9c2d05d703\",\"w\":5,\"x\":0,\"y\":14},\"panelIndex\":\"c0d58d03-1af7-46d0-a01d-6d9c2d05d703\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_c0d58d03-1af7-46d0-a01d-6d9c2d05d703\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"ddc9edcc-d8ee-4953-9f8e-0c24328a90e3\",\"w\":5,\"x\":5,\"y\":14},\"panelIndex\":\"ddc9edcc-d8ee-4953-9f8e-0c24328a90e3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_ddc9edcc-d8ee-4953-9f8e-0c24328a90e3\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"12a8098a-9dfa-464b-b4b7-c08a02829aa1\",\"w\":24,\"x\":24,\"y\":23},\"panelIndex\":\"12a8098a-9dfa-464b-b4b7-c08a02829aa1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Memory Usage\",\"panelRefName\":\"panel_12a8098a-9dfa-464b-b4b7-c08a02829aa1\"},{\"version\":\"7.6.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4b54bddb-c2e7-47a1-ab7c-71c51e91a931\",\"w\":24,\"x\":0,\"y\":23},\"panelIndex\":\"4b54bddb-c2e7-47a1-ab7c-71c51e91a931\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"CPU Usage\",\"panelRefName\":\"panel_4b54bddb-c2e7-47a1-ab7c-71c51e91a931\"}]","timeRestore":false,"title":"[Metricbeat IIS] Webserver Process Overview","version":1},"coreMigrationVersion":"8.0.0","id":"2c171500-858b-11ea-91bc-ab084c7ec0e7","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"e6fab5c0-858b-11ea-91bc-ab084c7ec0e7","name":"8c503a52-2cfb-4922-97db-b91bf343285d:panel_8c503a52-2cfb-4922-97db-b91bf343285d","type":"visualization"},{"id":"1084a0e0-8d57-11ea-817c-a9b6d42fd8a0","name":"1bfd458d-84ff-4b0c-b091-9bfd7ac15de1:panel_1bfd458d-84ff-4b0c-b091-9bfd7ac15de1","type":"visualization"},{"id":"55755550-858c-11ea-91bc-ab084c7ec0e7","name":"c0111c35-69be-41b9-a6be-b83f83721aeb:panel_c0111c35-69be-41b9-a6be-b83f83721aeb","type":"visualization"},{"id":"6c1272a0-858e-11ea-91bc-ab084c7ec0e7","name":"b857a52c-865a-4f99-9acb-cc6b64b4508b:panel_b857a52c-865a-4f99-9acb-cc6b64b4508b","type":"visualization"},{"id":"92dcde20-858e-11ea-91bc-ab084c7ec0e7","name":"dfbef78c-4636-4c5f-ad52-45f931b6a101:panel_dfbef78c-4636-4c5f-ad52-45f931b6a101","type":"visualization"},{"id":"d9dc78b0-8d56-11ea-817c-a9b6d42fd8a0","name":"552a8182-6705-4faa-95e5-2cde2a3e77c0:panel_552a8182-6705-4faa-95e5-2cde2a3e77c0","type":"visualization"},{"id":"b5c6f400-8d56-11ea-817c-a9b6d42fd8a0","name":"1f8299eb-beef-4851-ac58-4416891629c2:panel_1f8299eb-beef-4851-ac58-4416891629c2","type":"visualization"},{"id":"e26479e0-858d-11ea-91bc-ab084c7ec0e7","name":"5b29dd93-bdc2-4539-a08f-023638a8ccdb:panel_5b29dd93-bdc2-4539-a08f-023638a8ccdb","type":"visualization"},{"id":"7d9e1f40-8d56-11ea-817c-a9b6d42fd8a0","name":"c0d58d03-1af7-46d0-a01d-6d9c2d05d703:panel_c0d58d03-1af7-46d0-a01d-6d9c2d05d703","type":"visualization"},{"id":"945f7850-8d56-11ea-817c-a9b6d42fd8a0","name":"ddc9edcc-d8ee-4953-9f8e-0c24328a90e3:panel_ddc9edcc-d8ee-4953-9f8e-0c24328a90e3","type":"visualization"},{"id":"e4d91170-858f-11ea-91bc-ab084c7ec0e7","name":"12a8098a-9dfa-464b-b4b7-c08a02829aa1:panel_12a8098a-9dfa-464b-b4b7-c08a02829aa1","type":"visualization"},{"id":"2dd099f0-858d-11ea-91bc-ab084c7ec0e7","name":"4b54bddb-c2e7-47a1-ab7c-71c51e91a931:panel_4b54bddb-c2e7-47a1-ab7c-71c51e91a931","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:30.134Z","version":"WzM5MzEsMV0="} diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-website-overview.ndjson b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-website-overview.ndjson deleted file mode 100644 index 1a27a4cc164f..000000000000 --- a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/Metricbeat-iis-website-overview.ndjson +++ /dev/null @@ -1,17 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Navigation Website Overview [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### IIS\\n\\n[Webserver](#/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7)| [Webserver processes](#/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7) | [**Websites**](#/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7) | [Application Pools](#/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7) \\n\\n\\n\\n\",\"openLinksInNewTab\":false},\"title\":\"Navigation Website Overview [Metricbeat IIS]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"f9723710-8602-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NDUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Current Connections [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Current Connections\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.website.network.current_connections\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Website Current Connections [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"57d914d0-860e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NDYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Maximum Connections [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Maximum Connections\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.website.network.maximum_connections\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"terms_order_by\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Website Maximum Connections [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6db58c20-860e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NDcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Total Connection Attempts [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(251,158,0,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Total Connection Attempts\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.website.network.total_connection_attempts\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"terms_order_by\":\"_count\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Website Total Connection Attempts [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e3ee4990-860e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NDgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Website Filters [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"iis.website.name\",\"id\":\"1549397251041\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"Website\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Website Filters [Metricbeat IIS]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b7230190-8603-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NDksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Service Uptime [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color\":null,\"background_color_rules\":[{\"id\":\"71978870-32e4-11ea-af9e-d70582a45bda\"}],\"bar_color_rules\":[{\"id\":\"f11cfd90-32e5-11ea-af9e-d70582a45bda\"}],\"drilldown_url\":\"\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"gauge_color_rules\":[{\"id\":\"9c09ed50-32e4-11ea-af9e-d70582a45bda\"}],\"gauge_inner_color\":null,\"gauge_inner_width\":\"6\",\"gauge_style\":\"circle\",\"gauge_width\":\"10\",\"id\":\"61fb4190-32e4-11ea-b9f8-4d0b340ad993\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"60m\",\"isModelInvalid\":false,\"pivot_id\":\"cloud.instance.name\",\"pivot_label\":\"Resource Name\",\"pivot_rows\":\"30\",\"pivot_type\":\"string\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"1.2\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"s,d,\",\"id\":\"61fb4191-32e4-11ea-b9f8-4d0b340ad993\",\"label\":\"Service Uptime\",\"line_width\":2,\"metrics\":[{\"agg_with\":\"avg\",\"field\":\"iis.website.network.service_uptime\",\"id\":\"61fb4192-32e4-11ea-b9f8-4d0b340ad993\",\"order\":\"desc\",\"order_by\":\"@timestamp\",\"size\":1,\"type\":\"top_hit\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"terms_order_by\":\"_count\",\"terms_size\":\"10\",\"type\":\"timeseries\",\"value_template\":\"{{value}} d\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Website Service Uptime [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4557d670-860e-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Bytes Sent/s [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Bytes Sent\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.bytes_sent_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website Bytes Sent/s [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c784f9b0-8614-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Bytes Received/s [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0\",\"formatter\":\"bytes\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Bytes Received\",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.bytes_received_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website Bytes Received/s [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"96fe7d70-8614-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website GET Requests/s [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"GET Requests \",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.get_requests_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website GET Requests/s [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4921d5c0-8619-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website POST Requests/s [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,196,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"POST Requests \",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.post_requests_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website POST Requests/s [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7dabd8e0-8619-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website PUT Requests/s [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"PUT Requests \",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.put_requests_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website PUT Requests/s [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a9427270-8619-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website DELETE Requests/s [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(25,77,51,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"DELETE Requests \",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.delete_requests_per_sec\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}/s\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website DELETE Requests/s [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7453b910-8624-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Total DELETE Requests [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Total DELETE Requests \",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.total_delete_requests\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website Total DELETE Requests [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8ee988d0-861b-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Total GET Requests [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Total GET Requests \",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.total_get_requests\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website Total GET Requests [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1b4f8790-861a-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Total POST Requests [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Total POST Requests \",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.total_post_requests\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website Total POST Requests [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"31ed84b0-861b-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Website Total PUT Requests [Metricbeat IIS]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0\",\"formatter\":\"number\",\"id\":\"c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6\",\"label\":\"Total PUT Requests \",\"line_width\":\"2\",\"metrics\":[{\"field\":\"iis.website.network.total_put_requests\",\"id\":\"c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6\",\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_color_mode\":\"rainbow\",\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"iis.website.name\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Website Total PUT Requests [Metricbeat IIS]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"54038fe0-861b-11ea-91bc-ab084c7ec0e7","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NjAsMV0="} -{"attributes":{"description":"This dashboard shows metrics for the websites running on IIS.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"e8bd7244-57bf-4e16-b096-4fa7cb8cbba8\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"e8bd7244-57bf-4e16-b096-4fa7cb8cbba8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_e8bd7244-57bf-4e16-b096-4fa7cb8cbba8\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"193cca9a-a5c3-40c4-a9af-1020b279b845\",\"w\":13,\"x\":9,\"y\":0},\"panelIndex\":\"193cca9a-a5c3-40c4-a9af-1020b279b845\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Current Connections\",\"panelRefName\":\"panel_193cca9a-a5c3-40c4-a9af-1020b279b845\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"7b5d1298-0480-443a-bf0e-5b594903c680\",\"w\":13,\"x\":22,\"y\":0},\"panelIndex\":\"7b5d1298-0480-443a-bf0e-5b594903c680\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Maximum Connections\",\"panelRefName\":\"panel_7b5d1298-0480-443a-bf0e-5b594903c680\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"fd0c5fd7-4df8-44d9-905f-5634f49ae875\",\"w\":13,\"x\":35,\"y\":0},\"panelIndex\":\"fd0c5fd7-4df8-44d9-905f-5634f49ae875\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Connection Attempts\",\"panelRefName\":\"panel_fd0c5fd7-4df8-44d9-905f-5634f49ae875\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"69a127c6-8c4f-403a-aded-7a49dc3d3cd9\",\"w\":9,\"x\":0,\"y\":6},\"panelIndex\":\"69a127c6-8c4f-403a-aded-7a49dc3d3cd9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Filters\",\"panelRefName\":\"panel_69a127c6-8c4f-403a-aded-7a49dc3d3cd9\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"545b1abe-fd22-455b-8bc6-68bd48c2d384\",\"w\":9,\"x\":0,\"y\":12},\"panelIndex\":\"545b1abe-fd22-455b-8bc6-68bd48c2d384\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Service Uptime\",\"panelRefName\":\"panel_545b1abe-fd22-455b-8bc6-68bd48c2d384\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"c026e461-8b64-4952-be07-744773cb18b9\",\"w\":20,\"x\":9,\"y\":12},\"panelIndex\":\"c026e461-8b64-4952-be07-744773cb18b9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Sent/sec\",\"panelRefName\":\"panel_c026e461-8b64-4952-be07-744773cb18b9\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"98b6e727-3343-43df-84e1-12933856f432\",\"w\":19,\"x\":29,\"y\":12},\"panelIndex\":\"98b6e727-3343-43df-84e1-12933856f432\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes Received/sec\",\"panelRefName\":\"panel_98b6e727-3343-43df-84e1-12933856f432\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"d4b32bd4-dee2-44e2-930d-91e4607c0668\",\"w\":12,\"x\":0,\"y\":24},\"panelIndex\":\"d4b32bd4-dee2-44e2-930d-91e4607c0668\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"GET Requests/sec\",\"panelRefName\":\"panel_d4b32bd4-dee2-44e2-930d-91e4607c0668\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa\",\"w\":12,\"x\":12,\"y\":24},\"panelIndex\":\"d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"POST Requests/sec\",\"panelRefName\":\"panel_d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8\",\"w\":12,\"x\":24,\"y\":24},\"panelIndex\":\"c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"PUT Requests/sec\",\"panelRefName\":\"panel_c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"41b4d631-4878-49af-b34b-f04f473599c8\",\"w\":12,\"x\":36,\"y\":24},\"panelIndex\":\"41b4d631-4878-49af-b34b-f04f473599c8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"DELETE Requests/sec\",\"panelRefName\":\"panel_41b4d631-4878-49af-b34b-f04f473599c8\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"90d9d209-6ef9-4ab7-b9a2-48a1f420e555\",\"w\":12,\"x\":36,\"y\":36},\"panelIndex\":\"90d9d209-6ef9-4ab7-b9a2-48a1f420e555\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total DELETE Requests\",\"panelRefName\":\"panel_90d9d209-6ef9-4ab7-b9a2-48a1f420e555\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"c7379d87-3da3-4be4-a8bd-8db04da66ba4\",\"w\":12,\"x\":0,\"y\":36},\"panelIndex\":\"c7379d87-3da3-4be4-a8bd-8db04da66ba4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total GET Requests\",\"panelRefName\":\"panel_c7379d87-3da3-4be4-a8bd-8db04da66ba4\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"9a22a36c-5fe8-4cc2-be23-4d9db2d7beda\",\"w\":12,\"x\":12,\"y\":36},\"panelIndex\":\"9a22a36c-5fe8-4cc2-be23-4d9db2d7beda\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total POST Requests\",\"panelRefName\":\"panel_9a22a36c-5fe8-4cc2-be23-4d9db2d7beda\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":12,\"i\":\"6cf940a0-eb04-447b-8f7e-d4561f8838ac\",\"w\":12,\"x\":24,\"y\":36},\"panelIndex\":\"6cf940a0-eb04-447b-8f7e-d4561f8838ac\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total PUT Requests \",\"panelRefName\":\"panel_6cf940a0-eb04-447b-8f7e-d4561f8838ac\"}]","timeRestore":false,"title":"[Metricbeat IIS] Website Overview","version":1},"coreMigrationVersion":"8.0.0","id":"4b975820-85a1-11ea-91bc-ab084c7ec0e7","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"f9723710-8602-11ea-91bc-ab084c7ec0e7","name":"e8bd7244-57bf-4e16-b096-4fa7cb8cbba8:panel_e8bd7244-57bf-4e16-b096-4fa7cb8cbba8","type":"visualization"},{"id":"57d914d0-860e-11ea-91bc-ab084c7ec0e7","name":"193cca9a-a5c3-40c4-a9af-1020b279b845:panel_193cca9a-a5c3-40c4-a9af-1020b279b845","type":"visualization"},{"id":"6db58c20-860e-11ea-91bc-ab084c7ec0e7","name":"7b5d1298-0480-443a-bf0e-5b594903c680:panel_7b5d1298-0480-443a-bf0e-5b594903c680","type":"visualization"},{"id":"e3ee4990-860e-11ea-91bc-ab084c7ec0e7","name":"fd0c5fd7-4df8-44d9-905f-5634f49ae875:panel_fd0c5fd7-4df8-44d9-905f-5634f49ae875","type":"visualization"},{"id":"b7230190-8603-11ea-91bc-ab084c7ec0e7","name":"69a127c6-8c4f-403a-aded-7a49dc3d3cd9:panel_69a127c6-8c4f-403a-aded-7a49dc3d3cd9","type":"visualization"},{"id":"4557d670-860e-11ea-91bc-ab084c7ec0e7","name":"545b1abe-fd22-455b-8bc6-68bd48c2d384:panel_545b1abe-fd22-455b-8bc6-68bd48c2d384","type":"visualization"},{"id":"c784f9b0-8614-11ea-91bc-ab084c7ec0e7","name":"c026e461-8b64-4952-be07-744773cb18b9:panel_c026e461-8b64-4952-be07-744773cb18b9","type":"visualization"},{"id":"96fe7d70-8614-11ea-91bc-ab084c7ec0e7","name":"98b6e727-3343-43df-84e1-12933856f432:panel_98b6e727-3343-43df-84e1-12933856f432","type":"visualization"},{"id":"4921d5c0-8619-11ea-91bc-ab084c7ec0e7","name":"d4b32bd4-dee2-44e2-930d-91e4607c0668:panel_d4b32bd4-dee2-44e2-930d-91e4607c0668","type":"visualization"},{"id":"7dabd8e0-8619-11ea-91bc-ab084c7ec0e7","name":"d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa:panel_d24b5bb0-6dc3-40ba-91cb-5ca5e48a3afa","type":"visualization"},{"id":"a9427270-8619-11ea-91bc-ab084c7ec0e7","name":"c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8:panel_c8cfac9e-ad2a-4ddf-94c9-0454e987b2b8","type":"visualization"},{"id":"7453b910-8624-11ea-91bc-ab084c7ec0e7","name":"41b4d631-4878-49af-b34b-f04f473599c8:panel_41b4d631-4878-49af-b34b-f04f473599c8","type":"visualization"},{"id":"8ee988d0-861b-11ea-91bc-ab084c7ec0e7","name":"90d9d209-6ef9-4ab7-b9a2-48a1f420e555:panel_90d9d209-6ef9-4ab7-b9a2-48a1f420e555","type":"visualization"},{"id":"1b4f8790-861a-11ea-91bc-ab084c7ec0e7","name":"c7379d87-3da3-4be4-a8bd-8db04da66ba4:panel_c7379d87-3da3-4be4-a8bd-8db04da66ba4","type":"visualization"},{"id":"31ed84b0-861b-11ea-91bc-ab084c7ec0e7","name":"9a22a36c-5fe8-4cc2-be23-4d9db2d7beda:panel_9a22a36c-5fe8-4cc2-be23-4d9db2d7beda","type":"visualization"},{"id":"54038fe0-861b-11ea-91bc-ab084c7ec0e7","name":"6cf940a0-eb04-447b-8f7e-d4561f8838ac:panel_6cf940a0-eb04-447b-8f7e-d4561f8838ac","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:31.118Z","version":"WzM5NDQsMV0="} diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..75a1aa2519e8 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,254 @@ +{ + "attributes": { + "description": "This dashboard shows application pools metrics for the IIS server.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "43790631-73f5-4f5e-824e-aa9d3f4f5664", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "43790631-73f5-4f5e-824e-aa9d3f4f5664", + "panelRefName": "panel_43790631-73f5-4f5e-824e-aa9d3f4f5664", + "title": "", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "b94f6dac-0f16-4781-ac08-d632154458a6", + "w": 20, + "x": 9, + "y": 0 + }, + "panelIndex": "b94f6dac-0f16-4781-ac08-d632154458a6", + "panelRefName": "panel_b94f6dac-0f16-4781-ac08-d632154458a6", + "title": "Thread Count", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "a3c19f11-99d4-4794-8ebb-aa2b3583577b", + "w": 19, + "x": 29, + "y": 0 + }, + "panelIndex": "a3c19f11-99d4-4794-8ebb-aa2b3583577b", + "panelRefName": "panel_a3c19f11-99d4-4794-8ebb-aa2b3583577b", + "title": "Handle Count", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "10fe7306-655b-4bc6-b078-892f91d0d9ea", + "w": 9, + "x": 0, + "y": 5 + }, + "panelIndex": "10fe7306-655b-4bc6-b078-892f91d0d9ea", + "panelRefName": "panel_10fe7306-655b-4bc6-b078-892f91d0d9ea", + "title": "Filters", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "4dfc6a98-4749-47a8-a92e-ee955cf20c00", + "w": 24, + "x": 0, + "y": 11 + }, + "panelIndex": "4dfc6a98-4749-47a8-a92e-ee955cf20c00", + "panelRefName": "panel_4dfc6a98-4749-47a8-a92e-ee955cf20c00", + "title": "IO Write Operations", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "bae63734-a752-46c3-8083-8c12eabca5aa", + "w": 24, + "x": 24, + "y": 11 + }, + "panelIndex": "bae63734-a752-46c3-8083-8c12eabca5aa", + "panelRefName": "panel_bae63734-a752-46c3-8083-8c12eabca5aa", + "title": "IO Read Operations", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "ce663f89-7cf9-4659-af06-2128f7d2f74b", + "w": 24, + "x": 0, + "y": 26 + }, + "panelIndex": "ce663f89-7cf9-4659-af06-2128f7d2f74b", + "panelRefName": "panel_ce663f89-7cf9-4659-af06-2128f7d2f74b", + "title": "Working Set", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "99da2951-fb14-4a18-8a0c-4647daa9b626", + "w": 24, + "x": 24, + "y": 41 + }, + "panelIndex": "99da2951-fb14-4a18-8a0c-4647daa9b626", + "panelRefName": "panel_99da2951-fb14-4a18-8a0c-4647daa9b626", + "title": "Virtual Bytes", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "71985962-b5c9-412e-a99f-b55ed988f4ea", + "w": 24, + "x": 0, + "y": 41 + }, + "panelIndex": "71985962-b5c9-412e-a99f-b55ed988f4ea", + "panelRefName": "panel_71985962-b5c9-412e-a99f-b55ed988f4ea", + "title": "Private Bytes", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "347b6893-0ab0-47fc-9e80-efc9bf47f13e", + "w": 24, + "x": 24, + "y": 26 + }, + "panelIndex": "347b6893-0ab0-47fc-9e80-efc9bf47f13e", + "panelRefName": "panel_347b6893-0ab0-47fc-9e80-efc9bf47f13e", + "title": "CPU Usage", + "type": "visualization", + "version": "7.6.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat IIS] Application Pool Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "b4108810-861c-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "dc97bec0-861c-11ea-91bc-ab084c7ec0e7", + "name": "43790631-73f5-4f5e-824e-aa9d3f4f5664:panel_43790631-73f5-4f5e-824e-aa9d3f4f5664", + "type": "visualization" + }, + { + "id": "41324ad0-861d-11ea-91bc-ab084c7ec0e7", + "name": "b94f6dac-0f16-4781-ac08-d632154458a6:panel_b94f6dac-0f16-4781-ac08-d632154458a6", + "type": "visualization" + }, + { + "id": "98b90fa0-861d-11ea-91bc-ab084c7ec0e7", + "name": "a3c19f11-99d4-4794-8ebb-aa2b3583577b:panel_a3c19f11-99d4-4794-8ebb-aa2b3583577b", + "type": "visualization" + }, + { + "id": "dd419de0-861d-11ea-91bc-ab084c7ec0e7", + "name": "10fe7306-655b-4bc6-b078-892f91d0d9ea:panel_10fe7306-655b-4bc6-b078-892f91d0d9ea", + "type": "visualization" + }, + { + "id": "442a86c0-861e-11ea-91bc-ab084c7ec0e7", + "name": "4dfc6a98-4749-47a8-a92e-ee955cf20c00:panel_4dfc6a98-4749-47a8-a92e-ee955cf20c00", + "type": "visualization" + }, + { + "id": "29a23aa0-861e-11ea-91bc-ab084c7ec0e7", + "name": "bae63734-a752-46c3-8083-8c12eabca5aa:panel_bae63734-a752-46c3-8083-8c12eabca5aa", + "type": "visualization" + }, + { + "id": "34bfec50-8620-11ea-91bc-ab084c7ec0e7", + "name": "ce663f89-7cf9-4659-af06-2128f7d2f74b:panel_ce663f89-7cf9-4659-af06-2128f7d2f74b", + "type": "visualization" + }, + { + "id": "14300bf0-8620-11ea-91bc-ab084c7ec0e7", + "name": "99da2951-fb14-4a18-8a0c-4647daa9b626:panel_99da2951-fb14-4a18-8a0c-4647daa9b626", + "type": "visualization" + }, + { + "id": "f7194cc0-861f-11ea-91bc-ab084c7ec0e7", + "name": "71985962-b5c9-412e-a99f-b55ed988f4ea:panel_71985962-b5c9-412e-a99f-b55ed988f4ea", + "type": "visualization" + }, + { + "id": "90fe3b30-861f-11ea-91bc-ab084c7ec0e7", + "name": "347b6893-0ab0-47fc-9e80-efc9bf47f13e:panel_347b6893-0ab0-47fc-9e80-efc9bf47f13e", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:28.083Z", + "version": "WzM5MDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..3d23c167158b --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,298 @@ +{ + "attributes": { + "description": "This dashboard shows metrics for the IIS server.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "55b62196-f0fa-4473-a578-c5197ae7581c", + "w": 10, + "x": 0, + "y": 0 + }, + "panelIndex": "55b62196-f0fa-4473-a578-c5197ae7581c", + "panelRefName": "panel_55b62196-f0fa-4473-a578-c5197ae7581c", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "9f1c724a-e57a-4667-8930-b60997efeee5", + "w": 9, + "x": 10, + "y": 0 + }, + "panelIndex": "9f1c724a-e57a-4667-8930-b60997efeee5", + "panelRefName": "panel_9f1c724a-e57a-4667-8930-b60997efeee5", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "5aeeab99-314c-4732-b731-ebd390fa9210", + "w": 10, + "x": 19, + "y": 0 + }, + "panelIndex": "5aeeab99-314c-4732-b731-ebd390fa9210", + "panelRefName": "panel_5aeeab99-314c-4732-b731-ebd390fa9210", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "88113bca-98b0-4877-b768-46f9b1c29751", + "w": 10, + "x": 29, + "y": 0 + }, + "panelIndex": "88113bca-98b0-4877-b768-46f9b1c29751", + "panelRefName": "panel_88113bca-98b0-4877-b768-46f9b1c29751", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "0add6210-d7d5-4b66-afaa-bcec0bc445d9", + "w": 9, + "x": 39, + "y": 0 + }, + "panelIndex": "0add6210-d7d5-4b66-afaa-bcec0bc445d9", + "panelRefName": "panel_0add6210-d7d5-4b66-afaa-bcec0bc445d9", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "e809e015-29b2-496b-aaf1-f461d59b1568", + "w": 5, + "x": 0, + "y": 5 + }, + "panelIndex": "e809e015-29b2-496b-aaf1-f461d59b1568", + "panelRefName": "panel_e809e015-29b2-496b-aaf1-f461d59b1568", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "6ebec04f-3df0-4995-ae9c-836774f05ea7", + "w": 5, + "x": 5, + "y": 5 + }, + "panelIndex": "6ebec04f-3df0-4995-ae9c-836774f05ea7", + "panelRefName": "panel_6ebec04f-3df0-4995-ae9c-836774f05ea7", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "41de633b-40aa-4456-967a-5737d139a374", + "w": 38, + "x": 10, + "y": 9 + }, + "panelIndex": "41de633b-40aa-4456-967a-5737d139a374", + "panelRefName": "panel_41de633b-40aa-4456-967a-5737d139a374", + "title": "Total Requests", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3", + "w": 5, + "x": 0, + "y": 13 + }, + "panelIndex": "3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3", + "panelRefName": "panel_3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "983e0c36-04f7-4ec0-b6a6-8d2599a63065", + "w": 5, + "x": 5, + "y": 13 + }, + "panelIndex": "983e0c36-04f7-4ec0-b6a6-8d2599a63065", + "panelRefName": "panel_983e0c36-04f7-4ec0-b6a6-8d2599a63065", + "title": "", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0", + "w": 24, + "x": 24, + "y": 21 + }, + "panelIndex": "aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0", + "panelRefName": "panel_aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0", + "title": "Total Bytes Transferred", + "type": "visualization", + "version": "7.6.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "623596fb-3f1f-4f2e-b15b-800d197ce1aa", + "w": 24, + "x": 0, + "y": 21 + }, + "panelIndex": "623596fb-3f1f-4f2e-b15b-800d197ce1aa", + "panelRefName": "panel_623596fb-3f1f-4f2e-b15b-800d197ce1aa", + "title": "Bytes Transferred/sec", + "type": "visualization", + "version": "7.6.2" + } + ], + "timeRestore": false, + "title": "[Metricbeat IIS] Webserver Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "ebc23240-8572-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "40614070-8573-11ea-91bc-ab084c7ec0e7", + "name": "55b62196-f0fa-4473-a578-c5197ae7581c:panel_55b62196-f0fa-4473-a578-c5197ae7581c", + "type": "visualization" + }, + { + "id": "82f1d7d0-858a-11ea-91bc-ab084c7ec0e7", + "name": "9f1c724a-e57a-4667-8930-b60997efeee5:panel_9f1c724a-e57a-4667-8930-b60997efeee5", + "type": "visualization" + }, + { + "id": "c92e0b80-8574-11ea-91bc-ab084c7ec0e7", + "name": "5aeeab99-314c-4732-b731-ebd390fa9210:panel_5aeeab99-314c-4732-b731-ebd390fa9210", + "type": "visualization" + }, + { + "id": "348c4fe0-8575-11ea-91bc-ab084c7ec0e7", + "name": "88113bca-98b0-4877-b768-46f9b1c29751:panel_88113bca-98b0-4877-b768-46f9b1c29751", + "type": "visualization" + }, + { + "id": "461a8640-8576-11ea-91bc-ab084c7ec0e7", + "name": "0add6210-d7d5-4b66-afaa-bcec0bc445d9:panel_0add6210-d7d5-4b66-afaa-bcec0bc445d9", + "type": "visualization" + }, + { + "id": "c8e467d0-8d55-11ea-817c-a9b6d42fd8a0", + "name": "e809e015-29b2-496b-aaf1-f461d59b1568:panel_e809e015-29b2-496b-aaf1-f461d59b1568", + "type": "visualization" + }, + { + "id": "df9d0e50-8d55-11ea-817c-a9b6d42fd8a0", + "name": "6ebec04f-3df0-4995-ae9c-836774f05ea7:panel_6ebec04f-3df0-4995-ae9c-836774f05ea7", + "type": "visualization" + }, + { + "id": "75812480-857f-11ea-91bc-ab084c7ec0e7", + "name": "41de633b-40aa-4456-967a-5737d139a374:panel_41de633b-40aa-4456-967a-5737d139a374", + "type": "visualization" + }, + { + "id": "14e77b40-8d56-11ea-817c-a9b6d42fd8a0", + "name": "3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3:panel_3e1276ed-2f8f-4a07-948c-cf5ae0de9fc3", + "type": "visualization" + }, + { + "id": "2d802c60-8d56-11ea-817c-a9b6d42fd8a0", + "name": "983e0c36-04f7-4ec0-b6a6-8d2599a63065:panel_983e0c36-04f7-4ec0-b6a6-8d2599a63065", + "type": "visualization" + }, + { + "id": "68a9df20-8581-11ea-91bc-ab084c7ec0e7", + "name": "aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0:panel_aa567463-86ec-4bbe-bf0f-b0d4d1d57bb0", + "type": "visualization" + }, + { + "id": "92acc3e0-8582-11ea-91bc-ab084c7ec0e7", + "name": "623596fb-3f1f-4f2e-b15b-800d197ce1aa:panel_623596fb-3f1f-4f2e-b15b-800d197ce1aa", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:29.081Z", + "version": "WzM5MTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/1084a0e0-8d57-11ea-817c-a9b6d42fd8a0.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/1084a0e0-8d57-11ea-817c-a9b6d42fd8a0.json new file mode 100644 index 000000000000..022d4920d695 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/1084a0e0-8d57-11ea-817c-a9b6d42fd8a0.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Process Output Cache Current Memory Usage [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,181,21,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Output Cache Current Memory Usage", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.cache.output_cache_current_memory_usage", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}} " + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Webserver Process Output Cache Current Memory Usage [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1084a0e0-8d57-11ea-817c-a9b6d42fd8a0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:30.134Z", + "version": "WzM5MzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/14300bf0-8620-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/14300bf0-8620-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..cbcaaf402b3e --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/14300bf0-8620-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Application Pool Virtual Bytes [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,98,177,1)", + "fill": "0", + "formatter": "bytes", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "Virtual Bytes", + "line_width": "2", + "metrics": [ + { + "field": "iis.application_pool.process.virtual_bytes", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.application_pool.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Application Pool Virtual Bytes [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "14300bf0-8620-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:28.083Z", + "version": "WzM5MTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/14e77b40-8d56-11ea-817c-a9b6d42fd8a0.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/14e77b40-8d56-11ea-817c-a9b6d42fd8a0.json new file mode 100644 index 000000000000..fd1c2ef6db11 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/14e77b40-8d56-11ea-817c-a9b6d42fd8a0.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Overview Current Non Anonymous Users [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(171,21,211,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Current Non Anonymous Users", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.network.current_non_anonymous_users", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}} " + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Webserver Overview Current Non Anonymous Users [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "14e77b40-8d56-11ea-817c-a9b6d42fd8a0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:29.081Z", + "version": "WzM5MjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/1b4f8790-861a-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/1b4f8790-861a-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..1ce3df9b30dd --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/1b4f8790-861a-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Website Total GET Requests [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "formatter": "number", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "Total GET Requests ", + "line_width": "2", + "metrics": [ + { + "field": "iis.website.network.total_get_requests", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.website.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Website Total GET Requests [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1b4f8790-861a-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/29a23aa0-861e-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/29a23aa0-861e-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..08334117e8fe --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/29a23aa0-861e-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Application Pool IO Read Operations [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": "0", + "formatter": "number", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "IO Read Operations/s", + "line_width": "2", + "metrics": [ + { + "field": "iis.application_pool.process.io_read_operations_per_sec", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.application_pool.name", + "type": "timeseries", + "value_template": "{{value}}/s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Application Pool IO Read Operations [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "29a23aa0-861e-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:28.083Z", + "version": "WzM5MTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/2d802c60-8d56-11ea-817c-a9b6d42fd8a0.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/2d802c60-8d56-11ea-817c-a9b6d42fd8a0.json new file mode 100644 index 000000000000..25374a4c4864 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/2d802c60-8d56-11ea-817c-a9b6d42fd8a0.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Overview Total Non Anonymous Users [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,21,105,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Total Non Anonymous Users", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.network.total_non_anonymous_users", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}} " + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Webserver Overview Total Non Anonymous Users [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2d802c60-8d56-11ea-817c-a9b6d42fd8a0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:29.081Z", + "version": "WzM5MjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/2dd099f0-858d-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/2dd099f0-858d-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..f8825db3d24c --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/2dd099f0-858d-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Process CPU Usage [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": "0", + "formatter": "percent", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "CPU Usage", + "line_width": "2", + "metrics": [ + { + "field": "iis.webserver.process.cpu_usage_perc", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "everything", + "stacked": "none", + "terms_field": null, + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Webserver Process CPU Usage [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2dd099f0-858d-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:30.134Z", + "version": "WzM5NDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/31ed84b0-861b-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/31ed84b0-861b-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..7430e780c60d --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/31ed84b0-861b-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Website Total POST Requests [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "formatter": "number", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "Total POST Requests ", + "line_width": "2", + "metrics": [ + { + "field": "iis.website.network.total_post_requests", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.website.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Website Total POST Requests [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "31ed84b0-861b-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/348c4fe0-8575-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/348c4fe0-8575-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..4401684f6905 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/348c4fe0-8575-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Maximum Connections [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Maximum Connections", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.network.maximum_connections", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Webserver Maximum Connections [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "348c4fe0-8575-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:29.081Z", + "version": "WzM5MjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/34bfec50-8620-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/34bfec50-8620-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..f0fffb7a1dac --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/34bfec50-8620-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Application Pool Working Set [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": "0", + "formatter": "bytes", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "Working Set", + "line_width": "2", + "metrics": [ + { + "field": "iis.application_pool.process.working_set", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.application_pool.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Application Pool Working Set [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "34bfec50-8620-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:28.083Z", + "version": "WzM5MTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/40614070-8573-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/40614070-8573-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..73e895f3b88f --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/40614070-8573-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Navigation Webserver Overview [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "### IIS\n\n[**Webserver**](#/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7)| [Webserver processes](#/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7) | [Websites](#/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7) | [Application Pools](#/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7) \n\n\n\n", + "openLinksInNewTab": false + }, + "title": "Navigation Webserver Overview [Metricbeat IIS]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "40614070-8573-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:29.081Z", + "version": "WzM5MTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/41324ad0-861d-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/41324ad0-861d-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..e0b10dbef9a4 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/41324ad0-861d-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Application Pool Thread Count [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(22,165,165,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Thread Count", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.application_pool.process.thread_count", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.application_pool.name", + "terms_order_by": "_count", + "type": "timeseries", + "value_template": "{{value}} " + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Application Pool Thread Count [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "41324ad0-861d-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:28.083Z", + "version": "WzM5MDksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/442a86c0-861e-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/442a86c0-861e-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..f112aa873943 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/442a86c0-861e-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Application Pool IO Write Operations [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "0", + "formatter": "number", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "IO Write Operations/s", + "line_width": "2", + "metrics": [ + { + "field": "iis.application_pool.process.io_write_operations_per_sec", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.application_pool.name", + "type": "timeseries", + "value_template": "{{value}}/s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Application Pool IO Write Operations [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "442a86c0-861e-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:28.083Z", + "version": "WzM5MTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/4557d670-860e-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/4557d670-860e-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..643fadfc48e2 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/4557d670-860e-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Website Service Uptime [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "s,d,", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Service Uptime", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.website.network.service_uptime", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.website.name", + "terms_order_by": "_count", + "terms_size": "10", + "type": "timeseries", + "value_template": "{{value}} d" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Website Service Uptime [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4557d670-860e-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/461a8640-8576-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/461a8640-8576-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..8d53d8710021 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/461a8640-8576-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Total Connection Attempts [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(251,158,0,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Total Connection Attempts", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.network.total_connection_attempts", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Webserver Total Connection Attempts [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "461a8640-8576-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:29.081Z", + "version": "WzM5MjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/4921d5c0-8619-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/4921d5c0-8619-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..a453614cb805 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/4921d5c0-8619-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Website GET Requests/s [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": "0", + "formatter": "number", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "GET Requests ", + "line_width": "2", + "metrics": [ + { + "field": "iis.website.network.get_requests_per_sec", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.website.name", + "type": "timeseries", + "value_template": "{{value}}/s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Website GET Requests/s [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4921d5c0-8619-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/54038fe0-861b-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/54038fe0-861b-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..a94517216f30 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/54038fe0-861b-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Website Total PUT Requests [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(22,165,165,1)", + "fill": "0", + "formatter": "number", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "Total PUT Requests ", + "line_width": "2", + "metrics": [ + { + "field": "iis.website.network.total_put_requests", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.website.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Website Total PUT Requests [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "54038fe0-861b-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/55755550-858c-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/55755550-858c-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..ff26ef767adb --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/55755550-858c-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Process Worker Process Count [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Worker Processes", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.process.worker_process_count", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}} " + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Webserver Process Worker Process Count [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "55755550-858c-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:30.134Z", + "version": "WzM5MzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/57d914d0-860e-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/57d914d0-860e-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..6d2d400c64f1 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/57d914d0-860e-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Website Current Connections [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Current Connections", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.website.network.current_connections", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.website.name", + "terms_order_by": "_count", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Website Current Connections [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "57d914d0-860e-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/68a9df20-8581-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/68a9df20-8581-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..0f514f2e7961 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/68a9df20-8581-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,129 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Total Bytes Transfered [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(251,158,0,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "bytes", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Total Bytes Sent ", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.network.total_bytes_sent", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "cb6910f0-8580-11ea-8d9f-cf59f8572d31", + "label": "Total Bytes Received", + "line_width": "2", + "metrics": [ + { + "field": "iis.webserver.network.total_bytes_received", + "id": "cb693800-8580-11ea-8d9f-cf59f8572d31", + "type": "avg" + } + ], + "point_size": "", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Webserver Total Bytes Transfered [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "68a9df20-8581-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:29.081Z", + "version": "WzM5MjksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/6c1272a0-858e-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/6c1272a0-858e-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..b34ec2283ada --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/6c1272a0-858e-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Process Thread Count [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(22,165,165,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Thread Count", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.process.thread_count", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}} " + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Webserver Process Thread Count [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6c1272a0-858e-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:30.134Z", + "version": "WzM5MzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/6db58c20-860e-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/6db58c20-860e-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..f08ec88e727a --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/6db58c20-860e-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Website Maximum Connections [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Maximum Connections", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.website.network.maximum_connections", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.website.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Website Maximum Connections [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6db58c20-860e-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/7453b910-8624-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/7453b910-8624-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..b1c879c57cfa --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/7453b910-8624-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Website DELETE Requests/s [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(25,77,51,1)", + "fill": "0", + "formatter": "number", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "DELETE Requests ", + "line_width": "2", + "metrics": [ + { + "field": "iis.website.network.delete_requests_per_sec", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.website.name", + "type": "timeseries", + "value_template": "{{value}}/s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Website DELETE Requests/s [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7453b910-8624-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/75812480-857f-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/75812480-857f-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..a53bf5a3fc07 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/75812480-857f-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,117 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Total Requests [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": "0", + "formatter": "number", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "Total Get Requests", + "line_width": "2", + "metrics": [ + { + "field": "iis.webserver.network.total_get_requests", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "everything", + "stacked": "none", + "terms_field": null, + "type": "timeseries", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "55ef6fb0-857e-11ea-87b6-db4d36ae5839", + "label": "Total Post Requests", + "line_width": "2", + "metrics": [ + { + "field": "iis.webserver.network.total_post_requests", + "id": "55ef6fb1-857e-11ea-87b6-db4d36ae5839", + "type": "avg" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(149,0,188,1)", + "fill": "0", + "formatter": "number", + "id": "7501b0c0-857e-11ea-87b6-db4d36ae5839", + "label": "Total Delete Requests", + "line_width": "2", + "metrics": [ + { + "field": "iis.webserver.network.total_delete_requests", + "id": "7501b0c1-857e-11ea-87b6-db4d36ae5839", + "type": "avg" + } + ], + "point_size": "", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Webserver Total Requests [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "75812480-857f-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:29.081Z", + "version": "WzM5MjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/7d9e1f40-8d56-11ea-817c-a9b6d42fd8a0.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/7d9e1f40-8d56-11ea-817c-a9b6d42fd8a0.json new file mode 100644 index 000000000000..24a806d9f368 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/7d9e1f40-8d56-11ea-817c-a9b6d42fd8a0.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Current Uris Cached [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,21,105,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Current Uris Cached", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.cache.current_uris_cached", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}} " + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Webserver Current Uris Cached [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7d9e1f40-8d56-11ea-817c-a9b6d42fd8a0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:30.134Z", + "version": "WzM5NDAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/7dabd8e0-8619-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/7dabd8e0-8619-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..374f4df6b54d --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/7dabd8e0-8619-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Website POST Requests/s [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": "0", + "formatter": "number", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "POST Requests ", + "line_width": "2", + "metrics": [ + { + "field": "iis.website.network.post_requests_per_sec", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.website.name", + "type": "timeseries", + "value_template": "{{value}}/s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Website POST Requests/s [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7dabd8e0-8619-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/82f1d7d0-858a-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/82f1d7d0-858a-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..4fcf75f49478 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/82f1d7d0-858a-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Service Uptime [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "s,h,", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Service Uptime", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.network.service_uptime", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}} h" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Webserver Service Uptime [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "82f1d7d0-858a-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:29.081Z", + "version": "WzM5MjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/8ee988d0-861b-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/8ee988d0-861b-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..03d7a5d2b75b --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/8ee988d0-861b-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Website Total DELETE Requests [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": "0", + "formatter": "number", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "Total DELETE Requests ", + "line_width": "2", + "metrics": [ + { + "field": "iis.website.network.total_delete_requests", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.website.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Website Total DELETE Requests [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8ee988d0-861b-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/90fe3b30-861f-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/90fe3b30-861f-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..10175103f545 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/90fe3b30-861f-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Application Pool CPU Usage [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": "0", + "formatter": "percent", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "CPU Usage", + "line_width": "2", + "metrics": [ + { + "field": "iis.application_pool.process.cpu_usage_perc", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.application_pool.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Application Pool CPU Usage [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "90fe3b30-861f-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:28.083Z", + "version": "WzM5MTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/92acc3e0-8582-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/92acc3e0-8582-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..cbd5c70412a0 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/92acc3e0-8582-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,130 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Bytes Transfered Per Sec [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(22,165,165,1)", + "fill": "0", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Bytes Sent/sec", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.network.bytes_sent_per_sec", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}/s" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(250,40,255,1)", + "fill": "0", + "formatter": "number", + "id": "cb6910f0-8580-11ea-8d9f-cf59f8572d31", + "label": "Bytes Received/sec", + "line_width": "2", + "metrics": [ + { + "field": "iis.webserver.network.bytes_received_per_sec", + "id": "cb693800-8580-11ea-8d9f-cf59f8572d31", + "type": "avg" + } + ], + "point_size": "", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "{{value}}/s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Webserver Bytes Transfered Per Sec [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "92acc3e0-8582-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:29.081Z", + "version": "WzM5MzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/92dcde20-858e-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/92dcde20-858e-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..ddcdfc0a4507 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/92dcde20-858e-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Process Handle Count [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(101,50,148,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Handle Count", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.process.handle_count", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}} " + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Webserver Process Handle Count [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "92dcde20-858e-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:30.134Z", + "version": "WzM5MzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/945f7850-8d56-11ea-817c-a9b6d42fd8a0.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/945f7850-8d56-11ea-817c-a9b6d42fd8a0.json new file mode 100644 index 000000000000..bf4074a45246 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/945f7850-8d56-11ea-817c-a9b6d42fd8a0.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Total Uris Cached [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(92,21,211,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Total Uris Cached", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.cache.total_uris_cached", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}} " + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Webserver Total Uris Cached [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "945f7850-8d56-11ea-817c-a9b6d42fd8a0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:30.134Z", + "version": "WzM5NDEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/96fe7d70-8614-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/96fe7d70-8614-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..e4ba74e9a694 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/96fe7d70-8614-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Website Bytes Received/s [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": "0", + "formatter": "bytes", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "Bytes Received", + "line_width": "2", + "metrics": [ + { + "field": "iis.website.network.bytes_received_per_sec", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.website.name", + "type": "timeseries", + "value_template": "{{value}}/s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Website Bytes Received/s [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "96fe7d70-8614-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/98b90fa0-861d-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/98b90fa0-861d-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..f8011a7a064e --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/98b90fa0-861d-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Application Pool Handle Count [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(101,50,148,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Handle Count", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.application_pool.process.handle_count", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.application_pool.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}} " + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Application Pool Handle Count [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "98b90fa0-861d-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:28.083Z", + "version": "WzM5MTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/a9427270-8619-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/a9427270-8619-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..9407e1481631 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/a9427270-8619-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Website PUT Requests/s [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": "0", + "formatter": "number", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "PUT Requests ", + "line_width": "2", + "metrics": [ + { + "field": "iis.website.network.put_requests_per_sec", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.website.name", + "type": "timeseries", + "value_template": "{{value}}/s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Website PUT Requests/s [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a9427270-8619-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/b5c6f400-8d56-11ea-817c-a9b6d42fd8a0.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/b5c6f400-8d56-11ea-817c-a9b6d42fd8a0.json new file mode 100644 index 000000000000..61ac3848d394 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/b5c6f400-8d56-11ea-817c-a9b6d42fd8a0.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Process Total Files Cached [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(21,162,211,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Total Files Cached", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.cache.total_files_cached", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}} " + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Webserver Process Total Files Cached [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b5c6f400-8d56-11ea-817c-a9b6d42fd8a0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:30.134Z", + "version": "WzM5MzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/b7230190-8603-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/b7230190-8603-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..bf24e3ed1f5d --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/b7230190-8603-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Website Filters [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "iis.website.name", + "id": "1549397251041", + "indexPatternRefName": "control_0_index_pattern", + "label": "Website", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "Website Filters [Metricbeat IIS]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b7230190-8603-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NDksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/c784f9b0-8614-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/c784f9b0-8614-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..4669f2f67e96 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/c784f9b0-8614-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Website Bytes Sent/s [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": "0", + "formatter": "bytes", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "Bytes Sent", + "line_width": "2", + "metrics": [ + { + "field": "iis.website.network.bytes_sent_per_sec", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.website.name", + "type": "timeseries", + "value_template": "{{value}}/s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Website Bytes Sent/s [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c784f9b0-8614-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/c8e467d0-8d55-11ea-817c-a9b6d42fd8a0.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/c8e467d0-8d55-11ea-817c-a9b6d42fd8a0.json new file mode 100644 index 000000000000..061ff0504944 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/c8e467d0-8d55-11ea-817c-a9b6d42fd8a0.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Overview Current Anonymous Users [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(49,211,21,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Current Anonymous Users", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.network.current_anonymous_users", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}} " + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Webserver Overview Current Anonymous Users [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c8e467d0-8d55-11ea-817c-a9b6d42fd8a0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:29.081Z", + "version": "WzM5MjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/c92e0b80-8574-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/c92e0b80-8574-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..aed47778dbe1 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/c92e0b80-8574-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Current Connections [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Current Connections", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.network.current_connections", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Webserver Current Connections [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c92e0b80-8574-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:29.081Z", + "version": "WzM5MjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/d9dc78b0-8d56-11ea-817c-a9b6d42fd8a0.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/d9dc78b0-8d56-11ea-817c-a9b6d42fd8a0.json new file mode 100644 index 000000000000..814dda7cd823 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/d9dc78b0-8d56-11ea-817c-a9b6d42fd8a0.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Process Current Files Cached [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(21,211,162,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Current Files Cached", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.cache.current_files_cached", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}} " + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Webserver Process Current Files Cached [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d9dc78b0-8d56-11ea-817c-a9b6d42fd8a0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:30.134Z", + "version": "WzM5MzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/dc97bec0-861c-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/dc97bec0-861c-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..95f2e7e5c9d4 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/dc97bec0-861c-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Navigation Application Pool Overview [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "### IIS\n\n[Webserver](#/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7)| [Webserver processes](#/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7) | [Websites](#/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7) | [**Application Pools**](#/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7) ", + "openLinksInNewTab": false + }, + "title": "Navigation Application Pool Overview [Metricbeat IIS]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dc97bec0-861c-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:28.083Z", + "version": "WzM5MDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/dd419de0-861d-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/dd419de0-861d-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..779d2419a079 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/dd419de0-861d-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,59 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Application Pool Filters [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "iis.application_pool.name", + "id": "1549397251041", + "indexPatternRefName": "control_0_index_pattern", + "label": "Application Pools", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "Application Pool Filters [Metricbeat IIS]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dd419de0-861d-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:28.083Z", + "version": "WzM5MTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/df9d0e50-8d55-11ea-817c-a9b6d42fd8a0.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/df9d0e50-8d55-11ea-817c-a9b6d42fd8a0.json new file mode 100644 index 000000000000..b201c2d22269 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/df9d0e50-8d55-11ea-817c-a9b6d42fd8a0.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Overview Total Anonymous Users [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(21,68,211,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Total Anonymous Users", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.webserver.network.total_anonymous_users", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "terms_field": "cloud.instance.name", + "terms_order_by": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "type": "timeseries", + "value_template": "{{value}} " + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "Webserver Overview Total Anonymous Users [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "df9d0e50-8d55-11ea-817c-a9b6d42fd8a0", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:29.081Z", + "version": "WzM5MjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/e26479e0-858d-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/e26479e0-858d-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..08071da252df --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/e26479e0-858d-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,95 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Process IO Operations [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,196,0,1)", + "fill": "0", + "formatter": "number", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "IO Read Operations/s", + "line_width": "2", + "metrics": [ + { + "field": "iis.webserver.process.io_read_operations_per_sec", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "everything", + "stacked": "none", + "terms_field": null, + "type": "timeseries", + "value_template": "{{value}}/s" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "number", + "id": "55ef6fb0-857e-11ea-87b6-db4d36ae5839", + "label": "IO Write Operations/s", + "line_width": "2", + "metrics": [ + { + "field": "iis.webserver.process.io_write_operations_per_sec", + "id": "55ef6fb1-857e-11ea-87b6-db4d36ae5839", + "type": "avg" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "{{value}}/s" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Webserver Process IO Operations [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e26479e0-858d-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:30.134Z", + "version": "WzM5MzksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/e3ee4990-860e-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/e3ee4990-860e-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..0eb923f277c3 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/e3ee4990-860e-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Website Total Connection Attempts [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "background_color": null, + "background_color_rules": [ + { + "id": "71978870-32e4-11ea-af9e-d70582a45bda" + } + ], + "bar_color_rules": [ + { + "id": "f11cfd90-32e5-11ea-af9e-d70582a45bda" + } + ], + "drilldown_url": "", + "filter": { + "language": "kuery", + "query": "" + }, + "gauge_color_rules": [ + { + "id": "9c09ed50-32e4-11ea-af9e-d70582a45bda" + } + ], + "gauge_inner_color": null, + "gauge_inner_width": "6", + "gauge_style": "circle", + "gauge_width": "10", + "hide_last_value_indicator": true, + "id": "61fb4190-32e4-11ea-b9f8-4d0b340ad993", + "index_pattern": "metricbeat-*", + "interval": "60m", + "isModelInvalid": false, + "pivot_id": "cloud.instance.name", + "pivot_label": "Resource Name", + "pivot_rows": "30", + "pivot_type": "string", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(251,158,0,1)", + "fill": "1.2", + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "61fb4191-32e4-11ea-b9f8-4d0b340ad993", + "label": "Total Connection Attempts", + "line_width": 2, + "metrics": [ + { + "agg_with": "avg", + "field": "iis.website.network.total_connection_attempts", + "id": "61fb4192-32e4-11ea-b9f8-4d0b340ad993", + "order": "desc", + "order_by": "@timestamp", + "size": 1, + "type": "top_hit" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.website.name", + "terms_order_by": "_count", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Website Total Connection Attempts [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e3ee4990-860e-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/e4d91170-858f-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/e4d91170-858f-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..d4290fd9ecb5 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/e4d91170-858f-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,117 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Webserver Process Memory Usage [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": "0", + "formatter": "bytes", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "Private Bytes", + "line_width": "2", + "metrics": [ + { + "field": "iis.webserver.process.private_bytes", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "everything", + "stacked": "none", + "terms_field": null, + "type": "timeseries", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0", + "formatter": "bytes", + "id": "55ef6fb0-857e-11ea-87b6-db4d36ae5839", + "label": "Virtual Bytes", + "line_width": "2", + "metrics": [ + { + "field": "iis.webserver.process.virtual_bytes", + "id": "55ef6fb1-857e-11ea-87b6-db4d36ae5839", + "type": "avg" + } + ], + "point_size": "0", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(149,0,188,1)", + "fill": "0", + "formatter": "bytes", + "id": "7501b0c0-857e-11ea-87b6-db4d36ae5839", + "label": "Working Set", + "line_width": "2", + "metrics": [ + { + "field": "iis.webserver.process.working_set", + "id": "7501b0c1-857e-11ea-87b6-db4d36ae5839", + "type": "avg" + } + ], + "point_size": "", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Webserver Process Memory Usage [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e4d91170-858f-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:30.134Z", + "version": "WzM5NDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/e6fab5c0-858b-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/e6fab5c0-858b-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..89e2d20f1f50 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/e6fab5c0-858b-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Navigation Webserver Process Overview [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "### IIS\n\n[Webserver](#/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7)| [**Webserver processes**](#/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7) | [Websites](#/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7) | [Application Pools](#/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7) ", + "openLinksInNewTab": false + }, + "title": "Navigation Webserver Process Overview [Metricbeat IIS]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e6fab5c0-858b-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:30.134Z", + "version": "WzM5MzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/f7194cc0-861f-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/f7194cc0-861f-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..8b15f874a995 --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/f7194cc0-861f-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,71 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Application Pool Private Bytes [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "c9fd65d0-32e8-11ea-84f4-e9593f8ba8f6", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#3185FC", + "fill": "0", + "formatter": "bytes", + "id": "c9fd8ce0-32e8-11ea-84f4-e9593f8ba8f6", + "label": "Private Bytes", + "line_width": "2", + "metrics": [ + { + "field": "iis.application_pool.process.private_bytes", + "id": "c9fd8ce1-32e8-11ea-84f4-e9593f8ba8f6", + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_color_mode": "rainbow", + "split_mode": "terms", + "stacked": "none", + "terms_field": "iis.application_pool.name", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Application Pool Private Bytes [Metricbeat IIS]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f7194cc0-861f-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:28.083Z", + "version": "WzM5MTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/f9723710-8602-11ea-91bc-ab084c7ec0e7.json b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/f9723710-8602-11ea-91bc-ab084c7ec0e7.json new file mode 100644 index 000000000000..4da5f3b8537e --- /dev/null +++ b/x-pack/metricbeat/module/iis/_meta/kibana/7/visualization/f9723710-8602-11ea-91bc-ab084c7ec0e7.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Navigation Website Overview [Metricbeat IIS]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "### IIS\n\n[Webserver](#/dashboard/ebc23240-8572-11ea-91bc-ab084c7ec0e7)| [Webserver processes](#/dashboard/2c171500-858b-11ea-91bc-ab084c7ec0e7) | [**Websites**](#/dashboard/4b975820-85a1-11ea-91bc-ab084c7ec0e7) | [Application Pools](#/dashboard/b4108810-861c-11ea-91bc-ab084c7ec0e7) \n\n\n\n", + "openLinksInNewTab": false + }, + "title": "Navigation Website Overview [Metricbeat IIS]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f9723710-8602-11ea-91bc-ab084c7ec0e7", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:31.118Z", + "version": "WzM5NDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/3b88a120-0c7c-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/3b88a120-0c7c-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..dd8c8b602b9f --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/3b88a120-0c7c-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,285 @@ +{ + "attributes": { + "description": "Istio traffic statistics based on metrics collected from istio proxies", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 3, + "i": "fbc3815e-eb3a-46dd-b37a-a61b741b754e", + "w": 10, + "x": 0, + "y": 0 + }, + "panelIndex": "fbc3815e-eb3a-46dd-b37a-a61b741b754e", + "panelRefName": "panel_fbc3815e-eb3a-46dd-b37a-a61b741b754e", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 11, + "i": "1f88dc8b-1c21-40e0-8507-b468643d5507", + "w": 15, + "x": 10, + "y": 0 + }, + "panelIndex": "1f88dc8b-1c21-40e0-8507-b468643d5507", + "panelRefName": "panel_1f88dc8b-1c21-40e0-8507-b468643d5507", + "title": "Number of requests per source", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 11, + "i": "7c7c491b-c55c-4892-a73e-3bfb5af9a610", + "w": 23, + "x": 25, + "y": 0 + }, + "panelIndex": "7c7c491b-c55c-4892-a73e-3bfb5af9a610", + "panelRefName": "panel_7c7c491b-c55c-4892-a73e-3bfb5af9a610", + "title": "Number of requests per destination", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "c87dc307-71f1-4642-8d2a-60066f5ab114", + "w": 10, + "x": 0, + "y": 3 + }, + "panelIndex": "c87dc307-71f1-4642-8d2a-60066f5ab114", + "panelRefName": "panel_c87dc307-71f1-4642-8d2a-60066f5ab114", + "title": "Destination Apps", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 10, + "i": "894e458b-c822-4df1-ae43-aa99d73bfedc", + "w": 12, + "x": 12, + "y": 11 + }, + "panelIndex": "894e458b-c822-4df1-ae43-aa99d73bfedc", + "panelRefName": "panel_894e458b-c822-4df1-ae43-aa99d73bfedc", + "title": "Duration of requests per destination", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 10, + "i": "28d6f60d-1b2c-4688-9cbc-5ebf3d587469", + "w": 12, + "x": 24, + "y": 11 + }, + "panelIndex": "28d6f60d-1b2c-4688-9cbc-5ebf3d587469", + "panelRefName": "panel_28d6f60d-1b2c-4688-9cbc-5ebf3d587469", + "title": "Size of requests per source", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 10, + "i": "1b1f0dcb-613d-4b71-a8a9-e30f79734ede", + "w": 12, + "x": 36, + "y": 11 + }, + "panelIndex": "1b1f0dcb-613d-4b71-a8a9-e30f79734ede", + "panelRefName": "panel_1b1f0dcb-613d-4b71-a8a9-e30f79734ede", + "title": "Size of requests per destination", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 10, + "i": "ae905bb4-456f-4122-8f5c-44a9ced608f1", + "w": 12, + "x": 0, + "y": 11 + }, + "panelIndex": "ae905bb4-456f-4122-8f5c-44a9ced608f1", + "panelRefName": "panel_ae905bb4-456f-4122-8f5c-44a9ced608f1", + "title": "Duration of requests per source", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 10, + "i": "3f4222fc-a243-4141-8787-1dd41d9f1661", + "w": 17, + "x": 12, + "y": 21 + }, + "panelIndex": "3f4222fc-a243-4141-8787-1dd41d9f1661", + "panelRefName": "panel_3f4222fc-a243-4141-8787-1dd41d9f1661", + "title": "Size of response per source", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 10, + "i": "4c498b69-296c-4e30-8a35-1510566ea5ef", + "w": 19, + "x": 29, + "y": 21 + }, + "panelIndex": "4c498b69-296c-4e30-8a35-1510566ea5ef", + "panelRefName": "panel_4c498b69-296c-4e30-8a35-1510566ea5ef", + "title": "Size of response per destination", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 10, + "i": "2a128040-ef73-40a2-8b52-62c8180bcad7", + "w": 12, + "x": 0, + "y": 21 + }, + "panelIndex": "2a128040-ef73-40a2-8b52-62c8180bcad7", + "panelRefName": "panel_2a128040-ef73-40a2-8b52-62c8180bcad7", + "title": "Response Codes", + "type": "visualization", + "version": "7.9.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Istio] Traffic", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "3b88a120-0c7c-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "96c4a5c0-0c7c-11eb-a3fd-1b45ec532bb3", + "name": "fbc3815e-eb3a-46dd-b37a-a61b741b754e:panel_fbc3815e-eb3a-46dd-b37a-a61b741b754e", + "type": "visualization" + }, + { + "id": "e14e3560-0c78-11eb-a3fd-1b45ec532bb3", + "name": "1f88dc8b-1c21-40e0-8507-b468643d5507:panel_1f88dc8b-1c21-40e0-8507-b468643d5507", + "type": "visualization" + }, + { + "id": "c7468af0-0c78-11eb-a3fd-1b45ec532bb3", + "name": "7c7c491b-c55c-4892-a73e-3bfb5af9a610:panel_7c7c491b-c55c-4892-a73e-3bfb5af9a610", + "type": "visualization" + }, + { + "id": "1d076a90-0c7e-11eb-a3fd-1b45ec532bb3", + "name": "c87dc307-71f1-4642-8d2a-60066f5ab114:panel_c87dc307-71f1-4642-8d2a-60066f5ab114", + "type": "visualization" + }, + { + "id": "3ae9b3f0-0c7a-11eb-a3fd-1b45ec532bb3", + "name": "894e458b-c822-4df1-ae43-aa99d73bfedc:panel_894e458b-c822-4df1-ae43-aa99d73bfedc", + "type": "visualization" + }, + { + "id": "60dacbe0-0c79-11eb-a3fd-1b45ec532bb3", + "name": "28d6f60d-1b2c-4688-9cbc-5ebf3d587469:panel_28d6f60d-1b2c-4688-9cbc-5ebf3d587469", + "type": "visualization" + }, + { + "id": "78375380-0c79-11eb-a3fd-1b45ec532bb3", + "name": "1b1f0dcb-613d-4b71-a8a9-e30f79734ede:panel_1b1f0dcb-613d-4b71-a8a9-e30f79734ede", + "type": "visualization" + }, + { + "id": "5fd462f0-0c7a-11eb-a3fd-1b45ec532bb3", + "name": "ae905bb4-456f-4122-8f5c-44a9ced608f1:panel_ae905bb4-456f-4122-8f5c-44a9ced608f1", + "type": "visualization" + }, + { + "id": "b4235550-0c7a-11eb-a3fd-1b45ec532bb3", + "name": "3f4222fc-a243-4141-8787-1dd41d9f1661:panel_3f4222fc-a243-4141-8787-1dd41d9f1661", + "type": "visualization" + }, + { + "id": "8d818070-0c7a-11eb-a3fd-1b45ec532bb3", + "name": "4c498b69-296c-4e30-8a35-1510566ea5ef:panel_4c498b69-296c-4e30-8a35-1510566ea5ef", + "type": "visualization" + }, + { + "id": "09404610-0c7b-11eb-a3fd-1b45ec532bb3", + "name": "2a128040-ef73-40a2-8b52-62c8180bcad7:panel_2a128040-ef73-40a2-8b52-62c8180bcad7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:33.218Z", + "version": "WzM5NzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-overview.ndjson b/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-overview.ndjson deleted file mode 100644 index f26de9402602..000000000000 --- a/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-overview.ndjson +++ /dev/null @@ -1,15 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboards Navigation Overview [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"**Overview** | [Traffic](#/dashboard/3b88a120-0c7c-11eb-a3fd-1b45ec532bb3)\\n\",\"openLinksInNewTab\":false},\"title\":\"Dashboards Navigation Overview [Metricbeat Istio]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"19a8b9c0-0c7f-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjIsMV0="} -{"attributes":{"description":"Total time in seconds Pilot takes to push lds, rds, cds and eds.","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pilot xds Push Time [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"prometheus.labels.type: \\\"rds\\\" OR prometheus.labels.type: \\\"lds\\\" OR prometheus.labels.type: \\\"cds\\\" OR prometheus.labels.type: \\\"eds\\\"\"},\"formatter\":\"s,s,2\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"pilot_xds_push_time\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.pilot_xds_push_time.histogram\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"percentile\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.type\",\"terms_size\":\"20\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Pilot xds Push Time [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b5b3abb0-087c-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjMsMV0="} -{"attributes":{"description":"Pilot build and send errors for lds, rds, cds and eds.","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pilot xds Pushes [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"pilot_xds_pushes\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.pilot_xds_pushes.counter\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"max\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.type\",\"terms_order_by\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"terms_size\":\"4\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Pilot xds Pushes [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f858c200-087e-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjQsMV0="} -{"attributes":{"description":"Total number of updates received by pilot.","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pilot Inbound Updates [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"pilot_inbound_updates\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.pilot_inbound_updates.counter\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"max\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.type\",\"terms_order_by\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"terms_size\":\"10\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Pilot Inbound Updates [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"aa997510-087d-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjUsMV0="} -{"attributes":{"description":"Number of conflicting inbound listeners.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Pilot Conflict Inbound Listener [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Pilot conflict inbound listener\",\"field\":\"prometheus.pilot_conflict_inbound_listener.value\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"gauge\":{\"alignment\":\"automatic\",\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":50},{\"from\":50,\"to\":75},{\"from\":75,\"to\":100}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"rgba(105,112,125,0.2)\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":true,\"bgFill\":\"rgba(105,112,125,0.2)\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Pilot Conflict Inbound Listener [Metricbeat Istio]\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"d62a1e60-0881-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjYsMV0="} -{"attributes":{"description":"Time in seconds, a proxy is in the push queue before being dequeued.","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pilot Proxy Queue Time [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"queue_time\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.pilot_proxy_queue_time.histogram\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"03ef6580-0887-11eb-876a-9d8e5e94d2f5\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"071fe4f0-0887-11eb-876a-9d8e5e94d2f5\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"0b7164c0-0887-11eb-876a-9d8e5e94d2f5\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"90\"},{\"id\":\"0f611580-0887-11eb-876a-9d8e5e94d2f5\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"136f98e0-0887-11eb-876a-9d8e5e94d2f5\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"percentile\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Pilot Proxy Queue Time [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"dd1392f0-07d8-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjcsMV0="} -{"attributes":{"description":"Resource validation failed.","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Galley Validation Failed [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"galley_validation_failed\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.galley_validation_failed.counter\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"max\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.resource\",\"terms_order_by\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"terms_size\":\"10\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Galley Validation Failed [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"98b01f00-087f-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjgsMV0="} -{"attributes":{"description":"Pods not found in the endpoint table, possibly invalid.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Pilot Pods without IP [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Pilot No IP pods\",\"field\":\"prometheus.pilot_no_ip.value\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"gauge\":{\"alignment\":\"automatic\",\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":50},{\"from\":50,\"to\":75},{\"from\":75,\"to\":100}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"rgba(105,112,125,0.2)\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":true,\"bgFill\":\"rgba(105,112,125,0.2)\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Pilot Pods without IP [Metricbeat Istio]\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"4275f710-0882-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjksMV0="} -{"attributes":{"description":"Total virtual services known to pilot.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Pilot Virtual Services [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Pilot Virtual Services\",\"field\":\"prometheus.pilot_virt_services.value\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"gauge\":{\"alignment\":\"automatic\",\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":50},{\"from\":50,\"to\":75},{\"from\":75,\"to\":100}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"rgba(105,112,125,0.2)\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":true,\"bgFill\":\"rgba(105,112,125,0.2)\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Pilot Virtual Services [Metricbeat Istio]\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"96bfe060-0882-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NzAsMV0="} -{"attributes":{"description":"Total services known to pilot.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Pilot Services [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Pilot Services\",\"field\":\"prometheus.pilot_services.value\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"gauge\":{\"alignment\":\"automatic\",\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":50},{\"from\":50,\"to\":75},{\"from\":75,\"to\":100}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"rgba(105,112,125,0.2)\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":true,\"bgFill\":\"rgba(105,112,125,0.2)\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Pilot Services [Metricbeat Istio]\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"6cfbe3f0-0882-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NzEsMV0="} -{"attributes":{"description":"Number of clusters without instances.","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Pilot eds Instances [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Pilot eds instnaces\",\"field\":\"prometheus.pilot_eds_no_instances.value\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"gauge\":{\"alignment\":\"automatic\",\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":50},{\"from\":50,\"to\":75},{\"from\":75,\"to\":100}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":false,\"scale\":{\"color\":\"rgba(105,112,125,0.2)\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":true,\"bgFill\":\"rgba(105,112,125,0.2)\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Pilot eds Instances [Metricbeat Istio]\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"12cdcce0-0882-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NzIsMV0="} -{"attributes":{"description":"The number of certificates issuances that have succeeded.","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Citadel Cert Issuance [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"success_cert_issuance\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.citadel_server_success_cert_issuance_count.counter\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"max\",\"unit\":\"\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.type\",\"terms_order_by\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"terms_size\":\"4\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Citadel Cert Issuance [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"506c8490-087f-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NzMsMV0="} -{"attributes":{"description":"Number of endpoints connected to this pilot using XDS.","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pilot XDS endpoints [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"pilot_xds\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.pilot_xds.value\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Pilot XDS endpoints [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e5f3e870-0882-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NzQsMV0="} -{"attributes":{"description":"Total number of XDS requests with an expired nonce.","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Pilot XDS expired [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"pilot_xds_expired_nonce\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.pilot_xds_expired_nonce.counter\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"avg\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Pilot XDS expired [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0ed17c80-0883-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NzUsMV0="} -{"attributes":{"description":"Overview of the Istiod Service status","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":3,\"i\":\"3ab7d813-a0b5-48b8-9c10-5ac962a4177c\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"3ab7d813-a0b5-48b8-9c10-5ac962a4177c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_3ab7d813-a0b5-48b8-9c10-5ac962a4177c\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"06af11e6-e026-48db-a06b-b34b402b535b\",\"w\":12,\"x\":12,\"y\":0},\"panelIndex\":\"06af11e6-e026-48db-a06b-b34b402b535b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Pilot xds Push Time\",\"panelRefName\":\"panel_06af11e6-e026-48db-a06b-b34b402b535b\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c\",\"w\":11,\"x\":24,\"y\":0},\"panelIndex\":\"d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Pilot xds Pushes\",\"panelRefName\":\"panel_d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"a8e47ef0-03db-419f-890f-0880d674682c\",\"w\":13,\"x\":35,\"y\":0},\"panelIndex\":\"a8e47ef0-03db-419f-890f-0880d674682c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Pilot Inbound Updates\",\"panelRefName\":\"panel_a8e47ef0-03db-419f-890f-0880d674682c\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"0a63d980-8d93-4ce1-b5a1-ab77e589ceec\",\"w\":12,\"x\":0,\"y\":3},\"panelIndex\":\"0a63d980-8d93-4ce1-b5a1-ab77e589ceec\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"title\":\"Pilot Conflict Inbound Listener\",\"panelRefName\":\"panel_0a63d980-8d93-4ce1-b5a1-ab77e589ceec\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"cd1bbc4f-95de-4156-a3ef-c091cf6402c0\",\"w\":12,\"x\":0,\"y\":9},\"panelIndex\":\"cd1bbc4f-95de-4156-a3ef-c091cf6402c0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Pilot Proxy Queue Time\",\"panelRefName\":\"panel_cd1bbc4f-95de-4156-a3ef-c091cf6402c0\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"724f0f9e-2186-4ddd-859c-edb2649b8c0f\",\"w\":12,\"x\":12,\"y\":9},\"panelIndex\":\"724f0f9e-2186-4ddd-859c-edb2649b8c0f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Galley Validation Failed\",\"panelRefName\":\"panel_724f0f9e-2186-4ddd-859c-edb2649b8c0f\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"32eaa989-a4f9-4d31-97cb-684f31488aa8\",\"w\":8,\"x\":24,\"y\":9},\"panelIndex\":\"32eaa989-a4f9-4d31-97cb-684f31488aa8\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"title\":\"Pods witout IP\",\"panelRefName\":\"panel_32eaa989-a4f9-4d31-97cb-684f31488aa8\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"6a8463fe-b7cb-4cd8-bf01-f7ca6a185178\",\"w\":8,\"x\":32,\"y\":9},\"panelIndex\":\"6a8463fe-b7cb-4cd8-bf01-f7ca6a185178\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"title\":\"Pilot Virtual Services\",\"panelRefName\":\"panel_6a8463fe-b7cb-4cd8-bf01-f7ca6a185178\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad\",\"w\":8,\"x\":40,\"y\":9},\"panelIndex\":\"51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"title\":\"Pilot Services\",\"panelRefName\":\"panel_51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"9fbfca4c-37b5-4a1a-924e-49fc9ef2294c\",\"w\":10,\"x\":0,\"y\":18},\"panelIndex\":\"9fbfca4c-37b5-4a1a-924e-49fc9ef2294c\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"title\":\"Pilot eds instances\",\"panelRefName\":\"panel_9fbfca4c-37b5-4a1a-924e-49fc9ef2294c\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"e708abfa-5a95-483c-9bb2-4470ee913f3c\",\"w\":12,\"x\":10,\"y\":18},\"panelIndex\":\"e708abfa-5a95-483c-9bb2-4470ee913f3c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Citadel Cert Issuane\",\"panelRefName\":\"panel_e708abfa-5a95-483c-9bb2-4470ee913f3c\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"d6b2845f-9582-4863-853e-ab753f3d763e\",\"w\":11,\"x\":22,\"y\":18},\"panelIndex\":\"d6b2845f-9582-4863-853e-ab753f3d763e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Pilot xds endpoints\",\"panelRefName\":\"panel_d6b2845f-9582-4863-853e-ab753f3d763e\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"3d0dec37-26c3-490b-a45f-48b6d1baa160\",\"w\":15,\"x\":33,\"y\":18},\"panelIndex\":\"3d0dec37-26c3-490b-a45f-48b6d1baa160\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Pilot xds expired\",\"panelRefName\":\"panel_3d0dec37-26c3-490b-a45f-48b6d1baa160\"}]","timeRestore":false,"title":"[Metricbeat Istio] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"d899d3f0-0883-11eb-a3fd-1b45ec532bb3","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"19a8b9c0-0c7f-11eb-a3fd-1b45ec532bb3","name":"3ab7d813-a0b5-48b8-9c10-5ac962a4177c:panel_3ab7d813-a0b5-48b8-9c10-5ac962a4177c","type":"visualization"},{"id":"b5b3abb0-087c-11eb-a3fd-1b45ec532bb3","name":"06af11e6-e026-48db-a06b-b34b402b535b:panel_06af11e6-e026-48db-a06b-b34b402b535b","type":"visualization"},{"id":"f858c200-087e-11eb-a3fd-1b45ec532bb3","name":"d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c:panel_d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c","type":"visualization"},{"id":"aa997510-087d-11eb-a3fd-1b45ec532bb3","name":"a8e47ef0-03db-419f-890f-0880d674682c:panel_a8e47ef0-03db-419f-890f-0880d674682c","type":"visualization"},{"id":"d62a1e60-0881-11eb-a3fd-1b45ec532bb3","name":"0a63d980-8d93-4ce1-b5a1-ab77e589ceec:panel_0a63d980-8d93-4ce1-b5a1-ab77e589ceec","type":"visualization"},{"id":"dd1392f0-07d8-11eb-a3fd-1b45ec532bb3","name":"cd1bbc4f-95de-4156-a3ef-c091cf6402c0:panel_cd1bbc4f-95de-4156-a3ef-c091cf6402c0","type":"visualization"},{"id":"98b01f00-087f-11eb-a3fd-1b45ec532bb3","name":"724f0f9e-2186-4ddd-859c-edb2649b8c0f:panel_724f0f9e-2186-4ddd-859c-edb2649b8c0f","type":"visualization"},{"id":"4275f710-0882-11eb-a3fd-1b45ec532bb3","name":"32eaa989-a4f9-4d31-97cb-684f31488aa8:panel_32eaa989-a4f9-4d31-97cb-684f31488aa8","type":"visualization"},{"id":"96bfe060-0882-11eb-a3fd-1b45ec532bb3","name":"6a8463fe-b7cb-4cd8-bf01-f7ca6a185178:panel_6a8463fe-b7cb-4cd8-bf01-f7ca6a185178","type":"visualization"},{"id":"6cfbe3f0-0882-11eb-a3fd-1b45ec532bb3","name":"51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad:panel_51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad","type":"visualization"},{"id":"12cdcce0-0882-11eb-a3fd-1b45ec532bb3","name":"9fbfca4c-37b5-4a1a-924e-49fc9ef2294c:panel_9fbfca4c-37b5-4a1a-924e-49fc9ef2294c","type":"visualization"},{"id":"506c8490-087f-11eb-a3fd-1b45ec532bb3","name":"e708abfa-5a95-483c-9bb2-4470ee913f3c:panel_e708abfa-5a95-483c-9bb2-4470ee913f3c","type":"visualization"},{"id":"e5f3e870-0882-11eb-a3fd-1b45ec532bb3","name":"d6b2845f-9582-4863-853e-ab753f3d763e:panel_d6b2845f-9582-4863-853e-ab753f3d763e","type":"visualization"},{"id":"0ed17c80-0883-11eb-a3fd-1b45ec532bb3","name":"3d0dec37-26c3-490b-a45f-48b6d1baa160:panel_3d0dec37-26c3-490b-a45f-48b6d1baa160","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:32.143Z","version":"WzM5NjEsMV0="} diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-traffic.ndjson b/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-traffic.ndjson deleted file mode 100644 index 12e833ae70f9..000000000000 --- a/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/Metricbeat-istio-traffic.ndjson +++ /dev/null @@ -1,12 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboards Navigation Overview Traffic [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Overview](#/dashboard/d899d3f0-0883-11eb-a3fd-1b45ec532bb3) | **Traffic**\",\"openLinksInNewTab\":false},\"title\":\"Dashboards Navigation Overview Traffic [Metricbeat Istio]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"8.0.0","id":"96c4a5c0-0c7c-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5NzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of requests per source [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Number of requests\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_requests_total.rate\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.source_app\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Number of requests per source [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e14e3560-0c78-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5NzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Number of requests per destination [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Number of requests\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_requests_total.rate\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"9f8e3700-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"max\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.destination_app\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Number of requests per destination [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c7468af0-0c78-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5NzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Destination Apps [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"some\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"prometheus.labels.destination_app\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":49,\"minFontSize\":13,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Destination Apps [Metricbeat Istio]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"8.0.0","id":"1d076a90-0c7e-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5ODAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Duration of requests per destination [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"ms,s,2\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Duration of Requests\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_request_duration_milliseconds.histogram\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"257a4bc0-0c79-11eb-a187-45e4454f723b\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"percentile\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.destination_app\",\"terms_size\":\"100\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Duration of requests per destination [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3ae9b3f0-0c7a-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5ODEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Size of requests per source [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Size of Requests\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_request_bytes.histogram\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"257a4bc0-0c79-11eb-a187-45e4454f723b\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"percentile\",\"values\":[\"99\"]}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.source_app\",\"terms_size\":\"100\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Size of requests per source [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"60dacbe0-0c79-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5ODIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Size of requests per destination [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Size of Requests\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_request_bytes.histogram\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"257a4bc0-0c79-11eb-a187-45e4454f723b\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"percentile\",\"values\":[\"99\"]}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.destination_app\",\"terms_size\":\"100\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Size of requests per destination [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"78375380-0c79-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5ODMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Duration of requests per source [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"ms,s,2\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Duration of Requests\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_request_duration_milliseconds.histogram\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"257a4bc0-0c79-11eb-a187-45e4454f723b\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"percentile\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.source_app\",\"terms_size\":\"100\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Duration of requests per source [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5fd462f0-0c7a-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5ODQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Size of response per source [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Size of Responses\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_response_bytes.histogram\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"257a4bc0-0c79-11eb-a187-45e4454f723b\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"percentile_rank\",\"values\":[\"99\"]}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.source_app\",\"terms_size\":\"100\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Size of response per source [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b4235550-0c7a-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5ODUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Size of response per destination [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"bytes\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Size of Responses\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_response_bytes.histogram\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"257a4bc0-0c79-11eb-a187-45e4454f723b\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"percentile\",\"values\":[\"99\"]}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.destination_app\",\"terms_size\":\"100\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"tooltip_mode\":\"show_all\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Size of response per destination [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8d818070-0c7a-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5ODYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Response Codes [Metricbeat Istio]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_min\":0,\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"7ccbe640-07d8-11eb-985d-2f490d4c2901\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#6092C0\",\"fill\":0,\"formatter\":\"number\",\"id\":\"7ccbe641-07d8-11eb-985d-2f490d4c2901\",\"label\":\"Response Codes\",\"line_width\":2,\"metrics\":[{\"field\":\"prometheus.istio_response_bytes.histogram.values\",\"id\":\"7ccbe642-07d8-11eb-985d-2f490d4c2901\",\"percentiles\":[{\"id\":\"88c0d000-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"25\"},{\"id\":\"95c750d0-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"50\"},{\"id\":\"9c5ec900-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"75\"},{\"id\":\"a3581040-07d8-11eb-86d1-6521145f6524\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"95\"},{\"id\":\"257a4bc0-0c79-11eb-a187-45e4454f723b\",\"mode\":\"line\",\"percentile\":\"\",\"shade\":0.2,\"value\":\"99\"}],\"type\":\"count\"}],\"point_size\":0,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"prometheus.labels.response_code\",\"terms_size\":\"100\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Response Codes [Metricbeat Istio]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"09404610-0c7b-11eb-a3fd-1b45ec532bb3","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5ODcsMV0="} -{"attributes":{"description":"Istio traffic statistics based on metrics collected from istio proxies","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":3,\"i\":\"fbc3815e-eb3a-46dd-b37a-a61b741b754e\",\"w\":10,\"x\":0,\"y\":0},\"panelIndex\":\"fbc3815e-eb3a-46dd-b37a-a61b741b754e\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_fbc3815e-eb3a-46dd-b37a-a61b741b754e\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"1f88dc8b-1c21-40e0-8507-b468643d5507\",\"w\":15,\"x\":10,\"y\":0},\"panelIndex\":\"1f88dc8b-1c21-40e0-8507-b468643d5507\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Number of requests per source\",\"panelRefName\":\"panel_1f88dc8b-1c21-40e0-8507-b468643d5507\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"7c7c491b-c55c-4892-a73e-3bfb5af9a610\",\"w\":23,\"x\":25,\"y\":0},\"panelIndex\":\"7c7c491b-c55c-4892-a73e-3bfb5af9a610\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Number of requests per destination\",\"panelRefName\":\"panel_7c7c491b-c55c-4892-a73e-3bfb5af9a610\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"c87dc307-71f1-4642-8d2a-60066f5ab114\",\"w\":10,\"x\":0,\"y\":3},\"panelIndex\":\"c87dc307-71f1-4642-8d2a-60066f5ab114\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Destination Apps\",\"panelRefName\":\"panel_c87dc307-71f1-4642-8d2a-60066f5ab114\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"894e458b-c822-4df1-ae43-aa99d73bfedc\",\"w\":12,\"x\":12,\"y\":11},\"panelIndex\":\"894e458b-c822-4df1-ae43-aa99d73bfedc\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Duration of requests per destination\",\"panelRefName\":\"panel_894e458b-c822-4df1-ae43-aa99d73bfedc\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"28d6f60d-1b2c-4688-9cbc-5ebf3d587469\",\"w\":12,\"x\":24,\"y\":11},\"panelIndex\":\"28d6f60d-1b2c-4688-9cbc-5ebf3d587469\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Size of requests per source\",\"panelRefName\":\"panel_28d6f60d-1b2c-4688-9cbc-5ebf3d587469\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"1b1f0dcb-613d-4b71-a8a9-e30f79734ede\",\"w\":12,\"x\":36,\"y\":11},\"panelIndex\":\"1b1f0dcb-613d-4b71-a8a9-e30f79734ede\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Size of requests per destination\",\"panelRefName\":\"panel_1b1f0dcb-613d-4b71-a8a9-e30f79734ede\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"ae905bb4-456f-4122-8f5c-44a9ced608f1\",\"w\":12,\"x\":0,\"y\":11},\"panelIndex\":\"ae905bb4-456f-4122-8f5c-44a9ced608f1\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Duration of requests per source\",\"panelRefName\":\"panel_ae905bb4-456f-4122-8f5c-44a9ced608f1\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"3f4222fc-a243-4141-8787-1dd41d9f1661\",\"w\":17,\"x\":12,\"y\":21},\"panelIndex\":\"3f4222fc-a243-4141-8787-1dd41d9f1661\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Size of response per source\",\"panelRefName\":\"panel_3f4222fc-a243-4141-8787-1dd41d9f1661\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"4c498b69-296c-4e30-8a35-1510566ea5ef\",\"w\":19,\"x\":29,\"y\":21},\"panelIndex\":\"4c498b69-296c-4e30-8a35-1510566ea5ef\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Size of response per destination\",\"panelRefName\":\"panel_4c498b69-296c-4e30-8a35-1510566ea5ef\"},{\"version\":\"7.9.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"2a128040-ef73-40a2-8b52-62c8180bcad7\",\"w\":12,\"x\":0,\"y\":21},\"panelIndex\":\"2a128040-ef73-40a2-8b52-62c8180bcad7\",\"embeddableConfig\":{\"hidePanelTitles\":false,\"enhancements\":{}},\"title\":\"Response Codes\",\"panelRefName\":\"panel_2a128040-ef73-40a2-8b52-62c8180bcad7\"}]","timeRestore":false,"title":"[Metricbeat Istio] Traffic","version":1},"coreMigrationVersion":"8.0.0","id":"3b88a120-0c7c-11eb-a3fd-1b45ec532bb3","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"96c4a5c0-0c7c-11eb-a3fd-1b45ec532bb3","name":"fbc3815e-eb3a-46dd-b37a-a61b741b754e:panel_fbc3815e-eb3a-46dd-b37a-a61b741b754e","type":"visualization"},{"id":"e14e3560-0c78-11eb-a3fd-1b45ec532bb3","name":"1f88dc8b-1c21-40e0-8507-b468643d5507:panel_1f88dc8b-1c21-40e0-8507-b468643d5507","type":"visualization"},{"id":"c7468af0-0c78-11eb-a3fd-1b45ec532bb3","name":"7c7c491b-c55c-4892-a73e-3bfb5af9a610:panel_7c7c491b-c55c-4892-a73e-3bfb5af9a610","type":"visualization"},{"id":"1d076a90-0c7e-11eb-a3fd-1b45ec532bb3","name":"c87dc307-71f1-4642-8d2a-60066f5ab114:panel_c87dc307-71f1-4642-8d2a-60066f5ab114","type":"visualization"},{"id":"3ae9b3f0-0c7a-11eb-a3fd-1b45ec532bb3","name":"894e458b-c822-4df1-ae43-aa99d73bfedc:panel_894e458b-c822-4df1-ae43-aa99d73bfedc","type":"visualization"},{"id":"60dacbe0-0c79-11eb-a3fd-1b45ec532bb3","name":"28d6f60d-1b2c-4688-9cbc-5ebf3d587469:panel_28d6f60d-1b2c-4688-9cbc-5ebf3d587469","type":"visualization"},{"id":"78375380-0c79-11eb-a3fd-1b45ec532bb3","name":"1b1f0dcb-613d-4b71-a8a9-e30f79734ede:panel_1b1f0dcb-613d-4b71-a8a9-e30f79734ede","type":"visualization"},{"id":"5fd462f0-0c7a-11eb-a3fd-1b45ec532bb3","name":"ae905bb4-456f-4122-8f5c-44a9ced608f1:panel_ae905bb4-456f-4122-8f5c-44a9ced608f1","type":"visualization"},{"id":"b4235550-0c7a-11eb-a3fd-1b45ec532bb3","name":"3f4222fc-a243-4141-8787-1dd41d9f1661:panel_3f4222fc-a243-4141-8787-1dd41d9f1661","type":"visualization"},{"id":"8d818070-0c7a-11eb-a3fd-1b45ec532bb3","name":"4c498b69-296c-4e30-8a35-1510566ea5ef:panel_4c498b69-296c-4e30-8a35-1510566ea5ef","type":"visualization"},{"id":"09404610-0c7b-11eb-a3fd-1b45ec532bb3","name":"2a128040-ef73-40a2-8b52-62c8180bcad7:panel_2a128040-ef73-40a2-8b52-62c8180bcad7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:33.218Z","version":"WzM5NzYsMV0="} diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/d899d3f0-0883-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/d899d3f0-0883-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..317e3dce6609 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/dashboard/d899d3f0-0883-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,347 @@ +{ + "attributes": { + "description": "Overview of the Istiod Service status", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 3, + "i": "3ab7d813-a0b5-48b8-9c10-5ac962a4177c", + "w": 12, + "x": 0, + "y": 0 + }, + "panelIndex": "3ab7d813-a0b5-48b8-9c10-5ac962a4177c", + "panelRefName": "panel_3ab7d813-a0b5-48b8-9c10-5ac962a4177c", + "title": "", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "06af11e6-e026-48db-a06b-b34b402b535b", + "w": 12, + "x": 12, + "y": 0 + }, + "panelIndex": "06af11e6-e026-48db-a06b-b34b402b535b", + "panelRefName": "panel_06af11e6-e026-48db-a06b-b34b402b535b", + "title": "Pilot xds Push Time", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c", + "w": 11, + "x": 24, + "y": 0 + }, + "panelIndex": "d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c", + "panelRefName": "panel_d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c", + "title": "Pilot xds Pushes", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "a8e47ef0-03db-419f-890f-0880d674682c", + "w": 13, + "x": 35, + "y": 0 + }, + "panelIndex": "a8e47ef0-03db-419f-890f-0880d674682c", + "panelRefName": "panel_a8e47ef0-03db-419f-890f-0880d674682c", + "title": "Pilot Inbound Updates", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": null + }, + "gridData": { + "h": 6, + "i": "0a63d980-8d93-4ce1-b5a1-ab77e589ceec", + "w": 12, + "x": 0, + "y": 3 + }, + "panelIndex": "0a63d980-8d93-4ce1-b5a1-ab77e589ceec", + "panelRefName": "panel_0a63d980-8d93-4ce1-b5a1-ab77e589ceec", + "title": "Pilot Conflict Inbound Listener", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "cd1bbc4f-95de-4156-a3ef-c091cf6402c0", + "w": 12, + "x": 0, + "y": 9 + }, + "panelIndex": "cd1bbc4f-95de-4156-a3ef-c091cf6402c0", + "panelRefName": "panel_cd1bbc4f-95de-4156-a3ef-c091cf6402c0", + "title": "Pilot Proxy Queue Time", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "724f0f9e-2186-4ddd-859c-edb2649b8c0f", + "w": 12, + "x": 12, + "y": 9 + }, + "panelIndex": "724f0f9e-2186-4ddd-859c-edb2649b8c0f", + "panelRefName": "panel_724f0f9e-2186-4ddd-859c-edb2649b8c0f", + "title": "Galley Validation Failed", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": null + }, + "gridData": { + "h": 9, + "i": "32eaa989-a4f9-4d31-97cb-684f31488aa8", + "w": 8, + "x": 24, + "y": 9 + }, + "panelIndex": "32eaa989-a4f9-4d31-97cb-684f31488aa8", + "panelRefName": "panel_32eaa989-a4f9-4d31-97cb-684f31488aa8", + "title": "Pods witout IP", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": null + }, + "gridData": { + "h": 9, + "i": "6a8463fe-b7cb-4cd8-bf01-f7ca6a185178", + "w": 8, + "x": 32, + "y": 9 + }, + "panelIndex": "6a8463fe-b7cb-4cd8-bf01-f7ca6a185178", + "panelRefName": "panel_6a8463fe-b7cb-4cd8-bf01-f7ca6a185178", + "title": "Pilot Virtual Services", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": null + }, + "gridData": { + "h": 9, + "i": "51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad", + "w": 8, + "x": 40, + "y": 9 + }, + "panelIndex": "51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad", + "panelRefName": "panel_51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad", + "title": "Pilot Services", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": null + }, + "gridData": { + "h": 9, + "i": "9fbfca4c-37b5-4a1a-924e-49fc9ef2294c", + "w": 10, + "x": 0, + "y": 18 + }, + "panelIndex": "9fbfca4c-37b5-4a1a-924e-49fc9ef2294c", + "panelRefName": "panel_9fbfca4c-37b5-4a1a-924e-49fc9ef2294c", + "title": "Pilot eds instances", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "e708abfa-5a95-483c-9bb2-4470ee913f3c", + "w": 12, + "x": 10, + "y": 18 + }, + "panelIndex": "e708abfa-5a95-483c-9bb2-4470ee913f3c", + "panelRefName": "panel_e708abfa-5a95-483c-9bb2-4470ee913f3c", + "title": "Citadel Cert Issuane", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "d6b2845f-9582-4863-853e-ab753f3d763e", + "w": 11, + "x": 22, + "y": 18 + }, + "panelIndex": "d6b2845f-9582-4863-853e-ab753f3d763e", + "panelRefName": "panel_d6b2845f-9582-4863-853e-ab753f3d763e", + "title": "Pilot xds endpoints", + "type": "visualization", + "version": "7.9.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "3d0dec37-26c3-490b-a45f-48b6d1baa160", + "w": 15, + "x": 33, + "y": 18 + }, + "panelIndex": "3d0dec37-26c3-490b-a45f-48b6d1baa160", + "panelRefName": "panel_3d0dec37-26c3-490b-a45f-48b6d1baa160", + "title": "Pilot xds expired", + "type": "visualization", + "version": "7.9.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Istio] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "d899d3f0-0883-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "19a8b9c0-0c7f-11eb-a3fd-1b45ec532bb3", + "name": "3ab7d813-a0b5-48b8-9c10-5ac962a4177c:panel_3ab7d813-a0b5-48b8-9c10-5ac962a4177c", + "type": "visualization" + }, + { + "id": "b5b3abb0-087c-11eb-a3fd-1b45ec532bb3", + "name": "06af11e6-e026-48db-a06b-b34b402b535b:panel_06af11e6-e026-48db-a06b-b34b402b535b", + "type": "visualization" + }, + { + "id": "f858c200-087e-11eb-a3fd-1b45ec532bb3", + "name": "d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c:panel_d9a49bf0-f88b-4d4f-a1e2-74fbd482f77c", + "type": "visualization" + }, + { + "id": "aa997510-087d-11eb-a3fd-1b45ec532bb3", + "name": "a8e47ef0-03db-419f-890f-0880d674682c:panel_a8e47ef0-03db-419f-890f-0880d674682c", + "type": "visualization" + }, + { + "id": "d62a1e60-0881-11eb-a3fd-1b45ec532bb3", + "name": "0a63d980-8d93-4ce1-b5a1-ab77e589ceec:panel_0a63d980-8d93-4ce1-b5a1-ab77e589ceec", + "type": "visualization" + }, + { + "id": "dd1392f0-07d8-11eb-a3fd-1b45ec532bb3", + "name": "cd1bbc4f-95de-4156-a3ef-c091cf6402c0:panel_cd1bbc4f-95de-4156-a3ef-c091cf6402c0", + "type": "visualization" + }, + { + "id": "98b01f00-087f-11eb-a3fd-1b45ec532bb3", + "name": "724f0f9e-2186-4ddd-859c-edb2649b8c0f:panel_724f0f9e-2186-4ddd-859c-edb2649b8c0f", + "type": "visualization" + }, + { + "id": "4275f710-0882-11eb-a3fd-1b45ec532bb3", + "name": "32eaa989-a4f9-4d31-97cb-684f31488aa8:panel_32eaa989-a4f9-4d31-97cb-684f31488aa8", + "type": "visualization" + }, + { + "id": "96bfe060-0882-11eb-a3fd-1b45ec532bb3", + "name": "6a8463fe-b7cb-4cd8-bf01-f7ca6a185178:panel_6a8463fe-b7cb-4cd8-bf01-f7ca6a185178", + "type": "visualization" + }, + { + "id": "6cfbe3f0-0882-11eb-a3fd-1b45ec532bb3", + "name": "51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad:panel_51ecc2f8-3c3f-4a80-b4b6-b52db10e68ad", + "type": "visualization" + }, + { + "id": "12cdcce0-0882-11eb-a3fd-1b45ec532bb3", + "name": "9fbfca4c-37b5-4a1a-924e-49fc9ef2294c:panel_9fbfca4c-37b5-4a1a-924e-49fc9ef2294c", + "type": "visualization" + }, + { + "id": "506c8490-087f-11eb-a3fd-1b45ec532bb3", + "name": "e708abfa-5a95-483c-9bb2-4470ee913f3c:panel_e708abfa-5a95-483c-9bb2-4470ee913f3c", + "type": "visualization" + }, + { + "id": "e5f3e870-0882-11eb-a3fd-1b45ec532bb3", + "name": "d6b2845f-9582-4863-853e-ab753f3d763e:panel_d6b2845f-9582-4863-853e-ab753f3d763e", + "type": "visualization" + }, + { + "id": "0ed17c80-0883-11eb-a3fd-1b45ec532bb3", + "name": "3d0dec37-26c3-490b-a45f-48b6d1baa160:panel_3d0dec37-26c3-490b-a45f-48b6d1baa160", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:32.143Z", + "version": "WzM5NjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/09404610-0c7b-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/09404610-0c7b-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..a2fae998ea59 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/09404610-0c7b-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Response Codes [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "number", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "Response Codes", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.istio_response_bytes.histogram.values", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "88c0d000-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "25" + }, + { + "id": "95c750d0-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "50" + }, + { + "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "75" + }, + { + "id": "a3581040-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "95" + }, + { + "id": "257a4bc0-0c79-11eb-a187-45e4454f723b", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "count" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.response_code", + "terms_size": "100", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Response Codes [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "09404610-0c7b-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:33.218Z", + "version": "WzM5ODcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/0ed17c80-0883-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/0ed17c80-0883-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..4e6edfd6fc66 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/0ed17c80-0883-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,106 @@ +{ + "attributes": { + "description": "Total number of XDS requests with an expired nonce.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Pilot XDS expired [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "number", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "pilot_xds_expired_nonce", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.pilot_xds_expired_nonce.counter", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "88c0d000-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "50" + }, + { + "id": "95c750d0-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "25" + }, + { + "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "75" + }, + { + "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "95" + }, + { + "id": "a3581040-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Pilot XDS expired [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0ed17c80-0883-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:32.143Z", + "version": "WzM5NzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/12cdcce0-0882-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/12cdcce0-0882-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..ff09392a36b0 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/12cdcce0-0882-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "Number of clusters without instances.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Pilot eds Instances [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Pilot eds instnaces", + "field": "prometheus.pilot_eds_no_instances.value" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "gauge": { + "alignment": "automatic", + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 50 + }, + { + "from": 50, + "to": 75 + }, + { + "from": 75, + "to": 100 + } + ], + "extendRange": true, + "gaugeColorMode": "Labels", + "gaugeStyle": "Full", + "gaugeType": "Arc", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "rgba(105,112,125,0.2)", + "labels": false, + "show": true + }, + "style": { + "bgColor": true, + "bgFill": "rgba(105,112,125,0.2)", + "bgMask": false, + "bgWidth": 0.9, + "fontSize": 60, + "mask": false, + "maskBars": 50, + "subText": "", + "width": 0.9 + }, + "type": "meter" + }, + "isDisplayWarning": false, + "type": "gauge" + }, + "title": "Pilot eds Instances [Metricbeat Istio]", + "type": "gauge" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "12cdcce0-0882-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:32.143Z", + "version": "WzM5NzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/19a8b9c0-0c7f-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/19a8b9c0-0c7f-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..d1b9a837acb8 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/19a8b9c0-0c7f-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Dashboards Navigation Overview [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "**Overview** | [Traffic](#/dashboard/3b88a120-0c7c-11eb-a3fd-1b45ec532bb3)\n", + "openLinksInNewTab": false + }, + "title": "Dashboards Navigation Overview [Metricbeat Istio]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "19a8b9c0-0c7f-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:32.143Z", + "version": "WzM5NjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/1d076a90-0c7e-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/1d076a90-0c7e-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..f263ab9bfd1a --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/1d076a90-0c7e-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,75 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Destination Apps [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "some" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "prometheus.labels.destination_app", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 25 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "maxFontSize": 49, + "minFontSize": 13, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": false + }, + "title": "Destination Apps [Metricbeat Istio]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1d076a90-0c7e-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:33.218Z", + "version": "WzM5ODAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/3ae9b3f0-0c7a-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/3ae9b3f0-0c7a-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..6dae14ae5f97 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/3ae9b3f0-0c7a-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,81 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Duration of requests per destination [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "ms,s,2", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "Duration of Requests", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.istio_request_duration_milliseconds.histogram", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "257a4bc0-0c79-11eb-a187-45e4454f723b", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "percentile" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.destination_app", + "terms_size": "100", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Duration of requests per destination [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3ae9b3f0-0c7a-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:33.218Z", + "version": "WzM5ODEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/4275f710-0882-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/4275f710-0882-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..f2d84e75b6cb --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/4275f710-0882-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "Pods not found in the endpoint table, possibly invalid.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Pilot Pods without IP [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Pilot No IP pods", + "field": "prometheus.pilot_no_ip.value" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "gauge": { + "alignment": "automatic", + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 50 + }, + { + "from": 50, + "to": 75 + }, + { + "from": 75, + "to": 100 + } + ], + "extendRange": true, + "gaugeColorMode": "Labels", + "gaugeStyle": "Full", + "gaugeType": "Arc", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "rgba(105,112,125,0.2)", + "labels": false, + "show": true + }, + "style": { + "bgColor": true, + "bgFill": "rgba(105,112,125,0.2)", + "bgMask": false, + "bgWidth": 0.9, + "fontSize": 60, + "mask": false, + "maskBars": 50, + "subText": "", + "width": 0.9 + }, + "type": "meter" + }, + "isDisplayWarning": false, + "type": "gauge" + }, + "title": "Pilot Pods without IP [Metricbeat Istio]", + "type": "gauge" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4275f710-0882-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:32.143Z", + "version": "WzM5NjksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/506c8490-087f-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/506c8490-087f-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..a1843d6a7619 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/506c8490-087f-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,114 @@ +{ + "attributes": { + "description": "The number of certificates issuances that have succeeded.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Citadel Cert Issuance [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "success_cert_issuance", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.citadel_server_success_cert_issuance_count.counter", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "88c0d000-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "50" + }, + { + "id": "95c750d0-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "25" + }, + { + "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "75" + }, + { + "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "95" + }, + { + "id": "a3581040-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "max", + "unit": "" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "everything", + "stacked": "none", + "terms_field": "prometheus.labels.type", + "terms_order_by": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "terms_size": "4", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Citadel Cert Issuance [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "506c8490-087f-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:32.143Z", + "version": "WzM5NzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/5fd462f0-0c7a-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/5fd462f0-0c7a-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..ab6537b915a8 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/5fd462f0-0c7a-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,81 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Duration of requests per source [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "ms,s,2", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "Duration of Requests", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.istio_request_duration_milliseconds.histogram", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "257a4bc0-0c79-11eb-a187-45e4454f723b", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "percentile" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.source_app", + "terms_size": "100", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Duration of requests per source [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5fd462f0-0c7a-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:33.218Z", + "version": "WzM5ODQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/60dacbe0-0c79-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/60dacbe0-0c79-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..dc4a02a10038 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/60dacbe0-0c79-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Size of requests per source [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "bytes", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "Size of Requests", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.istio_request_bytes.histogram", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "257a4bc0-0c79-11eb-a187-45e4454f723b", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "percentile", + "values": [ + "99" + ] + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.source_app", + "terms_size": "100", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Size of requests per source [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "60dacbe0-0c79-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:33.218Z", + "version": "WzM5ODIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/6cfbe3f0-0882-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/6cfbe3f0-0882-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..a46cbabb9dcf --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/6cfbe3f0-0882-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "Total services known to pilot.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Pilot Services [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Pilot Services", + "field": "prometheus.pilot_services.value" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "gauge": { + "alignment": "automatic", + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 50 + }, + { + "from": 50, + "to": 75 + }, + { + "from": 75, + "to": 100 + } + ], + "extendRange": true, + "gaugeColorMode": "Labels", + "gaugeStyle": "Full", + "gaugeType": "Arc", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "rgba(105,112,125,0.2)", + "labels": false, + "show": true + }, + "style": { + "bgColor": true, + "bgFill": "rgba(105,112,125,0.2)", + "bgMask": false, + "bgWidth": 0.9, + "fontSize": 60, + "mask": false, + "maskBars": 50, + "subText": "", + "width": 0.9 + }, + "type": "meter" + }, + "isDisplayWarning": false, + "type": "gauge" + }, + "title": "Pilot Services [Metricbeat Istio]", + "type": "gauge" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6cfbe3f0-0882-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:32.143Z", + "version": "WzM5NzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/78375380-0c79-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/78375380-0c79-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..b4c3c90af4b8 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/78375380-0c79-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Size of requests per destination [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "bytes", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "Size of Requests", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.istio_request_bytes.histogram", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "257a4bc0-0c79-11eb-a187-45e4454f723b", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "percentile", + "values": [ + "99" + ] + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.destination_app", + "terms_size": "100", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Size of requests per destination [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "78375380-0c79-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:33.218Z", + "version": "WzM5ODMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/8d818070-0c7a-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/8d818070-0c7a-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..096f0e0a430a --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/8d818070-0c7a-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Size of response per destination [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "bytes", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "Size of Responses", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.istio_response_bytes.histogram", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "257a4bc0-0c79-11eb-a187-45e4454f723b", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "percentile", + "values": [ + "99" + ] + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.destination_app", + "terms_size": "100", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Size of response per destination [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8d818070-0c7a-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:33.218Z", + "version": "WzM5ODYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/96bfe060-0882-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/96bfe060-0882-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..0a8dc2c9a10d --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/96bfe060-0882-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "Total virtual services known to pilot.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Pilot Virtual Services [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Pilot Virtual Services", + "field": "prometheus.pilot_virt_services.value" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "gauge": { + "alignment": "automatic", + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 50 + }, + { + "from": 50, + "to": 75 + }, + { + "from": 75, + "to": 100 + } + ], + "extendRange": true, + "gaugeColorMode": "Labels", + "gaugeStyle": "Full", + "gaugeType": "Arc", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "rgba(105,112,125,0.2)", + "labels": false, + "show": true + }, + "style": { + "bgColor": true, + "bgFill": "rgba(105,112,125,0.2)", + "bgMask": false, + "bgWidth": 0.9, + "fontSize": 60, + "mask": false, + "maskBars": 50, + "subText": "", + "width": 0.9 + }, + "type": "meter" + }, + "isDisplayWarning": false, + "type": "gauge" + }, + "title": "Pilot Virtual Services [Metricbeat Istio]", + "type": "gauge" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "96bfe060-0882-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:32.143Z", + "version": "WzM5NzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/96c4a5c0-0c7c-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/96c4a5c0-0c7c-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..2a439b0fa3d1 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/96c4a5c0-0c7c-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Dashboards Navigation Overview Traffic [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "[Overview](#/dashboard/d899d3f0-0883-11eb-a3fd-1b45ec532bb3) | **Traffic**", + "openLinksInNewTab": false + }, + "title": "Dashboards Navigation Overview Traffic [Metricbeat Istio]", + "type": "markdown" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "96c4a5c0-0c7c-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:33.218Z", + "version": "WzM5NzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/98b01f00-087f-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/98b01f00-087f-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..c66c7e249418 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/98b01f00-087f-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,114 @@ +{ + "attributes": { + "description": "Resource validation failed.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Galley Validation Failed [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "galley_validation_failed", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.galley_validation_failed.counter", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "88c0d000-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "50" + }, + { + "id": "95c750d0-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "25" + }, + { + "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "75" + }, + { + "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "95" + }, + { + "id": "a3581040-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "max", + "unit": "" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.resource", + "terms_order_by": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "terms_size": "10", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Galley Validation Failed [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "98b01f00-087f-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:32.143Z", + "version": "WzM5NjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/aa997510-087d-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/aa997510-087d-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..3b42d1d40c1d --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/aa997510-087d-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,114 @@ +{ + "attributes": { + "description": "Total number of updates received by pilot.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Pilot Inbound Updates [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "pilot_inbound_updates", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.pilot_inbound_updates.counter", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "88c0d000-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "50" + }, + { + "id": "95c750d0-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "25" + }, + { + "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "75" + }, + { + "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "95" + }, + { + "id": "a3581040-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "max", + "unit": "" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.type", + "terms_order_by": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "terms_size": "10", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Pilot Inbound Updates [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "aa997510-087d-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:32.143Z", + "version": "WzM5NjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/b4235550-0c7a-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/b4235550-0c7a-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..e3a6d1d33aac --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/b4235550-0c7a-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Size of response per source [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "bytes", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "Size of Responses", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.istio_response_bytes.histogram", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "257a4bc0-0c79-11eb-a187-45e4454f723b", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "percentile_rank", + "values": [ + "99" + ] + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.source_app", + "terms_size": "100", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Size of response per source [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b4235550-0c7a-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:33.218Z", + "version": "WzM5ODUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/b5b3abb0-087c-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/b5b3abb0-087c-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..c8c214515a82 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/b5b3abb0-087c-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,113 @@ +{ + "attributes": { + "description": "Total time in seconds Pilot takes to push lds, rds, cds and eds.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Pilot xds Push Time [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "filter": { + "language": "kuery", + "query": "prometheus.labels.type: \"rds\" OR prometheus.labels.type: \"lds\" OR prometheus.labels.type: \"cds\" OR prometheus.labels.type: \"eds\"" + }, + "formatter": "s,s,2", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "pilot_xds_push_time", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.pilot_xds_push_time.histogram", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "88c0d000-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "25" + }, + { + "id": "95c750d0-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "50" + }, + { + "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "75" + }, + { + "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "95" + }, + { + "id": "a3581040-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "percentile" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.type", + "terms_size": "20", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Pilot xds Push Time [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b5b3abb0-087c-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:32.143Z", + "version": "WzM5NjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/c7468af0-0c78-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/c7468af0-0c78-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..2af8df0cf540 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/c7468af0-0c78-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Number of requests per destination [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "number", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "Number of requests", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.istio_requests_total.rate", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "88c0d000-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "50" + }, + { + "id": "95c750d0-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "25" + }, + { + "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "75" + }, + { + "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "95" + }, + { + "id": "a3581040-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.destination_app", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Number of requests per destination [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c7468af0-0c78-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:33.218Z", + "version": "WzM5NzksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/d62a1e60-0881-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/d62a1e60-0881-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..e0737a7be555 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/d62a1e60-0881-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "Number of conflicting inbound listeners.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Pilot Conflict Inbound Listener [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Pilot conflict inbound listener", + "field": "prometheus.pilot_conflict_inbound_listener.value" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "gauge": { + "alignment": "automatic", + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 50 + }, + { + "from": 50, + "to": 75 + }, + { + "from": 75, + "to": 100 + } + ], + "extendRange": true, + "gaugeColorMode": "Labels", + "gaugeStyle": "Full", + "gaugeType": "Arc", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": false, + "scale": { + "color": "rgba(105,112,125,0.2)", + "labels": false, + "show": true + }, + "style": { + "bgColor": true, + "bgFill": "rgba(105,112,125,0.2)", + "bgMask": false, + "bgWidth": 0.9, + "fontSize": 60, + "mask": false, + "maskBars": 50, + "subText": "", + "width": 0.9 + }, + "type": "meter" + }, + "isDisplayWarning": false, + "type": "gauge" + }, + "title": "Pilot Conflict Inbound Listener [Metricbeat Istio]", + "type": "gauge" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "d62a1e60-0881-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:32.143Z", + "version": "WzM5NjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/dd1392f0-07d8-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/dd1392f0-07d8-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..fabfe85de3d1 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/dd1392f0-07d8-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,114 @@ +{ + "attributes": { + "description": "Time in seconds, a proxy is in the push queue before being dequeued.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Pilot Proxy Queue Time [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "number", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "queue_time", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.pilot_proxy_queue_time.histogram", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "88c0d000-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "25" + }, + { + "id": "03ef6580-0887-11eb-876a-9d8e5e94d2f5", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "50" + }, + { + "id": "071fe4f0-0887-11eb-876a-9d8e5e94d2f5", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "75" + }, + { + "id": "0b7164c0-0887-11eb-876a-9d8e5e94d2f5", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "90" + }, + { + "id": "0f611580-0887-11eb-876a-9d8e5e94d2f5", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "95" + }, + { + "id": "136f98e0-0887-11eb-876a-9d8e5e94d2f5", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "percentile" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "tooltip_mode": "show_all", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Pilot Proxy Queue Time [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "dd1392f0-07d8-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:32.143Z", + "version": "WzM5NjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/e14e3560-0c78-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/e14e3560-0c78-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..70b089848593 --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/e14e3560-0c78-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Number of requests per source [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "number", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "Number of requests", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.istio_requests_total.rate", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "88c0d000-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "50" + }, + { + "id": "95c750d0-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "25" + }, + { + "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "75" + }, + { + "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "95" + }, + { + "id": "a3581040-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "max" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.source_app", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Number of requests per source [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e14e3560-0c78-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:33.218Z", + "version": "WzM5NzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/e5f3e870-0882-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/e5f3e870-0882-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..6f28a584237c --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/e5f3e870-0882-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,106 @@ +{ + "attributes": { + "description": "Number of endpoints connected to this pilot using XDS.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Pilot XDS endpoints [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "formatter": "number", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "pilot_xds", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.pilot_xds.value", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "88c0d000-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "50" + }, + { + "id": "95c750d0-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "25" + }, + { + "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "75" + }, + { + "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "95" + }, + { + "id": "a3581040-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "avg" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "everything", + "stacked": "none", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Pilot XDS endpoints [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e5f3e870-0882-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:32.143Z", + "version": "WzM5NzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/f858c200-087e-11eb-a3fd-1b45ec532bb3.json b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/f858c200-087e-11eb-a3fd-1b45ec532bb3.json new file mode 100644 index 000000000000..9761db5db82b --- /dev/null +++ b/x-pack/metricbeat/module/istio/_meta/kibana/7/visualization/f858c200-087e-11eb-a3fd-1b45ec532bb3.json @@ -0,0 +1,114 @@ +{ + "attributes": { + "description": "Pilot build and send errors for lds, rds, cds and eds.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Pilot xds Pushes [Metricbeat Istio]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_min": 0, + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "7ccbe640-07d8-11eb-985d-2f490d4c2901", + "index_pattern": "metricbeat-*", + "interval": "auto", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#6092C0", + "fill": 0, + "filter": { + "language": "kuery", + "query": "" + }, + "formatter": "number", + "id": "7ccbe641-07d8-11eb-985d-2f490d4c2901", + "label": "pilot_xds_pushes", + "line_width": 2, + "metrics": [ + { + "field": "prometheus.pilot_xds_pushes.counter", + "id": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "percentiles": [ + { + "id": "88c0d000-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "50" + }, + { + "id": "95c750d0-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "25" + }, + { + "id": "9c5ec900-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "75" + }, + { + "id": "9f8e3700-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "95" + }, + { + "id": "a3581040-07d8-11eb-86d1-6521145f6524", + "mode": "line", + "percentile": "", + "shade": 0.2, + "value": "99" + } + ], + "type": "max", + "unit": "" + } + ], + "point_size": 0, + "separate_axis": 0, + "split_mode": "terms", + "stacked": "none", + "terms_field": "prometheus.labels.type", + "terms_order_by": "7ccbe642-07d8-11eb-985d-2f490d4c2901", + "terms_size": "4", + "type": "timeseries", + "value_template": "{{value}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Pilot xds Pushes [Metricbeat Istio]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f858c200-087e-11eb-a3fd-1b45ec532bb3", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:32.143Z", + "version": "WzM5NjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/18d66970-1fb4-11e9-8a4d-eb34d2834f6b-ecs.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/18d66970-1fb4-11e9-8a4d-eb34d2834f6b-ecs.json new file mode 100644 index 000000000000..8cd80bcab77a --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/18d66970-1fb4-11e9-8a4d-eb34d2834f6b-ecs.json @@ -0,0 +1,202 @@ +{ + "attributes": { + "description": "An overview of the transaction log of each database in a MSSQL instance", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "1", + "w": 24, + "x": 0, + "y": 12 + }, + "panelIndex": "1", + "panelRefName": "panel_0", + "title": "Recovery size of transaction log", + "version": "7.0.0-alpha2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "2", + "w": 24, + "x": 24, + "y": 24 + }, + "panelIndex": "2", + "panelRefName": "panel_1", + "title": "Transaction log size since last checkpoint", + "version": "7.0.0-alpha2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "3", + "w": 18, + "x": 30, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_2", + "title": "Percentage of used space of transaction log", + "version": "7.0.0-alpha2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "4", + "w": 24, + "x": 0, + "y": 37 + }, + "panelIndex": "4", + "panelRefName": "panel_3", + "title": "Log space size since last backup", + "version": "7.0.0-alpha2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "5", + "w": 24, + "x": 0, + "y": 24 + }, + "panelIndex": "5", + "panelRefName": "panel_4", + "title": "Active size of transaction log", + "version": "7.0.0-alpha2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "6", + "w": 24, + "x": 24, + "y": 12 + }, + "panelIndex": "6", + "panelRefName": "panel_5", + "title": "Used space of transaction log", + "version": "7.0.0-alpha2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "7", + "w": 18, + "x": 12, + "y": 0 + }, + "panelIndex": "7", + "panelRefName": "panel_6", + "title": "Total log space usage", + "version": "7.0.0-alpha2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "8", + "w": 12, + "x": 0, + "y": 0 + }, + "panelIndex": "8", + "panelRefName": "panel_7", + "version": "7.0.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Metricbeat MSSQL] Transaction log ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "18d66970-1fb4-11e9-8a4d-eb34d2834f6b-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "e9654a40-1fb2-11e9-8a4d-eb34d2834f6b-ecs", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "1757d530-1fb3-11e9-8a4d-eb34d2834f6b-ecs", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "a55bb000-1fb2-11e9-8a4d-eb34d2834f6b-ecs", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "edb7a0c0-1f2b-11e9-8a4d-eb34d2834f6b-ecs", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "c9ead180-1fb2-11e9-8a4d-eb34d2834f6b-ecs", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "68fa61b0-1fb2-11e9-8a4d-eb34d2834f6b-ecs", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "6710ff20-1f2c-11e9-8a4d-eb34d2834f6b-ecs", + "name": "panel_6", + "type": "visualization" + }, + { + "id": "82bf9480-260b-11e9-a46a-471d2a76b305-ecs", + "name": "panel_7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:42.500Z", + "version": "WzQwNjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-performance.ndjson b/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-performance.ndjson deleted file mode 100644 index b34c9bcf20c5..000000000000 --- a/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-performance.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"User Connections [Metricbeat MSSQL] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\",\"field\":\"mssql.performance.user_connections\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":true,\"style\":{\"color\":\"#eee\"},\"valueAxis\":\"ValueAxis-1\"},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Average mssql.performance.user_connections\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"User Connections [Metricbeat MSSQL] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"7784db10-18ba-11e9-9836-f37dedd3b411-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:41.416Z","version":"WzQwNTMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Transactions [Metricbeat MSSQL] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\",\"field\":\"mssql.performance.transactions\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":true,\"style\":{\"color\":\"#eee\"},\"valueAxis\":\"ValueAxis-1\"},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Average mssql.performance.transactions\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Transactions [Metricbeat MSSQL] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"910f3f30-18ba-11e9-9836-f37dedd3b411-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:41.416Z","version":"WzQwNTQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Lock Waits/sec [Metricbeat MSSQL] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\",\"field\":\"mssql.performance.lock_waits_per_sec\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":true,\"style\":{\"color\":\"#eee\"},\"valueAxis\":\"ValueAxis-1\"},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Average mssql.performance.lock_waits_per_sec\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Lock Waits/sec [Metricbeat MSSQL] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"5bd5c230-18ba-11e9-9836-f37dedd3b411-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:41.416Z","version":"WzQwNTUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Batch Requests/sec [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\",\"customMetric\":{\"enabled\":true,\"id\":\"1-metric\",\"params\":{\"field\":\"mssql.performance.batch_requests_per_sec\"},\"schema\":\"metricAgg\",\"type\":\"avg\"},\"metricAgg\":\"custom\"},\"schema\":\"metric\",\"type\":\"derivative\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":0,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":true,\"style\":{\"color\":\"#eee\"},\"valueAxis\":\"ValueAxis-1\"},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Derivative of Average mssql.performance.batch_requests_per_sec\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Batch Requests/sec [Metricbeat MSSQL] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"b29a2160-18ba-11e9-9836-f37dedd3b411-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:41.416Z","version":"WzQwNTYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\"}"},"title":"Buffer Cache Hit Ratio [Metricbeat MSSQL] ECS","uiStateJSON":"{\"vis\": {\"legendOpen\": false}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"mssql.performance.buffer.cache_hit.pct\",\"percents\":[50]},\"schema\":\"metric\",\"type\":\"median\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":0,\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":true,\"style\":{\"color\":\"#eee\"},\"valueAxis\":\"ValueAxis-1\"},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Median mssql.performance.buffer.cache_hit.pct\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"mode\":\"normal\",\"show\":\"true\",\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Buffer Cache Hit Ratio [Metricbeat MSSQL] ECS\",\"type\":\"line\"}"},"coreMigrationVersion":"8.0.0","id":"2e795230-1b2a-11e9-8b36-136038bb307a-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:41.416Z","version":"WzQwNTcsMV0="} -{"attributes":{"description":"A dashboard with key metrics about a MSSQL instance performance","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"User Connections\",\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":32,\"x\":16,\"y\":15},\"panelIndex\":\"2\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Transactions\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":16,\"x\":32,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Lock Waits/sec\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":16,\"x\":16,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"vis\":{\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Batch Requests/sec\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":16,\"x\":0,\"y\":15},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Buffer Cache Hit Ratio\",\"panelRefName\":\"panel_4\"}]","timeRestore":false,"title":"[Metricbeat MSSQL] Performance ECS","version":1},"coreMigrationVersion":"8.0.0","id":"a2ead240-18bb-11e9-9836-f37dedd3b411-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"7784db10-18ba-11e9-9836-f37dedd3b411-ecs","name":"panel_0","type":"visualization"},{"id":"910f3f30-18ba-11e9-9836-f37dedd3b411-ecs","name":"panel_1","type":"visualization"},{"id":"5bd5c230-18ba-11e9-9836-f37dedd3b411-ecs","name":"panel_2","type":"visualization"},{"id":"b29a2160-18ba-11e9-9836-f37dedd3b411-ecs","name":"panel_3","type":"visualization"},{"id":"2e795230-1b2a-11e9-8b36-136038bb307a-ecs","name":"panel_4","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:41.416Z","version":"WzQwNTgsMV0="} diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-transaction_log.ndjson b/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-transaction_log.ndjson deleted file mode 100644 index f24d07527261..000000000000 --- a/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/Metricbeat-mssql-transaction_log.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Recovery size of transaction log [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Recovery size of transaction log\",\"line_width\":1,\"metrics\":[{\"field\":\"mssql.transaction_log.stats.recovery_size.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_filters\":[{\"color\":\"#68BC00\",\"id\":\"de4cb6c0-1fb2-11e9-9c8a-cb3f85dff2a3\"}],\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"mssql.database.name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Recovery size of transaction log [Metricbeat MSSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e9654a40-1fb2-11e9-8a4d-eb34d2834f6b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNTksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Transaction log size since last checkpoint [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Transaction log size since last checkpoint\",\"line_width\":1,\"metrics\":[{\"field\":\"mssql.transaction_log.stats.since_last_checkpoint.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"mssql.database.name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Transaction log size since last checkpoint [Metricbeat MSSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"1757d530-1fb3-11e9-8a4d-eb34d2834f6b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNjAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Percentage of used space of transaction log [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Percentage of used space of transaction log\",\"line_width\":1,\"metrics\":[{\"field\":\"mssql.transaction_log.space_usage.used.pct\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"percent\",\"terms_field\":\"mssql.database.name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Percentage of used space of transaction log [Metricbeat MSSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a55bb000-1fb2-11e9-8a4d-eb34d2834f6b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNjEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Log space size since last backup [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"mssql.transaction_log.space_usage.since_last_backup.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"mssql.database.name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Log space size since last backup [Metricbeat MSSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"edb7a0c0-1f2b-11e9-8a4d-eb34d2834f6b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNjIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Active size of transaction log [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Active size of transaction log\",\"line_width\":1,\"metrics\":[{\"field\":\"mssql.transaction_log.stats.active_size.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"mssql.database.name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Active size of transaction log [Metricbeat MSSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c9ead180-1fb2-11e9-8a4d-eb34d2834f6b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNjMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Used space of transaction log [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Used space of transaction log\",\"line_width\":1,\"metrics\":[{\"field\":\"mssql.transaction_log.space_usage.used.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"mssql.database.name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Used space of transaction log [Metricbeat MSSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"68fa61b0-1fb2-11e9-8a4d-eb34d2834f6b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNjQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total log space usage [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total log space usage\",\"line_width\":1,\"metrics\":[{\"field\":\"mssql.transaction_log.space_usage.total.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"mssql.database.name\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Total log space usage [Metricbeat MSSQL] ECS\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6710ff20-1f2c-11e9-8a4d-eb34d2834f6b-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Database selector [Metricbeat MSSQL] ECS","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"mssql.database.name\",\"id\":\"1549016598264\",\"indexPattern\":\"metricbeat-*\",\"label\":\"\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":false,\"useTimeFilter\":false},\"title\":\"Database selector [Metricbeat MSSQL] ECS\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"82bf9480-260b-11e9-a46a-471d2a76b305-ecs","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNjYsMV0="} -{"attributes":{"description":"An overview of the transaction log of each database in a MSSQL instance","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"darkTheme\": false, \"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":12,\"i\":\"1\",\"w\":24,\"x\":0,\"y\":12},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Recovery size of transaction log\",\"panelRefName\":\"panel_0\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":13,\"i\":\"2\",\"w\":24,\"x\":24,\"y\":24},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Transaction log size since last checkpoint\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":12,\"i\":\"3\",\"w\":18,\"x\":30,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Percentage of used space of transaction log\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":13,\"i\":\"4\",\"w\":24,\"x\":0,\"y\":37},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Log space size since last backup\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":13,\"i\":\"5\",\"w\":24,\"x\":0,\"y\":24},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Active size of transaction log\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":12,\"i\":\"6\",\"w\":24,\"x\":24,\"y\":12},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Used space of transaction log\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.0.0-alpha2\",\"gridData\":{\"h\":12,\"i\":\"7\",\"w\":18,\"x\":12,\"y\":0},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total log space usage\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.0.0-SNAPSHOT\",\"gridData\":{\"h\":12,\"i\":\"8\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7\"}]","timeRestore":false,"title":"[Metricbeat MSSQL] Transaction log ECS","version":1},"coreMigrationVersion":"8.0.0","id":"18d66970-1fb4-11e9-8a4d-eb34d2834f6b-ecs","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"e9654a40-1fb2-11e9-8a4d-eb34d2834f6b-ecs","name":"panel_0","type":"visualization"},{"id":"1757d530-1fb3-11e9-8a4d-eb34d2834f6b-ecs","name":"panel_1","type":"visualization"},{"id":"a55bb000-1fb2-11e9-8a4d-eb34d2834f6b-ecs","name":"panel_2","type":"visualization"},{"id":"edb7a0c0-1f2b-11e9-8a4d-eb34d2834f6b-ecs","name":"panel_3","type":"visualization"},{"id":"c9ead180-1fb2-11e9-8a4d-eb34d2834f6b-ecs","name":"panel_4","type":"visualization"},{"id":"68fa61b0-1fb2-11e9-8a4d-eb34d2834f6b-ecs","name":"panel_5","type":"visualization"},{"id":"6710ff20-1f2c-11e9-8a4d-eb34d2834f6b-ecs","name":"panel_6","type":"visualization"},{"id":"82bf9480-260b-11e9-a46a-471d2a76b305-ecs","name":"panel_7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:42.500Z","version":"WzQwNjcsMV0="} diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/a2ead240-18bb-11e9-9836-f37dedd3b411-ecs.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/a2ead240-18bb-11e9-9836-f37dedd3b411-ecs.json new file mode 100644 index 000000000000..6a13ab6b8602 --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/dashboard/a2ead240-18bb-11e9-9836-f37dedd3b411-ecs.json @@ -0,0 +1,152 @@ +{ + "attributes": { + "description": "A dashboard with key metrics about a MSSQL instance performance", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "darkTheme": false, + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 15, + "i": "1", + "w": 16, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_0", + "title": "User Connections", + "version": "7.0.0-alpha2" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 15, + "i": "2", + "w": 32, + "x": 16, + "y": 15 + }, + "panelIndex": "2", + "panelRefName": "panel_1", + "title": "Transactions", + "version": "7.0.0-alpha2" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 15, + "i": "3", + "w": 16, + "x": 32, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_2", + "title": "Lock Waits/sec", + "version": "7.0.0-alpha2" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "legendOpen": false + } + }, + "gridData": { + "h": 15, + "i": "4", + "w": 16, + "x": 16, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_3", + "title": "Batch Requests/sec", + "version": "7.0.0-alpha2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "5", + "w": 16, + "x": 0, + "y": 15 + }, + "panelIndex": "5", + "panelRefName": "panel_4", + "title": "Buffer Cache Hit Ratio", + "version": "7.0.0-alpha2" + } + ], + "timeRestore": false, + "title": "[Metricbeat MSSQL] Performance ECS", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "a2ead240-18bb-11e9-9836-f37dedd3b411-ecs", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "7784db10-18ba-11e9-9836-f37dedd3b411-ecs", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "910f3f30-18ba-11e9-9836-f37dedd3b411-ecs", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "5bd5c230-18ba-11e9-9836-f37dedd3b411-ecs", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "b29a2160-18ba-11e9-9836-f37dedd3b411-ecs", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "2e795230-1b2a-11e9-8b36-136038bb307a-ecs", + "name": "panel_4", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:41.416Z", + "version": "WzQwNTgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/1757d530-1fb3-11e9-8a4d-eb34d2834f6b-ecs.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/1757d530-1fb3-11e9-8a4d-eb34d2834f6b-ecs.json new file mode 100644 index 000000000000..317c48cbd013 --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/1757d530-1fb3-11e9-8a4d-eb34d2834f6b-ecs.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Transaction log size since last checkpoint [Metricbeat MSSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Transaction log size since last checkpoint", + "line_width": 1, + "metrics": [ + { + "field": "mssql.transaction_log.stats.since_last_checkpoint.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "mssql.database.name" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Transaction log size since last checkpoint [Metricbeat MSSQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "1757d530-1fb3-11e9-8a4d-eb34d2834f6b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:42.500Z", + "version": "WzQwNjAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/2e795230-1b2a-11e9-8b36-136038bb307a-ecs.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/2e795230-1b2a-11e9-8b36-136038bb307a-ecs.json new file mode 100644 index 000000000000..372fbc322b05 --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/2e795230-1b2a-11e9-8b36-136038bb307a-ecs.json @@ -0,0 +1,148 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Buffer Cache Hit Ratio [Metricbeat MSSQL] ECS", + "uiStateJSON": { + "vis": { + "legendOpen": false + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "mssql.performance.buffer.cache_hit.pct", + "percents": [ + 50 + ] + }, + "schema": "metric", + "type": "median" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 0, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": true, + "style": { + "color": "#eee" + }, + "valueAxis": "ValueAxis-1" + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Median mssql.performance.buffer.cache_hit.pct" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "defaultYExtents": false, + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "" + }, + "type": "value" + } + ] + }, + "title": "Buffer Cache Hit Ratio [Metricbeat MSSQL] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2e795230-1b2a-11e9-8b36-136038bb307a-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:41.416Z", + "version": "WzQwNTcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/5bd5c230-18ba-11e9-9836-f37dedd3b411-ecs.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/5bd5c230-18ba-11e9-9836-f37dedd3b411-ecs.json new file mode 100644 index 000000000000..6c5eb0210878 --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/5bd5c230-18ba-11e9-9836-f37dedd3b411-ecs.json @@ -0,0 +1,145 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Lock Waits/sec [Metricbeat MSSQL] ECS", + "uiStateJSON": { + "vis": { + "legendOpen": false + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "", + "field": "mssql.performance.lock_waits_per_sec" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": true, + "style": { + "color": "#eee" + }, + "valueAxis": "ValueAxis-1" + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Average mssql.performance.lock_waits_per_sec" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "" + }, + "type": "value" + } + ] + }, + "title": "Lock Waits/sec [Metricbeat MSSQL] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5bd5c230-18ba-11e9-9836-f37dedd3b411-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:41.416Z", + "version": "WzQwNTUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/6710ff20-1f2c-11e9-8a4d-eb34d2834f6b-ecs.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/6710ff20-1f2c-11e9-8a4d-eb34d2834f6b-ecs.json new file mode 100644 index 000000000000..7ec84db67d9b --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/6710ff20-1f2c-11e9-8a4d-eb34d2834f6b-ecs.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Total log space usage [Metricbeat MSSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Total log space usage", + "line_width": 1, + "metrics": [ + { + "field": "mssql.transaction_log.space_usage.total.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "stacked", + "terms_field": "mssql.database.name" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Total log space usage [Metricbeat MSSQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6710ff20-1f2c-11e9-8a4d-eb34d2834f6b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:42.500Z", + "version": "WzQwNjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/68fa61b0-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/68fa61b0-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json new file mode 100644 index 000000000000..8204561dd68c --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/68fa61b0-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Used space of transaction log [Metricbeat MSSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Used space of transaction log", + "line_width": 1, + "metrics": [ + { + "field": "mssql.transaction_log.space_usage.used.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "mssql.database.name" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Used space of transaction log [Metricbeat MSSQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "68fa61b0-1fb2-11e9-8a4d-eb34d2834f6b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:42.500Z", + "version": "WzQwNjQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/7784db10-18ba-11e9-9836-f37dedd3b411-ecs.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/7784db10-18ba-11e9-9836-f37dedd3b411-ecs.json new file mode 100644 index 000000000000..cf8aa88e277d --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/7784db10-18ba-11e9-9836-f37dedd3b411-ecs.json @@ -0,0 +1,145 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "User Connections [Metricbeat MSSQL] ECS", + "uiStateJSON": { + "vis": { + "legendOpen": false + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "", + "field": "mssql.performance.user_connections" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": true, + "style": { + "color": "#eee" + }, + "valueAxis": "ValueAxis-1" + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Average mssql.performance.user_connections" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "" + }, + "type": "value" + } + ] + }, + "title": "User Connections [Metricbeat MSSQL] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7784db10-18ba-11e9-9836-f37dedd3b411-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:41.416Z", + "version": "WzQwNTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/82bf9480-260b-11e9-a46a-471d2a76b305-ecs.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/82bf9480-260b-11e9-a46a-471d2a76b305-ecs.json new file mode 100644 index 000000000000..e13d30a8a0d2 --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/82bf9480-260b-11e9-a46a-471d2a76b305-ecs.json @@ -0,0 +1,53 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Database selector [Metricbeat MSSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "mssql.database.name", + "id": "1549016598264", + "indexPattern": "metricbeat-*", + "label": "", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": false, + "useTimeFilter": false + }, + "title": "Database selector [Metricbeat MSSQL] ECS", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "82bf9480-260b-11e9-a46a-471d2a76b305-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:42.500Z", + "version": "WzQwNjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/910f3f30-18ba-11e9-9836-f37dedd3b411-ecs.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/910f3f30-18ba-11e9-9836-f37dedd3b411-ecs.json new file mode 100644 index 000000000000..43e055ac6f53 --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/910f3f30-18ba-11e9-9836-f37dedd3b411-ecs.json @@ -0,0 +1,145 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Transactions [Metricbeat MSSQL] ECS", + "uiStateJSON": { + "vis": { + "legendOpen": false + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "", + "field": "mssql.performance.transactions" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": true, + "style": { + "color": "#eee" + }, + "valueAxis": "ValueAxis-1" + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Average mssql.performance.transactions" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "" + }, + "type": "value" + } + ] + }, + "title": "Transactions [Metricbeat MSSQL] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "910f3f30-18ba-11e9-9836-f37dedd3b411-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:41.416Z", + "version": "WzQwNTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/a55bb000-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/a55bb000-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json new file mode 100644 index 000000000000..a4d10faff9af --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/a55bb000-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Percentage of used space of transaction log [Metricbeat MSSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "percent", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Percentage of used space of transaction log", + "line_width": 1, + "metrics": [ + { + "field": "mssql.transaction_log.space_usage.used.pct", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "percent", + "terms_field": "mssql.database.name" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Percentage of used space of transaction log [Metricbeat MSSQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a55bb000-1fb2-11e9-8a4d-eb34d2834f6b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:42.500Z", + "version": "WzQwNjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/b29a2160-18ba-11e9-9836-f37dedd3b411-ecs.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/b29a2160-18ba-11e9-9836-f37dedd3b411-ecs.json new file mode 100644 index 000000000000..182e67452d49 --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/b29a2160-18ba-11e9-9836-f37dedd3b411-ecs.json @@ -0,0 +1,150 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Batch Requests/sec [Metricbeat MSSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "", + "customMetric": { + "enabled": true, + "id": "1-metric", + "params": { + "field": "mssql.performance.batch_requests_per_sec" + }, + "schema": "metricAgg", + "type": "avg" + }, + "metricAgg": "custom" + }, + "schema": "metric", + "type": "derivative" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 0, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": true, + "style": { + "color": "#eee" + }, + "valueAxis": "ValueAxis-1" + }, + "isVislibVis": true, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Derivative of Average mssql.performance.batch_requests_per_sec" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "mode": "normal", + "show": "true", + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "" + }, + "type": "value" + } + ] + }, + "title": "Batch Requests/sec [Metricbeat MSSQL] ECS", + "type": "line" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b29a2160-18ba-11e9-9836-f37dedd3b411-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:41.416Z", + "version": "WzQwNTYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/c9ead180-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/c9ead180-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json new file mode 100644 index 000000000000..0414b643320c --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/c9ead180-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Active size of transaction log [Metricbeat MSSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Active size of transaction log", + "line_width": 1, + "metrics": [ + { + "field": "mssql.transaction_log.stats.active_size.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "mssql.database.name" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Active size of transaction log [Metricbeat MSSQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c9ead180-1fb2-11e9-8a4d-eb34d2834f6b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:42.500Z", + "version": "WzQwNjMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/e9654a40-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/e9654a40-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json new file mode 100644 index 000000000000..42ec7a0ade9c --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/e9654a40-1fb2-11e9-8a4d-eb34d2834f6b-ecs.json @@ -0,0 +1,69 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Recovery size of transaction log [Metricbeat MSSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Recovery size of transaction log", + "line_width": 1, + "metrics": [ + { + "field": "mssql.transaction_log.stats.recovery_size.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "#68BC00", + "id": "de4cb6c0-1fb2-11e9-9c8a-cb3f85dff2a3" + } + ], + "split_mode": "terms", + "stacked": "none", + "terms_field": "mssql.database.name" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Recovery size of transaction log [Metricbeat MSSQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e9654a40-1fb2-11e9-8a4d-eb34d2834f6b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:42.500Z", + "version": "WzQwNTksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/edb7a0c0-1f2b-11e9-8a4d-eb34d2834f6b-ecs.json b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/edb7a0c0-1f2b-11e9-8a4d-eb34d2834f6b-ecs.json new file mode 100644 index 000000000000..cac6fd653e61 --- /dev/null +++ b/x-pack/metricbeat/module/mssql/_meta/kibana/7/visualization/edb7a0c0-1f2b-11e9-8a4d-eb34d2834f6b-ecs.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Log space size since last backup [Metricbeat MSSQL] ECS", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "mssql.transaction_log.space_usage.since_last_backup.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "mssql.database.name" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Log space size since last backup [Metricbeat MSSQL] ECS", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "edb7a0c0-1f2b-11e9-8a4d-eb34d2834f6b-ecs", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:42.500Z", + "version": "WzQwNjIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/3f018af0-ec08-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/3f018af0-ec08-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..3d392cb06aa8 --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/3f018af0-ec08-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,342 @@ +{ + "attributes": { + "description": "An overview of key metrics from all Metricsets in the Oracle database Metricbeat module", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "1", + "w": 17, + "x": 18, + "y": 31 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Tablespace Total Size", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "2", + "w": 12, + "x": 28, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Ratio of used space in Tablespaces", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "3", + "w": 28, + "x": 20, + "y": 18 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Avg data file size by filename", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "5", + "w": 20, + "x": 0, + "y": 8 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Total Cursors by machine (Top 10)", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "6", + "w": 8, + "x": 20, + "y": 0 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Cache Buffer Hit Ratio gauge", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "9", + "w": 20, + "x": 0, + "y": 15 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "title": "Current opened cursors", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "10", + "w": 13, + "x": 35, + "y": 31 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "title": "Session cache hits", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "11", + "w": 20, + "x": 0, + "y": 0 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "title": "Average Cursors by machine (Top 10)", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "12", + "w": 18, + "x": 0, + "y": 31 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "title": "Max Cursors by machine (Top 10)", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "13", + "w": 20, + "x": 0, + "y": 23 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "title": "DB Blocks Gets by buffer pool (Top 10)", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "14", + "w": 30, + "x": 18, + "y": 39 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "title": "Consistent Gets by buffer pool (Top 10)", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "15", + "w": 18, + "x": 0, + "y": 39 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "title": "Total / Real parsed cursors", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "16", + "w": 28, + "x": 20, + "y": 8 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "title": "Lock/Pin requests and IO reloads ratios", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "17", + "w": 8, + "x": 40, + "y": 0 + }, + "panelIndex": "17", + "panelRefName": "panel_17", + "title": "Cursors cache hit ratio gauge", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Metricbeat Oracle] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "3f018af0-ec08-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "05acae50-9bf0-11e9-a61b-f742ed613c57", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "981779d0-9bfc-11e9-a61b-f742ed613c57", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "c92efe60-9bef-11e9-a61b-f742ed613c57", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "62fb9430-ec0f-11e9-a4bb-7b5324058fcc", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "ec2b2010-ec0d-11e9-a4bb-7b5324058fcc", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "43369a60-ec0e-11e9-a4bb-7b5324058fcc", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "234013d0-ec0e-11e9-a4bb-7b5324058fcc", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "5a422660-ec0f-11e9-a4bb-7b5324058fcc", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "4f569650-ec0f-11e9-a4bb-7b5324058fcc", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "68ce1940-ec10-11e9-a4bb-7b5324058fcc", + "name": "13:panel_13", + "type": "visualization" + }, + { + "id": "3ae419d0-ec10-11e9-a4bb-7b5324058fcc", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "c46de8c0-ec10-11e9-a4bb-7b5324058fcc", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "0b1da750-ec12-11e9-a4bb-7b5324058fcc", + "name": "16:panel_16", + "type": "visualization" + }, + { + "id": "bc977600-ec12-11e9-a4bb-7b5324058fcc", + "name": "17:panel_17", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:19.365Z", + "version": "WzMyNjEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/862e2c20-9bf0-11e9-a61b-f742ed613c57.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/862e2c20-9bf0-11e9-a61b-f742ed613c57.json new file mode 100644 index 000000000000..f093d13a3e45 --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/862e2c20-9bf0-11e9-a61b-f742ed613c57.json @@ -0,0 +1,144 @@ +{ + "attributes": { + "description": "Overview of Oracle Tablespaces", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "1", + "w": 19, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Avg data file size by filename", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "2", + "w": 24, + "x": 0, + "y": 15 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Tablespace Total Size", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "3", + "w": 19, + "x": 19, + "y": 0 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Maximum data file size", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "4", + "w": 10, + "x": 38, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "Ratio of used space in Tablespaces", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "5", + "w": 24, + "x": 24, + "y": 15 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Ratio of used space in data files", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Metricbeat Oracle] Tablespaces", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "862e2c20-9bf0-11e9-a61b-f742ed613c57", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "c92efe60-9bef-11e9-a61b-f742ed613c57", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "05acae50-9bf0-11e9-a61b-f742ed613c57", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "4c051a90-9bf0-11e9-a61b-f742ed613c57", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "981779d0-9bfc-11e9-a61b-f742ed613c57", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "072de430-9bfd-11e9-a61b-f742ed613c57", + "name": "5:panel_5", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:20.355Z", + "version": "WzMyNzYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-overview.ndjson b/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-overview.ndjson deleted file mode 100644 index 2ca75e057846..000000000000 --- a/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-overview.ndjson +++ /dev/null @@ -1,15 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Tablespace Total Size [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Tablespace total size\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.tablespace.space.total.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"oracle.tablespace.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Tablespace Total Size [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"05acae50-9bf0-11e9-a61b-f742ed613c57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyNzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ratio of used space in Tablespaces [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"70de46f0-9bfc-11e9-baad-815beb8da1b5\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.tablespace.space.used.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"oracle.tablespace.space.total.bytes\",\"id\":\"37c93d70-9bfc-11e9-baad-815beb8da1b5\",\"type\":\"avg\"},{\"denominator\":\"2\",\"field\":\"oracle.tablespace.space.total.bytes\",\"id\":\"0d474830-9bfc-11e9-baad-815beb8da1b5\",\"numerator\":\"1\",\"script\":\"params.used / params.total\",\"type\":\"math\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"34e8d9d0-9bfc-11e9-baad-815beb8da1b5\",\"name\":\"used\"},{\"field\":\"37c93d70-9bfc-11e9-baad-815beb8da1b5\",\"id\":\"467fdf40-9bfc-11e9-baad-815beb8da1b5\",\"name\":\"total\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"oracle.tablespace.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Ratio of used space in Tablespaces [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"981779d0-9bfc-11e9-a61b-f742ed613c57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyODAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Avg data file size by filename [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Data file size by filename\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"noop\",\"field\":\"oracle.tablespace.data_file.size.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"order\":\"desc\",\"size\":1,\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"oracle.tablespace.data_file.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Avg data file size by filename [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c92efe60-9bef-11e9-a61b-f742ed613c57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyNzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total Cursors by machine (Top 10) [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,188,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"78091830-ec0e-11e9-bea4-bdae5d622976\",\"label\":\"Top 10 Total cursors\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cursors.total\",\"id\":\"78091831-ec0e-11e9-bea4-bdae5d622976\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked_within_series\",\"steps\":0,\"terms_field\":\"oracle.performance.machine\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Total Cursors by machine (Top 10) [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"62fb9430-ec0f-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNjUsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Cache Buffer Hit Ratio gauge [Metricbeat Oracle]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 50\": \"rgb(165,0,38)\", \"50 - 75\": \"rgb(255,255,190)\", \"75 - 100\": \"rgb(0,104,55)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Cache Buffer Hit Ratio\",\"field\":\"oracle.performance.cache.buffer.hit.pct\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"x\":null,\"y\":[{\"accessor\":0,\"aggType\":\"avg\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"gauge\":{\"alignment\":\"automatic\",\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":0.5},{\"from\":0.5,\"to\":0.75},{\"from\":0.75,\"to\":1}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":true,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":true,\"scale\":{\"color\":\"rgba(105,112,125,0.2)\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":true,\"bgFill\":\"rgba(105,112,125,0.2)\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"labelColor\":true,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Cache Buffer Hit Ratio gauge [Metricbeat Oracle]\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"ec2b2010-ec0d-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNjYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Current opened cursors [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Current opened cursors\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cursors.opened.current\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Current opened cursors [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"43369a60-ec0e-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNjcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Session cache hits [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(219,223,0,1)\",\"fill\":0.5,\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Session cache hits\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cursors.session.cache_hits\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Session cache hits [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"234013d0-ec0e-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNjgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Average Cursors by machine (Top 10) [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Average cursors\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cursors.avg\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_color_mode\":\"gradient\",\"split_filters\":[{\"color\":\"rgba(254,146,0,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"\"},\"id\":\"15889d10-ec0f-11e9-bea4-bdae5d622976\"}],\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"oracle.performance.machine\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Average Cursors by machine (Top 10) [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"5a422660-ec0f-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNjksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Max Cursors by machine (Top 10) [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"6e3a42c0-ec0e-11e9-bea4-bdae5d622976\",\"label\":\"Top 10 Max cursors\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cursors.max\",\"id\":\"6e3a42c1-ec0e-11e9-bea4-bdae5d622976\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"oracle.performance.machine\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Max Cursors by machine (Top 10) [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4f569650-ec0f-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNzAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"DB Blocks Gets by buffer pool (Top 10) [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"1547f520-ec10-11e9-bea4-bdae5d622976\",\"label\":\"DB Blocks gets\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cache.get.db_blocks\",\"id\":\"1547f521-ec10-11e9-bea4-bdae5d622976\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"oracle.performance.buffer_pool\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"DB Blocks Gets by buffer pool (Top 10) [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"68ce1940-ec10-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNzEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Consistent Gets by buffer pool (Top 10) [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Consistent Gets\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cache.get.consistent\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"oracle.performance.buffer_pool\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Consistent Gets by buffer pool (Top 10) [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3ae419d0-ec10-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNzIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total / Real parsed cursors [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Real parsed cursors\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cursors.parse.real\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"a1dae560-ec10-11e9-bea4-bdae5d622976\",\"label\":\"Total parsed cursors\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.performance.cursors.parse.total\",\"id\":\"a1dae561-ec10-11e9-bea4-bdae5d622976\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Total / Real parsed cursors [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c46de8c0-ec10-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNzMsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Lock/Pin requests and IO reloads ratios [Metricbeat Oracle]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 50\": \"rgb(247,251,255)\", \"50 - 75\": \"rgb(107,174,214)\", \"75 - 100\": \"rgb(8,48,107)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"IO Reloads\",\"field\":\"oracle.performance.io_reloads\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Lock requests\",\"field\":\"oracle.performance.lock_requests\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Pin requests\",\"field\":\"oracle.performance.pin_requests\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"x\":null,\"y\":[{\"accessor\":0,\"aggType\":\"avg\",\"format\":{\"id\":\"number\"},\"params\":{}},{\"accessor\":1,\"aggType\":\"avg\",\"format\":{\"id\":\"number\"},\"params\":{}},{\"accessor\":2,\"aggType\":\"avg\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"gauge\":{\"alignment\":\"automatic\",\"backStyle\":\"Full\",\"colorSchema\":\"Blues\",\"colorsRange\":[{\"from\":0,\"to\":0.5},{\"from\":0.5,\"to\":0.75},{\"from\":0.75,\"to\":1}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":true},\"orientation\":\"vertical\",\"percentageMode\":true,\"scale\":{\"color\":\"rgba(105,112,125,0.2)\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":true,\"bgFill\":\"rgba(105,112,125,0.2)\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Lock/Pin requests and IO reloads ratios [Metricbeat Oracle]\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"0b1da750-ec12-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNzQsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Cursors cache hit ratio gauge [Metricbeat Oracle]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 50\": \"rgb(0,104,55)\", \"50 - 75\": \"rgb(255,255,190)\", \"75 - 100\": \"rgb(165,0,38)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Cursors cache hit ratio\",\"field\":\"oracle.performance.cursors.cache_hit.pct\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"x\":null,\"y\":[{\"accessor\":0,\"aggType\":\"avg\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"gauge\":{\"alignment\":\"automatic\",\"backStyle\":\"Full\",\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":0.5},{\"from\":0.5,\"to\":0.75},{\"from\":0.75,\"to\":1}],\"extendRange\":true,\"gaugeColorMode\":\"Labels\",\"gaugeStyle\":\"Full\",\"gaugeType\":\"Arc\",\"invertColors\":false,\"labels\":{\"color\":\"black\",\"show\":false},\"orientation\":\"vertical\",\"percentageMode\":true,\"scale\":{\"color\":\"rgba(105,112,125,0.2)\",\"labels\":false,\"show\":true},\"style\":{\"bgColor\":true,\"bgFill\":\"rgba(105,112,125,0.2)\",\"bgMask\":false,\"bgWidth\":0.9,\"fontSize\":60,\"mask\":false,\"maskBars\":50,\"subText\":\"\",\"width\":0.9},\"type\":\"meter\"},\"isDisplayWarning\":false,\"type\":\"gauge\"},\"title\":\"Cursors cache hit ratio gauge [Metricbeat Oracle]\",\"type\":\"gauge\"}"},"coreMigrationVersion":"8.0.0","id":"bc977600-ec12-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNzUsMV0="} -{"attributes":{"description":"An overview of key metrics from all Metricsets in the Oracle database Metricbeat module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1\",\"w\":17,\"x\":18,\"y\":31},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Tablespace Total Size\",\"panelRefName\":\"panel_1\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"2\",\"w\":12,\"x\":28,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ratio of used space in Tablespaces\",\"panelRefName\":\"panel_2\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"3\",\"w\":28,\"x\":20,\"y\":18},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Avg data file size by filename\",\"panelRefName\":\"panel_3\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"5\",\"w\":20,\"x\":0,\"y\":8},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Cursors by machine (Top 10)\",\"panelRefName\":\"panel_5\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"6\",\"w\":8,\"x\":20,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cache Buffer Hit Ratio gauge\",\"panelRefName\":\"panel_6\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"9\",\"w\":20,\"x\":0,\"y\":15},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Current opened cursors\",\"panelRefName\":\"panel_9\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"10\",\"w\":13,\"x\":35,\"y\":31},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Session cache hits\",\"panelRefName\":\"panel_10\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"11\",\"w\":20,\"x\":0,\"y\":0},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Average Cursors by machine (Top 10)\",\"panelRefName\":\"panel_11\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"12\",\"w\":18,\"x\":0,\"y\":31},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Max Cursors by machine (Top 10)\",\"panelRefName\":\"panel_12\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"13\",\"w\":20,\"x\":0,\"y\":23},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"DB Blocks Gets by buffer pool (Top 10)\",\"panelRefName\":\"panel_13\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"14\",\"w\":30,\"x\":18,\"y\":39},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Consistent Gets by buffer pool (Top 10)\",\"panelRefName\":\"panel_14\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"15\",\"w\":18,\"x\":0,\"y\":39},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total / Real parsed cursors\",\"panelRefName\":\"panel_15\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"16\",\"w\":28,\"x\":20,\"y\":8},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Lock/Pin requests and IO reloads ratios\",\"panelRefName\":\"panel_16\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"17\",\"w\":8,\"x\":40,\"y\":0},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cursors cache hit ratio gauge\",\"panelRefName\":\"panel_17\"}]","timeRestore":false,"title":"[Metricbeat Oracle] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"3f018af0-ec08-11e9-a4bb-7b5324058fcc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"05acae50-9bf0-11e9-a61b-f742ed613c57","name":"1:panel_1","type":"visualization"},{"id":"981779d0-9bfc-11e9-a61b-f742ed613c57","name":"2:panel_2","type":"visualization"},{"id":"c92efe60-9bef-11e9-a61b-f742ed613c57","name":"3:panel_3","type":"visualization"},{"id":"62fb9430-ec0f-11e9-a4bb-7b5324058fcc","name":"5:panel_5","type":"visualization"},{"id":"ec2b2010-ec0d-11e9-a4bb-7b5324058fcc","name":"6:panel_6","type":"visualization"},{"id":"43369a60-ec0e-11e9-a4bb-7b5324058fcc","name":"9:panel_9","type":"visualization"},{"id":"234013d0-ec0e-11e9-a4bb-7b5324058fcc","name":"10:panel_10","type":"visualization"},{"id":"5a422660-ec0f-11e9-a4bb-7b5324058fcc","name":"11:panel_11","type":"visualization"},{"id":"4f569650-ec0f-11e9-a4bb-7b5324058fcc","name":"12:panel_12","type":"visualization"},{"id":"68ce1940-ec10-11e9-a4bb-7b5324058fcc","name":"13:panel_13","type":"visualization"},{"id":"3ae419d0-ec10-11e9-a4bb-7b5324058fcc","name":"14:panel_14","type":"visualization"},{"id":"c46de8c0-ec10-11e9-a4bb-7b5324058fcc","name":"15:panel_15","type":"visualization"},{"id":"0b1da750-ec12-11e9-a4bb-7b5324058fcc","name":"16:panel_16","type":"visualization"},{"id":"bc977600-ec12-11e9-a4bb-7b5324058fcc","name":"17:panel_17","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:19.365Z","version":"WzMyNjEsMV0="} diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-tablespaces.ndjson b/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-tablespaces.ndjson deleted file mode 100644 index 7aed16fc3921..000000000000 --- a/x-pack/metricbeat/module/oracle/_meta/kibana/7/dashboard/Metricbeat-Oracle-tablespaces.ndjson +++ /dev/null @@ -1,6 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Avg data file size by filename [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Data file size by filename\",\"line_width\":1,\"metrics\":[{\"agg_with\":\"noop\",\"field\":\"oracle.tablespace.data_file.size.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"order\":\"desc\",\"size\":1,\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"oracle.tablespace.data_file.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Avg data file size by filename [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"c92efe60-9bef-11e9-a61b-f742ed613c57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyNzcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Tablespace Total Size [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Tablespace total size\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.tablespace.space.total.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"oracle.tablespace.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Tablespace Total Size [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"05acae50-9bf0-11e9-a61b-f742ed613c57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyNzgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Maximum data file size [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Maximum data file size\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.tablespace.data_file.size.max.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"oracle.tablespace.data_file.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Maximum data file size [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"4c051a90-9bf0-11e9-a61b-f742ed613c57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyNzksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ratio of used space in Tablespaces [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"70de46f0-9bfc-11e9-baad-815beb8da1b5\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.tablespace.space.used.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"oracle.tablespace.space.total.bytes\",\"id\":\"37c93d70-9bfc-11e9-baad-815beb8da1b5\",\"type\":\"avg\"},{\"denominator\":\"2\",\"field\":\"oracle.tablespace.space.total.bytes\",\"id\":\"0d474830-9bfc-11e9-baad-815beb8da1b5\",\"numerator\":\"1\",\"script\":\"params.used / params.total\",\"type\":\"math\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"34e8d9d0-9bfc-11e9-baad-815beb8da1b5\",\"name\":\"used\"},{\"field\":\"37c93d70-9bfc-11e9-baad-815beb8da1b5\",\"id\":\"467fdf40-9bfc-11e9-baad-815beb8da1b5\",\"name\":\"total\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"oracle.tablespace.name\",\"terms_order_by\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Ratio of used space in Tablespaces [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"981779d0-9bfc-11e9-a61b-f742ed613c57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyODAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Ratio of used space in data files [Metricbeat Oracle]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"bar_color_rules\":[{\"id\":\"da9fa430-9bfc-11e9-baad-815beb8da1b5\"}],\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"auto\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(204,204,204,1)\",\"fill\":0.5,\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Ratio of used space in data files\",\"line_width\":1,\"metrics\":[{\"field\":\"oracle.tablespace.data_file.size.max.bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"oracle.tablespace.data_file.size.bytes\",\"id\":\"c0f200a0-9bfc-11e9-baad-815beb8da1b5\",\"type\":\"avg\"},{\"id\":\"c8289f00-9bfc-11e9-baad-815beb8da1b5\",\"script\":\"params.used / params.max\",\"type\":\"math\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"c9a63e50-9bfc-11e9-baad-815beb8da1b5\",\"name\":\"max\"},{\"field\":\"c0f200a0-9bfc-11e9-baad-815beb8da1b5\",\"id\":\"cddc46e0-9bfc-11e9-baad-815beb8da1b5\",\"name\":\"used\"}]}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"stacked\",\"terms_field\":\"oracle.tablespace.data_file.name\",\"terms_order_by\":\"c0f200a0-9bfc-11e9-baad-815beb8da1b5\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"top_n\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Ratio of used space in data files [Metricbeat Oracle]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"072de430-9bfd-11e9-a61b-f742ed613c57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyODEsMV0="} -{"attributes":{"description":"Overview of Oracle Tablespaces","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\":[],\"query\":{\"language\":\"kuery\",\"query\":\"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"1\",\"w\":19,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Avg data file size by filename\",\"panelRefName\":\"panel_1\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"2\",\"w\":24,\"x\":0,\"y\":15},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Tablespace Total Size\",\"panelRefName\":\"panel_2\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"3\",\"w\":19,\"x\":19,\"y\":0},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Maximum data file size\",\"panelRefName\":\"panel_3\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"4\",\"w\":10,\"x\":38,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ratio of used space in Tablespaces\",\"panelRefName\":\"panel_4\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"5\",\"w\":24,\"x\":24,\"y\":15},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Ratio of used space in data files\",\"panelRefName\":\"panel_5\"}]","timeRestore":false,"title":"[Metricbeat Oracle] Tablespaces","version":1},"coreMigrationVersion":"8.0.0","id":"862e2c20-9bf0-11e9-a61b-f742ed613c57","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"c92efe60-9bef-11e9-a61b-f742ed613c57","name":"1:panel_1","type":"visualization"},{"id":"05acae50-9bf0-11e9-a61b-f742ed613c57","name":"2:panel_2","type":"visualization"},{"id":"4c051a90-9bf0-11e9-a61b-f742ed613c57","name":"3:panel_3","type":"visualization"},{"id":"981779d0-9bfc-11e9-a61b-f742ed613c57","name":"4:panel_4","type":"visualization"},{"id":"072de430-9bfd-11e9-a61b-f742ed613c57","name":"5:panel_5","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:20.355Z","version":"WzMyNzYsMV0="} diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/05acae50-9bf0-11e9-a61b-f742ed613c57.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/05acae50-9bf0-11e9-a61b-f742ed613c57.json new file mode 100644 index 000000000000..603fcc02ec2f --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/05acae50-9bf0-11e9-a61b-f742ed613c57.json @@ -0,0 +1,64 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Tablespace Total Size [Metricbeat Oracle]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Tablespace total size", + "line_width": 1, + "metrics": [ + { + "field": "oracle.tablespace.space.total.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "stacked", + "terms_field": "oracle.tablespace.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Tablespace Total Size [Metricbeat Oracle]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "05acae50-9bf0-11e9-a61b-f742ed613c57", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:20.355Z", + "version": "WzMyNzgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/072de430-9bfd-11e9-a61b-f742ed613c57.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/072de430-9bfd-11e9-a61b-f742ed613c57.json new file mode 100644 index 000000000000..3e1fe17dbc6c --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/072de430-9bfd-11e9-a61b-f742ed613c57.json @@ -0,0 +1,93 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Ratio of used space in data files [Metricbeat Oracle]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "da9fa430-9bfc-11e9-baad-815beb8da1b5" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(204,204,204,1)", + "fill": 0.5, + "formatter": "percent", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Ratio of used space in data files", + "line_width": 1, + "metrics": [ + { + "field": "oracle.tablespace.data_file.size.max.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "oracle.tablespace.data_file.size.bytes", + "id": "c0f200a0-9bfc-11e9-baad-815beb8da1b5", + "type": "avg" + }, + { + "id": "c8289f00-9bfc-11e9-baad-815beb8da1b5", + "script": "params.used / params.max", + "type": "math", + "variables": [ + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "c9a63e50-9bfc-11e9-baad-815beb8da1b5", + "name": "max" + }, + { + "field": "c0f200a0-9bfc-11e9-baad-815beb8da1b5", + "id": "cddc46e0-9bfc-11e9-baad-815beb8da1b5", + "name": "used" + } + ] + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "stacked", + "terms_field": "oracle.tablespace.data_file.name", + "terms_order_by": "c0f200a0-9bfc-11e9-baad-815beb8da1b5" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Ratio of used space in data files [Metricbeat Oracle]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "072de430-9bfd-11e9-a61b-f742ed613c57", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:20.355Z", + "version": "WzMyODEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/0b1da750-ec12-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/0b1da750-ec12-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..1d19df3b8294 --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/0b1da750-ec12-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,159 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Lock/Pin requests and IO reloads ratios [Metricbeat Oracle]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 50": "rgb(247,251,255)", + "50 - 75": "rgb(107,174,214)", + "75 - 100": "rgb(8,48,107)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "IO Reloads", + "field": "oracle.performance.io_reloads" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Lock requests", + "field": "oracle.performance.lock_requests" + }, + "schema": "metric", + "type": "avg" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Pin requests", + "field": "oracle.performance.pin_requests" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "x": null, + "y": [ + { + "accessor": 0, + "aggType": "avg", + "format": { + "id": "number" + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "avg", + "format": { + "id": "number" + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "avg", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "gauge": { + "alignment": "automatic", + "backStyle": "Full", + "colorSchema": "Blues", + "colorsRange": [ + { + "from": 0, + "to": 0.5 + }, + { + "from": 0.5, + "to": 0.75 + }, + { + "from": 0.75, + "to": 1 + } + ], + "extendRange": true, + "gaugeColorMode": "Labels", + "gaugeStyle": "Full", + "gaugeType": "Arc", + "invertColors": false, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": true, + "scale": { + "color": "rgba(105,112,125,0.2)", + "labels": false, + "show": true + }, + "style": { + "bgColor": true, + "bgFill": "rgba(105,112,125,0.2)", + "bgMask": false, + "bgWidth": 0.9, + "fontSize": 60, + "mask": false, + "maskBars": 50, + "subText": "", + "width": 0.9 + }, + "type": "meter" + }, + "isDisplayWarning": false, + "type": "gauge" + }, + "title": "Lock/Pin requests and IO reloads ratios [Metricbeat Oracle]", + "type": "gauge" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0b1da750-ec12-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:19.365Z", + "version": "WzMyNzQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/234013d0-ec0e-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/234013d0-ec0e-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..9b189f674c6b --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/234013d0-ec0e-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Session cache hits [Metricbeat Oracle]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(219,223,0,1)", + "fill": 0.5, + "formatter": "number", + "hide_in_legend": 0, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Session cache hits", + "line_width": 1, + "metrics": [ + { + "field": "oracle.performance.cursors.session.cache_hits", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 0, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Session cache hits [Metricbeat Oracle]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "234013d0-ec0e-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:19.365Z", + "version": "WzMyNjgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/3ae419d0-ec10-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/3ae419d0-ec10-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..e253394b3990 --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/3ae419d0-ec10-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Consistent Gets by buffer pool (Top 10) [Metricbeat Oracle]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Consistent Gets", + "line_width": 1, + "metrics": [ + { + "field": "oracle.performance.cache.get.consistent", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "oracle.performance.buffer_pool" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Consistent Gets by buffer pool (Top 10) [Metricbeat Oracle]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3ae419d0-ec10-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:19.365Z", + "version": "WzMyNzIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/43369a60-ec0e-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/43369a60-ec0e-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..552492f22c26 --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/43369a60-ec0e-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,62 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Current opened cursors [Metricbeat Oracle]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Current opened cursors", + "line_width": 1, + "metrics": [ + { + "field": "oracle.performance.cursors.opened.current", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 0, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Current opened cursors [Metricbeat Oracle]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "43369a60-ec0e-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:19.365Z", + "version": "WzMyNjcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/4c051a90-9bf0-11e9-a61b-f742ed613c57.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/4c051a90-9bf0-11e9-a61b-f742ed613c57.json new file mode 100644 index 000000000000..ceb94061e3f2 --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/4c051a90-9bf0-11e9-a61b-f742ed613c57.json @@ -0,0 +1,65 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Maximum data file size [Metricbeat Oracle]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(254,146,0,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Maximum data file size", + "line_width": 1, + "metrics": [ + { + "field": "oracle.tablespace.data_file.size.max.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "stacked", + "terms_field": "oracle.tablespace.data_file.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Maximum data file size [Metricbeat Oracle]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4c051a90-9bf0-11e9-a61b-f742ed613c57", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:20.355Z", + "version": "WzMyNzksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/4f569650-ec0f-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/4f569650-ec0f-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..7559445c5b07 --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/4f569650-ec0f-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Max Cursors by machine (Top 10) [Metricbeat Oracle]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": 0.5, + "formatter": "number", + "id": "6e3a42c0-ec0e-11e9-bea4-bdae5d622976", + "label": "Top 10 Max cursors", + "line_width": 1, + "metrics": [ + { + "field": "oracle.performance.cursors.max", + "id": "6e3a42c1-ec0e-11e9-bea4-bdae5d622976", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "stacked", + "terms_field": "oracle.performance.machine" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Max Cursors by machine (Top 10) [Metricbeat Oracle]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "4f569650-ec0f-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:19.365Z", + "version": "WzMyNzAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/5a422660-ec0f-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/5a422660-ec0f-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..d35498433a61 --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/5a422660-ec0f-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Average Cursors by machine (Top 10) [Metricbeat Oracle]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Average cursors", + "line_width": 1, + "metrics": [ + { + "field": "oracle.performance.cursors.avg", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "rgba(254,146,0,1)", + "filter": { + "language": "kuery", + "query": "" + }, + "id": "15889d10-ec0f-11e9-bea4-bdae5d622976" + } + ], + "split_mode": "terms", + "stacked": "stacked", + "terms_field": "oracle.performance.machine" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Average Cursors by machine (Top 10) [Metricbeat Oracle]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "5a422660-ec0f-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:19.365Z", + "version": "WzMyNjksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/62fb9430-ec0f-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/62fb9430-ec0f-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..1004a516bef3 --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/62fb9430-ec0f-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,64 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Total Cursors by machine (Top 10) [Metricbeat Oracle]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,188,0,1)", + "fill": 0.5, + "formatter": "number", + "id": "78091830-ec0e-11e9-bea4-bdae5d622976", + "label": "Top 10 Total cursors", + "line_width": 1, + "metrics": [ + { + "field": "oracle.performance.cursors.total", + "id": "78091831-ec0e-11e9-bea4-bdae5d622976", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "stacked_within_series", + "steps": 0, + "terms_field": "oracle.performance.machine" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Total Cursors by machine (Top 10) [Metricbeat Oracle]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "62fb9430-ec0f-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:19.365Z", + "version": "WzMyNjUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/68ce1940-ec10-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/68ce1940-ec10-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..1a4fc1ca57e1 --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/68ce1940-ec10-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,63 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "DB Blocks Gets by buffer pool (Top 10) [Metricbeat Oracle]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": 0.5, + "formatter": "number", + "id": "1547f520-ec10-11e9-bea4-bdae5d622976", + "label": "DB Blocks gets", + "line_width": 1, + "metrics": [ + { + "field": "oracle.performance.cache.get.db_blocks", + "id": "1547f521-ec10-11e9-bea4-bdae5d622976", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "oracle.performance.buffer_pool" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "DB Blocks Gets by buffer pool (Top 10) [Metricbeat Oracle]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "68ce1940-ec10-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:19.365Z", + "version": "WzMyNzEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/981779d0-9bfc-11e9-a61b-f742ed613c57.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/981779d0-9bfc-11e9-a61b-f742ed613c57.json new file mode 100644 index 000000000000..b3fdbf6262c2 --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/981779d0-9bfc-11e9-a61b-f742ed613c57.json @@ -0,0 +1,95 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Ratio of used space in Tablespaces [Metricbeat Oracle]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "bar_color_rules": [ + { + "id": "70de46f0-9bfc-11e9-baad-815beb8da1b5" + } + ], + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "percent", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "oracle.tablespace.space.used.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "oracle.tablespace.space.total.bytes", + "id": "37c93d70-9bfc-11e9-baad-815beb8da1b5", + "type": "avg" + }, + { + "denominator": "2", + "field": "oracle.tablespace.space.total.bytes", + "id": "0d474830-9bfc-11e9-baad-815beb8da1b5", + "numerator": "1", + "script": "params.used / params.total", + "type": "math", + "variables": [ + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "34e8d9d0-9bfc-11e9-baad-815beb8da1b5", + "name": "used" + }, + { + "field": "37c93d70-9bfc-11e9-baad-815beb8da1b5", + "id": "467fdf40-9bfc-11e9-baad-815beb8da1b5", + "name": "total" + } + ] + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "oracle.tablespace.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "top_n", + "use_kibana_indexes": false + }, + "title": "Ratio of used space in Tablespaces [Metricbeat Oracle]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "981779d0-9bfc-11e9-a61b-f742ed613c57", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:20.355Z", + "version": "WzMyODAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/bc977600-ec12-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/bc977600-ec12-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..abf0296558a7 --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/bc977600-ec12-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,123 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Cursors cache hit ratio gauge [Metricbeat Oracle]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 50": "rgb(0,104,55)", + "50 - 75": "rgb(255,255,190)", + "75 - 100": "rgb(165,0,38)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Cursors cache hit ratio", + "field": "oracle.performance.cursors.cache_hit.pct" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "x": null, + "y": [ + { + "accessor": 0, + "aggType": "avg", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "gauge": { + "alignment": "automatic", + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 0.5 + }, + { + "from": 0.5, + "to": 0.75 + }, + { + "from": 0.75, + "to": 1 + } + ], + "extendRange": true, + "gaugeColorMode": "Labels", + "gaugeStyle": "Full", + "gaugeType": "Arc", + "invertColors": false, + "labels": { + "color": "black", + "show": false + }, + "orientation": "vertical", + "percentageMode": true, + "scale": { + "color": "rgba(105,112,125,0.2)", + "labels": false, + "show": true + }, + "style": { + "bgColor": true, + "bgFill": "rgba(105,112,125,0.2)", + "bgMask": false, + "bgWidth": 0.9, + "fontSize": 60, + "mask": false, + "maskBars": 50, + "subText": "", + "width": 0.9 + }, + "type": "meter" + }, + "isDisplayWarning": false, + "type": "gauge" + }, + "title": "Cursors cache hit ratio gauge [Metricbeat Oracle]", + "type": "gauge" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "bc977600-ec12-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:19.365Z", + "version": "WzMyNzUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/c46de8c0-ec10-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/c46de8c0-ec10-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..b41554f27e15 --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/c46de8c0-ec10-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,84 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Total / Real parsed cursors [Metricbeat Oracle]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Real parsed cursors", + "line_width": 1, + "metrics": [ + { + "field": "oracle.performance.cursors.parse.real", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": 0.5, + "formatter": "number", + "id": "a1dae560-ec10-11e9-bea4-bdae5d622976", + "label": "Total parsed cursors", + "line_width": 1, + "metrics": [ + { + "field": "oracle.performance.cursors.parse.total", + "id": "a1dae561-ec10-11e9-bea4-bdae5d622976", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Total / Real parsed cursors [Metricbeat Oracle]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c46de8c0-ec10-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:19.365Z", + "version": "WzMyNzMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/c92efe60-9bef-11e9-a61b-f742ed613c57.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/c92efe60-9bef-11e9-a61b-f742ed613c57.json new file mode 100644 index 000000000000..d7c0d9c20752 --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/c92efe60-9bef-11e9-a61b-f742ed613c57.json @@ -0,0 +1,68 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Avg data file size by filename [Metricbeat Oracle]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "auto", + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Data file size by filename", + "line_width": 1, + "metrics": [ + { + "agg_with": "noop", + "field": "oracle.tablespace.data_file.size.bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "order": "desc", + "size": 1, + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "stacked", + "terms_field": "oracle.tablespace.data_file.name", + "terms_order_by": "61ca57f2-469d-11e7-af02-69e470af7417" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Avg data file size by filename [Metricbeat Oracle]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "c92efe60-9bef-11e9-a61b-f742ed613c57", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:20.355Z", + "version": "WzMyNzcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/ec2b2010-ec0d-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/ec2b2010-ec0d-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..87cf10e33a4e --- /dev/null +++ b/x-pack/metricbeat/module/oracle/_meta/kibana/7/visualization/ec2b2010-ec0d-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,124 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Cache Buffer Hit Ratio gauge [Metricbeat Oracle]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 50": "rgb(165,0,38)", + "50 - 75": "rgb(255,255,190)", + "75 - 100": "rgb(0,104,55)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Cache Buffer Hit Ratio", + "field": "oracle.performance.cache.buffer.hit.pct" + }, + "schema": "metric", + "type": "avg" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "x": null, + "y": [ + { + "accessor": 0, + "aggType": "avg", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "gauge": { + "alignment": "automatic", + "backStyle": "Full", + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 0.5 + }, + { + "from": 0.5, + "to": 0.75 + }, + { + "from": 0.75, + "to": 1 + } + ], + "extendRange": true, + "gaugeColorMode": "Labels", + "gaugeStyle": "Full", + "gaugeType": "Arc", + "invertColors": true, + "labels": { + "color": "black", + "show": true + }, + "orientation": "vertical", + "percentageMode": true, + "scale": { + "color": "rgba(105,112,125,0.2)", + "labels": false, + "show": true + }, + "style": { + "bgColor": true, + "bgFill": "rgba(105,112,125,0.2)", + "bgMask": false, + "bgWidth": 0.9, + "fontSize": 60, + "labelColor": true, + "mask": false, + "maskBars": 50, + "subText": "", + "width": 0.9 + }, + "type": "meter" + }, + "isDisplayWarning": false, + "type": "gauge" + }, + "title": "Cache Buffer Hit Ratio gauge [Metricbeat Oracle]", + "type": "gauge" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "ec2b2010-ec0d-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:30:19.365Z", + "version": "WzMyNjYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/dashboard/8da53a40-5a2f-11ea-bc69-cdcc68092a57.json b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/dashboard/8da53a40-5a2f-11ea-bc69-cdcc68092a57.json new file mode 100644 index 000000000000..498befe8f523 --- /dev/null +++ b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/dashboard/8da53a40-5a2f-11ea-bc69-cdcc68092a57.json @@ -0,0 +1,286 @@ +{ + "attributes": { + "description": "Overview of Redis Enterprise dashboard", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "bdd26554-0293-4928-9751-f7304d9fbc74", + "w": 9, + "x": 0, + "y": 0 + }, + "panelIndex": "bdd26554-0293-4928-9751-f7304d9fbc74", + "panelRefName": "panel_0", + "title": "", + "version": "7.1.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "4aa7a92c-1705-40ee-9f53-478610ea34f0", + "w": 8, + "x": 9, + "y": 0 + }, + "panelIndex": "4aa7a92c-1705-40ee-9f53-478610ea34f0", + "panelRefName": "panel_1", + "title": "System CPU time", + "version": "7.1.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "431e4d28-f8be-46a3-8079-d562e644bae1", + "w": 8, + "x": 17, + "y": 0 + }, + "panelIndex": "431e4d28-f8be-46a3-8079-d562e644bae1", + "panelRefName": "panel_2", + "title": "User CPU time", + "version": "7.1.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "192540d9-3c81-495d-ba22-2b1d96841ba7", + "w": 7, + "x": 25, + "y": 0 + }, + "panelIndex": "192540d9-3c81-495d-ba22-2b1d96841ba7", + "panelRefName": "panel_3", + "title": "Node free memory", + "version": "7.1.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "666f6222-3542-42b0-9085-7e93224c3998", + "w": 8, + "x": 32, + "y": 0 + }, + "panelIndex": "666f6222-3542-42b0-9085-7e93224c3998", + "panelRefName": "panel_4", + "title": "Free persistent disk space", + "version": "7.1.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "9d84abb9-cc6d-4d78-b2a4-ca77b942cf5c", + "w": 8, + "x": 40, + "y": 0 + }, + "panelIndex": "9d84abb9-cc6d-4d78-b2a4-ca77b942cf5c", + "panelRefName": "panel_5", + "title": "Free ephemeral disk space", + "version": "7.1.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "86afca72-c2a2-4d20-af63-7e74220df79c", + "w": 16, + "x": 0, + "y": 8 + }, + "panelIndex": "86afca72-c2a2-4d20-af63-7e74220df79c", + "panelRefName": "panel_6", + "title": "Rate of incoming/outgoing network traffic", + "version": "7.1.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "aab5878f-0105-4be9-aaea-1951de591ec8", + "w": 16, + "x": 16, + "y": 8 + }, + "panelIndex": "aab5878f-0105-4be9-aaea-1951de591ec8", + "panelRefName": "panel_7", + "title": "Total requests", + "version": "7.1.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "c520c103-f16f-4490-ab07-3fbd38681c94", + "w": 16, + "x": 32, + "y": 8 + }, + "panelIndex": "c520c103-f16f-4490-ab07-3fbd38681c94", + "panelRefName": "panel_8", + "title": "Connections", + "version": "7.1.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "52d5e0f2-8c7d-42a0-b0d7-3bff758034bd", + "w": 16, + "x": 0, + "y": 25 + }, + "panelIndex": "52d5e0f2-8c7d-42a0-b0d7-3bff758034bd", + "panelRefName": "panel_9", + "title": "GET/SET commands", + "version": "7.1.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "8d97e4fa-7929-42b6-bcd1-c73a0ec6ceea", + "w": 16, + "x": 16, + "y": 25 + }, + "panelIndex": "8d97e4fa-7929-42b6-bcd1-c73a0ec6ceea", + "panelRefName": "panel_10", + "title": "Other commands", + "version": "7.1.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 17, + "i": "0f739671-dfbe-4ec9-8468-d5b2b9aad001", + "w": 16, + "x": 32, + "y": 25 + }, + "panelIndex": "0f739671-dfbe-4ec9-8468-d5b2b9aad001", + "panelRefName": "panel_11", + "title": "Listener latency", + "version": "7.1.0" + } + ], + "timeRestore": false, + "title": "[Metricbeat Redis Enterprise] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "8da53a40-5a2f-11ea-bc69-cdcc68092a57", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "b96c3b00-5c92-11ea-b0b5-8133f1152545", + "name": "panel_0", + "type": "visualization" + }, + { + "id": "8cba84c0-5a32-11ea-bc69-cdcc68092a57", + "name": "panel_1", + "type": "visualization" + }, + { + "id": "9ddea420-5a32-11ea-bc69-cdcc68092a57", + "name": "panel_2", + "type": "visualization" + }, + { + "id": "49c7dbf0-5a36-11ea-bc69-cdcc68092a57", + "name": "panel_3", + "type": "visualization" + }, + { + "id": "14f6de30-5c7a-11ea-b0b5-8133f1152545", + "name": "panel_4", + "type": "visualization" + }, + { + "id": "2d7ec670-5c7a-11ea-b0b5-8133f1152545", + "name": "panel_5", + "type": "visualization" + }, + { + "id": "f6c6d0e0-5a36-11ea-bc69-cdcc68092a57", + "name": "panel_6", + "type": "visualization" + }, + { + "id": "6c861200-5c7b-11ea-b0b5-8133f1152545", + "name": "panel_7", + "type": "visualization" + }, + { + "id": "b5621150-5c7a-11ea-b0b5-8133f1152545", + "name": "panel_8", + "type": "visualization" + }, + { + "id": "3c776b90-5c80-11ea-b0b5-8133f1152545", + "name": "panel_9", + "type": "visualization" + }, + { + "id": "837f9fd0-5c80-11ea-b0b5-8133f1152545", + "name": "panel_10", + "type": "visualization" + }, + { + "id": "a452c8c0-5c96-11ea-b0b5-8133f1152545", + "name": "panel_11", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:31:50.654Z", + "version": "WzQxNDIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/dashboard/Metricbeat-redisenterprise-overview.ndjson b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/dashboard/Metricbeat-redisenterprise-overview.ndjson deleted file mode 100644 index 6cb7d451373f..000000000000 --- a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/dashboard/Metricbeat-redisenterprise-overview.ndjson +++ /dev/null @@ -1,13 +0,0 @@ -{"attributes":{"description":"Select cluster/node based on its name","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Cluster/node selector [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"controls\":[{\"fieldName\":\"prometheus.labels.cluster\",\"id\":\"1583159394252\",\"indexPatternRefName\":\"control_0_index_pattern\",\"label\":\"cluster name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":false,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"},{\"fieldName\":\"prometheus.labels.node\",\"id\":\"1583250395046\",\"indexPatternRefName\":\"control_1_index_pattern\",\"label\":\"node name\",\"options\":{\"dynamicOptions\":true,\"multiselect\":true,\"order\":\"desc\",\"size\":5,\"type\":\"terms\"},\"parent\":\"\",\"type\":\"list\"}],\"pinFilters\":false,\"updateFiltersOnChange\":true,\"useTimeFilter\":false},\"title\":\"Cluster/node selector [Metricbeat Redis Enterprise]\",\"type\":\"input_control_vis\"}"},"coreMigrationVersion":"8.0.0","id":"b96c3b00-5c92-11ea-b0b5-8133f1152545","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"metricbeat-*","name":"control_0_index_pattern","type":"index-pattern"},{"id":"metricbeat-*","name":"control_1_index_pattern","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNDMsMV0="} -{"attributes":{"description":"System CPU time","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"System CPU time [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"1\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"gauge_color_rules\":[{\"id\":\"c743b7b0-5a32-11ea-89da-eba74ed7a082\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":\"0.5\",\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"system\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_cpu_system\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"System CPU time [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"8cba84c0-5a32-11ea-bc69-cdcc68092a57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNDQsMV0="} -{"attributes":{"description":"User CPU time","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"User CPU time [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"1\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(104,204,202,1)\",\"fill\":\"0.5\",\"formatter\":\"percent\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"user\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_cpu_user\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"gauge\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"User CPU time [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9ddea420-5a32-11ea-bc69-cdcc68092a57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNDUsMV0="} -{"attributes":{"description":"Node free memory","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Node free memory [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4493a7d0-5a37-11ea-83f4-dbbc99caa7c0\"}],\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Free memory\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_free_memory\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Node free memory [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"49c7dbf0-5a36-11ea-bc69-cdcc68092a57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNDYsMV0="} -{"attributes":{"description":"Free disk space on configured persistent disk","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Free persistent disk space [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4493a7d0-5a37-11ea-83f4-dbbc99caa7c0\"}],\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Free persistent\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_persistent_storage_free\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Free persistent disk space [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"14f6de30-5c7a-11ea-b0b5-8133f1152545","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNDcsMV0="} -{"attributes":{"description":"Free disk space on configured ephemeral disk","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Free ephemeral disk space [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4493a7d0-5a37-11ea-83f4-dbbc99caa7c0\"}],\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Free ephemeral\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_ephemeral_storage_free\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Free ephemeral disk space [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"2d7ec670-5c7a-11ea-b0b5-8133f1152545","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNDgsMV0="} -{"attributes":{"description":"Rate of incoming/outgoing network traffic","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Rate of incoming/outgoing network traffic [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(0,156,224,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Node ingress\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_ingress_bytes\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(211,49,21,1)\",\"fill\":\"0.5\",\"formatter\":\"bytes\",\"id\":\"cc4a9810-5c93-11ea-a0a2-61bf5e1bd67b\",\"label\":\"Node egress\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_egress_bytes\",\"id\":\"cc4a9811-5c93-11ea-a0a2-61bf5e1bd67b\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Rate of incoming/outgoing network traffic [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"f6c6d0e0-5a36-11ea-bc69-cdcc68092a57","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNDksMV0="} -{"attributes":{"description":"Request rate handled by endpoints on node","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total requests (ops/sec) [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4493a7d0-5a37-11ea-83f4-dbbc99caa7c0\"}],\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(12,121,125,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total requests (ops/sec)\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_total_req\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Total requests (ops/sec) [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"6c861200-5c7b-11ea-b0b5-8133f1152545","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNTAsMV0="} -{"attributes":{"description":"Number of clients connected to endpoints on node","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Connections [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4493a7d0-5a37-11ea-83f4-dbbc99caa7c0\"}],\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(123,100,255,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Connections\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.node_conns\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Connections [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b5621150-5c7a-11ea-b0b5-8133f1152545","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNTEsMV0="} -{"attributes":{"description":"Number of memcached GET/SET commands sent to the DB","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"GET/SET commands [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4493a7d0-5a37-11ea-83f4-dbbc99caa7c0\"}],\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(22,165,165,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"GET\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.listener_cmd_get\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.proxy\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"90e3af50-5c93-11ea-a0a2-61bf5e1bd67b\",\"label\":\"SET\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.listener_cmd_set\",\"id\":\"90e3af51-5c93-11ea-a0a2-61bf5e1bd67b\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.proxy\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"GET/SET commands [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"3c776b90-5c80-11ea-b0b5-8133f1152545","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNTIsMV0="} -{"attributes":{"description":"Number of memcached commands sent to the DB","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Other commands [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4493a7d0-5a37-11ea-83f4-dbbc99caa7c0\"}],\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"TOUCH\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.listener_cmd_touch\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.proxy\",\"type\":\"timeseries\",\"value_template\":\"{{value}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(252,220,0,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"0576cfe0-5c90-11ea-83c6-4f084e5b49b0\",\"label\":\"FLUSH\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.listener_cmd_flush\",\"id\":\"0576cfe1-5c90-11ea-83c6-4f084e5b49b0\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.proxy\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(164,221,0,1)\",\"fill\":\"0.5\",\"formatter\":\"number\",\"id\":\"22e43a90-5c90-11ea-83c6-4f084e5b49b0\",\"label\":\"AUTH\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.listener_auth_cmds\",\"id\":\"22e43a91-5c90-11ea-83c6-4f084e5b49b0\",\"type\":\"avg\"}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.proxy\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Other commands [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"837f9fd0-5c80-11ea-b0b5-8133f1152545","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNTMsMV0="} -{"attributes":{"description":"Average latency of all types of commands on DB","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Listener latency [Metricbeat Redis Enterprise]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"annotations\":[{\"color\":\"#F00\",\"fields\":\"\",\"icon\":\"fa-tag\",\"id\":\"5cc43a90-5a32-11ea-94fe-9d9d001ff143\",\"ignore_global_filters\":1,\"ignore_panel_filters\":1,\"index_pattern\":\"*\",\"query_string\":{\"language\":\"kuery\",\"query\":\"\"},\"template\":\"\"}],\"axis_formatter\":\"number\",\"axis_max\":\"\",\"axis_min\":\"0\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"id\":\"4493a7d0-5a37-11ea-83f4-dbbc99caa7c0\"}],\"bar_color_rules\":[{\"id\":\"69b152e0-5c96-11ea-a0a2-61bf5e1bd67b\"}],\"gauge_color_rules\":[{\"id\":\"d5c40740-5a32-11ea-94fe-9d9d001ff143\"}],\"gauge_inner_width\":10,\"gauge_style\":\"half\",\"gauge_width\":10,\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"1m\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(12,121,125,1)\",\"fill\":\"0.5\",\"formatter\":\"ms,ms,\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Latency\",\"line_width\":\"1\",\"metrics\":[{\"field\":\"prometheus.metrics.listener_acc_latency\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"prometheus.metrics.listener_total_res\",\"id\":\"37d10ba0-5c99-11ea-a0a2-61bf5e1bd67b\",\"type\":\"avg\"},{\"id\":\"12007b60-5c97-11ea-a0a2-61bf5e1bd67b\",\"script\":\"params.listener_acc_latency != null && params.listener_total_res > 0 ? params.listener_acc_latency/params.listener_total_res : null\",\"type\":\"calculation\",\"variables\":[{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"144dedd0-5c97-11ea-a0a2-61bf5e1bd67b\",\"name\":\"listener_acc_latency\"},{\"field\":\"37d10ba0-5c99-11ea-a0a2-61bf5e1bd67b\",\"id\":\"bf706520-5c98-11ea-a0a2-61bf5e1bd67b\",\"name\":\"listener_total_res\"}]}],\"point_size\":\"1\",\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"prometheus.labels.node\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Listener latency [Metricbeat Redis Enterprise]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"a452c8c0-5c96-11ea-b0b5-8133f1152545","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNTQsMV0="} -{"attributes":{"description":"Overview of Redis Enterprise dashboard","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.1.0\",\"gridData\":{\"h\":8,\"i\":\"bdd26554-0293-4928-9751-f7304d9fbc74\",\"w\":9,\"x\":0,\"y\":0},\"panelIndex\":\"bdd26554-0293-4928-9751-f7304d9fbc74\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"\",\"panelRefName\":\"panel_0\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":8,\"i\":\"4aa7a92c-1705-40ee-9f53-478610ea34f0\",\"w\":8,\"x\":9,\"y\":0},\"panelIndex\":\"4aa7a92c-1705-40ee-9f53-478610ea34f0\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"System CPU time\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":8,\"i\":\"431e4d28-f8be-46a3-8079-d562e644bae1\",\"w\":8,\"x\":17,\"y\":0},\"panelIndex\":\"431e4d28-f8be-46a3-8079-d562e644bae1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"User CPU time\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":8,\"i\":\"192540d9-3c81-495d-ba22-2b1d96841ba7\",\"w\":7,\"x\":25,\"y\":0},\"panelIndex\":\"192540d9-3c81-495d-ba22-2b1d96841ba7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Node free memory\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":8,\"i\":\"666f6222-3542-42b0-9085-7e93224c3998\",\"w\":8,\"x\":32,\"y\":0},\"panelIndex\":\"666f6222-3542-42b0-9085-7e93224c3998\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Free persistent disk space\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":8,\"i\":\"9d84abb9-cc6d-4d78-b2a4-ca77b942cf5c\",\"w\":8,\"x\":40,\"y\":0},\"panelIndex\":\"9d84abb9-cc6d-4d78-b2a4-ca77b942cf5c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Free ephemeral disk space\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":17,\"i\":\"86afca72-c2a2-4d20-af63-7e74220df79c\",\"w\":16,\"x\":0,\"y\":8},\"panelIndex\":\"86afca72-c2a2-4d20-af63-7e74220df79c\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Rate of incoming/outgoing network traffic\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":17,\"i\":\"aab5878f-0105-4be9-aaea-1951de591ec8\",\"w\":16,\"x\":16,\"y\":8},\"panelIndex\":\"aab5878f-0105-4be9-aaea-1951de591ec8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total requests\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":17,\"i\":\"c520c103-f16f-4490-ab07-3fbd38681c94\",\"w\":16,\"x\":32,\"y\":8},\"panelIndex\":\"c520c103-f16f-4490-ab07-3fbd38681c94\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Connections\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":17,\"i\":\"52d5e0f2-8c7d-42a0-b0d7-3bff758034bd\",\"w\":16,\"x\":0,\"y\":25},\"panelIndex\":\"52d5e0f2-8c7d-42a0-b0d7-3bff758034bd\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"GET/SET commands\",\"panelRefName\":\"panel_9\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":17,\"i\":\"8d97e4fa-7929-42b6-bcd1-c73a0ec6ceea\",\"w\":16,\"x\":16,\"y\":25},\"panelIndex\":\"8d97e4fa-7929-42b6-bcd1-c73a0ec6ceea\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Other commands\",\"panelRefName\":\"panel_10\"},{\"version\":\"7.1.0\",\"gridData\":{\"h\":17,\"i\":\"0f739671-dfbe-4ec9-8468-d5b2b9aad001\",\"w\":16,\"x\":32,\"y\":25},\"panelIndex\":\"0f739671-dfbe-4ec9-8468-d5b2b9aad001\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Listener latency\",\"panelRefName\":\"panel_11\"}]","timeRestore":false,"title":"[Metricbeat Redis Enterprise] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"8da53a40-5a2f-11ea-bc69-cdcc68092a57","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"b96c3b00-5c92-11ea-b0b5-8133f1152545","name":"panel_0","type":"visualization"},{"id":"8cba84c0-5a32-11ea-bc69-cdcc68092a57","name":"panel_1","type":"visualization"},{"id":"9ddea420-5a32-11ea-bc69-cdcc68092a57","name":"panel_2","type":"visualization"},{"id":"49c7dbf0-5a36-11ea-bc69-cdcc68092a57","name":"panel_3","type":"visualization"},{"id":"14f6de30-5c7a-11ea-b0b5-8133f1152545","name":"panel_4","type":"visualization"},{"id":"2d7ec670-5c7a-11ea-b0b5-8133f1152545","name":"panel_5","type":"visualization"},{"id":"f6c6d0e0-5a36-11ea-bc69-cdcc68092a57","name":"panel_6","type":"visualization"},{"id":"6c861200-5c7b-11ea-b0b5-8133f1152545","name":"panel_7","type":"visualization"},{"id":"b5621150-5c7a-11ea-b0b5-8133f1152545","name":"panel_8","type":"visualization"},{"id":"3c776b90-5c80-11ea-b0b5-8133f1152545","name":"panel_9","type":"visualization"},{"id":"837f9fd0-5c80-11ea-b0b5-8133f1152545","name":"panel_10","type":"visualization"},{"id":"a452c8c0-5c96-11ea-b0b5-8133f1152545","name":"panel_11","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:31:50.654Z","version":"WzQxNDIsMV0="} diff --git a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/14f6de30-5c7a-11ea-b0b5-8133f1152545.json b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/14f6de30-5c7a-11ea-b0b5-8133f1152545.json new file mode 100644 index 000000000000..87af18920b09 --- /dev/null +++ b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/14f6de30-5c7a-11ea-b0b5-8133f1152545.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "Free disk space on configured persistent disk", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Free persistent disk space [Metricbeat Redis Enterprise]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [ + { + "color": "#F00", + "fields": "", + "icon": "fa-tag", + "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", + "ignore_global_filters": 1, + "ignore_panel_filters": 1, + "index_pattern": "*", + "query_string": { + "language": "kuery", + "query": "" + }, + "template": "" + } + ], + "axis_formatter": "number", + "axis_max": "", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "4493a7d0-5a37-11ea-83f4-dbbc99caa7c0" + } + ], + "gauge_color_rules": [ + { + "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": "0.5", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Free persistent", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.node_persistent_storage_free", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "prometheus.labels.node", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Free persistent disk space [Metricbeat Redis Enterprise]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "14f6de30-5c7a-11ea-b0b5-8133f1152545", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:50.654Z", + "version": "WzQxNDcsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/2d7ec670-5c7a-11ea-b0b5-8133f1152545.json b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/2d7ec670-5c7a-11ea-b0b5-8133f1152545.json new file mode 100644 index 000000000000..2ac3c5c30d1a --- /dev/null +++ b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/2d7ec670-5c7a-11ea-b0b5-8133f1152545.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "Free disk space on configured ephemeral disk", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Free ephemeral disk space [Metricbeat Redis Enterprise]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [ + { + "color": "#F00", + "fields": "", + "icon": "fa-tag", + "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", + "ignore_global_filters": 1, + "ignore_panel_filters": 1, + "index_pattern": "*", + "query_string": { + "language": "kuery", + "query": "" + }, + "template": "" + } + ], + "axis_formatter": "number", + "axis_max": "", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "4493a7d0-5a37-11ea-83f4-dbbc99caa7c0" + } + ], + "gauge_color_rules": [ + { + "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": "0.5", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Free ephemeral", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.node_ephemeral_storage_free", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "prometheus.labels.node", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Free ephemeral disk space [Metricbeat Redis Enterprise]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "2d7ec670-5c7a-11ea-b0b5-8133f1152545", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:50.654Z", + "version": "WzQxNDgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/3c776b90-5c80-11ea-b0b5-8133f1152545.json b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/3c776b90-5c80-11ea-b0b5-8133f1152545.json new file mode 100644 index 000000000000..c55b5bf0dca5 --- /dev/null +++ b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/3c776b90-5c80-11ea-b0b5-8133f1152545.json @@ -0,0 +1,123 @@ +{ + "attributes": { + "description": "Number of memcached GET/SET commands sent to the DB", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "GET/SET commands [Metricbeat Redis Enterprise]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [ + { + "color": "#F00", + "fields": "", + "icon": "fa-tag", + "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", + "ignore_global_filters": 1, + "ignore_panel_filters": 1, + "index_pattern": "*", + "query_string": { + "language": "kuery", + "query": "" + }, + "template": "" + } + ], + "axis_formatter": "number", + "axis_max": "", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "4493a7d0-5a37-11ea-83f4-dbbc99caa7c0" + } + ], + "gauge_color_rules": [ + { + "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(22,165,165,1)", + "fill": "0.5", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "GET", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.listener_cmd_get", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "prometheus.labels.proxy", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": "0.5", + "formatter": "number", + "id": "90e3af50-5c93-11ea-a0a2-61bf5e1bd67b", + "label": "SET", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.listener_cmd_set", + "id": "90e3af51-5c93-11ea-a0a2-61bf5e1bd67b", + "type": "avg" + } + ], + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "prometheus.labels.proxy", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "GET/SET commands [Metricbeat Redis Enterprise]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "3c776b90-5c80-11ea-b0b5-8133f1152545", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:50.654Z", + "version": "WzQxNTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/49c7dbf0-5a36-11ea-bc69-cdcc68092a57.json b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/49c7dbf0-5a36-11ea-bc69-cdcc68092a57.json new file mode 100644 index 000000000000..1d998ea60210 --- /dev/null +++ b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/49c7dbf0-5a36-11ea-bc69-cdcc68092a57.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "description": "Node free memory", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Node free memory [Metricbeat Redis Enterprise]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [ + { + "color": "#F00", + "fields": "", + "icon": "fa-tag", + "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", + "ignore_global_filters": 1, + "ignore_panel_filters": 1, + "index_pattern": "*", + "query_string": { + "language": "kuery", + "query": "" + }, + "template": "" + } + ], + "axis_formatter": "number", + "axis_max": "", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "4493a7d0-5a37-11ea-83f4-dbbc99caa7c0" + } + ], + "gauge_color_rules": [ + { + "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": "0.5", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Free memory", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.node_free_memory", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "prometheus.labels.node", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Node free memory [Metricbeat Redis Enterprise]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "49c7dbf0-5a36-11ea-bc69-cdcc68092a57", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:50.654Z", + "version": "WzQxNDYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/6c861200-5c7b-11ea-b0b5-8133f1152545.json b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/6c861200-5c7b-11ea-b0b5-8133f1152545.json new file mode 100644 index 000000000000..c62dd3718359 --- /dev/null +++ b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/6c861200-5c7b-11ea-b0b5-8133f1152545.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "Request rate handled by endpoints on node", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Total requests (ops/sec) [Metricbeat Redis Enterprise]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [ + { + "color": "#F00", + "fields": "", + "icon": "fa-tag", + "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", + "ignore_global_filters": 1, + "ignore_panel_filters": 1, + "index_pattern": "*", + "query_string": { + "language": "kuery", + "query": "" + }, + "template": "" + } + ], + "axis_formatter": "number", + "axis_max": "", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "4493a7d0-5a37-11ea-83f4-dbbc99caa7c0" + } + ], + "gauge_color_rules": [ + { + "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(12,121,125,1)", + "fill": "0.5", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Total requests (ops/sec)", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.node_total_req", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "prometheus.labels.node", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Total requests (ops/sec) [Metricbeat Redis Enterprise]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "6c861200-5c7b-11ea-b0b5-8133f1152545", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:50.654Z", + "version": "WzQxNTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/837f9fd0-5c80-11ea-b0b5-8133f1152545.json b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/837f9fd0-5c80-11ea-b0b5-8133f1152545.json new file mode 100644 index 000000000000..5017ee4b33ea --- /dev/null +++ b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/837f9fd0-5c80-11ea-b0b5-8133f1152545.json @@ -0,0 +1,149 @@ +{ + "attributes": { + "description": "Number of memcached commands sent to the DB", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Other commands [Metricbeat Redis Enterprise]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [ + { + "color": "#F00", + "fields": "", + "icon": "fa-tag", + "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", + "ignore_global_filters": 1, + "ignore_panel_filters": 1, + "index_pattern": "*", + "query_string": { + "language": "kuery", + "query": "" + }, + "template": "" + } + ], + "axis_formatter": "number", + "axis_max": "", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "4493a7d0-5a37-11ea-83f4-dbbc99caa7c0" + } + ], + "gauge_color_rules": [ + { + "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": "0.5", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "TOUCH", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.listener_cmd_touch", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "prometheus.labels.proxy", + "type": "timeseries", + "value_template": "{{value}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(252,220,0,1)", + "fill": "0.5", + "formatter": "number", + "id": "0576cfe0-5c90-11ea-83c6-4f084e5b49b0", + "label": "FLUSH", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.listener_cmd_flush", + "id": "0576cfe1-5c90-11ea-83c6-4f084e5b49b0", + "type": "avg" + } + ], + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "prometheus.labels.proxy", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(164,221,0,1)", + "fill": "0.5", + "formatter": "number", + "id": "22e43a90-5c90-11ea-83c6-4f084e5b49b0", + "label": "AUTH", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.listener_auth_cmds", + "id": "22e43a91-5c90-11ea-83c6-4f084e5b49b0", + "type": "avg" + } + ], + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "prometheus.labels.proxy", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Other commands [Metricbeat Redis Enterprise]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "837f9fd0-5c80-11ea-b0b5-8133f1152545", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:50.654Z", + "version": "WzQxNTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/8cba84c0-5a32-11ea-bc69-cdcc68092a57.json b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/8cba84c0-5a32-11ea-bc69-cdcc68092a57.json new file mode 100644 index 000000000000..3fe05bde5738 --- /dev/null +++ b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/8cba84c0-5a32-11ea-bc69-cdcc68092a57.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "System CPU time", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "System CPU time [Metricbeat Redis Enterprise]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [ + { + "color": "#F00", + "fields": "", + "icon": "fa-tag", + "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", + "ignore_global_filters": 1, + "ignore_panel_filters": 1, + "index_pattern": "*", + "query_string": { + "language": "kuery", + "query": "" + }, + "template": "" + } + ], + "axis_formatter": "number", + "axis_max": "1", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "gauge_color_rules": [ + { + "id": "c743b7b0-5a32-11ea-89da-eba74ed7a082" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": "0.5", + "formatter": "percent", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "system", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.node_cpu_system", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "prometheus.labels.node", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "System CPU time [Metricbeat Redis Enterprise]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "8cba84c0-5a32-11ea-bc69-cdcc68092a57", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:50.654Z", + "version": "WzQxNDQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/9ddea420-5a32-11ea-bc69-cdcc68092a57.json b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/9ddea420-5a32-11ea-bc69-cdcc68092a57.json new file mode 100644 index 000000000000..685d04084c7d --- /dev/null +++ b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/9ddea420-5a32-11ea-bc69-cdcc68092a57.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "description": "User CPU time", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "User CPU time [Metricbeat Redis Enterprise]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [ + { + "color": "#F00", + "fields": "", + "icon": "fa-tag", + "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", + "ignore_global_filters": 1, + "ignore_panel_filters": 1, + "index_pattern": "*", + "query_string": { + "language": "kuery", + "query": "" + }, + "template": "" + } + ], + "axis_formatter": "number", + "axis_max": "1", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "gauge_color_rules": [ + { + "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(104,204,202,1)", + "fill": "0.5", + "formatter": "percent", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "user", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.node_cpu_user", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "prometheus.labels.node", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "gauge", + "use_kibana_indexes": false + }, + "title": "User CPU time [Metricbeat Redis Enterprise]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9ddea420-5a32-11ea-bc69-cdcc68092a57", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:50.654Z", + "version": "WzQxNDUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/a452c8c0-5c96-11ea-b0b5-8133f1152545.json b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/a452c8c0-5c96-11ea-b0b5-8133f1152545.json new file mode 100644 index 000000000000..1fe960b14a69 --- /dev/null +++ b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/a452c8c0-5c96-11ea-b0b5-8133f1152545.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "description": "Average latency of all types of commands on DB", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Listener latency [Metricbeat Redis Enterprise]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [ + { + "color": "#F00", + "fields": "", + "icon": "fa-tag", + "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", + "ignore_global_filters": 1, + "ignore_panel_filters": 1, + "index_pattern": "*", + "query_string": { + "language": "kuery", + "query": "" + }, + "template": "" + } + ], + "axis_formatter": "number", + "axis_max": "", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "4493a7d0-5a37-11ea-83f4-dbbc99caa7c0" + } + ], + "bar_color_rules": [ + { + "id": "69b152e0-5c96-11ea-a0a2-61bf5e1bd67b" + } + ], + "gauge_color_rules": [ + { + "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(12,121,125,1)", + "fill": "0.5", + "formatter": "ms,ms,", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Latency", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.listener_acc_latency", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "prometheus.metrics.listener_total_res", + "id": "37d10ba0-5c99-11ea-a0a2-61bf5e1bd67b", + "type": "avg" + }, + { + "id": "12007b60-5c97-11ea-a0a2-61bf5e1bd67b", + "script": "params.listener_acc_latency != null && params.listener_total_res > 0 ? params.listener_acc_latency/params.listener_total_res : null", + "type": "calculation", + "variables": [ + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "144dedd0-5c97-11ea-a0a2-61bf5e1bd67b", + "name": "listener_acc_latency" + }, + { + "field": "37d10ba0-5c99-11ea-a0a2-61bf5e1bd67b", + "id": "bf706520-5c98-11ea-a0a2-61bf5e1bd67b", + "name": "listener_total_res" + } + ] + } + ], + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "prometheus.labels.node", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Listener latency [Metricbeat Redis Enterprise]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "a452c8c0-5c96-11ea-b0b5-8133f1152545", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:50.654Z", + "version": "WzQxNTQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/b5621150-5c7a-11ea-b0b5-8133f1152545.json b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/b5621150-5c7a-11ea-b0b5-8133f1152545.json new file mode 100644 index 000000000000..330df81a3d08 --- /dev/null +++ b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/b5621150-5c7a-11ea-b0b5-8133f1152545.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "Number of clients connected to endpoints on node", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Connections [Metricbeat Redis Enterprise]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [ + { + "color": "#F00", + "fields": "", + "icon": "fa-tag", + "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", + "ignore_global_filters": 1, + "ignore_panel_filters": 1, + "index_pattern": "*", + "query_string": { + "language": "kuery", + "query": "" + }, + "template": "" + } + ], + "axis_formatter": "number", + "axis_max": "", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "id": "4493a7d0-5a37-11ea-83f4-dbbc99caa7c0" + } + ], + "gauge_color_rules": [ + { + "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(123,100,255,1)", + "fill": "0.5", + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Connections", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.node_conns", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "prometheus.labels.node", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Connections [Metricbeat Redis Enterprise]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b5621150-5c7a-11ea-b0b5-8133f1152545", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:50.654Z", + "version": "WzQxNTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/b96c3b00-5c92-11ea-b0b5-8133f1152545.json b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/b96c3b00-5c92-11ea-b0b5-8133f1152545.json new file mode 100644 index 000000000000..6f089e405a7e --- /dev/null +++ b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/b96c3b00-5c92-11ea-b0b5-8133f1152545.json @@ -0,0 +1,79 @@ +{ + "attributes": { + "description": "Select cluster/node based on its name", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Cluster/node selector [Metricbeat Redis Enterprise]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "controls": [ + { + "fieldName": "prometheus.labels.cluster", + "id": "1583159394252", + "indexPatternRefName": "control_0_index_pattern", + "label": "cluster name", + "options": { + "dynamicOptions": true, + "multiselect": false, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + }, + { + "fieldName": "prometheus.labels.node", + "id": "1583250395046", + "indexPatternRefName": "control_1_index_pattern", + "label": "node name", + "options": { + "dynamicOptions": true, + "multiselect": true, + "order": "desc", + "size": 5, + "type": "terms" + }, + "parent": "", + "type": "list" + } + ], + "pinFilters": false, + "updateFiltersOnChange": true, + "useTimeFilter": false + }, + "title": "Cluster/node selector [Metricbeat Redis Enterprise]", + "type": "input_control_vis" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b96c3b00-5c92-11ea-b0b5-8133f1152545", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "metricbeat-*", + "name": "control_0_index_pattern", + "type": "index-pattern" + }, + { + "id": "metricbeat-*", + "name": "control_1_index_pattern", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-04T16:31:50.654Z", + "version": "WzQxNDMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/f6c6d0e0-5a36-11ea-bc69-cdcc68092a57.json b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/f6c6d0e0-5a36-11ea-bc69-cdcc68092a57.json new file mode 100644 index 000000000000..b01f5456a7f1 --- /dev/null +++ b/x-pack/metricbeat/module/redisenterprise/_meta/kibana/7/visualization/f6c6d0e0-5a36-11ea-bc69-cdcc68092a57.json @@ -0,0 +1,118 @@ +{ + "attributes": { + "description": "Rate of incoming/outgoing network traffic", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Rate of incoming/outgoing network traffic [Metricbeat Redis Enterprise]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "annotations": [ + { + "color": "#F00", + "fields": "", + "icon": "fa-tag", + "id": "5cc43a90-5a32-11ea-94fe-9d9d001ff143", + "ignore_global_filters": 1, + "ignore_panel_filters": 1, + "index_pattern": "*", + "query_string": { + "language": "kuery", + "query": "" + }, + "template": "" + } + ], + "axis_formatter": "number", + "axis_max": "", + "axis_min": "0", + "axis_position": "left", + "axis_scale": "normal", + "gauge_color_rules": [ + { + "id": "d5c40740-5a32-11ea-94fe-9d9d001ff143" + } + ], + "gauge_inner_width": 10, + "gauge_style": "half", + "gauge_width": 10, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "1m", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(0,156,224,1)", + "fill": "0.5", + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Node ingress", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.node_ingress_bytes", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "prometheus.labels.node", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(211,49,21,1)", + "fill": "0.5", + "formatter": "bytes", + "id": "cc4a9810-5c93-11ea-a0a2-61bf5e1bd67b", + "label": "Node egress", + "line_width": "1", + "metrics": [ + { + "field": "prometheus.metrics.node_egress_bytes", + "id": "cc4a9811-5c93-11ea-a0a2-61bf5e1bd67b", + "type": "avg" + } + ], + "point_size": "1", + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "prometheus.labels.node", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Rate of incoming/outgoing network traffic [Metricbeat Redis Enterprise]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "f6c6d0e0-5a36-11ea-bc69-cdcc68092a57", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:31:50.654Z", + "version": "WzQxNDksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/stan/_meta/kibana/7/dashboard/Metricbeat-STAN-overview.ndjson b/x-pack/metricbeat/module/stan/_meta/kibana/7/dashboard/Metricbeat-STAN-overview.ndjson deleted file mode 100644 index 6baeaf363678..000000000000 --- a/x-pack/metricbeat/module/stan/_meta/kibana/7/dashboard/Metricbeat-STAN-overview.ndjson +++ /dev/null @@ -1,3 +0,0 @@ -{"attributes":{"description":"Number of messages in each channel / subject","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Channel Messages [Metricbeat Stan]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"STAN Queue Messages\",\"line_width\":1,\"metrics\":[{\"field\":\"stan.channels.messages\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"stan.channels.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Channel Messages [Metricbeat Stan]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"46a07ac0-436d-11ea-b0c6-cb14c0977bd1","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:21.442Z","version":"WzMyODMsMV0="} -{"attributes":{"description":"Queue depth of STAN channels, summed per channel","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Channel Queue Depth [Metricbeat Stan]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"bar\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Queue Depth\",\"line_width\":1,\"metrics\":[{\"field\":\"stan.channels.depth\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"max\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"terms\",\"stacked\":\"none\",\"terms_field\":\"stan.channels.name\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Channel Queue Depth [Metricbeat Stan]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"0e412fe0-4371-11ea-b0c6-cb14c0977bd1","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:21.442Z","version":"WzMyODQsMV0="} -{"attributes":{"description":"Metrics for STAN channels / subjects","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.5.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"98c9a793-903a-47af-900b-8becd2493d0a\",\"w\":24,\"x\":24,\"y\":0},\"panelIndex\":\"98c9a793-903a-47af-900b-8becd2493d0a\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_98c9a793-903a-47af-900b-8becd2493d0a\"},{\"version\":\"7.5.2\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"d11727cf-8d05-45ae-9ae0-2f3b79ab7eda\",\"w\":24,\"x\":0,\"y\":0},\"panelIndex\":\"d11727cf-8d05-45ae-9ae0-2f3b79ab7eda\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_d11727cf-8d05-45ae-9ae0-2f3b79ab7eda\"}]","timeRestore":false,"title":"[Metricbeat Stan] Channel Overview Metrics","version":1},"coreMigrationVersion":"8.0.0","id":"b6a60340-4371-11ea-b0c6-cb14c0977bd1","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"46a07ac0-436d-11ea-b0c6-cb14c0977bd1","name":"98c9a793-903a-47af-900b-8becd2493d0a:panel_98c9a793-903a-47af-900b-8becd2493d0a","type":"visualization"},{"id":"0e412fe0-4371-11ea-b0c6-cb14c0977bd1","name":"d11727cf-8d05-45ae-9ae0-2f3b79ab7eda:panel_d11727cf-8d05-45ae-9ae0-2f3b79ab7eda","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:21.442Z","version":"WzMyODIsMV0="} diff --git a/x-pack/metricbeat/module/stan/_meta/kibana/7/dashboard/b6a60340-4371-11ea-b0c6-cb14c0977bd1.json b/x-pack/metricbeat/module/stan/_meta/kibana/7/dashboard/b6a60340-4371-11ea-b0c6-cb14c0977bd1.json new file mode 100644 index 000000000000..bd6b3873465f --- /dev/null +++ b/x-pack/metricbeat/module/stan/_meta/kibana/7/dashboard/b6a60340-4371-11ea-b0c6-cb14c0977bd1.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "Metrics for STAN channels / subjects", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "98c9a793-903a-47af-900b-8becd2493d0a", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "98c9a793-903a-47af-900b-8becd2493d0a", + "panelRefName": "panel_98c9a793-903a-47af-900b-8becd2493d0a", + "type": "visualization", + "version": "7.5.2" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "d11727cf-8d05-45ae-9ae0-2f3b79ab7eda", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "d11727cf-8d05-45ae-9ae0-2f3b79ab7eda", + "panelRefName": "panel_d11727cf-8d05-45ae-9ae0-2f3b79ab7eda", + "type": "visualization", + "version": "7.5.2" + } + ], + "timeRestore": false, + "title": "[Metricbeat Stan] Channel Overview Metrics", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "b6a60340-4371-11ea-b0c6-cb14c0977bd1", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "46a07ac0-436d-11ea-b0c6-cb14c0977bd1", + "name": "98c9a793-903a-47af-900b-8becd2493d0a:panel_98c9a793-903a-47af-900b-8becd2493d0a", + "type": "visualization" + }, + { + "id": "0e412fe0-4371-11ea-b0c6-cb14c0977bd1", + "name": "d11727cf-8d05-45ae-9ae0-2f3b79ab7eda:panel_d11727cf-8d05-45ae-9ae0-2f3b79ab7eda", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:21.442Z", + "version": "WzMyODIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/stan/_meta/kibana/7/visualization/0e412fe0-4371-11ea-b0c6-cb14c0977bd1.json b/x-pack/metricbeat/module/stan/_meta/kibana/7/visualization/0e412fe0-4371-11ea-b0c6-cb14c0977bd1.json new file mode 100644 index 000000000000..1ce14cdf84a2 --- /dev/null +++ b/x-pack/metricbeat/module/stan/_meta/kibana/7/visualization/0e412fe0-4371-11ea-b0c6-cb14c0977bd1.json @@ -0,0 +1,65 @@ +{ + "attributes": { + "description": "Queue depth of STAN channels, summed per channel", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Channel Queue Depth [Metricbeat Stan]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Queue Depth", + "line_width": 1, + "metrics": [ + { + "field": "stan.channels.depth", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "stan.channels.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Channel Queue Depth [Metricbeat Stan]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "0e412fe0-4371-11ea-b0c6-cb14c0977bd1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:21.442Z", + "version": "WzMyODQsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/stan/_meta/kibana/7/visualization/46a07ac0-436d-11ea-b0c6-cb14c0977bd1.json b/x-pack/metricbeat/module/stan/_meta/kibana/7/visualization/46a07ac0-436d-11ea-b0c6-cb14c0977bd1.json new file mode 100644 index 000000000000..989effe58b57 --- /dev/null +++ b/x-pack/metricbeat/module/stan/_meta/kibana/7/visualization/46a07ac0-436d-11ea-b0c6-cb14c0977bd1.json @@ -0,0 +1,65 @@ +{ + "attributes": { + "description": "Number of messages in each channel / subject", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Channel Messages [Metricbeat Stan]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "bar", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "STAN Queue Messages", + "line_width": 1, + "metrics": [ + { + "field": "stan.channels.messages", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "max" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "terms", + "stacked": "none", + "terms_field": "stan.channels.name", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Channel Messages [Metricbeat Stan]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "46a07ac0-436d-11ea-b0c6-cb14c0977bd1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:21.442Z", + "version": "WzMyODMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/stan/module.yml b/x-pack/metricbeat/module/stan/module.yml index a5a4aeea383e..a297032b0f55 100644 --- a/x-pack/metricbeat/module/stan/module.yml +++ b/x-pack/metricbeat/module/stan/module.yml @@ -1,3 +1,3 @@ dashboards: - id: Metricbeat-STAN-Dashboard - file: Metricbeat-STAN-overview.ndjson + file: Metricbeat-STAN-overview.json diff --git a/x-pack/metricbeat/module/tomcat/_meta/kibana/7/dashboard/Metricbeat-Tomcat-overview.ndjson b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/dashboard/Metricbeat-Tomcat-overview.ndjson deleted file mode 100644 index 83b21c6d0912..000000000000 --- a/x-pack/metricbeat/module/tomcat/_meta/kibana/7/dashboard/Metricbeat-Tomcat-overview.ndjson +++ /dev/null @@ -1,9 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Other Memory usage [Metricbeat Tomcat]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"legend_position\":\"right\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(159,5,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Used\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.memory.other.usage.used\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"f34791d0-ec30-11e9-a38d-abb22848ef7c\",\"label\":\"Committed\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.memory.other.usage.committed\",\"id\":\"f34791d1-ec30-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"hidden\":false,\"id\":\"2acecf60-ec31-11e9-a38d-abb22848ef7c\",\"label\":\"Init\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.memory.other.usage.init\",\"id\":\"2acecf61-ec31-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(226,115,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"36d48200-ec31-11e9-a38d-abb22848ef7c\",\"label\":\"Max\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.memory.other.usage.max\",\"id\":\"36d48201-ec31-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Other Memory usage [Metricbeat Tomcat]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"618130c0-ec31-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyODYsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Heap memory usage [Metricbeat Tomcat]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(159,5,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"9057a880-ec30-11e9-a38d-abb22848ef7c\",\"label\":\"Used\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.memory.heap.usage.used\",\"id\":\"9057a881-ec30-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Committed\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.memory.heap.usage.committed\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"78d8a4c0-ec30-11e9-a38d-abb22848ef7c\",\"label\":\"Init\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.memory.heap.usage.init\",\"id\":\"78d8cbd0-ec30-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"855cd630-ec30-11e9-a38d-abb22848ef7c\",\"label\":\"Max\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.memory.heap.usage.max\",\"id\":\"855cd631-ec30-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Heap memory usage [Metricbeat Tomcat]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"e037f620-ec30-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyODcsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total Threads [Metricbeat Tomcat]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"hide_in_legend\":0,\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.threading.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"steps\":0,\"terms_field\":\"tomcat.threading.mbean\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"2e15eea0-ec32-11e9-a38d-abb22848ef7c\",\"label\":\"Peak\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.threading.peak\",\"id\":\"2e15eea1-ec32-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Total Threads [Metricbeat Tomcat]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"17ec8fd0-ec32-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyODgsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cache Size [Metricbeat Tomcat]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"814df2c0-ec32-11e9-a38d-abb22848ef7c\",\"label\":\"Total\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.cache.size.total.kb\",\"id\":\"814df2c1-ec32-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(254,146,0,1)\",\"fill\":0.5,\"formatter\":\"bytes\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Max\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.cache.size.max.kb\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"value_template\":\"{{value/1024}}\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Cache Size [Metricbeat Tomcat]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"b3e833d0-ec32-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyODksMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Total requests [Metricbeat Tomcat]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"hidden\":false,\"id\":\"a2ae7420-ec33-11e9-a38d-abb22848ef7c\",\"label\":\"Total\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.requests.total\",\"id\":\"a2ae7421-ec33-11e9-a38d-abb22848ef7c\",\"mode\":\"raw\",\"sigma\":\"1\",\"type\":\"avg\"},{\"field\":\"a2ae7421-ec33-11e9-a38d-abb22848ef7c\",\"id\":\"40d82510-ee8c-11e9-a452-e36b1c5ca82b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"40d82510-ee8c-11e9-a452-e36b1c5ca82b\",\"id\":\"a3934920-ee94-11e9-a452-e36b1c5ca82b\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(244,78,59,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Errors\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.requests.errors.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"be872850-ee94-11e9-a452-e36b1c5ca82b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"be872850-ee94-11e9-a452-e36b1c5ca82b\",\"id\":\"c2290730-ee94-11e9-a452-e36b1c5ca82b\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Total requests [Metricbeat Tomcat]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9d0616e0-ec33-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyOTAsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Bytes sent/received [Metricbeat Tomcat]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"legend_position\":\"bottom\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Received\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.requests.bytes.sent\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"a0d8b6a0-ee8c-11e9-a452-e36b1c5ca82b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"a0d8b6a0-ee8c-11e9-a452-e36b1c5ca82b\",\"id\":\"e3099fa0-ee94-11e9-a452-e36b1c5ca82b\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"},{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"rgba(115,216,255,1)\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"5310fbe0-ec33-11e9-a38d-abb22848ef7c\",\"label\":\"Sent\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.requests.bytes.received\",\"id\":\"5310fbe1-ec33-11e9-a38d-abb22848ef7c\",\"type\":\"avg\"},{\"field\":\"5310fbe1-ec33-11e9-a38d-abb22848ef7c\",\"id\":\"bbfe0610-ee8c-11e9-a452-e36b1c5ca82b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"bbfe0610-ee8c-11e9-a452-e36b1c5ca82b\",\"id\":\"e6da0890-ee94-11e9-a452-e36b1c5ca82b\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Bytes sent/received [Metricbeat Tomcat]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"7bcc3ae0-ec33-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyOTEsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Processing time ms [Metricbeat Tomcat]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"ms,ms,3\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.requests.processing.ms\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"},{\"field\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"id\":\"cbb9e2e0-ee8c-11e9-a452-e36b1c5ca82b\",\"type\":\"derivative\",\"unit\":\"\"},{\"field\":\"cbb9e2e0-ee8c-11e9-a452-e36b1c5ca82b\",\"id\":\"d0327910-ee94-11e9-a452-e36b1c5ca82b\",\"type\":\"positive_only\",\"unit\":\"\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Processing time ms [Metricbeat Tomcat]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"9343a810-ec34-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyOTIsMV0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Cache Hit Total [Metricbeat Tomcat]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"metricbeat-*\",\"interval\":\"\",\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Total\",\"line_width\":1,\"metrics\":[{\"field\":\"tomcat.cache.hit.total\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"avg\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":0,\"time_field\":\"\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Cache Hit Total [Metricbeat Tomcat]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"8.0.0","id":"38f55440-ec33-11e9-a4bb-7b5324058fcc","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyOTMsMV0="} -{"attributes":{"description":"An overview dashboards of all key metrics included in the Tomcat Metricbeat module","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"1\",\"w\":18,\"x\":16,\"y\":18},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Other Memory usage\",\"panelRefName\":\"panel_1\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"2\",\"w\":25,\"x\":0,\"y\":0},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Heap memory usage\",\"panelRefName\":\"panel_2\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"3\",\"w\":16,\"x\":0,\"y\":18},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total Threads\",\"panelRefName\":\"panel_3\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"5\",\"w\":14,\"x\":34,\"y\":18},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cache Size\",\"panelRefName\":\"panel_5\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"6\",\"w\":23,\"x\":25,\"y\":0},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Total requests\",\"panelRefName\":\"panel_6\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"7\",\"w\":16,\"x\":0,\"y\":9},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Bytes sent/received\",\"panelRefName\":\"panel_7\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"8\",\"w\":18,\"x\":16,\"y\":9},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Processing time ms\",\"panelRefName\":\"panel_8\"},{\"version\":\"8.0.0-SNAPSHOT\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"9\",\"w\":14,\"x\":34,\"y\":9},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Cache Hit Total\",\"panelRefName\":\"panel_9\"}]","timeRestore":false,"title":"[Metricbeat Tomcat] Overview","version":1},"coreMigrationVersion":"8.0.0","id":"b7675d90-ec34-11e9-a4bb-7b5324058fcc","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"618130c0-ec31-11e9-a4bb-7b5324058fcc","name":"1:panel_1","type":"visualization"},{"id":"e037f620-ec30-11e9-a4bb-7b5324058fcc","name":"2:panel_2","type":"visualization"},{"id":"17ec8fd0-ec32-11e9-a4bb-7b5324058fcc","name":"3:panel_3","type":"visualization"},{"id":"b3e833d0-ec32-11e9-a4bb-7b5324058fcc","name":"5:panel_5","type":"visualization"},{"id":"9d0616e0-ec33-11e9-a4bb-7b5324058fcc","name":"6:panel_6","type":"visualization"},{"id":"7bcc3ae0-ec33-11e9-a4bb-7b5324058fcc","name":"7:panel_7","type":"visualization"},{"id":"9343a810-ec34-11e9-a4bb-7b5324058fcc","name":"8:panel_8","type":"visualization"},{"id":"38f55440-ec33-11e9-a4bb-7b5324058fcc","name":"9:panel_9","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-04T16:30:22.513Z","version":"WzMyODUsMV0="} diff --git a/x-pack/metricbeat/module/tomcat/_meta/kibana/7/dashboard/b7675d90-ec34-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/dashboard/b7675d90-ec34-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..de0a6499976b --- /dev/null +++ b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/dashboard/b7675d90-ec34-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,210 @@ +{ + "attributes": { + "description": "An overview dashboards of all key metrics included in the Tomcat Metricbeat module", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "1", + "w": 18, + "x": 16, + "y": 18 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Other Memory usage", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "2", + "w": 25, + "x": 0, + "y": 0 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Heap memory usage", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "3", + "w": 16, + "x": 0, + "y": 18 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Total Threads", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "5", + "w": 14, + "x": 34, + "y": 18 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Cache Size", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "6", + "w": 23, + "x": 25, + "y": 0 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Total requests", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "7", + "w": 16, + "x": 0, + "y": 9 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "title": "Bytes sent/received", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "8", + "w": 18, + "x": 16, + "y": 9 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "title": "Processing time ms", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "9", + "w": 14, + "x": 34, + "y": 9 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "title": "Cache Hit Total", + "type": "visualization", + "version": "8.0.0-SNAPSHOT" + } + ], + "timeRestore": false, + "title": "[Metricbeat Tomcat] Overview", + "version": 1 + }, + "coreMigrationVersion": "8.0.0", + "id": "b7675d90-ec34-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "618130c0-ec31-11e9-a4bb-7b5324058fcc", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "e037f620-ec30-11e9-a4bb-7b5324058fcc", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "17ec8fd0-ec32-11e9-a4bb-7b5324058fcc", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "b3e833d0-ec32-11e9-a4bb-7b5324058fcc", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "9d0616e0-ec33-11e9-a4bb-7b5324058fcc", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "7bcc3ae0-ec33-11e9-a4bb-7b5324058fcc", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "9343a810-ec34-11e9-a4bb-7b5324058fcc", + "name": "8:panel_8", + "type": "visualization" + }, + { + "id": "38f55440-ec33-11e9-a4bb-7b5324058fcc", + "name": "9:panel_9", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-04T16:30:22.513Z", + "version": "WzMyODUsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/17ec8fd0-ec32-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/17ec8fd0-ec32-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..1192fc610dd4 --- /dev/null +++ b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/17ec8fd0-ec32-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Total Threads [Metricbeat Tomcat]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "hide_in_legend": 0, + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Total", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.threading.total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "steps": 0, + "terms_field": "tomcat.threading.mbean" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": 0.5, + "formatter": "number", + "id": "2e15eea0-ec32-11e9-a38d-abb22848ef7c", + "label": "Peak", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.threading.peak", + "id": "2e15eea1-ec32-11e9-a38d-abb22848ef7c", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Total Threads [Metricbeat Tomcat]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "17ec8fd0-ec32-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:22.513Z", + "version": "WzMyODgsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/38f55440-ec33-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/38f55440-ec33-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..5e472277dd5d --- /dev/null +++ b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/38f55440-ec33-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,62 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Cache Hit Total [Metricbeat Tomcat]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Total", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.cache.hit.total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 0, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Cache Hit Total [Metricbeat Tomcat]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "38f55440-ec33-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:22.513Z", + "version": "WzMyOTMsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/618130c0-ec31-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/618130c0-ec31-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..711872e73767 --- /dev/null +++ b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/618130c0-ec31-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,134 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Other Memory usage [Metricbeat Tomcat]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "legend_position": "right", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(159,5,0,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Used", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.memory.other.usage.used", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value/1024}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "f34791d0-ec30-11e9-a38d-abb22848ef7c", + "label": "Committed", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.memory.other.usage.committed", + "id": "f34791d1-ec30-11e9-a38d-abb22848ef7c", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value/1024}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": 0.5, + "formatter": "bytes", + "hidden": false, + "id": "2acecf60-ec31-11e9-a38d-abb22848ef7c", + "label": "Init", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.memory.other.usage.init", + "id": "2acecf61-ec31-11e9-a38d-abb22848ef7c", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value/1024}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(226,115,0,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "36d48200-ec31-11e9-a38d-abb22848ef7c", + "label": "Max", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.memory.other.usage.max", + "id": "36d48201-ec31-11e9-a38d-abb22848ef7c", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value/1024}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Other Memory usage [Metricbeat Tomcat]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "618130c0-ec31-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:22.513Z", + "version": "WzMyODYsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/7bcc3ae0-ec33-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/7bcc3ae0-ec33-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..2c9a4c71fb0d --- /dev/null +++ b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/7bcc3ae0-ec33-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Bytes sent/received [Metricbeat Tomcat]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Received", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.requests.bytes.sent", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "a0d8b6a0-ee8c-11e9-a452-e36b1c5ca82b", + "type": "derivative", + "unit": "" + }, + { + "field": "a0d8b6a0-ee8c-11e9-a452-e36b1c5ca82b", + "id": "e3099fa0-ee94-11e9-a452-e36b1c5ca82b", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": 0.5, + "formatter": "number", + "id": "5310fbe0-ec33-11e9-a38d-abb22848ef7c", + "label": "Sent", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.requests.bytes.received", + "id": "5310fbe1-ec33-11e9-a38d-abb22848ef7c", + "type": "avg" + }, + { + "field": "5310fbe1-ec33-11e9-a38d-abb22848ef7c", + "id": "bbfe0610-ee8c-11e9-a452-e36b1c5ca82b", + "type": "derivative", + "unit": "" + }, + { + "field": "bbfe0610-ee8c-11e9-a452-e36b1c5ca82b", + "id": "e6da0890-ee94-11e9-a452-e36b1c5ca82b", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Bytes sent/received [Metricbeat Tomcat]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "7bcc3ae0-ec33-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:22.513Z", + "version": "WzMyOTEsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/9343a810-ec34-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/9343a810-ec34-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..75994b958ed9 --- /dev/null +++ b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/9343a810-ec34-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,76 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Processing time ms [Metricbeat Tomcat]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "ms,ms,3", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.requests.processing.ms", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "cbb9e2e0-ee8c-11e9-a452-e36b1c5ca82b", + "type": "derivative", + "unit": "" + }, + { + "field": "cbb9e2e0-ee8c-11e9-a452-e36b1c5ca82b", + "id": "d0327910-ee94-11e9-a452-e36b1c5ca82b", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 0, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Processing time ms [Metricbeat Tomcat]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9343a810-ec34-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:22.513Z", + "version": "WzMyOTIsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/9d0616e0-ec33-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/9d0616e0-ec33-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..af4c05709ef6 --- /dev/null +++ b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/9d0616e0-ec33-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Total requests [Metricbeat Tomcat]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "isModelInvalid": false, + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "hidden": false, + "id": "a2ae7420-ec33-11e9-a38d-abb22848ef7c", + "label": "Total", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.requests.total", + "id": "a2ae7421-ec33-11e9-a38d-abb22848ef7c", + "mode": "raw", + "sigma": "1", + "type": "avg" + }, + { + "field": "a2ae7421-ec33-11e9-a38d-abb22848ef7c", + "id": "40d82510-ee8c-11e9-a452-e36b1c5ca82b", + "type": "derivative", + "unit": "" + }, + { + "field": "40d82510-ee8c-11e9-a452-e36b1c5ca82b", + "id": "a3934920-ee94-11e9-a452-e36b1c5ca82b", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(244,78,59,1)", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Errors", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.requests.errors.total", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + }, + { + "field": "61ca57f2-469d-11e7-af02-69e470af7417", + "id": "be872850-ee94-11e9-a452-e36b1c5ca82b", + "type": "derivative", + "unit": "" + }, + { + "field": "be872850-ee94-11e9-a452-e36b1c5ca82b", + "id": "c2290730-ee94-11e9-a452-e36b1c5ca82b", + "type": "positive_only", + "unit": "" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Total requests [Metricbeat Tomcat]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "9d0616e0-ec33-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:22.513Z", + "version": "WzMyOTAsMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/b3e833d0-ec32-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/b3e833d0-ec32-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..d222b690f199 --- /dev/null +++ b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/b3e833d0-ec32-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Cache Size [Metricbeat Tomcat]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "legend_position": "bottom", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "814df2c0-ec32-11e9-a38d-abb22848ef7c", + "label": "Total", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.cache.size.total.kb", + "id": "814df2c1-ec32-11e9-a38d-abb22848ef7c", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value/1024}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(254,146,0,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Max", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.cache.size.max.kb", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value/1024}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Cache Size [Metricbeat Tomcat]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "b3e833d0-ec32-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:22.513Z", + "version": "WzMyODksMV0=" +} \ No newline at end of file diff --git a/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/e037f620-ec30-11e9-a4bb-7b5324058fcc.json b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/e037f620-ec30-11e9-a4bb-7b5324058fcc.json new file mode 100644 index 000000000000..018a88c06457 --- /dev/null +++ b/x-pack/metricbeat/module/tomcat/_meta/kibana/7/visualization/e037f620-ec30-11e9-a4bb-7b5324058fcc.json @@ -0,0 +1,132 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Heap memory usage [Metricbeat Tomcat]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "metricbeat-*", + "interval": "", + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(159,5,0,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "9057a880-ec30-11e9-a38d-abb22848ef7c", + "label": "Used", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.memory.heap.usage.used", + "id": "9057a881-ec30-11e9-a38d-abb22848ef7c", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value/1024}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "bytes", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Committed", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.memory.heap.usage.committed", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value/1024}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(115,216,255,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "78d8a4c0-ec30-11e9-a38d-abb22848ef7c", + "label": "Init", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.memory.heap.usage.init", + "id": "78d8cbd0-ec30-11e9-a38d-abb22848ef7c", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value/1024}}" + }, + { + "axis_position": "right", + "chart_type": "line", + "color": "rgba(254,146,0,1)", + "fill": 0.5, + "formatter": "bytes", + "id": "855cd630-ec30-11e9-a38d-abb22848ef7c", + "label": "Max", + "line_width": 1, + "metrics": [ + { + "field": "tomcat.memory.heap.usage.max", + "id": "855cd631-ec30-11e9-a38d-abb22848ef7c", + "type": "avg" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none", + "value_template": "{{value/1024}}" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Heap memory usage [Metricbeat Tomcat]", + "type": "metrics" + } + }, + "coreMigrationVersion": "8.0.0", + "id": "e037f620-ec30-11e9-a4bb-7b5324058fcc", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-04T16:30:22.513Z", + "version": "WzMyODcsMV0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/dashboard/Powershell-Overview-Dashboard.ndjson b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/dashboard/Powershell-Overview-Dashboard.ndjson deleted file mode 100644 index 7a3b847de0c3..000000000000 --- a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/dashboard/Powershell-Overview-Dashboard.ndjson +++ /dev/null @@ -1,19 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Connected users [Winlogbeat powershell]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"User\",\"field\":\"powershell.connected_user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"4\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Host count\",\"field\":\"host.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://192.168.1.48:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"User\",\"params\":{}}],\"metrics\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}},{\"accessor\":2,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"label\":\"Unique count of host.name\",\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Connected users [Winlogbeat powershell]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"9ec52c30-9e91-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNTUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Total engine started [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"event.code: 400\"},\"label\":\"\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"metrics\":[{\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":32,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total engine started [Winlogbeat powershell]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"52543ef0-9e95-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNTYsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Total commands [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"powershell.command.name: * \"},\"label\":\"Commands\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"metrics\":[{\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":32,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total commands [Winlogbeat powershell]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"7f3e7710-9e94-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNTcsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Total remote commands [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"process.title:\\\"ServerRemoteHost\\\" \"},\"label\":\"Remote commands\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"metrics\":[{\"accessor\":1,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":32,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Total remote commands [Winlogbeat powershell]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"78874900-9f30-11ea-bef1-95118e62a7c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNTgsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Unique users [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique users\",\"field\":\"related.user\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":32,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Unique users [Winlogbeat powershell]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"e64ff750-9f28-11ea-bef1-95118e62a7c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNTksMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Unique engine versions [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique versions\",\"field\":\"powershell.engine.version\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":32,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Unique engine versions [Winlogbeat powershell]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"2dbabdf0-9f29-11ea-bef1-95118e62a7c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjAsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Unique hosts [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Unique hosts\",\"field\":\"host.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":32,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Unique hosts [Winlogbeat powershell]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"92a2a6b0-9f29-11ea-bef1-95118e62a7c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjEsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Engine versions ran by host [Winlogbeat powershell]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Host\",\"field\":\"host.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"3\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Version count\",\"field\":\"powershell.engine.version\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://192.168.1.48:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"Host\",\"params\":{}}],\"metrics\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}},{\"accessor\":2,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"label\":\"Version count\",\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Engine versions ran by host [Winlogbeat powershell]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"e20b3940-9e9a-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjIsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Engine versions [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Engine version\",\"field\":\"powershell.engine.version\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"metric\":{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":false,\"show\":false,\"truncate\":100,\"values\":false},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Engine versions [Winlogbeat powershell]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"1eeaaf70-9f23-11ea-bef1-95118e62a7c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjMsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Host processes [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"process.title\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://192.168.1.48:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"process.title: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":false,\"show\":false,\"truncate\":100,\"values\":false},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Host processes [Winlogbeat powershell]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"f9fa55f0-9f34-11ea-bef1-95118e62a7c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjQsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Users [Winlogbeat powershell]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"User\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Host count\",\"field\":\"host.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://192.168.1.48:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"User\",\"params\":{}}],\"metrics\":[{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}},{\"accessor\":2,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"label\":\"Unique count of host.name\",\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users [Winlogbeat powershell]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"3e55daa0-9e8e-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Event type [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Event type\",\"field\":\"event.code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://192.168.1.48:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"event.code: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":false,\"show\":false,\"truncate\":100,\"values\":false},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Event type [Winlogbeat powershell]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"d27dea70-9f32-11ea-bef1-95118e62a7c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjYsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Event Levels [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"log.level\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://192.168.1.48:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"log.level: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":false,\"show\":false,\"truncate\":100,\"values\":false},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Event Levels [Winlogbeat powershell]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"fbb025e0-9e7c-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjcsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Engine and Command started[Winlogbeat powershell]","uiStateJSON":"{\"vis\": {\"colors\": {\"*\": \"#EAB839\", \"Engine stopped\": \"#BF1B00\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-1d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"400\\\" \"},\"label\":\"Engine started\"},{\"input\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4105\\\" \"},\"label\":\"Command started\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"filters\",\"format\":{},\"label\":\"filters\",\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"HH:mm\"}},\"label\":\"@timestamp per 30 minutes\",\"params\":{\"bounds\":{\"max\":\"2020-05-26T09:14:29.996Z\",\"min\":\"2020-05-25T09:14:29.996Z\"},\"date\":true,\"format\":\"HH:mm\",\"interval\":\"PT30M\",\"intervalESUnit\":\"m\",\"intervalESValue\":30}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":true,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"defaultYExtents\":false,\"mode\":\"normal\",\"setYExtents\":false,\"type\":\"log\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Engine and Command started[Winlogbeat powershell]\",\"type\":\"line\"}"},"coreMigrationVersion":"7.14.0","id":"7adbce50-9e96-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjgsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Top active hosts [Winlogbeat powershell]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"host.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[],\"metrics\":[{\"accessor\":0,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Top active hosts [Winlogbeat powershell]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"70751050-9f33-11ea-bef1-95118e62a7c1","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNjksMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"powershell.command.invocation_details.type\", \"negate\": false, \"params\": {\"query\": \"CommandInvocation\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"powershell.command.invocation_details.type\": \"CommandInvocation\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Top Invoked Commands [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"powershell.command.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://192.168.1.48:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"powershell.command.invocation_details.related_command: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":false,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Top Invoked Commands [Winlogbeat powershell]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"b0c5d570-9e7c-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNzAsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" \"}}"},"title":"Started providers [Winlogbeat powershell]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"powershell.provider.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"\",\"origin\":\"http://192.168.1.48:5601\",\"pathname\":\"/app/kibana\"}}},\"label\":\"powershell.provider.name: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":false,\"show\":false,\"truncate\":100,\"values\":false},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Started providers [Winlogbeat powershell]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"c0945210-9e8b-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNzEsMl0="} -{"attributes":{"columns":["event.code","powershell.engine.version","powershell.runspace_id","process.args","powershell.command.invocation_details","powershell.file.script_block_text"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"(winlog.provider_name : \\\"PowerShell\\\" or winlog.provider_name : \\\"Microsoft-Windows-PowerShell\\\" )\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Details [Winlogbeat powershell]","version":1},"coreMigrationVersion":"7.14.0","id":"11a61760-9f27-11ea-bef1-95118e62a7c1","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNzIsMl0="} -{"attributes":{"description":"Overview dashboard por powershell module.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": true}","panelsJSON":"[{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"fa41e799-b6b3-49ec-a11c-3f20231a4a79\",\"w\":13,\"x\":0,\"y\":0},\"panelIndex\":\"fa41e799-b6b3-49ec-a11c-3f20231a4a79\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_fa41e799-b6b3-49ec-a11c-3f20231a4a79\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"65ce6b63-6ce0-4094-ab23-189126fc169f\",\"w\":7,\"x\":13,\"y\":0},\"panelIndex\":\"65ce6b63-6ce0-4094-ab23-189126fc169f\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_65ce6b63-6ce0-4094-ab23-189126fc169f\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"314e6f55-a05a-4ae3-ab76-bcae7f2074ab\",\"w\":8,\"x\":20,\"y\":0},\"panelIndex\":\"314e6f55-a05a-4ae3-ab76-bcae7f2074ab\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_314e6f55-a05a-4ae3-ab76-bcae7f2074ab\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"a1f161f6-1abe-4177-9ede-4d1984f5a963\",\"w\":7,\"x\":28,\"y\":0},\"panelIndex\":\"a1f161f6-1abe-4177-9ede-4d1984f5a963\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a1f161f6-1abe-4177-9ede-4d1984f5a963\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"6b7ed122-22f3-4e9d-89eb-8de92c0d2033\",\"w\":4,\"x\":35,\"y\":0},\"panelIndex\":\"6b7ed122-22f3-4e9d-89eb-8de92c0d2033\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_6b7ed122-22f3-4e9d-89eb-8de92c0d2033\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"d536f6a7-ad28-4a32-9319-9e0b983828bf\",\"w\":4,\"x\":39,\"y\":0},\"panelIndex\":\"d536f6a7-ad28-4a32-9319-9e0b983828bf\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_d536f6a7-ad28-4a32-9319-9e0b983828bf\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"eda6d08f-b45e-448a-bf9f-afa5516d4b4b\",\"w\":4,\"x\":43,\"y\":0},\"panelIndex\":\"eda6d08f-b45e-448a-bf9f-afa5516d4b4b\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_eda6d08f-b45e-448a-bf9f-afa5516d4b4b\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"56d2dd76-6fec-422b-96e9-22791b0c5f0c\",\"w\":10,\"x\":13,\"y\":6},\"panelIndex\":\"56d2dd76-6fec-422b-96e9-22791b0c5f0c\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_56d2dd76-6fec-422b-96e9-22791b0c5f0c\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5\",\"w\":12,\"x\":23,\"y\":6},\"panelIndex\":\"3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"a8c00572-667b-4e39-8b0c-10be56fbadd5\",\"w\":12,\"x\":35,\"y\":6},\"panelIndex\":\"a8c00572-667b-4e39-8b0c-10be56fbadd5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a8c00572-667b-4e39-8b0c-10be56fbadd5\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"e8a57cba-14d2-4cd9-a727-f5e30165f6ba\",\"w\":13,\"x\":0,\"y\":8},\"panelIndex\":\"e8a57cba-14d2-4cd9-a727-f5e30165f6ba\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e8a57cba-14d2-4cd9-a727-f5e30165f6ba\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"8ae39cfa-cb06-45eb-880e-b749c3355d61\",\"w\":12,\"x\":23,\"y\":13},\"panelIndex\":\"8ae39cfa-cb06-45eb-880e-b749c3355d61\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8ae39cfa-cb06-45eb-880e-b749c3355d61\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"ef92d192-b56d-476c-b640-e226679ed178\",\"w\":12,\"x\":35,\"y\":13},\"panelIndex\":\"ef92d192-b56d-476c-b640-e226679ed178\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_ef92d192-b56d-476c-b640-e226679ed178\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"b15dcac5-3616-4b41-8abb-cb28398b16f4\",\"w\":13,\"x\":0,\"y\":16},\"panelIndex\":\"b15dcac5-3616-4b41-8abb-cb28398b16f4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_b15dcac5-3616-4b41-8abb-cb28398b16f4\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":11,\"i\":\"23af61c8-6a45-4d7d-9905-8ed265328130\",\"w\":10,\"x\":13,\"y\":16},\"panelIndex\":\"23af61c8-6a45-4d7d-9905-8ed265328130\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_23af61c8-6a45-4d7d-9905-8ed265328130\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"390068ed-b7fb-4ec1-87d5-e89f7cc82e04\",\"w\":12,\"x\":23,\"y\":20},\"panelIndex\":\"390068ed-b7fb-4ec1-87d5-e89f7cc82e04\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_390068ed-b7fb-4ec1-87d5-e89f7cc82e04\"},{\"version\":\"7.6.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"45724dca-fea2-4f3b-af79-cf89bb12a31b\",\"w\":12,\"x\":35,\"y\":20},\"panelIndex\":\"45724dca-fea2-4f3b-af79-cf89bb12a31b\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_45724dca-fea2-4f3b-af79-cf89bb12a31b\"},{\"version\":\"7.6.0\",\"type\":\"search\",\"gridData\":{\"h\":14,\"i\":\"7f0c4a51-d972-42a5-ba0a-d3de814c7440\",\"w\":47,\"x\":0,\"y\":27},\"panelIndex\":\"7f0c4a51-d972-42a5-ba0a-d3de814c7440\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7f0c4a51-d972-42a5-ba0a-d3de814c7440\"}]","timeRestore":false,"title":"[Winlogbeat powershell] Overview","version":1},"coreMigrationVersion":"7.14.0","id":"c77e06c0-9e7c-11ea-af6f-cfdb1ee1d6c8","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"9ec52c30-9e91-11ea-af6f-cfdb1ee1d6c8","name":"fa41e799-b6b3-49ec-a11c-3f20231a4a79:panel_fa41e799-b6b3-49ec-a11c-3f20231a4a79","type":"visualization"},{"id":"52543ef0-9e95-11ea-af6f-cfdb1ee1d6c8","name":"65ce6b63-6ce0-4094-ab23-189126fc169f:panel_65ce6b63-6ce0-4094-ab23-189126fc169f","type":"visualization"},{"id":"7f3e7710-9e94-11ea-af6f-cfdb1ee1d6c8","name":"314e6f55-a05a-4ae3-ab76-bcae7f2074ab:panel_314e6f55-a05a-4ae3-ab76-bcae7f2074ab","type":"visualization"},{"id":"78874900-9f30-11ea-bef1-95118e62a7c1","name":"a1f161f6-1abe-4177-9ede-4d1984f5a963:panel_a1f161f6-1abe-4177-9ede-4d1984f5a963","type":"visualization"},{"id":"e64ff750-9f28-11ea-bef1-95118e62a7c1","name":"6b7ed122-22f3-4e9d-89eb-8de92c0d2033:panel_6b7ed122-22f3-4e9d-89eb-8de92c0d2033","type":"visualization"},{"id":"2dbabdf0-9f29-11ea-bef1-95118e62a7c1","name":"d536f6a7-ad28-4a32-9319-9e0b983828bf:panel_d536f6a7-ad28-4a32-9319-9e0b983828bf","type":"visualization"},{"id":"92a2a6b0-9f29-11ea-bef1-95118e62a7c1","name":"eda6d08f-b45e-448a-bf9f-afa5516d4b4b:panel_eda6d08f-b45e-448a-bf9f-afa5516d4b4b","type":"visualization"},{"id":"e20b3940-9e9a-11ea-af6f-cfdb1ee1d6c8","name":"56d2dd76-6fec-422b-96e9-22791b0c5f0c:panel_56d2dd76-6fec-422b-96e9-22791b0c5f0c","type":"visualization"},{"id":"1eeaaf70-9f23-11ea-bef1-95118e62a7c1","name":"3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5:panel_3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5","type":"visualization"},{"id":"f9fa55f0-9f34-11ea-bef1-95118e62a7c1","name":"a8c00572-667b-4e39-8b0c-10be56fbadd5:panel_a8c00572-667b-4e39-8b0c-10be56fbadd5","type":"visualization"},{"id":"3e55daa0-9e8e-11ea-af6f-cfdb1ee1d6c8","name":"e8a57cba-14d2-4cd9-a727-f5e30165f6ba:panel_e8a57cba-14d2-4cd9-a727-f5e30165f6ba","type":"visualization"},{"id":"d27dea70-9f32-11ea-bef1-95118e62a7c1","name":"8ae39cfa-cb06-45eb-880e-b749c3355d61:panel_8ae39cfa-cb06-45eb-880e-b749c3355d61","type":"visualization"},{"id":"fbb025e0-9e7c-11ea-af6f-cfdb1ee1d6c8","name":"ef92d192-b56d-476c-b640-e226679ed178:panel_ef92d192-b56d-476c-b640-e226679ed178","type":"visualization"},{"id":"7adbce50-9e96-11ea-af6f-cfdb1ee1d6c8","name":"b15dcac5-3616-4b41-8abb-cb28398b16f4:panel_b15dcac5-3616-4b41-8abb-cb28398b16f4","type":"visualization"},{"id":"70751050-9f33-11ea-bef1-95118e62a7c1","name":"23af61c8-6a45-4d7d-9905-8ed265328130:panel_23af61c8-6a45-4d7d-9905-8ed265328130","type":"visualization"},{"id":"b0c5d570-9e7c-11ea-af6f-cfdb1ee1d6c8","name":"390068ed-b7fb-4ec1-87d5-e89f7cc82e04:panel_390068ed-b7fb-4ec1-87d5-e89f7cc82e04","type":"visualization"},{"id":"c0945210-9e8b-11ea-af6f-cfdb1ee1d6c8","name":"45724dca-fea2-4f3b-af79-cf89bb12a31b:panel_45724dca-fea2-4f3b-af79-cf89bb12a31b","type":"visualization"},{"id":"11a61760-9f27-11ea-bef1-95118e62a7c1","name":"7f0c4a51-d972-42a5-ba0a-d3de814c7440:panel_7f0c4a51-d972-42a5-ba0a-d3de814c7440","type":"search"}],"type":"dashboard","updated_at":"2021-08-11T13:18:51.383Z","version":"WzIxNTQsMl0="} diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/dashboard/c77e06c0-9e7c-11ea-af6f-cfdb1ee1d6c8.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/dashboard/c77e06c0-9e7c-11ea-af6f-cfdb1ee1d6c8.json new file mode 100644 index 000000000000..d09565c779f6 --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/dashboard/c77e06c0-9e7c-11ea-af6f-cfdb1ee1d6c8.json @@ -0,0 +1,412 @@ +{ + "attributes": { + "description": "Overview dashboard por powershell module.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "fa41e799-b6b3-49ec-a11c-3f20231a4a79", + "w": 13, + "x": 0, + "y": 0 + }, + "panelIndex": "fa41e799-b6b3-49ec-a11c-3f20231a4a79", + "panelRefName": "panel_fa41e799-b6b3-49ec-a11c-3f20231a4a79", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "65ce6b63-6ce0-4094-ab23-189126fc169f", + "w": 7, + "x": 13, + "y": 0 + }, + "panelIndex": "65ce6b63-6ce0-4094-ab23-189126fc169f", + "panelRefName": "panel_65ce6b63-6ce0-4094-ab23-189126fc169f", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "314e6f55-a05a-4ae3-ab76-bcae7f2074ab", + "w": 8, + "x": 20, + "y": 0 + }, + "panelIndex": "314e6f55-a05a-4ae3-ab76-bcae7f2074ab", + "panelRefName": "panel_314e6f55-a05a-4ae3-ab76-bcae7f2074ab", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "a1f161f6-1abe-4177-9ede-4d1984f5a963", + "w": 7, + "x": 28, + "y": 0 + }, + "panelIndex": "a1f161f6-1abe-4177-9ede-4d1984f5a963", + "panelRefName": "panel_a1f161f6-1abe-4177-9ede-4d1984f5a963", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "6b7ed122-22f3-4e9d-89eb-8de92c0d2033", + "w": 4, + "x": 35, + "y": 0 + }, + "panelIndex": "6b7ed122-22f3-4e9d-89eb-8de92c0d2033", + "panelRefName": "panel_6b7ed122-22f3-4e9d-89eb-8de92c0d2033", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "d536f6a7-ad28-4a32-9319-9e0b983828bf", + "w": 4, + "x": 39, + "y": 0 + }, + "panelIndex": "d536f6a7-ad28-4a32-9319-9e0b983828bf", + "panelRefName": "panel_d536f6a7-ad28-4a32-9319-9e0b983828bf", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "eda6d08f-b45e-448a-bf9f-afa5516d4b4b", + "w": 4, + "x": 43, + "y": 0 + }, + "panelIndex": "eda6d08f-b45e-448a-bf9f-afa5516d4b4b", + "panelRefName": "panel_eda6d08f-b45e-448a-bf9f-afa5516d4b4b", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "56d2dd76-6fec-422b-96e9-22791b0c5f0c", + "w": 10, + "x": 13, + "y": 6 + }, + "panelIndex": "56d2dd76-6fec-422b-96e9-22791b0c5f0c", + "panelRefName": "panel_56d2dd76-6fec-422b-96e9-22791b0c5f0c", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5", + "w": 12, + "x": 23, + "y": 6 + }, + "panelIndex": "3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5", + "panelRefName": "panel_3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "a8c00572-667b-4e39-8b0c-10be56fbadd5", + "w": 12, + "x": 35, + "y": 6 + }, + "panelIndex": "a8c00572-667b-4e39-8b0c-10be56fbadd5", + "panelRefName": "panel_a8c00572-667b-4e39-8b0c-10be56fbadd5", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "e8a57cba-14d2-4cd9-a727-f5e30165f6ba", + "w": 13, + "x": 0, + "y": 8 + }, + "panelIndex": "e8a57cba-14d2-4cd9-a727-f5e30165f6ba", + "panelRefName": "panel_e8a57cba-14d2-4cd9-a727-f5e30165f6ba", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "8ae39cfa-cb06-45eb-880e-b749c3355d61", + "w": 12, + "x": 23, + "y": 13 + }, + "panelIndex": "8ae39cfa-cb06-45eb-880e-b749c3355d61", + "panelRefName": "panel_8ae39cfa-cb06-45eb-880e-b749c3355d61", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "ef92d192-b56d-476c-b640-e226679ed178", + "w": 12, + "x": 35, + "y": 13 + }, + "panelIndex": "ef92d192-b56d-476c-b640-e226679ed178", + "panelRefName": "panel_ef92d192-b56d-476c-b640-e226679ed178", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "b15dcac5-3616-4b41-8abb-cb28398b16f4", + "w": 13, + "x": 0, + "y": 16 + }, + "panelIndex": "b15dcac5-3616-4b41-8abb-cb28398b16f4", + "panelRefName": "panel_b15dcac5-3616-4b41-8abb-cb28398b16f4", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "23af61c8-6a45-4d7d-9905-8ed265328130", + "w": 10, + "x": 13, + "y": 16 + }, + "panelIndex": "23af61c8-6a45-4d7d-9905-8ed265328130", + "panelRefName": "panel_23af61c8-6a45-4d7d-9905-8ed265328130", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "390068ed-b7fb-4ec1-87d5-e89f7cc82e04", + "w": 12, + "x": 23, + "y": 20 + }, + "panelIndex": "390068ed-b7fb-4ec1-87d5-e89f7cc82e04", + "panelRefName": "panel_390068ed-b7fb-4ec1-87d5-e89f7cc82e04", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "45724dca-fea2-4f3b-af79-cf89bb12a31b", + "w": 12, + "x": 35, + "y": 20 + }, + "panelIndex": "45724dca-fea2-4f3b-af79-cf89bb12a31b", + "panelRefName": "panel_45724dca-fea2-4f3b-af79-cf89bb12a31b", + "type": "visualization", + "version": "7.6.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "7f0c4a51-d972-42a5-ba0a-d3de814c7440", + "w": 47, + "x": 0, + "y": 27 + }, + "panelIndex": "7f0c4a51-d972-42a5-ba0a-d3de814c7440", + "panelRefName": "panel_7f0c4a51-d972-42a5-ba0a-d3de814c7440", + "type": "search", + "version": "7.6.0" + } + ], + "timeRestore": false, + "title": "[Winlogbeat powershell] Overview", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "c77e06c0-9e7c-11ea-af6f-cfdb1ee1d6c8", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "9ec52c30-9e91-11ea-af6f-cfdb1ee1d6c8", + "name": "fa41e799-b6b3-49ec-a11c-3f20231a4a79:panel_fa41e799-b6b3-49ec-a11c-3f20231a4a79", + "type": "visualization" + }, + { + "id": "52543ef0-9e95-11ea-af6f-cfdb1ee1d6c8", + "name": "65ce6b63-6ce0-4094-ab23-189126fc169f:panel_65ce6b63-6ce0-4094-ab23-189126fc169f", + "type": "visualization" + }, + { + "id": "7f3e7710-9e94-11ea-af6f-cfdb1ee1d6c8", + "name": "314e6f55-a05a-4ae3-ab76-bcae7f2074ab:panel_314e6f55-a05a-4ae3-ab76-bcae7f2074ab", + "type": "visualization" + }, + { + "id": "78874900-9f30-11ea-bef1-95118e62a7c1", + "name": "a1f161f6-1abe-4177-9ede-4d1984f5a963:panel_a1f161f6-1abe-4177-9ede-4d1984f5a963", + "type": "visualization" + }, + { + "id": "e64ff750-9f28-11ea-bef1-95118e62a7c1", + "name": "6b7ed122-22f3-4e9d-89eb-8de92c0d2033:panel_6b7ed122-22f3-4e9d-89eb-8de92c0d2033", + "type": "visualization" + }, + { + "id": "2dbabdf0-9f29-11ea-bef1-95118e62a7c1", + "name": "d536f6a7-ad28-4a32-9319-9e0b983828bf:panel_d536f6a7-ad28-4a32-9319-9e0b983828bf", + "type": "visualization" + }, + { + "id": "92a2a6b0-9f29-11ea-bef1-95118e62a7c1", + "name": "eda6d08f-b45e-448a-bf9f-afa5516d4b4b:panel_eda6d08f-b45e-448a-bf9f-afa5516d4b4b", + "type": "visualization" + }, + { + "id": "e20b3940-9e9a-11ea-af6f-cfdb1ee1d6c8", + "name": "56d2dd76-6fec-422b-96e9-22791b0c5f0c:panel_56d2dd76-6fec-422b-96e9-22791b0c5f0c", + "type": "visualization" + }, + { + "id": "1eeaaf70-9f23-11ea-bef1-95118e62a7c1", + "name": "3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5:panel_3e4a9683-fd6a-4ad7-b05f-c71bcb4d92d5", + "type": "visualization" + }, + { + "id": "f9fa55f0-9f34-11ea-bef1-95118e62a7c1", + "name": "a8c00572-667b-4e39-8b0c-10be56fbadd5:panel_a8c00572-667b-4e39-8b0c-10be56fbadd5", + "type": "visualization" + }, + { + "id": "3e55daa0-9e8e-11ea-af6f-cfdb1ee1d6c8", + "name": "e8a57cba-14d2-4cd9-a727-f5e30165f6ba:panel_e8a57cba-14d2-4cd9-a727-f5e30165f6ba", + "type": "visualization" + }, + { + "id": "d27dea70-9f32-11ea-bef1-95118e62a7c1", + "name": "8ae39cfa-cb06-45eb-880e-b749c3355d61:panel_8ae39cfa-cb06-45eb-880e-b749c3355d61", + "type": "visualization" + }, + { + "id": "fbb025e0-9e7c-11ea-af6f-cfdb1ee1d6c8", + "name": "ef92d192-b56d-476c-b640-e226679ed178:panel_ef92d192-b56d-476c-b640-e226679ed178", + "type": "visualization" + }, + { + "id": "7adbce50-9e96-11ea-af6f-cfdb1ee1d6c8", + "name": "b15dcac5-3616-4b41-8abb-cb28398b16f4:panel_b15dcac5-3616-4b41-8abb-cb28398b16f4", + "type": "visualization" + }, + { + "id": "70751050-9f33-11ea-bef1-95118e62a7c1", + "name": "23af61c8-6a45-4d7d-9905-8ed265328130:panel_23af61c8-6a45-4d7d-9905-8ed265328130", + "type": "visualization" + }, + { + "id": "b0c5d570-9e7c-11ea-af6f-cfdb1ee1d6c8", + "name": "390068ed-b7fb-4ec1-87d5-e89f7cc82e04:panel_390068ed-b7fb-4ec1-87d5-e89f7cc82e04", + "type": "visualization" + }, + { + "id": "c0945210-9e8b-11ea-af6f-cfdb1ee1d6c8", + "name": "45724dca-fea2-4f3b-af79-cf89bb12a31b:panel_45724dca-fea2-4f3b-af79-cf89bb12a31b", + "type": "visualization" + }, + { + "id": "11a61760-9f27-11ea-bef1-95118e62a7c1", + "name": "7f0c4a51-d972-42a5-ba0a-d3de814c7440:panel_7f0c4a51-d972-42a5-ba0a-d3de814c7440", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNTQsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/search/11a61760-9f27-11ea-bef1-95118e62a7c1.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/search/11a61760-9f27-11ea-bef1-95118e62a7c1.json new file mode 100644 index 000000000000..c59a81881de4 --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/search/11a61760-9f27-11ea-bef1-95118e62a7c1.json @@ -0,0 +1,49 @@ +{ + "attributes": { + "columns": [ + "event.code", + "powershell.engine.version", + "powershell.runspace_id", + "process.args", + "powershell.command.invocation_details", + "powershell.file.script_block_text" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "(winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" )" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Details [Winlogbeat powershell]", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "11a61760-9f27-11ea-bef1-95118e62a7c1", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNzIsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/1eeaaf70-9f23-11ea-bef1-95118e62a7c1.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/1eeaaf70-9f23-11ea-bef1-95118e62a7c1.json new file mode 100644 index 000000000000..154d14559a9a --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/1eeaaf70-9f23-11ea-bef1-95118e62a7c1.json @@ -0,0 +1,92 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Engine versions [Winlogbeat powershell]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Engine version", + "field": "powershell.engine.version", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "metric": { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + } + }, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": false, + "show": false, + "truncate": 100, + "values": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Engine versions [Winlogbeat powershell]", + "type": "pie" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "1eeaaf70-9f23-11ea-bef1-95118e62a7c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNjMsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/2dbabdf0-9f29-11ea-bef1-95118e62a7c1.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/2dbabdf0-9f29-11ea-bef1-95118e62a7c1.json new file mode 100644 index 000000000000..009ad0882b00 --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/2dbabdf0-9f29-11ea-bef1-95118e62a7c1.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Unique engine versions [Winlogbeat powershell]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Unique versions", + "field": "powershell.engine.version" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 32, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Unique engine versions [Winlogbeat powershell]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "2dbabdf0-9f29-11ea-bef1-95118e62a7c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNjAsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/3e55daa0-9e8e-11ea-af6f-cfdb1ee1d6c8.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/3e55daa0-9e8e-11ea-af6f-cfdb1ee1d6c8.json new file mode 100644 index 000000000000..a0b6be3bb9a0 --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/3e55daa0-9e8e-11ea-af6f-cfdb1ee1d6c8.json @@ -0,0 +1,138 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Users [Winlogbeat powershell]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "User", + "field": "user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Host count", + "field": "host.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "", + "origin": "http://192.168.1.48:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "User", + "params": {} + } + ], + "metrics": [ + { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + }, + { + "accessor": 2, + "aggType": "cardinality", + "format": { + "id": "number" + }, + "label": "Unique count of host.name", + "params": {} + } + ] + }, + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Users [Winlogbeat powershell]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "3e55daa0-9e8e-11ea-af6f-cfdb1ee1d6c8", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNjUsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/52543ef0-9e95-11ea-af6f-cfdb1ee1d6c8.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/52543ef0-9e95-11ea-af6f-cfdb1ee1d6c8.json new file mode 100644 index 000000000000..0afb84cb2317 --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/52543ef0-9e95-11ea-af6f-cfdb1ee1d6c8.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Total engine started [Winlogbeat powershell]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "filters": [ + { + "input": { + "language": "kuery", + "query": "event.code: 400" + }, + "label": "" + } + ] + }, + "schema": "group", + "type": "filters" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "bucket": { + "accessor": 0, + "format": { + "id": "string", + "params": {} + }, + "type": "vis_dimension" + }, + "metrics": [ + { + "accessor": 1, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 32, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Total engine started [Winlogbeat powershell]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "52543ef0-9e95-11ea-af6f-cfdb1ee1d6c8", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNTYsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/70751050-9f33-11ea-bef1-95118e62a7c1.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/70751050-9f33-11ea-bef1-95118e62a7c1.json new file mode 100644 index 000000000000..42ee9a1a1ff3 --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/70751050-9f33-11ea-bef1-95118e62a7c1.json @@ -0,0 +1,98 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Top active hosts [Winlogbeat powershell]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "host.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [], + "metrics": [ + { + "accessor": 0, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + } + ] + }, + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Top active hosts [Winlogbeat powershell]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "70751050-9f33-11ea-bef1-95118e62a7c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNjksMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/78874900-9f30-11ea-bef1-95118e62a7c1.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/78874900-9f30-11ea-bef1-95118e62a7c1.json new file mode 100644 index 000000000000..12dcbf5e4036 --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/78874900-9f30-11ea-bef1-95118e62a7c1.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Total remote commands [Winlogbeat powershell]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "filters": [ + { + "input": { + "language": "kuery", + "query": "process.title:\"ServerRemoteHost\" " + }, + "label": "Remote commands" + } + ] + }, + "schema": "group", + "type": "filters" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "bucket": { + "accessor": 0, + "format": { + "id": "string", + "params": {} + }, + "type": "vis_dimension" + }, + "metrics": [ + { + "accessor": 1, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 32, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Total remote commands [Winlogbeat powershell]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "78874900-9f30-11ea-bef1-95118e62a7c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNTgsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/7adbce50-9e96-11ea-af6f-cfdb1ee1d6c8.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/7adbce50-9e96-11ea-af6f-cfdb1ee1d6c8.json new file mode 100644 index 000000000000..97d28df27bb4 --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/7adbce50-9e96-11ea-af6f-cfdb1ee1d6c8.json @@ -0,0 +1,225 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Engine and Command started[Winlogbeat powershell]", + "uiStateJSON": { + "vis": { + "colors": { + "*": "#EAB839", + "Engine stopped": "#BF1B00" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "now-1d", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "4", + "params": { + "filters": [ + { + "input": { + "language": "kuery", + "query": "event.code: \"400\" " + }, + "label": "Engine started" + }, + { + "input": { + "language": "kuery", + "query": "event.code: \"4105\" " + }, + "label": "Command started" + } + ] + }, + "schema": "group", + "type": "filters" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "dimensions": { + "series": [ + { + "accessor": 1, + "aggType": "filters", + "format": {}, + "label": "filters", + "params": {} + } + ], + "x": { + "accessor": 0, + "aggType": "date_histogram", + "format": { + "id": "date", + "params": { + "pattern": "HH:mm" + } + }, + "label": "@timestamp per 30 minutes", + "params": { + "bounds": { + "max": "2020-05-26T09:14:29.996Z", + "min": "2020-05-25T09:14:29.996Z" + }, + "date": true, + "format": "HH:mm", + "interval": "PT30M", + "intervalESUnit": "m", + "intervalESValue": 30 + } + }, + "y": [ + { + "accessor": 2, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + } + ] + }, + "fittingFunction": "zero", + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": {}, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "interpolate": "linear", + "lineWidth": 2, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": true, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "defaultYExtents": false, + "mode": "normal", + "setYExtents": false, + "type": "log" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Engine and Command started[Winlogbeat powershell]", + "type": "line" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "7adbce50-9e96-11ea-af6f-cfdb1ee1d6c8", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNjgsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/7f3e7710-9e94-11ea-af6f-cfdb1ee1d6c8.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/7f3e7710-9e94-11ea-af6f-cfdb1ee1d6c8.json new file mode 100644 index 000000000000..52b715f7e713 --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/7f3e7710-9e94-11ea-af6f-cfdb1ee1d6c8.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Total commands [Winlogbeat powershell]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "filters": [ + { + "input": { + "language": "kuery", + "query": "powershell.command.name: * " + }, + "label": "Commands" + } + ] + }, + "schema": "group", + "type": "filters" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "bucket": { + "accessor": 0, + "format": { + "id": "string", + "params": {} + }, + "type": "vis_dimension" + }, + "metrics": [ + { + "accessor": 1, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 32, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Total commands [Winlogbeat powershell]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "7f3e7710-9e94-11ea-af6f-cfdb1ee1d6c8", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNTcsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/92a2a6b0-9f29-11ea-bef1-95118e62a7c1.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/92a2a6b0-9f29-11ea-bef1-95118e62a7c1.json new file mode 100644 index 000000000000..0a4af30a2e5d --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/92a2a6b0-9f29-11ea-bef1-95118e62a7c1.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Unique hosts [Winlogbeat powershell]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Unique hosts", + "field": "host.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 32, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Unique hosts [Winlogbeat powershell]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "92a2a6b0-9f29-11ea-bef1-95118e62a7c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNjEsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/9ec52c30-9e91-11ea-af6f-cfdb1ee1d6c8.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/9ec52c30-9e91-11ea-af6f-cfdb1ee1d6c8.json new file mode 100644 index 000000000000..c1e0d284465f --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/9ec52c30-9e91-11ea-af6f-cfdb1ee1d6c8.json @@ -0,0 +1,138 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Connected users [Winlogbeat powershell]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "User", + "field": "powershell.connected_user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "4", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Host count", + "field": "host.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "", + "origin": "http://192.168.1.48:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "User", + "params": {} + } + ], + "metrics": [ + { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + }, + { + "accessor": 2, + "aggType": "cardinality", + "format": { + "id": "number" + }, + "label": "Unique count of host.name", + "params": {} + } + ] + }, + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Connected users [Winlogbeat powershell]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "9ec52c30-9e91-11ea-af6f-cfdb1ee1d6c8", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNTUsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/b0c5d570-9e7c-11ea-af6f-cfdb1ee1d6c8.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/b0c5d570-9e7c-11ea-af6f-cfdb1ee1d6c8.json new file mode 100644 index 000000000000..bc73c14a55e1 --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/b0c5d570-9e7c-11ea-af6f-cfdb1ee1d6c8.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "powershell.command.invocation_details.type", + "negate": false, + "params": { + "query": "CommandInvocation" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "powershell.command.invocation_details.type": "CommandInvocation" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Top Invoked Commands [Winlogbeat powershell]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "powershell.command.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "", + "origin": "http://192.168.1.48:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "powershell.command.invocation_details.related_command: Descending", + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + } + }, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": false, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Top Invoked Commands [Winlogbeat powershell]", + "type": "pie" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "b0c5d570-9e7c-11ea-af6f-cfdb1ee1d6c8", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNzAsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/c0945210-9e8b-11ea-af6f-cfdb1ee1d6c8.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/c0945210-9e8b-11ea-af6f-cfdb1ee1d6c8.json new file mode 100644 index 000000000000..cd71a14dc506 --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/c0945210-9e8b-11ea-af6f-cfdb1ee1d6c8.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Started providers [Winlogbeat powershell]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "powershell.provider.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "", + "origin": "http://192.168.1.48:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "powershell.provider.name: Descending", + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + } + }, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": false, + "show": false, + "truncate": 100, + "values": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Started providers [Winlogbeat powershell]", + "type": "pie" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "c0945210-9e8b-11ea-af6f-cfdb1ee1d6c8", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNzEsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/d27dea70-9f32-11ea-bef1-95118e62a7c1.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/d27dea70-9f32-11ea-bef1-95118e62a7c1.json new file mode 100644 index 000000000000..080587d7c704 --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/d27dea70-9f32-11ea-bef1-95118e62a7c1.json @@ -0,0 +1,113 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Event type [Winlogbeat powershell]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Event type", + "field": "event.code", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "", + "origin": "http://192.168.1.48:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "event.code: Descending", + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + } + }, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": false, + "show": false, + "truncate": 100, + "values": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Event type [Winlogbeat powershell]", + "type": "pie" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "d27dea70-9f32-11ea-bef1-95118e62a7c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNjYsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/e20b3940-9e9a-11ea-af6f-cfdb1ee1d6c8.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/e20b3940-9e9a-11ea-af6f-cfdb1ee1d6c8.json new file mode 100644 index 000000000000..78060b99a7f7 --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/e20b3940-9e9a-11ea-af6f-cfdb1ee1d6c8.json @@ -0,0 +1,131 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Engine versions ran by host [Winlogbeat powershell]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Host", + "field": "host.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "3", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Version count", + "field": "powershell.engine.version" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "", + "origin": "http://192.168.1.48:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "Host", + "params": {} + } + ], + "metrics": [ + { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + }, + { + "accessor": 2, + "aggType": "cardinality", + "format": { + "id": "number" + }, + "label": "Version count", + "params": {} + } + ] + }, + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Engine versions ran by host [Winlogbeat powershell]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "e20b3940-9e9a-11ea-af6f-cfdb1ee1d6c8", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNjIsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/e64ff750-9f28-11ea-bef1-95118e62a7c1.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/e64ff750-9f28-11ea-bef1-95118e62a7c1.json new file mode 100644 index 000000000000..890842f41b3d --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/e64ff750-9f28-11ea-bef1-95118e62a7c1.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Unique users [Winlogbeat powershell]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Unique users", + "field": "related.user" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 32, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Unique users [Winlogbeat powershell]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "e64ff750-9f28-11ea-bef1-95118e62a7c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNTksMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/f9fa55f0-9f34-11ea-bef1-95118e62a7c1.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/f9fa55f0-9f34-11ea-bef1-95118e62a7c1.json new file mode 100644 index 000000000000..ed346fcadb9e --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/f9fa55f0-9f34-11ea-bef1-95118e62a7c1.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Host processes [Winlogbeat powershell]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "process.title", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "", + "origin": "http://192.168.1.48:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "process.title: Descending", + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + } + }, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": false, + "show": false, + "truncate": 100, + "values": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Host processes [Winlogbeat powershell]", + "type": "pie" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "f9fa55f0-9f34-11ea-bef1-95118e62a7c1", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNjQsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/fbb025e0-9e7c-11ea-af6f-cfdb1ee1d6c8.json b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/fbb025e0-9e7c-11ea-af6f-cfdb1ee1d6c8.json new file mode 100644 index 000000000000..38ea14d0ecf8 --- /dev/null +++ b/x-pack/winlogbeat/module/powershell/_meta/kibana/7/visualization/fbb025e0-9e7c-11ea-af6f-cfdb1ee1d6c8.json @@ -0,0 +1,112 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "winlog.provider_name : \"PowerShell\" or winlog.provider_name : \"Microsoft-Windows-PowerShell\" " + } + } + }, + "title": "Event Levels [Winlogbeat powershell]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "log.level", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "", + "origin": "http://192.168.1.48:5601", + "pathname": "/app/kibana" + } + } + }, + "label": "log.level: Descending", + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + } + }, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": false, + "show": false, + "truncate": 100, + "values": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Event Levels [Winlogbeat powershell]", + "type": "pie" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "fbb025e0-9e7c-11ea-af6f-cfdb1ee1d6c8", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:51.383Z", + "version": "WzIxNjcsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/01c54730-fee6-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/01c54730-fee6-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..bbe54555ec0b --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/01c54730-fee6-11e9-8405-516218e3d268.json @@ -0,0 +1,518 @@ +{ + "attributes": { + "description": "Group management activity with TSVB metrics.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "22", + "w": 17, + "x": 0, + "y": 0 + }, + "panelIndex": "22", + "panelRefName": "panel_22", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "36", + "w": 9, + "x": 0, + "y": 59 + }, + "panelIndex": "36", + "panelRefName": "panel_36", + "title": "Group Creation Summary [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "37", + "w": 9, + "x": 9, + "y": 59 + }, + "panelIndex": "37", + "panelRefName": "panel_37", + "title": "Group Changes Summary [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "38", + "w": 9, + "x": 18, + "y": 59 + }, + "panelIndex": "38", + "panelRefName": "panel_38", + "title": "Group Deletion Summary [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "39", + "w": 16, + "x": 0, + "y": 81 + }, + "panelIndex": "39", + "panelRefName": "panel_39", + "title": "Users Added to Group Summary [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "40", + "w": 17, + "x": 16, + "y": 81 + }, + "panelIndex": "40", + "panelRefName": "panel_40", + "title": "Users Removed From Group Summary [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "42", + "w": 15, + "x": 33, + "y": 81 + }, + "panelIndex": "42", + "panelRefName": "panel_42", + "title": "Group Membership Enumeration Summary [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 22, + "i": "43", + "w": 21, + "x": 27, + "y": 50 + }, + "panelIndex": "43", + "panelRefName": "panel_43", + "title": "Logon Details [Winlogbeat Security]", + "type": "search", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "44", + "w": 16, + "x": 0, + "y": 72 + }, + "panelIndex": "44", + "panelRefName": "panel_44", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "45", + "w": 9, + "x": 18, + "y": 50 + }, + "panelIndex": "45", + "panelRefName": "panel_45", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "46", + "w": 9, + "x": 0, + "y": 50 + }, + "panelIndex": "46", + "panelRefName": "panel_46", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "47", + "w": 9, + "x": 9, + "y": 50 + }, + "panelIndex": "47", + "panelRefName": "panel_47", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "48", + "w": 17, + "x": 16, + "y": 72 + }, + "panelIndex": "48", + "panelRefName": "panel_48", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "49", + "w": 15, + "x": 33, + "y": 72 + }, + "panelIndex": "49", + "panelRefName": "panel_49", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 21, + "i": "51", + "w": 48, + "x": 0, + "y": 95 + }, + "panelIndex": "51", + "panelRefName": "panel_51", + "type": "search", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "45614e1c-b2bb-4243-9a74-a4bdd0124c87", + "w": 31, + "x": 17, + "y": 0 + }, + "panelIndex": "45614e1c-b2bb-4243-9a74-a4bdd0124c87", + "panelRefName": "panel_45614e1c-b2bb-4243-9a74-a4bdd0124c87", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 21, + "i": "88e75800-8125-4c9e-96b8-5c36f6e91664", + "w": 9, + "x": 21, + "y": 8 + }, + "panelIndex": "88e75800-8125-4c9e-96b8-5c36f6e91664", + "panelRefName": "panel_88e75800-8125-4c9e-96b8-5c36f6e91664", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 21, + "i": "4b793b8e-72d4-42a2-b377-1c70f0307414", + "w": 18, + "x": 30, + "y": 8 + }, + "panelIndex": "4b793b8e-72d4-42a2-b377-1c70f0307414", + "panelRefName": "panel_4b793b8e-72d4-42a2-b377-1c70f0307414", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": null + }, + "gridData": { + "h": 21, + "i": "82d229f9-44f4-4c4b-baf7-f9673a14c87f", + "w": 26, + "x": 0, + "y": 29 + }, + "panelIndex": "82d229f9-44f4-4c4b-baf7-f9673a14c87f", + "panelRefName": "panel_82d229f9-44f4-4c4b-baf7-f9673a14c87f", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "colors": { + "added-group-account": "#1F78C1", + "added-member-to-group": "#0A437C", + "deleted-group-account": "#5195CE", + "modified-group-account": "#0A50A1", + "type-changed-group-account": "#82B5D8", + "user-member-enumerated": "#2F575E" + }, + "enhancements": {}, + "vis": { + "colors": { + "added-group-account": "#1F78C1", + "added-member-to-group": "#0A437C", + "deleted-group-account": "#5195CE", + "modified-group-account": "#0A50A1", + "removed-member-from-group": "#82B5D8", + "type-changed-group-account": "#82B5D8", + "user-member-enumerated": "#2F575E" + } + } + }, + "gridData": { + "h": 21, + "i": "f44255b0-d9a8-479f-be3f-829c1f6ed794", + "w": 22, + "x": 26, + "y": 29 + }, + "panelIndex": "f44255b0-d9a8-479f-be3f-829c1f6ed794", + "panelRefName": "panel_f44255b0-d9a8-479f-be3f-829c1f6ed794", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "colors": { + "added-group-account": "#0A50A1", + "added-member-to-group": "#1F78C1", + "deleted-group-account": "#5195CE", + "modified-group-account": "#0A437C", + "user-member-enumerated": "#052B51" + }, + "enhancements": {}, + "vis": { + "colors": { + "added-group-account": "#0A50A1", + "added-member-to-group": "#1F78C1", + "deleted-group-account": "#5195CE", + "modified-group-account": "#0A437C", + "user-member-enumerated": "#2F575E" + } + } + }, + "gridData": { + "h": 21, + "i": "9c42bff2-b295-4617-8d8c-455bd5948b66", + "w": 21, + "x": 0, + "y": 8 + }, + "panelIndex": "9c42bff2-b295-4617-8d8c-455bd5948b66", + "panelRefName": "panel_9c42bff2-b295-4617-8d8c-455bd5948b66", + "type": "visualization", + "version": "7.7.0" + } + ], + "timeRestore": false, + "title": "[Winlogbeat Security] Group Management Events - Simple Metrics", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "01c54730-fee6-11e9-8405-516218e3d268", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "6f0f2ea0-f414-11e9-8405-516218e3d268", + "name": "22:panel_22", + "type": "visualization" + }, + { + "id": "98884120-f49d-11e9-8405-516218e3d268", + "name": "36:panel_36", + "type": "visualization" + }, + { + "id": "9e534190-f49d-11e9-8405-516218e3d268", + "name": "37:panel_37", + "type": "visualization" + }, + { + "id": "bb9cf7a0-f49d-11e9-8405-516218e3d268", + "name": "38:panel_38", + "type": "visualization" + }, + { + "id": "ce867840-f49e-11e9-8405-516218e3d268", + "name": "39:panel_39", + "type": "visualization" + }, + { + "id": "fee83900-f49f-11e9-8405-516218e3d268", + "name": "40:panel_40", + "type": "visualization" + }, + { + "id": "bc165210-f4b8-11e9-8405-516218e3d268", + "name": "42:panel_42", + "type": "visualization" + }, + { + "id": "7e178c80-fee1-11e9-8405-516218e3d268", + "name": "43:panel_43", + "type": "search" + }, + { + "id": "a13bf640-fee8-11e9-8405-516218e3d268", + "name": "44:panel_44", + "type": "visualization" + }, + { + "id": "5eeaafd0-fee7-11e9-8405-516218e3d268", + "name": "45:panel_45", + "type": "visualization" + }, + { + "id": "f42f3b20-fee6-11e9-8405-516218e3d268", + "name": "46:panel_46", + "type": "visualization" + }, + { + "id": "b5f38780-fee6-11e9-8405-516218e3d268", + "name": "47:panel_47", + "type": "visualization" + }, + { + "id": "1b5f17d0-feea-11e9-8405-516218e3d268", + "name": "48:panel_48", + "type": "visualization" + }, + { + "id": "0f2f5280-feeb-11e9-8405-516218e3d268", + "name": "49:panel_49", + "type": "visualization" + }, + { + "id": "9066d5b0-fef2-11e9-8405-516218e3d268", + "name": "51:panel_51", + "type": "search" + }, + { + "id": "d770b040-9b35-11ea-87e4-49f31ec44891", + "name": "45614e1c-b2bb-4243-9a74-a4bdd0124c87:panel_45614e1c-b2bb-4243-9a74-a4bdd0124c87", + "type": "visualization" + }, + { + "id": "33462600-9b47-11ea-87e4-49f31ec44891", + "name": "88e75800-8125-4c9e-96b8-5c36f6e91664:panel_88e75800-8125-4c9e-96b8-5c36f6e91664", + "type": "visualization" + }, + { + "id": "58fb9480-9b46-11ea-87e4-49f31ec44891", + "name": "4b793b8e-72d4-42a2-b377-1c70f0307414:panel_4b793b8e-72d4-42a2-b377-1c70f0307414", + "type": "visualization" + }, + { + "id": "e20c02d0-9b48-11ea-87e4-49f31ec44891", + "name": "82d229f9-44f4-4c4b-baf7-f9673a14c87f:panel_82d229f9-44f4-4c4b-baf7-f9673a14c87f", + "type": "visualization" + }, + { + "id": "7de2e3f0-9b4d-11ea-87e4-49f31ec44891", + "name": "f44255b0-d9a8-479f-be3f-829c1f6ed794:panel_f44255b0-d9a8-479f-be3f-829c1f6ed794", + "type": "visualization" + }, + { + "id": "b89b0c90-9b41-11ea-87e4-49f31ec44891", + "name": "9c42bff2-b295-4617-8d8c-455bd5948b66:panel_9c42bff2-b295-4617-8d8c-455bd5948b66", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-11T13:18:55.318Z", + "version": "WzIyMDUsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/035846a0-a249-11e9-a422-d144027429da.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/035846a0-a249-11e9-a422-d144027429da.json new file mode 100644 index 000000000000..31831f0eee81 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/035846a0-a249-11e9-a422-d144027429da.json @@ -0,0 +1,314 @@ +{ + "attributes": { + "description": "User logon activity dashboard with TSVB metrics.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 28, + "i": "1", + "w": 18, + "x": 0, + "y": 38 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Sesiones Usuarios Admin", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "2", + "w": 9, + "x": 0, + "y": 6 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 19, + "i": "3", + "w": 18, + "x": 0, + "y": 19 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Usuarios Adm", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "4", + "w": 12, + "x": 0, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 27, + "i": "10", + "w": 22, + "x": 0, + "y": 66 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "title": "Network Logon Details", + "type": "search", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "08245e0c-6afe-43ea-ba5f-76c3b17301fd", + "w": 36, + "x": 12, + "y": 0 + }, + "panelIndex": "08245e0c-6afe-43ea-ba5f-76c3b17301fd", + "panelRefName": "panel_08245e0c-6afe-43ea-ba5f-76c3b17301fd", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "f403fdcc-6588-4573-a949-9e661783a2b8", + "w": 9, + "x": 9, + "y": 6 + }, + "panelIndex": "f403fdcc-6588-4573-a949-9e661783a2b8", + "panelRefName": "panel_f403fdcc-6588-4573-a949-9e661783a2b8", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "51a9affa-8e96-42bd-98e9-80531bdefc53", + "w": 30, + "x": 18, + "y": 6 + }, + "panelIndex": "51a9affa-8e96-42bd-98e9-80531bdefc53", + "panelRefName": "panel_51a9affa-8e96-42bd-98e9-80531bdefc53", + "title": "Logon Events Timeline", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 19, + "i": "bbdca4de-11c5-4957-a74c-73769416a562", + "w": 12, + "x": 18, + "y": 19 + }, + "panelIndex": "bbdca4de-11c5-4957-a74c-73769416a562", + "panelRefName": "panel_bbdca4de-11c5-4957-a74c-73769416a562", + "title": "Logon Types", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 19, + "i": "4df66ae6-e047-47c7-b1a9-b15221eb9d90", + "w": 18, + "x": 30, + "y": 19 + }, + "panelIndex": "4df66ae6-e047-47c7-b1a9-b15221eb9d90", + "panelRefName": "panel_4df66ae6-e047-47c7-b1a9-b15221eb9d90", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 28, + "i": "454bb008-9720-455e-8ab9-b2f47d25aa4f", + "w": 19, + "x": 18, + "y": 38 + }, + "panelIndex": "454bb008-9720-455e-8ab9-b2f47d25aa4f", + "panelRefName": "panel_454bb008-9720-455e-8ab9-b2f47d25aa4f", + "title": "RDP Reconnections and Desconnections", + "type": "search", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 28, + "i": "baec73e7-7166-4577-9483-1252bdd8773c", + "w": 11, + "x": 37, + "y": 38 + }, + "panelIndex": "baec73e7-7166-4577-9483-1252bdd8773c", + "panelRefName": "panel_baec73e7-7166-4577-9483-1252bdd8773c", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 27, + "i": "28115147-8399-4fcd-95ce-ed0a4f4239e3", + "w": 26, + "x": 22, + "y": 66 + }, + "panelIndex": "28115147-8399-4fcd-95ce-ed0a4f4239e3", + "panelRefName": "panel_28115147-8399-4fcd-95ce-ed0a4f4239e3", + "title": "Logout Details", + "type": "search", + "version": "7.7.0" + } + ], + "timeRestore": false, + "title": "[Winlogbeat Security] User Logons - Simple Metrics", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "035846a0-a249-11e9-a422-d144027429da", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "804dd400-a248-11e9-a422-d144027429da", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "5bb93ed0-a249-11e9-a422-d144027429da", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "e2516c10-a249-11e9-a422-d144027429da", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "18348f30-a24d-11e9-a422-d144027429da", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "ce71c9a0-a25e-11e9-a422-d144027429da", + "name": "10:panel_10", + "type": "search" + }, + { + "id": "d770b040-9b35-11ea-87e4-49f31ec44891", + "name": "08245e0c-6afe-43ea-ba5f-76c3b17301fd:panel_08245e0c-6afe-43ea-ba5f-76c3b17301fd", + "type": "visualization" + }, + { + "id": "2c71e0f0-9c0d-11ea-87e4-49f31ec44891", + "name": "f403fdcc-6588-4573-a949-9e661783a2b8:panel_f403fdcc-6588-4573-a949-9e661783a2b8", + "type": "visualization" + }, + { + "id": "abd44840-9c0f-11ea-87e4-49f31ec44891", + "name": "51a9affa-8e96-42bd-98e9-80531bdefc53:panel_51a9affa-8e96-42bd-98e9-80531bdefc53", + "type": "visualization" + }, + { + "id": "006d75f0-9c03-11ea-87e4-49f31ec44891", + "name": "bbdca4de-11c5-4957-a74c-73769416a562:panel_bbdca4de-11c5-4957-a74c-73769416a562", + "type": "visualization" + }, + { + "id": "21aadac0-9c0b-11ea-87e4-49f31ec44891", + "name": "4df66ae6-e047-47c7-b1a9-b15221eb9d90:panel_4df66ae6-e047-47c7-b1a9-b15221eb9d90", + "type": "visualization" + }, + { + "id": "6f4071a0-7a78-11ea-bc9a-0baf2ca323a3", + "name": "454bb008-9720-455e-8ab9-b2f47d25aa4f:panel_454bb008-9720-455e-8ab9-b2f47d25aa4f", + "type": "search" + }, + { + "id": "25f31ee0-9c23-11ea-87e4-49f31ec44891", + "name": "baec73e7-7166-4577-9483-1252bdd8773c:panel_baec73e7-7166-4577-9483-1252bdd8773c", + "type": "visualization" + }, + { + "id": "06b6b060-7a80-11ea-bc9a-0baf2ca323a3", + "name": "28115147-8399-4fcd-95ce-ed0a4f4239e3:panel_28115147-8399-4fcd-95ce-ed0a4f4239e3", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-11T13:18:57.330Z", + "version": "WzIyNDksMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/71f720f0-ff18-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/71f720f0-ff18-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..5ab03e5ec0c4 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/71f720f0-ff18-11e9-8405-516218e3d268.json @@ -0,0 +1,651 @@ +{ + "attributes": { + "description": "User management activity.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "1", + "w": 17, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "3", + "w": 9, + "x": 0, + "y": 56 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Created Users [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "5", + "w": 9, + "x": 9, + "y": 56 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Enabled Users [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "6", + "w": 9, + "x": 0, + "y": 79 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Disabled Users [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "7", + "w": 9, + "x": 18, + "y": 56 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "title": "Deleted Users [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "9", + "w": 9, + "x": 18, + "y": 79 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "title": "Passwords Changes [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "15", + "w": 9, + "x": 9, + "y": 79 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "title": "Unlocked Users [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "16", + "w": 9, + "x": 18, + "y": 102 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "title": "Users Changes [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "20", + "w": 9, + "x": 0, + "y": 102 + }, + "panelIndex": "20", + "panelRefName": "panel_20", + "title": "Locked-out Users [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 46, + "i": "22", + "w": 21, + "x": 27, + "y": 72 + }, + "panelIndex": "22", + "panelRefName": "panel_22", + "type": "search", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 19, + "i": "23", + "w": 48, + "x": 0, + "y": 118 + }, + "panelIndex": "23", + "panelRefName": "panel_23", + "type": "search", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "24", + "w": 9, + "x": 0, + "y": 72 + }, + "panelIndex": "24", + "panelRefName": "panel_24", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "25", + "w": 9, + "x": 9, + "y": 49 + }, + "panelIndex": "25", + "panelRefName": "panel_25", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "26", + "w": 9, + "x": 18, + "y": 49 + }, + "panelIndex": "26", + "panelRefName": "panel_26", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "27", + "w": 9, + "x": 0, + "y": 49 + }, + "panelIndex": "27", + "panelRefName": "panel_27", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "28", + "w": 9, + "x": 9, + "y": 72 + }, + "panelIndex": "28", + "panelRefName": "panel_28", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "29", + "w": 9, + "x": 18, + "y": 72 + }, + "panelIndex": "29", + "panelRefName": "panel_29", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "30", + "w": 9, + "x": 0, + "y": 95 + }, + "panelIndex": "30", + "panelRefName": "panel_30", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "31", + "w": 9, + "x": 18, + "y": 95 + }, + "panelIndex": "31", + "panelRefName": "panel_31", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "32", + "w": 9, + "x": 9, + "y": 95 + }, + "panelIndex": "32", + "panelRefName": "panel_32", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "33", + "w": 9, + "x": 9, + "y": 102 + }, + "panelIndex": "33", + "panelRefName": "panel_33", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 8, + "i": "cf0adfac-7cf2-479d-8ddb-1edeee62d37c", + "w": 31, + "x": 17, + "y": 0 + }, + "panelIndex": "cf0adfac-7cf2-479d-8ddb-1edeee62d37c", + "panelRefName": "panel_cf0adfac-7cf2-479d-8ddb-1edeee62d37c", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "colors": { + "added-user-account": "#447EBC", + "deleted-user-account": "#82B5D8", + "disabled-user-account": "#82B5D8", + "enabled-user-account": "#0A50A1", + "modified-user-account": "#2F575E", + "renamed-user-account": "#1F78C1", + "reset-password": "#5195CE" + }, + "enhancements": {}, + "vis": { + "colors": { + "added-user-account": "#447EBC", + "deleted-user-account": "#82B5D8", + "disabled-user-account": "#82B5D8", + "enabled-user-account": "#0A50A1", + "modified-user-account": "#2F575E", + "renamed-user-account": "#1F78C1", + "reset-password": "#5195CE", + "unlocked-user-account": "#64B0C8" + } + } + }, + "gridData": { + "h": 16, + "i": "a2871661-98a8-489b-b615-e66ebe3b971a", + "w": 17, + "x": 0, + "y": 8 + }, + "panelIndex": "a2871661-98a8-489b-b615-e66ebe3b971a", + "panelRefName": "panel_a2871661-98a8-489b-b615-e66ebe3b971a", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "e80fae4a-6087-41e1-b4b9-31802cb1e4bf", + "w": 18, + "x": 30, + "y": 8 + }, + "panelIndex": "e80fae4a-6087-41e1-b4b9-31802cb1e4bf", + "panelRefName": "panel_e80fae4a-6087-41e1-b4b9-31802cb1e4bf", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6", + "w": 13, + "x": 17, + "y": 8 + }, + "panelIndex": "dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6", + "panelRefName": "panel_dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": null + }, + "gridData": { + "h": 25, + "i": "29f54335-78db-4c49-a3e0-a641fd0099f6", + "w": 48, + "x": 0, + "y": 24 + }, + "panelIndex": "29f54335-78db-4c49-a3e0-a641fd0099f6", + "panelRefName": "panel_29f54335-78db-4c49-a3e0-a641fd0099f6", + "title": "Actions performed over Users [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "colors": { + "added-user-account": "#0A437C", + "deleted-user-account": "#5195CE", + "enabled-user-account": "#0A50A1", + "modified-user-account": "#052B51", + "renamed-user-account": "#1F78C1", + "reset-password": "#5195CE" + }, + "enhancements": {}, + "vis": { + "colors": { + "added-user-account": "#0A437C", + "deleted-user-account": "#5195CE", + "disabled-user-account": "#82B5D8", + "enabled-user-account": "#0A50A1", + "modified-user-account": "#052B51", + "renamed-user-account": "#1F78C1", + "reset-password": "#5195CE" + } + } + }, + "gridData": { + "h": 23, + "i": "1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa", + "w": 21, + "x": 27, + "y": 49 + }, + "panelIndex": "1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa", + "panelRefName": "panel_1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa", + "type": "visualization", + "version": "7.7.0" + } + ], + "timeRestore": false, + "title": "[Winlogbeat Security] User Management Events", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "71f720f0-ff18-11e9-8405-516218e3d268", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "8f20c950-bcd4-11e9-b6a2-c9b4015c4baf", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "da2110c0-bcea-11e9-b6a2-c9b4015c4baf", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "abf96c10-bcea-11e9-b6a2-c9b4015c4baf", + "name": "16:panel_16", + "type": "visualization" + }, + { + "id": "4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf", + "name": "20:panel_20", + "type": "visualization" + }, + { + "id": "7e178c80-fee1-11e9-8405-516218e3d268", + "name": "22:panel_22", + "type": "search" + }, + { + "id": "324686c0-fefb-11e9-8405-516218e3d268", + "name": "23:panel_23", + "type": "search" + }, + { + "id": "97c70300-ff1c-11e9-8405-516218e3d268", + "name": "24:panel_24", + "type": "visualization" + }, + { + "id": "bf45dc50-ff1a-11e9-8405-516218e3d268", + "name": "25:panel_25", + "type": "visualization" + }, + { + "id": "7322f9f0-ff1c-11e9-8405-516218e3d268", + "name": "26:panel_26", + "type": "visualization" + }, + { + "id": "d3a5fec0-ff18-11e9-8405-516218e3d268", + "name": "27:panel_27", + "type": "visualization" + }, + { + "id": "1b6725f0-ff1d-11e9-8405-516218e3d268", + "name": "28:panel_28", + "type": "visualization" + }, + { + "id": "60301890-ff1d-11e9-8405-516218e3d268", + "name": "29:panel_29", + "type": "visualization" + }, + { + "id": "9dd22440-ff1d-11e9-8405-516218e3d268", + "name": "30:panel_30", + "type": "visualization" + }, + { + "id": "c9d959f0-ff1d-11e9-8405-516218e3d268", + "name": "31:panel_31", + "type": "visualization" + }, + { + "id": "1f271bc0-231a-11ea-8405-516218e3d268", + "name": "32:panel_32", + "type": "visualization" + }, + { + "id": "fa876300-231a-11ea-8405-516218e3d268", + "name": "33:panel_33", + "type": "visualization" + }, + { + "id": "a3c3f350-9b6d-11ea-87e4-49f31ec44891", + "name": "cf0adfac-7cf2-479d-8ddb-1edeee62d37c:panel_cf0adfac-7cf2-479d-8ddb-1edeee62d37c", + "type": "visualization" + }, + { + "id": "26877510-9b72-11ea-87e4-49f31ec44891", + "name": "a2871661-98a8-489b-b615-e66ebe3b971a:panel_a2871661-98a8-489b-b615-e66ebe3b971a", + "type": "visualization" + }, + { + "id": "117f5a30-9b71-11ea-87e4-49f31ec44891", + "name": "e80fae4a-6087-41e1-b4b9-31802cb1e4bf:panel_e80fae4a-6087-41e1-b4b9-31802cb1e4bf", + "type": "visualization" + }, + { + "id": "5c9ee410-9b74-11ea-87e4-49f31ec44891", + "name": "dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6:panel_dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6", + "type": "visualization" + }, + { + "id": "aa31c9d0-9b75-11ea-87e4-49f31ec44891", + "name": "29f54335-78db-4c49-a3e0-a641fd0099f6:panel_29f54335-78db-4c49-a3e0-a641fd0099f6", + "type": "visualization" + }, + { + "id": "caf4d2b0-9b76-11ea-87e4-49f31ec44891", + "name": "1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa:panel_1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMDcsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..305f86806260 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,651 @@ +{ + "attributes": { + "description": "User management activity with TSVB metrics.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "1", + "w": 17, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "3", + "w": 9, + "x": 0, + "y": 55 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Created Users [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "5", + "w": 9, + "x": 9, + "y": 55 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "title": "Enabled Users [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "6", + "w": 9, + "x": 0, + "y": 80 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Disabled Users [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "7", + "w": 9, + "x": 18, + "y": 55 + }, + "panelIndex": "7", + "panelRefName": "panel_7", + "title": "Deleted Users [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "9", + "w": 9, + "x": 18, + "y": 80 + }, + "panelIndex": "9", + "panelRefName": "panel_9", + "title": "Passwords Changes [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "10", + "w": 9, + "x": 0, + "y": 46 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "11", + "w": 9, + "x": 9, + "y": 46 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "12", + "w": 9, + "x": 18, + "y": 46 + }, + "panelIndex": "12", + "panelRefName": "panel_12", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "13", + "w": 9, + "x": 0, + "y": 71 + }, + "panelIndex": "13", + "panelRefName": "panel_13", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "14", + "w": 9, + "x": 18, + "y": 71 + }, + "panelIndex": "14", + "panelRefName": "panel_14", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "15", + "w": 9, + "x": 9, + "y": 80 + }, + "panelIndex": "15", + "panelRefName": "panel_15", + "title": "Unlocked Users [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "16", + "w": 9, + "x": 18, + "y": 105 + }, + "panelIndex": "16", + "panelRefName": "panel_16", + "title": "Users Changes [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "17", + "w": 9, + "x": 0, + "y": 96 + }, + "panelIndex": "17", + "panelRefName": "panel_17", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "18", + "w": 9, + "x": 9, + "y": 71 + }, + "panelIndex": "18", + "panelRefName": "panel_18", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "19", + "w": 9, + "x": 18, + "y": 96 + }, + "panelIndex": "19", + "panelRefName": "panel_19", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "20", + "w": 9, + "x": 0, + "y": 105 + }, + "panelIndex": "20", + "panelRefName": "panel_20", + "title": "Locked-out Users [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 48, + "i": "22", + "w": 21, + "x": 27, + "y": 73 + }, + "panelIndex": "22", + "panelRefName": "panel_22", + "type": "search", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 19, + "i": "23", + "w": 48, + "x": 0, + "y": 121 + }, + "panelIndex": "23", + "panelRefName": "panel_23", + "type": "search", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 9, + "i": "24", + "w": 9, + "x": 9, + "y": 96 + }, + "panelIndex": "24", + "panelRefName": "panel_24", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "25", + "w": 9, + "x": 9, + "y": 105 + }, + "panelIndex": "25", + "panelRefName": "panel_25", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "20adcb1b-cebf-4a75-9bc4-eaeeee626c5e", + "w": 31, + "x": 17, + "y": 0 + }, + "panelIndex": "20adcb1b-cebf-4a75-9bc4-eaeeee626c5e", + "panelRefName": "panel_20adcb1b-cebf-4a75-9bc4-eaeeee626c5e", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "colors": { + "added-user-account": "#0A437C", + "deleted-user-account": "#82B5D8", + "enabled-user-account": "#0A50A1", + "modified-user-account": "#052B51", + "renamed-user-account": "#1F78C1", + "reset-password": "#5195CE" + }, + "enhancements": {}, + "vis": { + "colors": { + "added-user-account": "#0A437C", + "deleted-user-account": "#82B5D8", + "disabled-user-account": "#BADFF4", + "enabled-user-account": "#0A50A1", + "modified-user-account": "#052B51", + "renamed-user-account": "#1F78C1", + "reset-password": "#5195CE" + } + } + }, + "gridData": { + "h": 19, + "i": "8aad73ff-37b1-487a-a3f1-b80b93618ac4", + "w": 18, + "x": 0, + "y": 7 + }, + "panelIndex": "8aad73ff-37b1-487a-a3f1-b80b93618ac4", + "panelRefName": "panel_8aad73ff-37b1-487a-a3f1-b80b93618ac4", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 19, + "i": "18cc78ac-3f77-4f54-b351-cb94873cae3f", + "w": 14, + "x": 18, + "y": 7 + }, + "panelIndex": "18cc78ac-3f77-4f54-b351-cb94873cae3f", + "panelRefName": "panel_18cc78ac-3f77-4f54-b351-cb94873cae3f", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 19, + "i": "75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d", + "w": 16, + "x": 32, + "y": 7 + }, + "panelIndex": "75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d", + "panelRefName": "panel_75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": null + }, + "gridData": { + "h": 20, + "i": "f443b5b0-ada7-426f-ae2f-46573f94f24f", + "w": 48, + "x": 0, + "y": 26 + }, + "panelIndex": "f443b5b0-ada7-426f-ae2f-46573f94f24f", + "panelRefName": "panel_f443b5b0-ada7-426f-ae2f-46573f94f24f", + "title": "Actions performed over Users [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "colors": { + "added-user-account": "#0A437C", + "deleted-user-account": "#82B5D8", + "disabled-user-account": "#BADFF4", + "enabled-user-account": "#0A50A1", + "modified-user-account": "#2F575E", + "renamed-user-account": "#1F78C1", + "reset-password": "#5195CE" + }, + "enhancements": {}, + "vis": { + "colors": { + "added-user-account": "#0A437C", + "deleted-user-account": "#82B5D8", + "disabled-user-account": "#BADFF4", + "enabled-user-account": "#0A50A1", + "modified-user-account": "#2F575E", + "renamed-user-account": "#1F78C1", + "reset-password": "#5195CE", + "unlocked-user-account": "#0A437C" + } + } + }, + "gridData": { + "h": 27, + "i": "820c0311-d378-49dc-a614-e0fed2254603", + "w": 21, + "x": 27, + "y": 46 + }, + "panelIndex": "820c0311-d378-49dc-a614-e0fed2254603", + "panelRefName": "panel_820c0311-d378-49dc-a614-e0fed2254603", + "type": "visualization", + "version": "7.7.0" + } + ], + "timeRestore": false, + "title": "[Winlogbeat Security] User Management Events - Simple Metric", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "8223bed0-b9e9-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "8f20c950-bcd4-11e9-b6a2-c9b4015c4baf", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf", + "name": "7:panel_7", + "type": "visualization" + }, + { + "id": "da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf", + "name": "9:panel_9", + "type": "visualization" + }, + { + "id": "102efd20-bcdd-11e9-b6a2-c9b4015c4baf", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "855957d0-bcdd-11e9-b6a2-c9b4015c4baf", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "c359b020-bcdd-11e9-b6a2-c9b4015c4baf", + "name": "12:panel_12", + "type": "visualization" + }, + { + "id": "0cb2d940-bcde-11e9-b6a2-c9b4015c4baf", + "name": "13:panel_13", + "type": "visualization" + }, + { + "id": "568a8130-bcde-11e9-b6a2-c9b4015c4baf", + "name": "14:panel_14", + "type": "visualization" + }, + { + "id": "da2110c0-bcea-11e9-b6a2-c9b4015c4baf", + "name": "15:panel_15", + "type": "visualization" + }, + { + "id": "abf96c10-bcea-11e9-b6a2-c9b4015c4baf", + "name": "16:panel_16", + "type": "visualization" + }, + { + "id": "84502430-bce8-11e9-b6a2-c9b4015c4baf", + "name": "17:panel_17", + "type": "visualization" + }, + { + "id": "ab6f8d80-bce8-11e9-b6a2-c9b4015c4baf", + "name": "18:panel_18", + "type": "visualization" + }, + { + "id": "5d92b100-bce8-11e9-b6a2-c9b4015c4baf", + "name": "19:panel_19", + "type": "visualization" + }, + { + "id": "4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf", + "name": "20:panel_20", + "type": "visualization" + }, + { + "id": "7e178c80-fee1-11e9-8405-516218e3d268", + "name": "22:panel_22", + "type": "search" + }, + { + "id": "324686c0-fefb-11e9-8405-516218e3d268", + "name": "23:panel_23", + "type": "search" + }, + { + "id": "5e19ff80-231c-11ea-8405-516218e3d268", + "name": "24:panel_24", + "type": "visualization" + }, + { + "id": "fa876300-231a-11ea-8405-516218e3d268", + "name": "25:panel_25", + "type": "visualization" + }, + { + "id": "d770b040-9b35-11ea-87e4-49f31ec44891", + "name": "20adcb1b-cebf-4a75-9bc4-eaeeee626c5e:panel_20adcb1b-cebf-4a75-9bc4-eaeeee626c5e", + "type": "visualization" + }, + { + "id": "26877510-9b72-11ea-87e4-49f31ec44891", + "name": "8aad73ff-37b1-487a-a3f1-b80b93618ac4:panel_8aad73ff-37b1-487a-a3f1-b80b93618ac4", + "type": "visualization" + }, + { + "id": "5c9ee410-9b74-11ea-87e4-49f31ec44891", + "name": "18cc78ac-3f77-4f54-b351-cb94873cae3f:panel_18cc78ac-3f77-4f54-b351-cb94873cae3f", + "type": "visualization" + }, + { + "id": "117f5a30-9b71-11ea-87e4-49f31ec44891", + "name": "75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d:panel_75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d", + "type": "visualization" + }, + { + "id": "aa31c9d0-9b75-11ea-87e4-49f31ec44891", + "name": "f443b5b0-ada7-426f-ae2f-46573f94f24f:panel_f443b5b0-ada7-426f-ae2f-46573f94f24f", + "type": "visualization" + }, + { + "id": "caf4d2b0-9b76-11ea-87e4-49f31ec44891", + "name": "820c0311-d378-49dc-a614-e0fed2254603:panel_820c0311-d378-49dc-a614-e0fed2254603", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-11T13:18:59.362Z", + "version": "WzIyNzksMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..825b5cd68f16 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891.json @@ -0,0 +1,347 @@ +{ + "attributes": { + "description": "User logon activity dashboard.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 28, + "i": "1", + "w": 18, + "x": 0, + "y": 34 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "title": "Admin Users Sessions", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "colors": { + "AdminLocalSta": "#890F02", + "SERVICIO LOCAL": "#508642" + }, + "enhancements": {}, + "legendOpen": true, + "vis": { + "colors": { + "AdminLocalSta": "#890F02", + "NETWORK SERVICE": "#1F78C1", + "SERVICIO LOCAL": "#508642" + }, + "legendOpen": true + } + }, + "gridData": { + "h": 18, + "i": "3", + "w": 18, + "x": 0, + "y": 16 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Administrators Logged On", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "4", + "w": 12, + "x": 0, + "y": 0 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 47, + "i": "10", + "w": 23, + "x": 0, + "y": 62 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "title": "Logon Details", + "type": "search", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 6, + "i": "34fc9633-8a7c-444d-8d19-06095b55fb43", + "w": 36, + "x": 12, + "y": 0 + }, + "panelIndex": "34fc9633-8a7c-444d-8d19-06095b55fb43", + "panelRefName": "panel_34fc9633-8a7c-444d-8d19-06095b55fb43", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "67d2409d-3e51-45d5-972f-32a36537e622", + "w": 9, + "x": 0, + "y": 6 + }, + "panelIndex": "67d2409d-3e51-45d5-972f-32a36537e622", + "panelRefName": "panel_67d2409d-3e51-45d5-972f-32a36537e622", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "33d05ce3-f60d-4a31-a668-aa6fab0cc800", + "w": 9, + "x": 9, + "y": 6 + }, + "panelIndex": "33d05ce3-f60d-4a31-a668-aa6fab0cc800", + "panelRefName": "panel_33d05ce3-f60d-4a31-a668-aa6fab0cc800", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "7b3906e6-3a81-450c-bb31-ca0d670440b7", + "w": 30, + "x": 18, + "y": 6 + }, + "panelIndex": "7b3906e6-3a81-450c-bb31-ca0d670440b7", + "panelRefName": "panel_7b3906e6-3a81-450c-bb31-ca0d670440b7", + "title": "Logon Events Timeline", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "colors": { + "CachedInteractive": "#6ED0E0", + "Interactive": "#2F575E", + "Network": "#447EBC", + "RemoteInteractive": "#64B0C8", + "Service": "#6ED0E0", + "Unlock": "#BADFF4" + }, + "enhancements": {}, + "legendOpen": true, + "vis": { + "colors": { + "CachedInteractive": "#6ED0E0", + "Interactive": "#2F575E", + "Network": "#447EBC", + "RemoteInteractive": "#64B0C8", + "Service": "#65C5DB", + "Unlock": "#BADFF4" + }, + "legendOpen": true + } + }, + "gridData": { + "h": 15, + "i": "cf50b48e-453c-46fb-ad35-7ccfb7b03de0", + "w": 15, + "x": 18, + "y": 19 + }, + "panelIndex": "cf50b48e-453c-46fb-ad35-7ccfb7b03de0", + "panelRefName": "panel_cf50b48e-453c-46fb-ad35-7ccfb7b03de0", + "title": "Logon Types", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "a743ffe5-a2ac-4c0b-9b6f-a81563140c42", + "w": 15, + "x": 33, + "y": 19 + }, + "panelIndex": "a743ffe5-a2ac-4c0b-9b6f-a81563140c42", + "panelRefName": "panel_a743ffe5-a2ac-4c0b-9b6f-a81563140c42", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 28, + "i": "454bb008-9720-455e-8ab9-b2f47d25aa4f", + "w": 18, + "x": 18, + "y": 34 + }, + "panelIndex": "454bb008-9720-455e-8ab9-b2f47d25aa4f", + "panelRefName": "panel_454bb008-9720-455e-8ab9-b2f47d25aa4f", + "title": "RDP Reconnections and Desconnections", + "type": "search", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 28, + "i": "29a0e70a-ab23-4d48-8d4e-9a39c5af47ad", + "w": 12, + "x": 36, + "y": 34 + }, + "panelIndex": "29a0e70a-ab23-4d48-8d4e-9a39c5af47ad", + "panelRefName": "panel_29a0e70a-ab23-4d48-8d4e-9a39c5af47ad", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 46, + "i": "28115147-8399-4fcd-95ce-ed0a4f4239e3", + "w": 25, + "x": 23, + "y": 62 + }, + "panelIndex": "28115147-8399-4fcd-95ce-ed0a4f4239e3", + "panelRefName": "panel_28115147-8399-4fcd-95ce-ed0a4f4239e3", + "title": "Logout Details", + "type": "search", + "version": "7.7.0" + } + ], + "timeRestore": false, + "title": "[Winlogbeat Security] User Logons", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "bae11b00-9bfc-11ea-87e4-49f31ec44891", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "804dd400-a248-11e9-a422-d144027429da", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "e2516c10-a249-11e9-a422-d144027429da", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "18348f30-a24d-11e9-a422-d144027429da", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "ce71c9a0-a25e-11e9-a422-d144027429da", + "name": "10:panel_10", + "type": "search" + }, + { + "id": "a3c3f350-9b6d-11ea-87e4-49f31ec44891", + "name": "34fc9633-8a7c-444d-8d19-06095b55fb43:panel_34fc9633-8a7c-444d-8d19-06095b55fb43", + "type": "visualization" + }, + { + "id": "0622da40-9bfd-11ea-87e4-49f31ec44891", + "name": "67d2409d-3e51-45d5-972f-32a36537e622:panel_67d2409d-3e51-45d5-972f-32a36537e622", + "type": "visualization" + }, + { + "id": "860706a0-9bfd-11ea-87e4-49f31ec44891", + "name": "33d05ce3-f60d-4a31-a668-aa6fab0cc800:panel_33d05ce3-f60d-4a31-a668-aa6fab0cc800", + "type": "visualization" + }, + { + "id": "a909b930-685f-11ea-896f-0d70f7ec3956", + "name": "7b3906e6-3a81-450c-bb31-ca0d670440b7:panel_7b3906e6-3a81-450c-bb31-ca0d670440b7", + "type": "visualization" + }, + { + "id": "006d75f0-9c03-11ea-87e4-49f31ec44891", + "name": "cf50b48e-453c-46fb-ad35-7ccfb7b03de0:panel_cf50b48e-453c-46fb-ad35-7ccfb7b03de0", + "type": "visualization" + }, + { + "id": "21aadac0-9c0b-11ea-87e4-49f31ec44891", + "name": "a743ffe5-a2ac-4c0b-9b6f-a81563140c42:panel_a743ffe5-a2ac-4c0b-9b6f-a81563140c42", + "type": "visualization" + }, + { + "id": "6f4071a0-7a78-11ea-bc9a-0baf2ca323a3", + "name": "454bb008-9720-455e-8ab9-b2f47d25aa4f:panel_454bb008-9720-455e-8ab9-b2f47d25aa4f", + "type": "search" + }, + { + "id": "25f31ee0-9c23-11ea-87e4-49f31ec44891", + "name": "29a0e70a-ab23-4d48-8d4e-9a39c5af47ad:panel_29a0e70a-ab23-4d48-8d4e-9a39c5af47ad", + "type": "visualization" + }, + { + "id": "06b6b060-7a80-11ea-bc9a-0baf2ca323a3", + "name": "28115147-8399-4fcd-95ce-ed0a4f4239e3:panel_28115147-8399-4fcd-95ce-ed0a4f4239e3", + "type": "search" + } + ], + "type": "dashboard", + "updated_at": "2021-08-11T13:18:58.346Z", + "version": "WzIyNjQsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/bb858830-f412-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/bb858830-f412-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..83cc5eba5160 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/bb858830-f412-11e9-8405-516218e3d268.json @@ -0,0 +1,520 @@ +{ + "attributes": { + "description": "Group management activity.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "22", + "w": 16, + "x": 0, + "y": 0 + }, + "panelIndex": "22", + "panelRefName": "panel_22", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "29", + "w": 16, + "x": 0, + "y": 68 + }, + "panelIndex": "29", + "panelRefName": "panel_29", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "30", + "w": 9, + "x": 18, + "y": 48 + }, + "panelIndex": "30", + "panelRefName": "panel_30", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "31", + "w": 9, + "x": 0, + "y": 48 + }, + "panelIndex": "31", + "panelRefName": "panel_31", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "32", + "w": 9, + "x": 9, + "y": 48 + }, + "panelIndex": "32", + "panelRefName": "panel_32", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "33", + "w": 17, + "x": 16, + "y": 68 + }, + "panelIndex": "33", + "panelRefName": "panel_33", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "34", + "w": 15, + "x": 33, + "y": 68 + }, + "panelIndex": "34", + "panelRefName": "panel_34", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "36", + "w": 9, + "x": 0, + "y": 55 + }, + "panelIndex": "36", + "panelRefName": "panel_36", + "title": "Group Creation Summary [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "37", + "w": 9, + "x": 9, + "y": 55 + }, + "panelIndex": "37", + "panelRefName": "panel_37", + "title": "Group Changes Summary [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "38", + "w": 9, + "x": 18, + "y": 55 + }, + "panelIndex": "38", + "panelRefName": "panel_38", + "title": "Group Deletion Summary [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "39", + "w": 16, + "x": 0, + "y": 75 + }, + "panelIndex": "39", + "panelRefName": "panel_39", + "title": "Users Added to Group Summary [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "40", + "w": 17, + "x": 16, + "y": 75 + }, + "panelIndex": "40", + "panelRefName": "panel_40", + "title": "Users Removed From Group Summary [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "42", + "w": 15, + "x": 33, + "y": 75 + }, + "panelIndex": "42", + "panelRefName": "panel_42", + "title": "Group Enumeration - Table [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "43", + "w": 21, + "x": 27, + "y": 48 + }, + "panelIndex": "43", + "panelRefName": "panel_43", + "title": "Logon Details [Winlogbeat Security]", + "type": "search", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 22, + "i": "45", + "w": 48, + "x": 0, + "y": 89 + }, + "panelIndex": "45", + "panelRefName": "panel_45", + "title": "Group Management Operations Details [Winlogbeat Security]", + "type": "search", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "colors": { + "added-group-account": "#0A437C", + "added-member-to-group": "#1F78C1", + "deleted-group-account": "#5195CE", + "modified-group-account": "#052B51", + "user-member-enumerated": "#447EBC" + }, + "enhancements": {}, + "vis": { + "colors": { + "added-group-account": "#0A437C", + "added-member-to-group": "#1F78C1", + "deleted-group-account": "#82B5D8", + "modified-group-account": "#052B51", + "user-member-enumerated": "#447EBC" + } + } + }, + "gridData": { + "h": 20, + "i": "3f7e277d-09d1-4a79-bc17-bc5da5a7e290", + "w": 20, + "x": 0, + "y": 7 + }, + "panelIndex": "3f7e277d-09d1-4a79-bc17-bc5da5a7e290", + "panelRefName": "panel_3f7e277d-09d1-4a79-bc17-bc5da5a7e290", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "8cda9d6a-096f-41a5-86e6-09dd1f6b9c98", + "w": 16, + "x": 32, + "y": 7 + }, + "panelIndex": "8cda9d6a-096f-41a5-86e6-09dd1f6b9c98", + "panelRefName": "panel_8cda9d6a-096f-41a5-86e6-09dd1f6b9c98", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "74edddd5-2dc5-41b8-b4f2-bf9c95218f1b", + "w": 12, + "x": 20, + "y": 7 + }, + "panelIndex": "74edddd5-2dc5-41b8-b4f2-bf9c95218f1b", + "panelRefName": "panel_74edddd5-2dc5-41b8-b4f2-bf9c95218f1b", + "title": "Group Management Events - Event Actions - Table [Winlogbeat Security]", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": null + }, + "gridData": { + "h": 21, + "i": "33cef054-615a-49cb-bb2e-eb55fab96ae5", + "w": 27, + "x": 0, + "y": 27 + }, + "panelIndex": "33cef054-615a-49cb-bb2e-eb55fab96ae5", + "panelRefName": "panel_33cef054-615a-49cb-bb2e-eb55fab96ae5", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "colors": { + "added-group-account": "#1F78C1", + "added-member-to-group": "#0A437C", + "deleted-group-account": "#5195CE", + "modified-group-account": "#0A50A1", + "type-changed-group-account": "#82B5D8", + "user-member-enumerated": "#447EBC" + }, + "enhancements": {}, + "vis": { + "colors": { + "added-group-account": "#1F78C1", + "added-member-to-group": "#0A437C", + "deleted-group-account": "#5195CE", + "modified-group-account": "#0A50A1", + "removed-member-from-group": "#BADFF4", + "type-changed-group-account": "#82B5D8", + "user-member-enumerated": "#447EBC" + } + } + }, + "gridData": { + "h": 21, + "i": "e0d495aa-f897-403f-815b-6116fae330b7", + "w": 21, + "x": 27, + "y": 27 + }, + "panelIndex": "e0d495aa-f897-403f-815b-6116fae330b7", + "panelRefName": "panel_e0d495aa-f897-403f-815b-6116fae330b7", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "663e0493-2070-407b-9d00-079915cce7e7", + "w": 32, + "x": 16, + "y": 0 + }, + "panelIndex": "663e0493-2070-407b-9d00-079915cce7e7", + "panelRefName": "panel_663e0493-2070-407b-9d00-079915cce7e7", + "type": "visualization", + "version": "7.7.0" + } + ], + "timeRestore": false, + "title": "[Winlogbeat Security] Group Management Events", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "bb858830-f412-11e9-8405-516218e3d268", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "6f0f2ea0-f414-11e9-8405-516218e3d268", + "name": "22:panel_22", + "type": "visualization" + }, + { + "id": "ffebe440-f419-11e9-8405-516218e3d268", + "name": "29:panel_29", + "type": "visualization" + }, + { + "id": "e22c6f40-f498-11e9-8405-516218e3d268", + "name": "30:panel_30", + "type": "visualization" + }, + { + "id": "ee292bc0-f499-11e9-8405-516218e3d268", + "name": "31:panel_31", + "type": "visualization" + }, + { + "id": "400b63e0-f49a-11e9-8405-516218e3d268", + "name": "32:panel_32", + "type": "visualization" + }, + { + "id": "a5f664c0-f49a-11e9-8405-516218e3d268", + "name": "33:panel_33", + "type": "visualization" + }, + { + "id": "546febc0-f49b-11e9-8405-516218e3d268", + "name": "34:panel_34", + "type": "visualization" + }, + { + "id": "98884120-f49d-11e9-8405-516218e3d268", + "name": "36:panel_36", + "type": "visualization" + }, + { + "id": "9e534190-f49d-11e9-8405-516218e3d268", + "name": "37:panel_37", + "type": "visualization" + }, + { + "id": "bb9cf7a0-f49d-11e9-8405-516218e3d268", + "name": "38:panel_38", + "type": "visualization" + }, + { + "id": "ce867840-f49e-11e9-8405-516218e3d268", + "name": "39:panel_39", + "type": "visualization" + }, + { + "id": "fee83900-f49f-11e9-8405-516218e3d268", + "name": "40:panel_40", + "type": "visualization" + }, + { + "id": "bc165210-f4b8-11e9-8405-516218e3d268", + "name": "42:panel_42", + "type": "visualization" + }, + { + "id": "7e178c80-fee1-11e9-8405-516218e3d268", + "name": "43:panel_43", + "type": "search" + }, + { + "id": "9066d5b0-fef2-11e9-8405-516218e3d268", + "name": "45:panel_45", + "type": "search" + }, + { + "id": "b89b0c90-9b41-11ea-87e4-49f31ec44891", + "name": "3f7e277d-09d1-4a79-bc17-bc5da5a7e290:panel_3f7e277d-09d1-4a79-bc17-bc5da5a7e290", + "type": "visualization" + }, + { + "id": "58fb9480-9b46-11ea-87e4-49f31ec44891", + "name": "8cda9d6a-096f-41a5-86e6-09dd1f6b9c98:panel_8cda9d6a-096f-41a5-86e6-09dd1f6b9c98", + "type": "visualization" + }, + { + "id": "33462600-9b47-11ea-87e4-49f31ec44891", + "name": "74edddd5-2dc5-41b8-b4f2-bf9c95218f1b:panel_74edddd5-2dc5-41b8-b4f2-bf9c95218f1b", + "type": "visualization" + }, + { + "id": "e20c02d0-9b48-11ea-87e4-49f31ec44891", + "name": "33cef054-615a-49cb-bb2e-eb55fab96ae5:panel_33cef054-615a-49cb-bb2e-eb55fab96ae5", + "type": "visualization" + }, + { + "id": "7de2e3f0-9b4d-11ea-87e4-49f31ec44891", + "name": "e0d495aa-f897-403f-815b-6116fae330b7:panel_e0d495aa-f897-403f-815b-6116fae330b7", + "type": "visualization" + }, + { + "id": "a3c3f350-9b6d-11ea-87e4-49f31ec44891", + "name": "663e0493-2070-407b-9d00-079915cce7e7:panel_663e0493-2070-407b-9d00-079915cce7e7", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyMjcsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/d401ef40-a7d5-11e9-a422-d144027429da.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/d401ef40-a7d5-11e9-a422-d144027429da.json new file mode 100644 index 000000000000..a460f05bab69 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/d401ef40-a7d5-11e9-a422-d144027429da.json @@ -0,0 +1,335 @@ +{ + "attributes": { + "description": "Failed and blocked accounts with TSVB metrics.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "1", + "w": 14, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "colors": { + "Failed Logins": "#EF843C", + "Failed Logons": "#E24D42", + "Successful Login": "#B7DBAB", + "Successful Logon": "#9AC48A" + }, + "enhancements": {}, + "legendOpen": true, + "vis": { + "colors": { + "Failed Logins": "#EF843C", + "Failed Logons": "#BF1B00", + "Successful Login": "#B7DBAB", + "Successful Logon": "#9AC48A" + }, + "legendOpen": true + } + }, + "gridData": { + "h": 18, + "i": "2", + "w": 12, + "x": 0, + "y": 7 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Login Successful vs Failed", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 21, + "i": "3", + "w": 11, + "x": 12, + "y": 35 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Blocked Acoounts", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "colors": { + "Login Failed": "#F9934E", + "Login OK": "#9AC48A", + "Logon Failed": "#E24D42", + "Logon Successful": "#9AC48A" + }, + "enhancements": {}, + "legendOpen": true, + "vis": { + "colors": { + "Login Failed": "#F9934E", + "Login OK": "#9AC48A", + "Logon Failed": "#BF1B00", + "Logon Successful": "#9AC48A" + }, + "legendOpen": true + } + }, + "gridData": { + "h": 18, + "i": "4", + "w": 23, + "x": 12, + "y": 7 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "Logon Successful and Failed Over time", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 21, + "i": "5", + "w": 12, + "x": 0, + "y": 35 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 5": "rgb(255,245,240)", + "10 - 15": "rgb(252,138,106)", + "15 - 20": "rgb(241,68,50)", + "20 - 24": "rgb(188,20,26)", + "5 - 10": "rgb(253,202,181)" + }, + "legendOpen": false + } + }, + "gridData": { + "h": 30, + "i": "6", + "w": 48, + "x": 0, + "y": 56 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Logon Failed (Time Mosaic View)", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "8", + "w": 48, + "x": 0, + "y": 86 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "title": "Logon Failed and Account Lockouts", + "type": "search", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "10", + "w": 13, + "x": 35, + "y": 7 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "title": "Logon Failed Source IPs", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 31, + "i": "11", + "w": 25, + "x": 23, + "y": 25 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "title": "Failed Logins Table", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "628de26f-7b7b-457c-b811-e06161e4e7b4", + "w": 34, + "x": 14, + "y": 0 + }, + "panelIndex": "628de26f-7b7b-457c-b811-e06161e4e7b4", + "panelRefName": "panel_628de26f-7b7b-457c-b811-e06161e4e7b4", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "01a624c2-7a86-4fa9-89d3-e2ae84e94ec9", + "w": 12, + "x": 0, + "y": 25 + }, + "panelIndex": "01a624c2-7a86-4fa9-89d3-e2ae84e94ec9", + "panelRefName": "panel_01a624c2-7a86-4fa9-89d3-e2ae84e94ec9", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "e3046900-1ffc-4efa-9dab-613d685c617b", + "w": 11, + "x": 12, + "y": 25 + }, + "panelIndex": "e3046900-1ffc-4efa-9dab-613d685c617b", + "panelRefName": "panel_e3046900-1ffc-4efa-9dab-613d685c617b", + "type": "visualization", + "version": "7.7.0" + } + ], + "timeRestore": false, + "title": "[Winlogbeat Security] Failed and Blocked Accounts", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "d401ef40-a7d5-11e9-a422-d144027429da", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "c2ea73f0-a4bd-11e9-a422-d144027429da", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "175a5760-a7d5-11e9-a422-d144027429da", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "7a329a00-a7d5-11e9-a422-d144027429da", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "162d7ab0-a7d6-11e9-a422-d144027429da", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "729443b0-a7d6-11e9-a422-d144027429da", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "4b683ac0-a7d7-11e9-a422-d144027429da", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "757510b0-a87f-11e9-a422-d144027429da", + "name": "8:panel_8", + "type": "search" + }, + { + "id": "2084e300-a884-11e9-a422-d144027429da", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "421f0610-af98-11e9-a422-d144027429da", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "a3c3f350-9b6d-11ea-87e4-49f31ec44891", + "name": "628de26f-7b7b-457c-b811-e06161e4e7b4:panel_628de26f-7b7b-457c-b811-e06161e4e7b4", + "type": "visualization" + }, + { + "id": "8ef59f90-6ab8-11ea-896f-0d70f7ec3956", + "name": "01a624c2-7a86-4fa9-89d3-e2ae84e94ec9:panel_01a624c2-7a86-4fa9-89d3-e2ae84e94ec9", + "type": "visualization" + }, + { + "id": "a79395f0-6aba-11ea-896f-0d70f7ec3956", + "name": "e3046900-1ffc-4efa-9dab-613d685c617b:panel_e3046900-1ffc-4efa-9dab-613d685c617b", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-11T13:18:53.287Z", + "version": "WzIxNzksMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..0de2cba948e5 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891.json @@ -0,0 +1,335 @@ +{ + "attributes": { + "description": "Failed and blocked accounts.", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "useMargins": false + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "1", + "w": 14, + "x": 0, + "y": 0 + }, + "panelIndex": "1", + "panelRefName": "panel_1", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "colors": { + "Failed Logins": "#EF843C", + "Failed Logons": "#E24D42", + "Successful Login": "#B7DBAB", + "Successful Logon": "#9AC48A" + }, + "enhancements": {}, + "legendOpen": true, + "vis": { + "colors": { + "Failed Logins": "#EF843C", + "Failed Logons": "#BF1B00", + "Successful Login": "#B7DBAB", + "Successful Logon": "#9AC48A" + }, + "legendOpen": true + } + }, + "gridData": { + "h": 18, + "i": "2", + "w": 12, + "x": 0, + "y": 7 + }, + "panelIndex": "2", + "panelRefName": "panel_2", + "title": "Login Successful vs Failed", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 21, + "i": "3", + "w": 11, + "x": 12, + "y": 35 + }, + "panelIndex": "3", + "panelRefName": "panel_3", + "title": "Blocked Acoounts", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "colors": { + "Login Failed": "#F9934E", + "Login OK": "#9AC48A", + "Logon Failed": "#E24D42", + "Logon Successful": "#9AC48A" + }, + "enhancements": {}, + "legendOpen": true, + "vis": { + "colors": { + "Login Failed": "#F9934E", + "Login OK": "#9AC48A", + "Logon Failed": "#BF1B00", + "Logon Successful": "#9AC48A" + }, + "legendOpen": true + } + }, + "gridData": { + "h": 18, + "i": "4", + "w": 23, + "x": 12, + "y": 7 + }, + "panelIndex": "4", + "panelRefName": "panel_4", + "title": "Logon Successful and Failed Over time", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 21, + "i": "5", + "w": 12, + "x": 0, + "y": 35 + }, + "panelIndex": "5", + "panelRefName": "panel_5", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {}, + "vis": { + "defaultColors": { + "0 - 5": "rgb(255,245,240)", + "10 - 15": "rgb(252,138,106)", + "15 - 20": "rgb(241,68,50)", + "20 - 24": "rgb(188,20,26)", + "5 - 10": "rgb(253,202,181)" + }, + "legendOpen": false + } + }, + "gridData": { + "h": 30, + "i": "6", + "w": 48, + "x": 0, + "y": 56 + }, + "panelIndex": "6", + "panelRefName": "panel_6", + "title": "Logon Failed (Time Mosaic View)", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 20, + "i": "8", + "w": 48, + "x": 0, + "y": 86 + }, + "panelIndex": "8", + "panelRefName": "panel_8", + "title": "Logon Failed and Account Lockouts", + "type": "search", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "10", + "w": 13, + "x": 35, + "y": 7 + }, + "panelIndex": "10", + "panelRefName": "panel_10", + "title": "Logon Failed Source IPs", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 31, + "i": "11", + "w": 25, + "x": 23, + "y": 25 + }, + "panelIndex": "11", + "panelRefName": "panel_11", + "title": "Failed Logins Table", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "a79ee89f-ff45-486c-9788-9446d39456c2", + "w": 34, + "x": 14, + "y": 0 + }, + "panelIndex": "a79ee89f-ff45-486c-9788-9446d39456c2", + "panelRefName": "panel_a79ee89f-ff45-486c-9788-9446d39456c2", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "7765df59-11c4-476d-898f-9ebf98c369e2", + "w": 11, + "x": 12, + "y": 25 + }, + "panelIndex": "7765df59-11c4-476d-898f-9ebf98c369e2", + "panelRefName": "panel_7765df59-11c4-476d-898f-9ebf98c369e2", + "type": "visualization", + "version": "7.7.0" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 10, + "i": "b47c91d3-58c4-4b5b-b302-444b048efdfa", + "w": 12, + "x": 0, + "y": 25 + }, + "panelIndex": "b47c91d3-58c4-4b5b-b302-444b048efdfa", + "panelRefName": "panel_b47c91d3-58c4-4b5b-b302-444b048efdfa", + "type": "visualization", + "version": "7.7.0" + } + ], + "timeRestore": false, + "title": "[Winlogbeat Security] Failed and Blocked Accounts - Simple Metrics", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "f49f3170-9ffc-11ea-87e4-49f31ec44891", + "migrationVersion": { + "dashboard": "7.14.0" + }, + "references": [ + { + "id": "c2ea73f0-a4bd-11e9-a422-d144027429da", + "name": "1:panel_1", + "type": "visualization" + }, + { + "id": "175a5760-a7d5-11e9-a422-d144027429da", + "name": "2:panel_2", + "type": "visualization" + }, + { + "id": "7a329a00-a7d5-11e9-a422-d144027429da", + "name": "3:panel_3", + "type": "visualization" + }, + { + "id": "162d7ab0-a7d6-11e9-a422-d144027429da", + "name": "4:panel_4", + "type": "visualization" + }, + { + "id": "729443b0-a7d6-11e9-a422-d144027429da", + "name": "5:panel_5", + "type": "visualization" + }, + { + "id": "4b683ac0-a7d7-11e9-a422-d144027429da", + "name": "6:panel_6", + "type": "visualization" + }, + { + "id": "757510b0-a87f-11e9-a422-d144027429da", + "name": "8:panel_8", + "type": "search" + }, + { + "id": "2084e300-a884-11e9-a422-d144027429da", + "name": "10:panel_10", + "type": "visualization" + }, + { + "id": "421f0610-af98-11e9-a422-d144027429da", + "name": "11:panel_11", + "type": "visualization" + }, + { + "id": "d770b040-9b35-11ea-87e4-49f31ec44891", + "name": "a79ee89f-ff45-486c-9788-9446d39456c2:panel_a79ee89f-ff45-486c-9788-9446d39456c2", + "type": "visualization" + }, + { + "id": "5d117970-9ffd-11ea-87e4-49f31ec44891", + "name": "7765df59-11c4-476d-898f-9ebf98c369e2:panel_7765df59-11c4-476d-898f-9ebf98c369e2", + "type": "visualization" + }, + { + "id": "4bedf650-9ffd-11ea-87e4-49f31ec44891", + "name": "b47c91d3-58c4-4b5b-b302-444b048efdfa:panel_b47c91d3-58c4-4b5b-b302-444b048efdfa", + "type": "visualization" + } + ], + "type": "dashboard", + "updated_at": "2021-08-11T13:18:54.296Z", + "version": "WzIxOTIsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts-tsvb.ndjson b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts-tsvb.ndjson deleted file mode 100644 index a328b7099de6..000000000000 --- a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts-tsvb.ndjson +++ /dev/null @@ -1,13 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Failed Logon and Account Lockout [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### **Failed Logons and Account Lockouts**\",\"openLinksInNewTab\":false},\"title\":\"Failed Logon and Account Lockout [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"c2ea73f0-a4bd-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTMsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Successful vs Failed [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"colors\": {\"Failed Logins\": \"#EF843C\", \"Failed Logons\": \"#EA6460\", \"Successful Login\": \"#B7DBAB\", \"Successful Logon\": \"#B7DBAB\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"lucene\",\"query\":\"event.code: 4624\"},\"label\":\"Successful Logon\"},{\"input\":{\"language\":\"lucene\",\"query\":\"event.code: 4625\"},\"label\":\"Failed Logons\"}]},\"schema\":\"segment\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"filters\",\"format\":{},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"bottom\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Logon Successful vs Failed [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"175a5760-a7d5-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTQsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4740\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4740\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Blocked Accounts Tag [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"type\":\"vis_dimension\"},\"maxFontSize\":53,\"metric\":{\"accessor\":1,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Blocked Accounts Tag [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"7a329a00-a7d5-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Successful - Logon Failed Timeline [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"colors\": {\"Login Failed\": \"#F9934E\", \"Login OK\": \"#9AC48A\", \"Logon Failed\": \"#EF843C\", \"Logon Successful\": \"#9AC48A\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-17T09:37:55.995Z\",\"to\":\"2020-05-22T03:09:27.260Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"filters\":[{\"input\":{\"language\":\"lucene\",\"query\":\"event.code: 4624\"},\"label\":\"Logon Successful\"},{\"input\":{\"language\":\"lucene\",\"query\":\"event.code: 4625\"},\"label\":\"Logon Failed\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"filters\",\"format\":{},\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"HH:mm\"}},\"params\":{\"bounds\":{\"max\":\"2019-07-16T14:30:11.515Z\",\"min\":\"2019-07-16T12:30:11.514Z\"},\"date\":true,\"format\":\"HH:mm\",\"interval\":\"PT1M\"}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"bottom\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Logon Successful - Logon Failed Timeline [Winlogbeat Security]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"7.14.0","id":"162d7ab0-a7d6-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTYsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4625\", \"4771\"], \"type\": \"phrases\", \"value\": \"4625, 4771\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4625\"}}, {\"match_phrase\": {\"event.code\": \"4771\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Failed Acconts [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"type\":\"vis_dimension\"},\"maxFontSize\":37,\"metric\":{\"accessor\":1,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"minFontSize\":15,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Logon Failed Acconts [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"729443b0-a7d6-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTcsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4625\"], \"type\": \"phrases\", \"value\": \"4625\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4625\"}}]}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Failed Logon HeatMap [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 4\": \"rgb(255,255,204)\", \"12 - 16\": \"rgb(252,91,46)\", \"16 - 20\": \"rgb(212,16,32)\", \"4 - 8\": \"rgb(254,225,135)\", \"8 - 12\": \"rgb(254,171,73)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":true,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"h\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-17T09:37:55.995Z\",\"to\":\"2020-05-22T03:09:27.260Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"group\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTooltip\":false,\"colorSchema\":\"Yellow to Red\",\"colorsNumber\":5,\"colorsRange\":[],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"label\":\"@timestamp per hour\",\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"user.name: Descending\",\"params\":{}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}]},\"enableHover\":true,\"invertColors\":false,\"legendPosition\":\"bottom\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":true},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Failed Logon HeatMap [Winlogbeat Security]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"7.14.0","id":"4b683ac0-a7d7-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTgsMl0="} -{"attributes":{"columns":["event.action","user.name","related.user","user.domain","source.domain","source.ip","winlog.event_data.SubjectUserName"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4625\", \"4740\"], \"type\": \"phrases\", \"value\": \"4625, 4740\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4625\"}}, {\"match_phrase\": {\"event.code\": \"4740\"}}]}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"3. Login Failed Details","version":1},"coreMigrationVersion":"7.14.0","id":"757510b0-a87f-11e9-a422-d144027429da","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTksMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4625\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4625\", \"type\": \"phrase\"}}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Failed Source IP [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"ip\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"type\":\"vis_dimension\"},\"maxFontSize\":38,\"metric\":{\"accessor\":1,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"minFontSize\":10,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Logon Failed Source IP [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"2084e300-a884-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIyMDAsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4625\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4625\", \"type\": \"phrase\"}}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Failed Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Time Bucket\",\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"h\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-17T09:37:55.995Z\",\"to\":\"2020-05-22T03:09:27.260Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"bucket\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"user.name\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":1000},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"source workstation\",\"field\":\"source.domain\",\"json\":\"{\\\"missing\\\": \\\"N/A\\\"}\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"source.ip\",\"field\":\"source.ip\",\"json\":\"{\\\"missing\\\": \\\"::\\\"}\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"event.action\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"winlog.logon.type\",\"field\":\"winlog.logon.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"winlog.event_data.SubjectUserName\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"ip\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":4,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":5,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":15,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Logon Failed Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"421f0610-af98-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIyMDEsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboard links [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Winlogbeat Overview](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891) | [Logon Failed and Account Lockout](#/dashboard/d401ef40-a7d5-11e9-a422-d144027429da) | [User Management Events](#/dashboard/71f720f0-ff18-11e9-8405-516218e3d268) | [Group Management Events](#/dashboard/bb858830-f412-11e9-8405-516218e3d268)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard links [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"a3c3f350-9b6d-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjksMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Failed Logons TSVB [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(181,99,93,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"e046d275-9e09-4e59-be48-7f7276c42e0d\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4625\\\" and winlog.provider_name : \\\"Microsoft-Windows-Security-Auditing\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Failed Logon\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Failed Logons TSVB [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"8ef59f90-6ab8-11ea-896f-0d70f7ec3956","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:53.287Z","version":"WzIxOTAsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Blocked Accounts TSVB [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"color\":\"rgba(51,51,51,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(102,102,102,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"color\":\"rgba(51,51,51,1)\",\"id\":\"efbe538c-41df-4ea0-9072-09d71fb8c5d8\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4740\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Blocked Accounts\",\"line_width\":1,\"metrics\":[{\"field\":\"user.name\",\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"cardinality\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Blocked Accounts TSVB [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"a79395f0-6aba-11ea-896f-0d70f7ec3956","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:53.287Z","version":"WzIxOTEsMl0="} -{"attributes":{"description":"Failed and blocked accounts with TSVB metrics.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"1\",\"w\":14,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"2\",\"w\":12,\"x\":0,\"y\":7},\"panelIndex\":\"2\",\"embeddableConfig\":{\"colors\":{\"Failed Logins\":\"#EF843C\",\"Failed Logons\":\"#E24D42\",\"Successful Login\":\"#B7DBAB\",\"Successful Logon\":\"#9AC48A\"},\"legendOpen\":true,\"vis\":{\"colors\":{\"Failed Logins\":\"#EF843C\",\"Failed Logons\":\"#BF1B00\",\"Successful Login\":\"#B7DBAB\",\"Successful Logon\":\"#9AC48A\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Login Successful vs Failed\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"3\",\"w\":11,\"x\":12,\"y\":35},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Blocked Acoounts\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"4\",\"w\":23,\"x\":12,\"y\":7},\"panelIndex\":\"4\",\"embeddableConfig\":{\"colors\":{\"Login Failed\":\"#F9934E\",\"Login OK\":\"#9AC48A\",\"Logon Failed\":\"#E24D42\",\"Logon Successful\":\"#9AC48A\"},\"legendOpen\":true,\"vis\":{\"colors\":{\"Login Failed\":\"#F9934E\",\"Login OK\":\"#9AC48A\",\"Logon Failed\":\"#BF1B00\",\"Logon Successful\":\"#9AC48A\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Logon Successful and Failed Over time\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"5\",\"w\":12,\"x\":0,\"y\":35},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":30,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":56},\"panelIndex\":\"6\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 5\":\"rgb(255,245,240)\",\"10 - 15\":\"rgb(252,138,106)\",\"15 - 20\":\"rgb(241,68,50)\",\"20 - 24\":\"rgb(188,20,26)\",\"5 - 10\":\"rgb(253,202,181)\"},\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Logon Failed (Time Mosaic View)\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":20,\"i\":\"8\",\"w\":48,\"x\":0,\"y\":86},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Failed and Account Lockouts\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"10\",\"w\":13,\"x\":35,\"y\":7},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Failed Source IPs\",\"panelRefName\":\"panel_10\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":31,\"i\":\"11\",\"w\":25,\"x\":23,\"y\":25},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Failed Logins Table\",\"panelRefName\":\"panel_11\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"628de26f-7b7b-457c-b811-e06161e4e7b4\",\"w\":34,\"x\":14,\"y\":0},\"panelIndex\":\"628de26f-7b7b-457c-b811-e06161e4e7b4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_628de26f-7b7b-457c-b811-e06161e4e7b4\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"01a624c2-7a86-4fa9-89d3-e2ae84e94ec9\",\"w\":12,\"x\":0,\"y\":25},\"panelIndex\":\"01a624c2-7a86-4fa9-89d3-e2ae84e94ec9\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_01a624c2-7a86-4fa9-89d3-e2ae84e94ec9\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"e3046900-1ffc-4efa-9dab-613d685c617b\",\"w\":11,\"x\":12,\"y\":25},\"panelIndex\":\"e3046900-1ffc-4efa-9dab-613d685c617b\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e3046900-1ffc-4efa-9dab-613d685c617b\"}]","timeRestore":false,"title":"[Winlogbeat Security] Failed and Blocked Accounts","version":1},"coreMigrationVersion":"7.14.0","id":"d401ef40-a7d5-11e9-a422-d144027429da","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"c2ea73f0-a4bd-11e9-a422-d144027429da","name":"1:panel_1","type":"visualization"},{"id":"175a5760-a7d5-11e9-a422-d144027429da","name":"2:panel_2","type":"visualization"},{"id":"7a329a00-a7d5-11e9-a422-d144027429da","name":"3:panel_3","type":"visualization"},{"id":"162d7ab0-a7d6-11e9-a422-d144027429da","name":"4:panel_4","type":"visualization"},{"id":"729443b0-a7d6-11e9-a422-d144027429da","name":"5:panel_5","type":"visualization"},{"id":"4b683ac0-a7d7-11e9-a422-d144027429da","name":"6:panel_6","type":"visualization"},{"id":"757510b0-a87f-11e9-a422-d144027429da","name":"8:panel_8","type":"search"},{"id":"2084e300-a884-11e9-a422-d144027429da","name":"10:panel_10","type":"visualization"},{"id":"421f0610-af98-11e9-a422-d144027429da","name":"11:panel_11","type":"visualization"},{"id":"a3c3f350-9b6d-11ea-87e4-49f31ec44891","name":"628de26f-7b7b-457c-b811-e06161e4e7b4:panel_628de26f-7b7b-457c-b811-e06161e4e7b4","type":"visualization"},{"id":"8ef59f90-6ab8-11ea-896f-0d70f7ec3956","name":"01a624c2-7a86-4fa9-89d3-e2ae84e94ec9:panel_01a624c2-7a86-4fa9-89d3-e2ae84e94ec9","type":"visualization"},{"id":"a79395f0-6aba-11ea-896f-0d70f7ec3956","name":"e3046900-1ffc-4efa-9dab-613d685c617b:panel_e3046900-1ffc-4efa-9dab-613d685c617b","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-11T13:18:53.287Z","version":"WzIxNzksMl0="} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts.ndjson b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts.ndjson deleted file mode 100644 index 37491a0fae60..000000000000 --- a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-failed-blocked-accounts.ndjson +++ /dev/null @@ -1,13 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Failed Logon and Account Lockout [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"### **Failed Logons and Account Lockouts**\",\"openLinksInNewTab\":false},\"title\":\"Failed Logon and Account Lockout [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"c2ea73f0-a4bd-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTMsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Successful vs Failed [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"colors\": {\"Failed Logins\": \"#EF843C\", \"Failed Logons\": \"#EA6460\", \"Successful Login\": \"#B7DBAB\", \"Successful Logon\": \"#B7DBAB\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"filters\":[{\"input\":{\"language\":\"lucene\",\"query\":\"event.code: 4624\"},\"label\":\"Successful Logon\"},{\"input\":{\"language\":\"lucene\",\"query\":\"event.code: 4625\"},\"label\":\"Failed Logons\"}]},\"schema\":\"segment\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"filters\",\"format\":{},\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"bottom\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Logon Successful vs Failed [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"175a5760-a7d5-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTQsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4740\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4740\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Blocked Accounts Tag [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"type\":\"vis_dimension\"},\"maxFontSize\":53,\"metric\":{\"accessor\":1,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Blocked Accounts Tag [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"7a329a00-a7d5-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Successful - Logon Failed Timeline [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"colors\": {\"Login Failed\": \"#F9934E\", \"Login OK\": \"#9AC48A\", \"Logon Failed\": \"#EF843C\", \"Logon Successful\": \"#9AC48A\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-17T09:37:55.995Z\",\"to\":\"2020-05-22T03:09:27.260Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"filters\":[{\"input\":{\"language\":\"lucene\",\"query\":\"event.code: 4624\"},\"label\":\"Logon Successful\"},{\"input\":{\"language\":\"lucene\",\"query\":\"event.code: 4625\"},\"label\":\"Logon Failed\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"show\":true,\"truncate\":100,\"filter\":true},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"filters\",\"format\":{},\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"HH:mm\"}},\"params\":{\"bounds\":{\"max\":\"2019-07-16T14:30:11.515Z\",\"min\":\"2019-07-16T12:30:11.514Z\"},\"date\":true,\"format\":\"HH:mm\",\"interval\":\"PT1M\"}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"bottom\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"mode\":\"stacked\",\"show\":\"true\",\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Logon Successful - Logon Failed Timeline [Winlogbeat Security]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"7.14.0","id":"162d7ab0-a7d6-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTYsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4625\", \"4771\"], \"type\": \"phrases\", \"value\": \"4625, 4771\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4625\"}}, {\"match_phrase\": {\"event.code\": \"4771\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Failed Acconts [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"type\":\"vis_dimension\"},\"maxFontSize\":37,\"metric\":{\"accessor\":1,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"minFontSize\":15,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Logon Failed Acconts [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"729443b0-a7d6-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTcsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4625\"], \"type\": \"phrases\", \"value\": \"4625\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4625\"}}]}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Failed Logon HeatMap [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"defaultColors\": {\"0 - 4\": \"rgb(255,255,204)\", \"12 - 16\": \"rgb(252,91,46)\", \"16 - 20\": \"rgb(212,16,32)\", \"4 - 8\": \"rgb(254,225,135)\", \"8 - 12\": \"rgb(254,171,73)\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"drop_partials\":true,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"h\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-17T09:37:55.995Z\",\"to\":\"2020-05-22T03:09:27.260Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"group\",\"type\":\"date_histogram\"}],\"params\":{\"addLegend\":true,\"addTooltip\":false,\"colorSchema\":\"Yellow to Red\",\"colorsNumber\":5,\"colorsRange\":[],\"dimensions\":{\"series\":[{\"accessor\":1,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"label\":\"@timestamp per hour\",\"params\":{}}],\"x\":{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"user.name: Descending\",\"params\":{}},\"y\":[{\"accessor\":2,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Count\",\"params\":{}}]},\"enableHover\":true,\"invertColors\":false,\"legendPosition\":\"bottom\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":true},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Failed Logon HeatMap [Winlogbeat Security]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"7.14.0","id":"4b683ac0-a7d7-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTgsMl0="} -{"attributes":{"columns":["event.action","user.name","related.user","user.domain","source.domain","source.ip","winlog.event_data.SubjectUserName"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4625\", \"4740\"], \"type\": \"phrases\", \"value\": \"4625, 4740\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4625\"}}, {\"match_phrase\": {\"event.code\": \"4740\"}}]}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"3. Login Failed Details","version":1},"coreMigrationVersion":"7.14.0","id":"757510b0-a87f-11e9-a422-d144027429da","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTksMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4625\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4625\", \"type\": \"phrase\"}}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Failed Source IP [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"bucket\":{\"accessor\":0,\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"ip\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"type\":\"vis_dimension\"},\"maxFontSize\":38,\"metric\":{\"accessor\":1,\"format\":{\"id\":\"string\",\"params\":{}},\"type\":\"vis_dimension\"},\"minFontSize\":10,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Logon Failed Source IP [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"2084e300-a884-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIyMDAsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4625\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4625\", \"type\": \"phrase\"}}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Failed Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Time Bucket\",\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"h\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-17T09:37:55.995Z\",\"to\":\"2020-05-22T03:09:27.260Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"bucket\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"user.name\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":1000},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"source workstation\",\"field\":\"source.domain\",\"json\":\"{\\\"missing\\\": \\\"N/A\\\"}\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"source.ip\",\"field\":\"source.ip\",\"json\":\"{\\\"missing\\\": \\\"::\\\"}\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"event.action\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"7\",\"params\":{\"customLabel\":\"winlog.logon.type\",\"field\":\"winlog.logon.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"winlog.event_data.SubjectUserName\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"ip\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":4,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":5,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":15,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Logon Failed Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"421f0610-af98-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIyMDEsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboard links - Simple [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Winlogbeat General ECS Dashboard](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/035846a0-a249-11e9-a422-d144027429da?) | [Logon failed and Account Lockout](#/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891) | [User Management Events](#/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf) | [Group Management Events](#/dashboard/01c54730-fee6-11e9-8405-516218e3d268)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard links - Simple [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"d770b040-9b35-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIzMDEsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4740\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4740\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Blocked Accounts [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Blocked Accounts\",\"field\":\"user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Blocked Accounts [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"5d117970-9ffd-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIyMDMsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4625\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4625\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":" Failed Logons [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Failed Logons\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\" Failed Logons [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"4bedf650-9ffd-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIyMDQsMl0="} -{"attributes":{"description":"Failed and blocked accounts.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"1\",\"w\":14,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"2\",\"w\":12,\"x\":0,\"y\":7},\"panelIndex\":\"2\",\"embeddableConfig\":{\"colors\":{\"Failed Logins\":\"#EF843C\",\"Failed Logons\":\"#E24D42\",\"Successful Login\":\"#B7DBAB\",\"Successful Logon\":\"#9AC48A\"},\"legendOpen\":true,\"vis\":{\"colors\":{\"Failed Logins\":\"#EF843C\",\"Failed Logons\":\"#BF1B00\",\"Successful Login\":\"#B7DBAB\",\"Successful Logon\":\"#9AC48A\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Login Successful vs Failed\",\"panelRefName\":\"panel_2\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"3\",\"w\":11,\"x\":12,\"y\":35},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Blocked Acoounts\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"4\",\"w\":23,\"x\":12,\"y\":7},\"panelIndex\":\"4\",\"embeddableConfig\":{\"colors\":{\"Login Failed\":\"#F9934E\",\"Login OK\":\"#9AC48A\",\"Logon Failed\":\"#E24D42\",\"Logon Successful\":\"#9AC48A\"},\"legendOpen\":true,\"vis\":{\"colors\":{\"Login Failed\":\"#F9934E\",\"Login OK\":\"#9AC48A\",\"Logon Failed\":\"#BF1B00\",\"Logon Successful\":\"#9AC48A\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Logon Successful and Failed Over time\",\"panelRefName\":\"panel_4\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"5\",\"w\":12,\"x\":0,\"y\":35},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_5\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":30,\"i\":\"6\",\"w\":48,\"x\":0,\"y\":56},\"panelIndex\":\"6\",\"embeddableConfig\":{\"vis\":{\"defaultColors\":{\"0 - 5\":\"rgb(255,245,240)\",\"10 - 15\":\"rgb(252,138,106)\",\"15 - 20\":\"rgb(241,68,50)\",\"20 - 24\":\"rgb(188,20,26)\",\"5 - 10\":\"rgb(253,202,181)\"},\"legendOpen\":false},\"enhancements\":{}},\"title\":\"Logon Failed (Time Mosaic View)\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":20,\"i\":\"8\",\"w\":48,\"x\":0,\"y\":86},\"panelIndex\":\"8\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Failed and Account Lockouts\",\"panelRefName\":\"panel_8\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"10\",\"w\":13,\"x\":35,\"y\":7},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Failed Source IPs\",\"panelRefName\":\"panel_10\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":31,\"i\":\"11\",\"w\":25,\"x\":23,\"y\":25},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Failed Logins Table\",\"panelRefName\":\"panel_11\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"a79ee89f-ff45-486c-9788-9446d39456c2\",\"w\":34,\"x\":14,\"y\":0},\"panelIndex\":\"a79ee89f-ff45-486c-9788-9446d39456c2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a79ee89f-ff45-486c-9788-9446d39456c2\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"7765df59-11c4-476d-898f-9ebf98c369e2\",\"w\":11,\"x\":12,\"y\":25},\"panelIndex\":\"7765df59-11c4-476d-898f-9ebf98c369e2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_7765df59-11c4-476d-898f-9ebf98c369e2\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"b47c91d3-58c4-4b5b-b302-444b048efdfa\",\"w\":12,\"x\":0,\"y\":25},\"panelIndex\":\"b47c91d3-58c4-4b5b-b302-444b048efdfa\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_b47c91d3-58c4-4b5b-b302-444b048efdfa\"}]","timeRestore":false,"title":"[Winlogbeat Security] Failed and Blocked Accounts - Simple Metrics","version":1},"coreMigrationVersion":"7.14.0","id":"f49f3170-9ffc-11ea-87e4-49f31ec44891","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"c2ea73f0-a4bd-11e9-a422-d144027429da","name":"1:panel_1","type":"visualization"},{"id":"175a5760-a7d5-11e9-a422-d144027429da","name":"2:panel_2","type":"visualization"},{"id":"7a329a00-a7d5-11e9-a422-d144027429da","name":"3:panel_3","type":"visualization"},{"id":"162d7ab0-a7d6-11e9-a422-d144027429da","name":"4:panel_4","type":"visualization"},{"id":"729443b0-a7d6-11e9-a422-d144027429da","name":"5:panel_5","type":"visualization"},{"id":"4b683ac0-a7d7-11e9-a422-d144027429da","name":"6:panel_6","type":"visualization"},{"id":"757510b0-a87f-11e9-a422-d144027429da","name":"8:panel_8","type":"search"},{"id":"2084e300-a884-11e9-a422-d144027429da","name":"10:panel_10","type":"visualization"},{"id":"421f0610-af98-11e9-a422-d144027429da","name":"11:panel_11","type":"visualization"},{"id":"d770b040-9b35-11ea-87e4-49f31ec44891","name":"a79ee89f-ff45-486c-9788-9446d39456c2:panel_a79ee89f-ff45-486c-9788-9446d39456c2","type":"visualization"},{"id":"5d117970-9ffd-11ea-87e4-49f31ec44891","name":"7765df59-11c4-476d-898f-9ebf98c369e2:panel_7765df59-11c4-476d-898f-9ebf98c369e2","type":"visualization"},{"id":"4bedf650-9ffd-11ea-87e4-49f31ec44891","name":"b47c91d3-58c4-4b5b-b302-444b048efdfa:panel_b47c91d3-58c4-4b5b-b302-444b048efdfa","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-11T13:18:54.296Z","version":"WzIxOTIsMl0="} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management-tsvb.ndjson b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management-tsvb.ndjson deleted file mode 100644 index 9ad799682d5a..000000000000 --- a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management-tsvb.ndjson +++ /dev/null @@ -1,22 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Group Management Events - Description [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"# **Group Management Events**\\n\\n#### This dashboard shows information about Group Management Events collected by winlogbeat\\n\",\"openLinksInNewTab\":false},\"title\":\"Group Management Events - Description [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"6f0f2ea0-f414-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMjgsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4731\", \"4727\", \"4754\", \"4744\", \"4759\", \"4779\", \"4790\", \"4783\"], \"type\": \"phrases\", \"value\": \"4731, 4727, 4754, 4744, 4759, 4779, 4790, 4783\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4731\"}}, {\"match_phrase\": {\"event.code\": \"4727\"}}, {\"match_phrase\": {\"event.code\": \"4754\"}}, {\"match_phrase\": {\"event.code\": \"4744\"}}, {\"match_phrase\": {\"event.code\": \"4759\"}}, {\"match_phrase\": {\"event.code\": \"4779\"}}, {\"match_phrase\": {\"event.code\": \"4790\"}}, {\"match_phrase\": {\"event.code\": \"4783\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Groups Created - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performer LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Groups Created - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"98884120-f49d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4735\", \"4737\", \"4755\", \"4750\", \"4760\", \"4745\", \"4791\", \"4784\", \"4764\"], \"type\": \"phrases\", \"value\": \"4735, 4737, 4755, 4750, 4760, 4745, 4791, 4784, 4764\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4735\"}}, {\"match_phrase\": {\"event.code\": \"4737\"}}, {\"match_phrase\": {\"event.code\": \"4755\"}}, {\"match_phrase\": {\"event.code\": \"4750\"}}, {\"match_phrase\": {\"event.code\": \"4760\"}}, {\"match_phrase\": {\"event.code\": \"4745\"}}, {\"match_phrase\": {\"event.code\": \"4791\"}}, {\"match_phrase\": {\"event.code\": \"4784\"}}, {\"match_phrase\": {\"event.code\": \"4764\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Group Changes - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performer LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Group Changes - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"9e534190-f49d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzYsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4734\", \"4730\", \"4758\", \"4748\", \"4763\", \"4753\", \"4792\", \"4789\"], \"type\": \"phrases\", \"value\": \"4734, 4730, 4758, 4748, 4763, 4753, 4792, 4789\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4734\"}}, {\"match_phrase\": {\"event.code\": \"4730\"}}, {\"match_phrase\": {\"event.code\": \"4758\"}}, {\"match_phrase\": {\"event.code\": \"4748\"}}, {\"match_phrase\": {\"event.code\": \"4763\"}}, {\"match_phrase\": {\"event.code\": \"4753\"}}, {\"match_phrase\": {\"event.code\": \"4792\"}}, {\"match_phrase\": {\"event.code\": \"4789\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Groups Deleted - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performer LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Groups Deleted - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"bb9cf7a0-f49d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzcsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4732\", \"4728\", \"4756\", \"4751\", \"4761\", \"4746\", \"4785\", \"4787\"], \"type\": \"phrases\", \"value\": \"4732, 4728, 4756, 4751, 4761, 4746, 4785, 4787\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4732\"}}, {\"match_phrase\": {\"event.code\": \"4728\"}}, {\"match_phrase\": {\"event.code\": \"4756\"}}, {\"match_phrase\": {\"event.code\": \"4751\"}}, {\"match_phrase\": {\"event.code\": \"4761\"}}, {\"match_phrase\": {\"event.code\": \"4746\"}}, {\"match_phrase\": {\"event.code\": \"4785\"}}, {\"match_phrase\": {\"event.code\": \"4787\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Added - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"User\",\"field\":\"winlog.event_data.MemberName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Performed by Logon ID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":4,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":5,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Added - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"ce867840-f49e-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzgsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4733\", \"4729\", \"4757\", \"4786\", \"4788\", \"4752\", \"4762\", \"4747\"], \"type\": \"phrases\", \"value\": \"4733, 4729, 4757, 4786, 4788, 4752, 4762, 4747\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4733\"}}, {\"match_phrase\": {\"event.code\": \"4729\"}}, {\"match_phrase\": {\"event.code\": \"4757\"}}, {\"match_phrase\": {\"event.code\": \"4786\"}}, {\"match_phrase\": {\"event.code\": \"4788\"}}, {\"match_phrase\": {\"event.code\": \"4752\"}}, {\"match_phrase\": {\"event.code\": \"4762\"}}, {\"match_phrase\": {\"event.code\": \"4747\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Removed from Group - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"User\",\"field\":\"winlog.event_data.MemberName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Performed by Logon ID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":4,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":5,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Removed from Group - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"fee83900-f49f-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzksMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4799\"], \"type\": \"phrases\", \"value\": \"4799\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4799\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Group Enumeration - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Creator\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Creator LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Group Enumeration - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"bc165210-f4b8-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDAsMl0="} -{"attributes":{"columns":["user.name","source.domain","source.ip","winlog.logon.id","winlog.logon.type"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4624\"], \"type\": \"phrases\", \"value\": \"4624\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4624\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Logon Details [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"7e178c80-fee1-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTcsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4732\", \"4728\", \"4756\", \"4751\", \"4761\", \"4746\", \"4785\", \"4787\"], \"type\": \"phrases\", \"value\": \"4732, 4728, 4756, 4751, 4761, 4746, 4785, 4787\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4732\"}}, {\"match_phrase\": {\"event.code\": \"4728\"}}, {\"match_phrase\": {\"event.code\": \"4756\"}}, {\"match_phrase\": {\"event.code\": \"4751\"}}, {\"match_phrase\": {\"event.code\": \"4761\"}}, {\"match_phrase\": {\"event.code\": \"4746\"}}, {\"match_phrase\": {\"event.code\": \"4785\"}}, {\"match_phrase\": {\"event.code\": \"4787\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Users Added - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Users Added to Groups\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Reds\",\"colorsRange\":[{\"from\":0,\"to\":1,\"type\":\"range\"},{\"from\":1,\"to\":5},{\"from\":5,\"to\":10},{\"from\":10,\"to\":15},{\"from\":15,\"to\":20},{\"from\":20,\"to\":9999}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"Labels\",\"percentageMode\":false,\"style\":{\"bgColor\":true,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Added - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"a13bf640-fee8-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:55.318Z","version":"WzIyMTQsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4734\", \"4730\", \"4758\", \"4748\", \"4763\", \"4753\", \"4792\", \"4789\"], \"type\": \"phrases\", \"value\": \"4734, 4730, 4758, 4748, 4763, 4753, 4792, 4789\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4734\"}}, {\"match_phrase\": {\"event.code\": \"4730\"}}, {\"match_phrase\": {\"event.code\": \"4758\"}}, {\"match_phrase\": {\"event.code\": \"4748\"}}, {\"match_phrase\": {\"event.code\": \"4763\"}}, {\"match_phrase\": {\"event.code\": \"4753\"}}, {\"match_phrase\": {\"event.code\": \"4792\"}}, {\"match_phrase\": {\"event.code\": \"4789\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Groups Deleted- Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Groups Deleted\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Greens\",\"colorsRange\":[{\"from\":0,\"to\":1,\"type\":\"range\"},{\"from\":1,\"to\":5},{\"from\":5,\"to\":10},{\"from\":10,\"to\":15},{\"from\":15,\"to\":20},{\"from\":20,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"Labels\",\"percentageMode\":false,\"style\":{\"bgColor\":true,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Groups Deleted- Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"5eeaafd0-fee7-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:55.318Z","version":"WzIyMTUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4731\", \"4727\", \"4754\", \"4744\", \"4759\", \"4779\", \"4790\", \"4783\"], \"type\": \"phrases\", \"value\": \"4731, 4727, 4754, 4744, 4759, 4779, 4790, 4783\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4731\"}}, {\"match_phrase\": {\"event.code\": \"4727\"}}, {\"match_phrase\": {\"event.code\": \"4754\"}}, {\"match_phrase\": {\"event.code\": \"4744\"}}, {\"match_phrase\": {\"event.code\": \"4759\"}}, {\"match_phrase\": {\"event.code\": \"4779\"}}, {\"match_phrase\": {\"event.code\": \"4790\"}}, {\"match_phrase\": {\"event.code\": \"4783\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Groups Created - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Groups Created\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Reds\",\"colorsRange\":[{\"from\":0,\"to\":1,\"type\":\"range\"},{\"from\":1,\"to\":10},{\"from\":10,\"to\":20},{\"from\":20,\"to\":9999}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"Labels\",\"percentageMode\":false,\"style\":{\"bgColor\":true,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Groups Created - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"f42f3b20-fee6-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:55.318Z","version":"WzIyMTYsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4735\", \"4737\", \"4755\", \"4750\", \"4760\", \"4745\", \"4791\", \"4784\", \"4764\"], \"type\": \"phrases\", \"value\": \"4735, 4737, 4755, 4750, 4760, 4745, 4791, 4784, 4764\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4735\"}}, {\"match_phrase\": {\"event.code\": \"4737\"}}, {\"match_phrase\": {\"event.code\": \"4755\"}}, {\"match_phrase\": {\"event.code\": \"4750\"}}, {\"match_phrase\": {\"event.code\": \"4760\"}}, {\"match_phrase\": {\"event.code\": \"4745\"}}, {\"match_phrase\": {\"event.code\": \"4791\"}}, {\"match_phrase\": {\"event.code\": \"4784\"}}, {\"match_phrase\": {\"event.code\": \"4764\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Groups Changes - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Groups Changed\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Yellow to Red\",\"colorsRange\":[{\"from\":0,\"to\":1,\"type\":\"range\"},{\"from\":1,\"to\":5},{\"from\":5,\"to\":10},{\"from\":10,\"to\":15},{\"from\":15,\"to\":20},{\"from\":20,\"to\":100000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"Labels\",\"percentageMode\":false,\"style\":{\"bgColor\":true,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Groups Changes - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"b5f38780-fee6-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:55.318Z","version":"WzIyMTcsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4733\", \"4729\", \"4757\", \"4786\", \"4788\", \"4752\", \"4762\", \"4747\"], \"type\": \"phrases\", \"value\": \"4733, 4729, 4757, 4786, 4788, 4752, 4762, 4747\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4733\"}}, {\"match_phrase\": {\"event.code\": \"4729\"}}, {\"match_phrase\": {\"event.code\": \"4757\"}}, {\"match_phrase\": {\"event.code\": \"4786\"}}, {\"match_phrase\": {\"event.code\": \"4788\"}}, {\"match_phrase\": {\"event.code\": \"4752\"}}, {\"match_phrase\": {\"event.code\": \"4762\"}}, {\"match_phrase\": {\"event.code\": \"4747\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Users Removed from Group - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Users Removed from Groups\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Greens\",\"colorsRange\":[{\"from\":0,\"to\":1,\"type\":\"range\"},{\"from\":1,\"to\":5},{\"from\":5,\"to\":9},{\"from\":9,\"to\":13},{\"from\":13,\"to\":17},{\"from\":17,\"to\":20000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"Labels\",\"percentageMode\":false,\"style\":{\"bgColor\":true,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Removed from Group - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"1b5f17d0-feea-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:55.318Z","version":"WzIyMTgsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4799\"}, \"type\": \"phrase\", \"value\": \"4799\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4799\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}}"},"title":"Group Membership Enumeration - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Group Membership Enumerated\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Blues\",\"colorsRange\":[{\"from\":0,\"to\":500,\"type\":\"range\"},{\"from\":500,\"to\":20000},{\"from\":20000,\"to\":30000},{\"from\":30000,\"to\":40000}],\"invertColors\":true,\"labels\":{\"show\":true},\"metricColorMode\":\"Labels\",\"percentageMode\":false,\"style\":{\"bgColor\":true,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Group Membership Enumeration - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"0f2f5280-feeb-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:55.318Z","version":"WzIyMTksMl0="} -{"attributes":{"columns":["event.action","group.name","group.domain","user.name","user.domain","host.name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4731\", \"4732\", \"4733\", \"4734\", \"4735\", \"4737\", \"4764\", \"4727\", \"4728\", \"4729\", \"4730\", \"4754\", \"4755\", \"4756\", \"4757\", \"4758\", \"4799\", \"4749\", \"4750\", \"4751\", \"4752\", \"4753\", \"4759\", \"4760\", \"4761\", \"4762\", \"4763\", \"4744\", \"4745\", \"4746\", \"4748\"], \"type\": \"phrases\", \"value\": \"4731, 4732, 4733, 4734, 4735, 4737, 4764, 4727, 4728, 4729, 4730, 4754, 4755, 4756, 4757, 4758, 4799, 4749, 4750, 4751, 4752, 4753, 4759, 4760, 4761, 4762, 4763, 4744, 4745, 4746, 4748\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4731\"}}, {\"match_phrase\": {\"event.code\": \"4732\"}}, {\"match_phrase\": {\"event.code\": \"4733\"}}, {\"match_phrase\": {\"event.code\": \"4734\"}}, {\"match_phrase\": {\"event.code\": \"4735\"}}, {\"match_phrase\": {\"event.code\": \"4737\"}}, {\"match_phrase\": {\"event.code\": \"4764\"}}, {\"match_phrase\": {\"event.code\": \"4727\"}}, {\"match_phrase\": {\"event.code\": \"4728\"}}, {\"match_phrase\": {\"event.code\": \"4729\"}}, {\"match_phrase\": {\"event.code\": \"4730\"}}, {\"match_phrase\": {\"event.code\": \"4754\"}}, {\"match_phrase\": {\"event.code\": \"4755\"}}, {\"match_phrase\": {\"event.code\": \"4756\"}}, {\"match_phrase\": {\"event.code\": \"4757\"}}, {\"match_phrase\": {\"event.code\": \"4758\"}}, {\"match_phrase\": {\"event.code\": \"4799\"}}, {\"match_phrase\": {\"event.code\": \"4749\"}}, {\"match_phrase\": {\"event.code\": \"4750\"}}, {\"match_phrase\": {\"event.code\": \"4751\"}}, {\"match_phrase\": {\"event.code\": \"4752\"}}, {\"match_phrase\": {\"event.code\": \"4753\"}}, {\"match_phrase\": {\"event.code\": \"4759\"}}, {\"match_phrase\": {\"event.code\": \"4760\"}}, {\"match_phrase\": {\"event.code\": \"4761\"}}, {\"match_phrase\": {\"event.code\": \"4762\"}}, {\"match_phrase\": {\"event.code\": \"4763\"}}, {\"match_phrase\": {\"event.code\": \"4744\"}}, {\"match_phrase\": {\"event.code\": \"4745\"}}, {\"match_phrase\": {\"event.code\": \"4746\"}}, {\"match_phrase\": {\"event.code\": \"4748\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Group Management Details - Search View [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"9066d5b0-fef2-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDIsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboard links - Simple [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Winlogbeat General ECS Dashboard](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/035846a0-a249-11e9-a422-d144027429da?) | [Logon failed and Account Lockout](#/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891) | [User Management Events](#/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf) | [Group Management Events](#/dashboard/01c54730-fee6-11e9-8405-516218e3d268)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard links - Simple [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"d770b040-9b35-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIzMDEsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Events - Event Actions - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"event.action\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"event.code\",\"field\":\"event.code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Group Management Events - Event Actions - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"33462600-9b47-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Events - Target Groups - Tag Cloud [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":58,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Group Management Events - Target Groups - Tag Cloud [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"58fb9480-9b46-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDQsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Events - Groups vs Actions - Heatmap [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Target Groups\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Actions\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Blues\",\"colorsNumber\":4,\"colorsRange\":[],\"enableHover\":false,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":true},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Group Management Events - Groups vs Actions - Heatmap [Winlogbeat Security]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"7.14.0","id":"e20c02d0-9b48-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDYsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Action Distribution over Time [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-30d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"valueAxis\":\"\"},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Group Management Action Distribution over Time [Winlogbeat Security]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"7.14.0","id":"7de2e3f0-9b4d-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDcsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Events - Event Actions [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Group Management Events - Event Actions [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"b89b0c90-9b41-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDMsMl0="} -{"attributes":{"description":"Group management activity with TSVB metrics.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"22\",\"w\":17,\"x\":0,\"y\":0},\"panelIndex\":\"22\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_22\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"36\",\"w\":9,\"x\":0,\"y\":59},\"panelIndex\":\"36\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Creation Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_36\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"37\",\"w\":9,\"x\":9,\"y\":59},\"panelIndex\":\"37\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Changes Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_37\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"38\",\"w\":9,\"x\":18,\"y\":59},\"panelIndex\":\"38\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Deletion Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_38\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"39\",\"w\":16,\"x\":0,\"y\":81},\"panelIndex\":\"39\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Users Added to Group Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_39\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"40\",\"w\":17,\"x\":16,\"y\":81},\"panelIndex\":\"40\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Users Removed From Group Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_40\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"42\",\"w\":15,\"x\":33,\"y\":81},\"panelIndex\":\"42\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Membership Enumeration Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_42\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":22,\"i\":\"43\",\"w\":21,\"x\":27,\"y\":50},\"panelIndex\":\"43\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Details [Winlogbeat Security]\",\"panelRefName\":\"panel_43\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"44\",\"w\":16,\"x\":0,\"y\":72},\"panelIndex\":\"44\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_44\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"45\",\"w\":9,\"x\":18,\"y\":50},\"panelIndex\":\"45\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_45\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"46\",\"w\":9,\"x\":0,\"y\":50},\"panelIndex\":\"46\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_46\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"47\",\"w\":9,\"x\":9,\"y\":50},\"panelIndex\":\"47\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_47\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"48\",\"w\":17,\"x\":16,\"y\":72},\"panelIndex\":\"48\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_48\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"49\",\"w\":15,\"x\":33,\"y\":72},\"panelIndex\":\"49\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_49\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":21,\"i\":\"51\",\"w\":48,\"x\":0,\"y\":95},\"panelIndex\":\"51\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_51\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"45614e1c-b2bb-4243-9a74-a4bdd0124c87\",\"w\":31,\"x\":17,\"y\":0},\"panelIndex\":\"45614e1c-b2bb-4243-9a74-a4bdd0124c87\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_45614e1c-b2bb-4243-9a74-a4bdd0124c87\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"88e75800-8125-4c9e-96b8-5c36f6e91664\",\"w\":9,\"x\":21,\"y\":8},\"panelIndex\":\"88e75800-8125-4c9e-96b8-5c36f6e91664\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_88e75800-8125-4c9e-96b8-5c36f6e91664\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"4b793b8e-72d4-42a2-b377-1c70f0307414\",\"w\":18,\"x\":30,\"y\":8},\"panelIndex\":\"4b793b8e-72d4-42a2-b377-1c70f0307414\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4b793b8e-72d4-42a2-b377-1c70f0307414\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"82d229f9-44f4-4c4b-baf7-f9673a14c87f\",\"w\":26,\"x\":0,\"y\":29},\"panelIndex\":\"82d229f9-44f4-4c4b-baf7-f9673a14c87f\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"panelRefName\":\"panel_82d229f9-44f4-4c4b-baf7-f9673a14c87f\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"f44255b0-d9a8-479f-be3f-829c1f6ed794\",\"w\":22,\"x\":26,\"y\":29},\"panelIndex\":\"f44255b0-d9a8-479f-be3f-829c1f6ed794\",\"embeddableConfig\":{\"colors\":{\"added-group-account\":\"#1F78C1\",\"added-member-to-group\":\"#0A437C\",\"deleted-group-account\":\"#5195CE\",\"modified-group-account\":\"#0A50A1\",\"type-changed-group-account\":\"#82B5D8\",\"user-member-enumerated\":\"#2F575E\"},\"vis\":{\"colors\":{\"added-group-account\":\"#1F78C1\",\"added-member-to-group\":\"#0A437C\",\"deleted-group-account\":\"#5195CE\",\"modified-group-account\":\"#0A50A1\",\"removed-member-from-group\":\"#82B5D8\",\"type-changed-group-account\":\"#82B5D8\",\"user-member-enumerated\":\"#2F575E\"}},\"enhancements\":{}},\"panelRefName\":\"panel_f44255b0-d9a8-479f-be3f-829c1f6ed794\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"9c42bff2-b295-4617-8d8c-455bd5948b66\",\"w\":21,\"x\":0,\"y\":8},\"panelIndex\":\"9c42bff2-b295-4617-8d8c-455bd5948b66\",\"embeddableConfig\":{\"colors\":{\"added-group-account\":\"#0A50A1\",\"added-member-to-group\":\"#1F78C1\",\"deleted-group-account\":\"#5195CE\",\"modified-group-account\":\"#0A437C\",\"user-member-enumerated\":\"#052B51\"},\"vis\":{\"colors\":{\"added-group-account\":\"#0A50A1\",\"added-member-to-group\":\"#1F78C1\",\"deleted-group-account\":\"#5195CE\",\"modified-group-account\":\"#0A437C\",\"user-member-enumerated\":\"#2F575E\"}},\"enhancements\":{}},\"panelRefName\":\"panel_9c42bff2-b295-4617-8d8c-455bd5948b66\"}]","timeRestore":false,"title":"[Winlogbeat Security] Group Management Events - Simple Metrics","version":1},"coreMigrationVersion":"7.14.0","id":"01c54730-fee6-11e9-8405-516218e3d268","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"6f0f2ea0-f414-11e9-8405-516218e3d268","name":"22:panel_22","type":"visualization"},{"id":"98884120-f49d-11e9-8405-516218e3d268","name":"36:panel_36","type":"visualization"},{"id":"9e534190-f49d-11e9-8405-516218e3d268","name":"37:panel_37","type":"visualization"},{"id":"bb9cf7a0-f49d-11e9-8405-516218e3d268","name":"38:panel_38","type":"visualization"},{"id":"ce867840-f49e-11e9-8405-516218e3d268","name":"39:panel_39","type":"visualization"},{"id":"fee83900-f49f-11e9-8405-516218e3d268","name":"40:panel_40","type":"visualization"},{"id":"bc165210-f4b8-11e9-8405-516218e3d268","name":"42:panel_42","type":"visualization"},{"id":"7e178c80-fee1-11e9-8405-516218e3d268","name":"43:panel_43","type":"search"},{"id":"a13bf640-fee8-11e9-8405-516218e3d268","name":"44:panel_44","type":"visualization"},{"id":"5eeaafd0-fee7-11e9-8405-516218e3d268","name":"45:panel_45","type":"visualization"},{"id":"f42f3b20-fee6-11e9-8405-516218e3d268","name":"46:panel_46","type":"visualization"},{"id":"b5f38780-fee6-11e9-8405-516218e3d268","name":"47:panel_47","type":"visualization"},{"id":"1b5f17d0-feea-11e9-8405-516218e3d268","name":"48:panel_48","type":"visualization"},{"id":"0f2f5280-feeb-11e9-8405-516218e3d268","name":"49:panel_49","type":"visualization"},{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"51:panel_51","type":"search"},{"id":"d770b040-9b35-11ea-87e4-49f31ec44891","name":"45614e1c-b2bb-4243-9a74-a4bdd0124c87:panel_45614e1c-b2bb-4243-9a74-a4bdd0124c87","type":"visualization"},{"id":"33462600-9b47-11ea-87e4-49f31ec44891","name":"88e75800-8125-4c9e-96b8-5c36f6e91664:panel_88e75800-8125-4c9e-96b8-5c36f6e91664","type":"visualization"},{"id":"58fb9480-9b46-11ea-87e4-49f31ec44891","name":"4b793b8e-72d4-42a2-b377-1c70f0307414:panel_4b793b8e-72d4-42a2-b377-1c70f0307414","type":"visualization"},{"id":"e20c02d0-9b48-11ea-87e4-49f31ec44891","name":"82d229f9-44f4-4c4b-baf7-f9673a14c87f:panel_82d229f9-44f4-4c4b-baf7-f9673a14c87f","type":"visualization"},{"id":"7de2e3f0-9b4d-11ea-87e4-49f31ec44891","name":"f44255b0-d9a8-479f-be3f-829c1f6ed794:panel_f44255b0-d9a8-479f-be3f-829c1f6ed794","type":"visualization"},{"id":"b89b0c90-9b41-11ea-87e4-49f31ec44891","name":"9c42bff2-b295-4617-8d8c-455bd5948b66:panel_9c42bff2-b295-4617-8d8c-455bd5948b66","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-11T13:18:55.318Z","version":"WzIyMDUsMl0="} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management.ndjson b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management.ndjson deleted file mode 100644 index 82c11264324a..000000000000 --- a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-group-management.ndjson +++ /dev/null @@ -1,22 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Group Management Events - Description [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"# **Group Management Events**\\n\\n#### This dashboard shows information about Group Management Events collected by winlogbeat\\n\",\"openLinksInNewTab\":false},\"title\":\"Group Management Events - Description [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"6f0f2ea0-f414-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMjgsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Added - Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"bfcaced0-f419-11e9-928e-8f5fd2b6c66e\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(181,99,93,1)\",\"id\":\"a7d935e0-f497-11e9-928e-8f5fd2b6c66e\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"49d7bf77-f350-44f2-adf8-5b18b3f6e9cd\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code:4732 OR event.code:4728 OR event.code:4756 OR event.code:4751 OR event.code:4761 OR event.code:4746 OR event.code:4785 OR event.code:4787\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Added to Group\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Added - Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"ffebe440-f419-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMjksMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Groups Deleted TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(200,201,197,1)\",\"id\":\"bfcaced0-f419-11e9-928e-8f5fd2b6c66e\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(228,155,75,1)\",\"id\":\"a7d935e0-f497-11e9-928e-8f5fd2b6c66e\",\"operator\":\"gt\",\"value\":0},{\"background_color\":\"rgba(200,201,197,1)\",\"id\":\"3627d626-8685-4afb-ac41-d38d691af211\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code:4734 OR event.code:4730 OR event.code:4758 OR event.code:4753 OR event.code:4763 OR event.code:4748 OR event.code:4789 OR event.code:4792\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Groups Deleted\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Groups Deleted TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"e22c6f40-f498-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzAsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Groups Created TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(200,201,197,1)\",\"id\":\"bfcaced0-f419-11e9-928e-8f5fd2b6c66e\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(181,99,93,1)\",\"id\":\"a7d935e0-f497-11e9-928e-8f5fd2b6c66e\",\"operator\":\"gt\",\"value\":0},{\"background_color\":\"rgba(200,201,197,1)\",\"id\":\"4013d6eb-54ec-4097-bff3-fb45467f44d3\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code:4731 OR event.code:4727 OR event.code:\\\"4754\\\" OR event.code:\\\"4749\\\" OR event.code:\\\"4759\\\" OR event.code:\\\"4744\\\" OR event.code:\\\"4783\\\" OR event.code:\\\"4790\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Groups Created\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Groups Created TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"ee292bc0-f499-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzEsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Groups Changed TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(200,201,197,1)\",\"id\":\"bfcaced0-f419-11e9-928e-8f5fd2b6c66e\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(221,186,64,1)\",\"id\":\"a7d935e0-f497-11e9-928e-8f5fd2b6c66e\",\"operator\":\"gt\",\"value\":0},{\"background_color\":\"rgba(200,201,197,1)\",\"id\":\"78de9594-840c-459f-b414-64ac93d3b1da\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code:4735 OR event.code:4737 OR event.code:\\\"4755\\\" OR event.code:\\\"4764\\\" OR event.code:\\\"4750\\\" OR event.code:\\\"4760\\\" OR event.code:\\\"4745\\\" OR event.code:\\\"4784\\\" OR event.code:\\\"4791\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"60d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Groups Changed\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Groups Changed TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"400b63e0-f49a-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzIsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Removed - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"bfcaced0-f419-11e9-928e-8f5fd2b6c66e\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(228,155,75,1)\",\"id\":\"11604700-9b51-11ea-99a1-e5b989979a59\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"262938b1-9927-40be-92ea-1498472d36be\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code:4733 OR event.code:4729 OR event.code:4788 OR event.code:4786 OR event.code:4752 OR event.code:4762 OR event.code:4747\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Removed from Group\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Removed - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"a5f664c0-f49a-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzMsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Groups Enumeration - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(128,128,128,1)\",\"color\":\"rgba(179,179,179,1)\",\"id\":\"bfcaced0-f419-11e9-928e-8f5fd2b6c66e\",\"operator\":\"gt\",\"value\":0},{\"background_color\":\"rgba(179,179,179,1)\",\"id\":\"8d3f3ed0-9b51-11ea-99a1-e5b989979a59\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(179,179,179,1)\",\"id\":\"1fc1a366-626b-40f5-b76c-963926edaf83\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code:4799\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Group Membership Enumeration\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Groups Enumeration - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"546febc0-f49b-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzQsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4731\", \"4727\", \"4754\", \"4744\", \"4759\", \"4779\", \"4790\", \"4783\"], \"type\": \"phrases\", \"value\": \"4731, 4727, 4754, 4744, 4759, 4779, 4790, 4783\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4731\"}}, {\"match_phrase\": {\"event.code\": \"4727\"}}, {\"match_phrase\": {\"event.code\": \"4754\"}}, {\"match_phrase\": {\"event.code\": \"4744\"}}, {\"match_phrase\": {\"event.code\": \"4759\"}}, {\"match_phrase\": {\"event.code\": \"4779\"}}, {\"match_phrase\": {\"event.code\": \"4790\"}}, {\"match_phrase\": {\"event.code\": \"4783\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Groups Created - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performer LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Groups Created - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"98884120-f49d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4735\", \"4737\", \"4755\", \"4750\", \"4760\", \"4745\", \"4791\", \"4784\", \"4764\"], \"type\": \"phrases\", \"value\": \"4735, 4737, 4755, 4750, 4760, 4745, 4791, 4784, 4764\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4735\"}}, {\"match_phrase\": {\"event.code\": \"4737\"}}, {\"match_phrase\": {\"event.code\": \"4755\"}}, {\"match_phrase\": {\"event.code\": \"4750\"}}, {\"match_phrase\": {\"event.code\": \"4760\"}}, {\"match_phrase\": {\"event.code\": \"4745\"}}, {\"match_phrase\": {\"event.code\": \"4791\"}}, {\"match_phrase\": {\"event.code\": \"4784\"}}, {\"match_phrase\": {\"event.code\": \"4764\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Group Changes - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performer LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Group Changes - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"9e534190-f49d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzYsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4734\", \"4730\", \"4758\", \"4748\", \"4763\", \"4753\", \"4792\", \"4789\"], \"type\": \"phrases\", \"value\": \"4734, 4730, 4758, 4748, 4763, 4753, 4792, 4789\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4734\"}}, {\"match_phrase\": {\"event.code\": \"4730\"}}, {\"match_phrase\": {\"event.code\": \"4758\"}}, {\"match_phrase\": {\"event.code\": \"4748\"}}, {\"match_phrase\": {\"event.code\": \"4763\"}}, {\"match_phrase\": {\"event.code\": \"4753\"}}, {\"match_phrase\": {\"event.code\": \"4792\"}}, {\"match_phrase\": {\"event.code\": \"4789\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Groups Deleted - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performer LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Groups Deleted - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"bb9cf7a0-f49d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzcsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4732\", \"4728\", \"4756\", \"4751\", \"4761\", \"4746\", \"4785\", \"4787\"], \"type\": \"phrases\", \"value\": \"4732, 4728, 4756, 4751, 4761, 4746, 4785, 4787\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4732\"}}, {\"match_phrase\": {\"event.code\": \"4728\"}}, {\"match_phrase\": {\"event.code\": \"4756\"}}, {\"match_phrase\": {\"event.code\": \"4751\"}}, {\"match_phrase\": {\"event.code\": \"4761\"}}, {\"match_phrase\": {\"event.code\": \"4746\"}}, {\"match_phrase\": {\"event.code\": \"4785\"}}, {\"match_phrase\": {\"event.code\": \"4787\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Added - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"User\",\"field\":\"winlog.event_data.MemberName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Performed by Logon ID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":4,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":5,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Added - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"ce867840-f49e-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzgsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4733\", \"4729\", \"4757\", \"4786\", \"4788\", \"4752\", \"4762\", \"4747\"], \"type\": \"phrases\", \"value\": \"4733, 4729, 4757, 4786, 4788, 4752, 4762, 4747\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4733\"}}, {\"match_phrase\": {\"event.code\": \"4729\"}}, {\"match_phrase\": {\"event.code\": \"4757\"}}, {\"match_phrase\": {\"event.code\": \"4786\"}}, {\"match_phrase\": {\"event.code\": \"4788\"}}, {\"match_phrase\": {\"event.code\": \"4752\"}}, {\"match_phrase\": {\"event.code\": \"4762\"}}, {\"match_phrase\": {\"event.code\": \"4747\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Removed from Group - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"User\",\"field\":\"winlog.event_data.MemberName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"Performed by Logon ID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":4,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":5,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Removed from Group - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"fee83900-f49f-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMzksMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4799\"], \"type\": \"phrases\", \"value\": \"4799\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4799\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Group Enumeration - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Group\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Domain\",\"field\":\"group.domain\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Creator\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"Creator LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":5,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Group Enumeration - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"bc165210-f4b8-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDAsMl0="} -{"attributes":{"columns":["user.name","source.domain","source.ip","winlog.logon.id","winlog.logon.type"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4624\"], \"type\": \"phrases\", \"value\": \"4624\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4624\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Logon Details [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"7e178c80-fee1-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTcsMl0="} -{"attributes":{"columns":["event.action","group.name","group.domain","user.name","user.domain","host.name"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4731\", \"4732\", \"4733\", \"4734\", \"4735\", \"4737\", \"4764\", \"4727\", \"4728\", \"4729\", \"4730\", \"4754\", \"4755\", \"4756\", \"4757\", \"4758\", \"4799\", \"4749\", \"4750\", \"4751\", \"4752\", \"4753\", \"4759\", \"4760\", \"4761\", \"4762\", \"4763\", \"4744\", \"4745\", \"4746\", \"4748\"], \"type\": \"phrases\", \"value\": \"4731, 4732, 4733, 4734, 4735, 4737, 4764, 4727, 4728, 4729, 4730, 4754, 4755, 4756, 4757, 4758, 4799, 4749, 4750, 4751, 4752, 4753, 4759, 4760, 4761, 4762, 4763, 4744, 4745, 4746, 4748\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4731\"}}, {\"match_phrase\": {\"event.code\": \"4732\"}}, {\"match_phrase\": {\"event.code\": \"4733\"}}, {\"match_phrase\": {\"event.code\": \"4734\"}}, {\"match_phrase\": {\"event.code\": \"4735\"}}, {\"match_phrase\": {\"event.code\": \"4737\"}}, {\"match_phrase\": {\"event.code\": \"4764\"}}, {\"match_phrase\": {\"event.code\": \"4727\"}}, {\"match_phrase\": {\"event.code\": \"4728\"}}, {\"match_phrase\": {\"event.code\": \"4729\"}}, {\"match_phrase\": {\"event.code\": \"4730\"}}, {\"match_phrase\": {\"event.code\": \"4754\"}}, {\"match_phrase\": {\"event.code\": \"4755\"}}, {\"match_phrase\": {\"event.code\": \"4756\"}}, {\"match_phrase\": {\"event.code\": \"4757\"}}, {\"match_phrase\": {\"event.code\": \"4758\"}}, {\"match_phrase\": {\"event.code\": \"4799\"}}, {\"match_phrase\": {\"event.code\": \"4749\"}}, {\"match_phrase\": {\"event.code\": \"4750\"}}, {\"match_phrase\": {\"event.code\": \"4751\"}}, {\"match_phrase\": {\"event.code\": \"4752\"}}, {\"match_phrase\": {\"event.code\": \"4753\"}}, {\"match_phrase\": {\"event.code\": \"4759\"}}, {\"match_phrase\": {\"event.code\": \"4760\"}}, {\"match_phrase\": {\"event.code\": \"4761\"}}, {\"match_phrase\": {\"event.code\": \"4762\"}}, {\"match_phrase\": {\"event.code\": \"4763\"}}, {\"match_phrase\": {\"event.code\": \"4744\"}}, {\"match_phrase\": {\"event.code\": \"4745\"}}, {\"match_phrase\": {\"event.code\": \"4746\"}}, {\"match_phrase\": {\"event.code\": \"4748\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Group Management Details - Search View [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"9066d5b0-fef2-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDIsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Events - Event Actions [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Group Management Events - Event Actions [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"b89b0c90-9b41-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDMsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Events - Target Groups - Tag Cloud [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":58,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Group Management Events - Target Groups - Tag Cloud [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"58fb9480-9b46-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDQsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Events - Event Actions - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"event.action\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":50},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"event.code\",\"field\":\"event.code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Group Management Events - Event Actions - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"33462600-9b47-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Events - Groups vs Actions - Heatmap [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Target Groups\",\"field\":\"group.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Actions\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Blues\",\"colorsNumber\":4,\"colorsRange\":[],\"enableHover\":false,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":true},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"Group Management Events - Groups vs Actions - Heatmap [Winlogbeat Security]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"7.14.0","id":"e20c02d0-9b48-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDYsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Group Management Action Distribution over Time [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-30d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false,\"valueAxis\":\"\"},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Group Management Action Distribution over Time [Winlogbeat Security]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"7.14.0","id":"7de2e3f0-9b4d-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyNDcsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboard links [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Winlogbeat Overview](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891) | [Logon Failed and Account Lockout](#/dashboard/d401ef40-a7d5-11e9-a422-d144027429da) | [User Management Events](#/dashboard/71f720f0-ff18-11e9-8405-516218e3d268) | [Group Management Events](#/dashboard/bb858830-f412-11e9-8405-516218e3d268)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard links [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"a3c3f350-9b6d-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjksMl0="} -{"attributes":{"description":"Group management activity.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"22\",\"w\":16,\"x\":0,\"y\":0},\"panelIndex\":\"22\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_22\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"29\",\"w\":16,\"x\":0,\"y\":68},\"panelIndex\":\"29\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_29\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"30\",\"w\":9,\"x\":18,\"y\":48},\"panelIndex\":\"30\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_30\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"31\",\"w\":9,\"x\":0,\"y\":48},\"panelIndex\":\"31\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_31\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"32\",\"w\":9,\"x\":9,\"y\":48},\"panelIndex\":\"32\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_32\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"33\",\"w\":17,\"x\":16,\"y\":68},\"panelIndex\":\"33\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_33\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"34\",\"w\":15,\"x\":33,\"y\":68},\"panelIndex\":\"34\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_34\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"36\",\"w\":9,\"x\":0,\"y\":55},\"panelIndex\":\"36\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Creation Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_36\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"37\",\"w\":9,\"x\":9,\"y\":55},\"panelIndex\":\"37\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Changes Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_37\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"38\",\"w\":9,\"x\":18,\"y\":55},\"panelIndex\":\"38\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Deletion Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_38\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"39\",\"w\":16,\"x\":0,\"y\":75},\"panelIndex\":\"39\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Users Added to Group Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_39\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"40\",\"w\":17,\"x\":16,\"y\":75},\"panelIndex\":\"40\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Users Removed From Group Summary [Winlogbeat Security]\",\"panelRefName\":\"panel_40\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":14,\"i\":\"42\",\"w\":15,\"x\":33,\"y\":75},\"panelIndex\":\"42\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Enumeration - Table [Winlogbeat Security]\",\"panelRefName\":\"panel_42\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":20,\"i\":\"43\",\"w\":21,\"x\":27,\"y\":48},\"panelIndex\":\"43\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Details [Winlogbeat Security]\",\"panelRefName\":\"panel_43\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":22,\"i\":\"45\",\"w\":48,\"x\":0,\"y\":89},\"panelIndex\":\"45\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Management Operations Details [Winlogbeat Security]\",\"panelRefName\":\"panel_45\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"3f7e277d-09d1-4a79-bc17-bc5da5a7e290\",\"w\":20,\"x\":0,\"y\":7},\"panelIndex\":\"3f7e277d-09d1-4a79-bc17-bc5da5a7e290\",\"embeddableConfig\":{\"colors\":{\"added-group-account\":\"#0A437C\",\"added-member-to-group\":\"#1F78C1\",\"deleted-group-account\":\"#5195CE\",\"modified-group-account\":\"#052B51\",\"user-member-enumerated\":\"#447EBC\"},\"vis\":{\"colors\":{\"added-group-account\":\"#0A437C\",\"added-member-to-group\":\"#1F78C1\",\"deleted-group-account\":\"#82B5D8\",\"modified-group-account\":\"#052B51\",\"user-member-enumerated\":\"#447EBC\"}},\"enhancements\":{}},\"panelRefName\":\"panel_3f7e277d-09d1-4a79-bc17-bc5da5a7e290\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"8cda9d6a-096f-41a5-86e6-09dd1f6b9c98\",\"w\":16,\"x\":32,\"y\":7},\"panelIndex\":\"8cda9d6a-096f-41a5-86e6-09dd1f6b9c98\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_8cda9d6a-096f-41a5-86e6-09dd1f6b9c98\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"74edddd5-2dc5-41b8-b4f2-bf9c95218f1b\",\"w\":12,\"x\":20,\"y\":7},\"panelIndex\":\"74edddd5-2dc5-41b8-b4f2-bf9c95218f1b\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Group Management Events - Event Actions - Table [Winlogbeat Security]\",\"panelRefName\":\"panel_74edddd5-2dc5-41b8-b4f2-bf9c95218f1b\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"33cef054-615a-49cb-bb2e-eb55fab96ae5\",\"w\":27,\"x\":0,\"y\":27},\"panelIndex\":\"33cef054-615a-49cb-bb2e-eb55fab96ae5\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"panelRefName\":\"panel_33cef054-615a-49cb-bb2e-eb55fab96ae5\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":21,\"i\":\"e0d495aa-f897-403f-815b-6116fae330b7\",\"w\":21,\"x\":27,\"y\":27},\"panelIndex\":\"e0d495aa-f897-403f-815b-6116fae330b7\",\"embeddableConfig\":{\"colors\":{\"added-group-account\":\"#1F78C1\",\"added-member-to-group\":\"#0A437C\",\"deleted-group-account\":\"#5195CE\",\"modified-group-account\":\"#0A50A1\",\"type-changed-group-account\":\"#82B5D8\",\"user-member-enumerated\":\"#447EBC\"},\"vis\":{\"colors\":{\"added-group-account\":\"#1F78C1\",\"added-member-to-group\":\"#0A437C\",\"deleted-group-account\":\"#5195CE\",\"modified-group-account\":\"#0A50A1\",\"removed-member-from-group\":\"#BADFF4\",\"type-changed-group-account\":\"#82B5D8\",\"user-member-enumerated\":\"#447EBC\"}},\"enhancements\":{}},\"panelRefName\":\"panel_e0d495aa-f897-403f-815b-6116fae330b7\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"663e0493-2070-407b-9d00-079915cce7e7\",\"w\":32,\"x\":16,\"y\":0},\"panelIndex\":\"663e0493-2070-407b-9d00-079915cce7e7\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_663e0493-2070-407b-9d00-079915cce7e7\"}]","timeRestore":false,"title":"[Winlogbeat Security] Group Management Events","version":1},"coreMigrationVersion":"7.14.0","id":"bb858830-f412-11e9-8405-516218e3d268","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"6f0f2ea0-f414-11e9-8405-516218e3d268","name":"22:panel_22","type":"visualization"},{"id":"ffebe440-f419-11e9-8405-516218e3d268","name":"29:panel_29","type":"visualization"},{"id":"e22c6f40-f498-11e9-8405-516218e3d268","name":"30:panel_30","type":"visualization"},{"id":"ee292bc0-f499-11e9-8405-516218e3d268","name":"31:panel_31","type":"visualization"},{"id":"400b63e0-f49a-11e9-8405-516218e3d268","name":"32:panel_32","type":"visualization"},{"id":"a5f664c0-f49a-11e9-8405-516218e3d268","name":"33:panel_33","type":"visualization"},{"id":"546febc0-f49b-11e9-8405-516218e3d268","name":"34:panel_34","type":"visualization"},{"id":"98884120-f49d-11e9-8405-516218e3d268","name":"36:panel_36","type":"visualization"},{"id":"9e534190-f49d-11e9-8405-516218e3d268","name":"37:panel_37","type":"visualization"},{"id":"bb9cf7a0-f49d-11e9-8405-516218e3d268","name":"38:panel_38","type":"visualization"},{"id":"ce867840-f49e-11e9-8405-516218e3d268","name":"39:panel_39","type":"visualization"},{"id":"fee83900-f49f-11e9-8405-516218e3d268","name":"40:panel_40","type":"visualization"},{"id":"bc165210-f4b8-11e9-8405-516218e3d268","name":"42:panel_42","type":"visualization"},{"id":"7e178c80-fee1-11e9-8405-516218e3d268","name":"43:panel_43","type":"search"},{"id":"9066d5b0-fef2-11e9-8405-516218e3d268","name":"45:panel_45","type":"search"},{"id":"b89b0c90-9b41-11ea-87e4-49f31ec44891","name":"3f7e277d-09d1-4a79-bc17-bc5da5a7e290:panel_3f7e277d-09d1-4a79-bc17-bc5da5a7e290","type":"visualization"},{"id":"58fb9480-9b46-11ea-87e4-49f31ec44891","name":"8cda9d6a-096f-41a5-86e6-09dd1f6b9c98:panel_8cda9d6a-096f-41a5-86e6-09dd1f6b9c98","type":"visualization"},{"id":"33462600-9b47-11ea-87e4-49f31ec44891","name":"74edddd5-2dc5-41b8-b4f2-bf9c95218f1b:panel_74edddd5-2dc5-41b8-b4f2-bf9c95218f1b","type":"visualization"},{"id":"e20c02d0-9b48-11ea-87e4-49f31ec44891","name":"33cef054-615a-49cb-bb2e-eb55fab96ae5:panel_33cef054-615a-49cb-bb2e-eb55fab96ae5","type":"visualization"},{"id":"7de2e3f0-9b4d-11ea-87e4-49f31ec44891","name":"e0d495aa-f897-403f-815b-6116fae330b7:panel_e0d495aa-f897-403f-815b-6116fae330b7","type":"visualization"},{"id":"a3c3f350-9b6d-11ea-87e4-49f31ec44891","name":"663e0493-2070-407b-9d00-079915cce7e7:panel_663e0493-2070-407b-9d00-079915cce7e7","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-11T13:18:56.323Z","version":"WzIyMjcsMl0="} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons-tsvb.ndjson b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons-tsvb.ndjson deleted file mode 100644 index 08ef741aecd7..000000000000 --- a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons-tsvb.ndjson +++ /dev/null @@ -1,15 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4672\"], \"type\": \"phrases\", \"value\": \"4672\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4672\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logged on Administrators [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Date\",\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-20T07:35:27.496Z\",\"to\":\"2020-05-22T00:01:10.239Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"bucket\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"user.name\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"# Thread\",\"field\":\"winlog.process.thread.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"9\",\"params\":{\"customLabel\":\"LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"label\":\"Fecha - Hora \",\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"Usuario\",\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"number\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"# Thread\",\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"winlog.logon.id: Descending\",\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Cantidad Eventos \",\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Logged on Administrators [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"804dd400-a248-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4672\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4672\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Admin Logons Simple [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Admin Logons\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Admin Logons Simple [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"5bb93ed0-a249-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:57.330Z","version":"WzIyNTEsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4672\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4672\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Administrator Users [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"winlog.logon.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"user.name: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"label\":\"Unique count of winlog.logon.id\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"bottom\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Administrator Users [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"e2516c10-a249-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjYsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"User Logon Dashboard [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"## **Logon Information Dashboard**\",\"openLinksInNewTab\":false},\"title\":\"User Logon Dashboard [Winlogbeat Security] \",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"18348f30-a24d-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjcsMl0="} -{"attributes":{"columns":["user.name","winlog.logon.type","source.domain","source.ip","winlog.logon.id"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4624\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4624\", \"type\": \"phrase\"}}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"User Logons [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"ce71c9a0-a25e-11e9-a422-d144027429da","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjgsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboard links - Simple [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Winlogbeat General ECS Dashboard](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/035846a0-a249-11e9-a422-d144027429da?) | [Logon failed and Account Lockout](#/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891) | [User Management Events](#/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf) | [Group Management Events](#/dashboard/01c54730-fee6-11e9-8405-516218e3d268)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard links - Simple [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"d770b040-9b35-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIzMDEsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4624\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4624\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logons Simple [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Logons\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Logons Simple [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"2c71e0f0-9c0d-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:57.330Z","version":"WzIyNTYsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4624\", \"4672\"], \"type\": \"phrases\", \"value\": \"4624, 4672\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4624\"}}, {\"match_phrase\": {\"event.code\": \"4672\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Events in Time - Simple [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"colors\": {\"Admin Logons\": \"#E24D42\", \"Logon Events\": \"#447EBC\"}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-20T07:35:27.496Z\",\"to\":\"2020-05-22T00:01:10.239Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"filters\":[{\"input\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4624\\\" \"},\"label\":\"Logon Events\"},{\"input\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4672\\\" \"},\"label\":\"Admin Logons\"}]},\"schema\":\"group\",\"type\":\"filters\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"interpolate\":\"cardinal\",\"lineWidth\":2,\"mode\":\"normal\",\"show\":true,\"showCircles\":true,\"type\":\"line\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"line\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true,\"fittingFunction\":\"zero\"},\"title\":\"Logon Events in Time - Simple [Winlogbeat Security]\",\"type\":\"line\"}"},"coreMigrationVersion":"7.14.0","id":"abd44840-9c0f-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:57.330Z","version":"WzIyNTcsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4624\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4624\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Types [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"winlog.logon.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"winlog.logon.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"user.name: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"label\":\"Unique count of winlog.logon.id\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Logon Types [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"006d75f0-9c03-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzMsMl0="} -{"attributes":{"columns":["user.name","source.domain","source.ip","winlog.logon.id","winlog.logon.type"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4624\"], \"type\": \"phrases\", \"value\": \"4624\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4624\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Logon Details [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"7e178c80-fee1-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTcsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Logon Sources [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Logon Sources [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"21aadac0-9c0b-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"7e178c80-fee1-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzQsMl0="} -{"attributes":{"columns":["user.name","source.domain","source.ip","winlog.logon.id","event.action"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4778\", \"4779\"], \"type\": \"phrases\", \"value\": \"4778, 4779\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4778\"}}, {\"match_phrase\": {\"event.code\": \"4779\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Remote Interactive Connections and Disconnections [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"6f4071a0-7a78-11ea-bc9a-0baf2ca323a3","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4648\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4648\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon with Explicit Credentials [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"user.name\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":200},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"subjectUserName\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"source.ip\",\"field\":\"source.ip\",\"json\":\"{\\\"missing\\\": \\\"::\\\"}\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Logon with Explicit Credentials [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"25f31ee0-9c23-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzYsMl0="} -{"attributes":{"columns":["user.name","user.domain","winlog.logon.id","event.action","winlog.logon.type","winlog.event_data.SubjectUserName"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4625\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4625\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"User Logouts [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"06b6b060-7a80-11ea-bc9a-0baf2ca323a3","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzcsMl0="} -{"attributes":{"description":"User logon activity dashboard with TSVB metrics.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":28,\"i\":\"1\",\"w\":18,\"x\":0,\"y\":38},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Sesiones Usuarios Admin\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"2\",\"w\":9,\"x\":0,\"y\":6},\"panelIndex\":\"2\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_2\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"3\",\"w\":18,\"x\":0,\"y\":19},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Usuarios Adm\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"4\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":27,\"i\":\"10\",\"w\":22,\"x\":0,\"y\":66},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Network Logon Details\",\"panelRefName\":\"panel_10\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"08245e0c-6afe-43ea-ba5f-76c3b17301fd\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"08245e0c-6afe-43ea-ba5f-76c3b17301fd\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_08245e0c-6afe-43ea-ba5f-76c3b17301fd\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"f403fdcc-6588-4573-a949-9e661783a2b8\",\"w\":9,\"x\":9,\"y\":6},\"panelIndex\":\"f403fdcc-6588-4573-a949-9e661783a2b8\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_f403fdcc-6588-4573-a949-9e661783a2b8\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"51a9affa-8e96-42bd-98e9-80531bdefc53\",\"w\":30,\"x\":18,\"y\":6},\"panelIndex\":\"51a9affa-8e96-42bd-98e9-80531bdefc53\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Events Timeline\",\"panelRefName\":\"panel_51a9affa-8e96-42bd-98e9-80531bdefc53\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"bbdca4de-11c5-4957-a74c-73769416a562\",\"w\":12,\"x\":18,\"y\":19},\"panelIndex\":\"bbdca4de-11c5-4957-a74c-73769416a562\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Types\",\"panelRefName\":\"panel_bbdca4de-11c5-4957-a74c-73769416a562\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"4df66ae6-e047-47c7-b1a9-b15221eb9d90\",\"w\":18,\"x\":30,\"y\":19},\"panelIndex\":\"4df66ae6-e047-47c7-b1a9-b15221eb9d90\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4df66ae6-e047-47c7-b1a9-b15221eb9d90\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":28,\"i\":\"454bb008-9720-455e-8ab9-b2f47d25aa4f\",\"w\":19,\"x\":18,\"y\":38},\"panelIndex\":\"454bb008-9720-455e-8ab9-b2f47d25aa4f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"RDP Reconnections and Desconnections\",\"panelRefName\":\"panel_454bb008-9720-455e-8ab9-b2f47d25aa4f\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":28,\"i\":\"baec73e7-7166-4577-9483-1252bdd8773c\",\"w\":11,\"x\":37,\"y\":38},\"panelIndex\":\"baec73e7-7166-4577-9483-1252bdd8773c\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_baec73e7-7166-4577-9483-1252bdd8773c\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":27,\"i\":\"28115147-8399-4fcd-95ce-ed0a4f4239e3\",\"w\":26,\"x\":22,\"y\":66},\"panelIndex\":\"28115147-8399-4fcd-95ce-ed0a4f4239e3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logout Details\",\"panelRefName\":\"panel_28115147-8399-4fcd-95ce-ed0a4f4239e3\"}]","timeRestore":false,"title":"[Winlogbeat Security] User Logons - Simple Metrics","version":1},"coreMigrationVersion":"7.14.0","id":"035846a0-a249-11e9-a422-d144027429da","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"804dd400-a248-11e9-a422-d144027429da","name":"1:panel_1","type":"visualization"},{"id":"5bb93ed0-a249-11e9-a422-d144027429da","name":"2:panel_2","type":"visualization"},{"id":"e2516c10-a249-11e9-a422-d144027429da","name":"3:panel_3","type":"visualization"},{"id":"18348f30-a24d-11e9-a422-d144027429da","name":"4:panel_4","type":"visualization"},{"id":"ce71c9a0-a25e-11e9-a422-d144027429da","name":"10:panel_10","type":"search"},{"id":"d770b040-9b35-11ea-87e4-49f31ec44891","name":"08245e0c-6afe-43ea-ba5f-76c3b17301fd:panel_08245e0c-6afe-43ea-ba5f-76c3b17301fd","type":"visualization"},{"id":"2c71e0f0-9c0d-11ea-87e4-49f31ec44891","name":"f403fdcc-6588-4573-a949-9e661783a2b8:panel_f403fdcc-6588-4573-a949-9e661783a2b8","type":"visualization"},{"id":"abd44840-9c0f-11ea-87e4-49f31ec44891","name":"51a9affa-8e96-42bd-98e9-80531bdefc53:panel_51a9affa-8e96-42bd-98e9-80531bdefc53","type":"visualization"},{"id":"006d75f0-9c03-11ea-87e4-49f31ec44891","name":"bbdca4de-11c5-4957-a74c-73769416a562:panel_bbdca4de-11c5-4957-a74c-73769416a562","type":"visualization"},{"id":"21aadac0-9c0b-11ea-87e4-49f31ec44891","name":"4df66ae6-e047-47c7-b1a9-b15221eb9d90:panel_4df66ae6-e047-47c7-b1a9-b15221eb9d90","type":"visualization"},{"id":"6f4071a0-7a78-11ea-bc9a-0baf2ca323a3","name":"454bb008-9720-455e-8ab9-b2f47d25aa4f:panel_454bb008-9720-455e-8ab9-b2f47d25aa4f","type":"search"},{"id":"25f31ee0-9c23-11ea-87e4-49f31ec44891","name":"baec73e7-7166-4577-9483-1252bdd8773c:panel_baec73e7-7166-4577-9483-1252bdd8773c","type":"visualization"},{"id":"06b6b060-7a80-11ea-bc9a-0baf2ca323a3","name":"28115147-8399-4fcd-95ce-ed0a4f4239e3:panel_28115147-8399-4fcd-95ce-ed0a4f4239e3","type":"search"}],"type":"dashboard","updated_at":"2021-08-11T13:18:57.330Z","version":"WzIyNDksMl0="} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons.ndjson b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons.ndjson deleted file mode 100644 index cd7371ce16aa..000000000000 --- a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-logons.ndjson +++ /dev/null @@ -1,15 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4672\"], \"type\": \"phrases\", \"value\": \"4672\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4672\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logged on Administrators [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"\"},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Date\",\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"2020-05-20T07:35:27.496Z\",\"to\":\"2020-05-22T00:01:10.239Z\"},\"useNormalizedEsInterval\":true},\"schema\":\"bucket\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"user.name\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"8\",\"params\":{\"customLabel\":\"# Thread\",\"field\":\"winlog.process.thread.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"9\",\"params\":{\"customLabel\":\"LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"date_histogram\",\"format\":{\"id\":\"date\",\"params\":{\"pattern\":\"YYYY-MM-DD HH:mm\"}},\"label\":\"Fecha - Hora \",\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"Usuario\",\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"number\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"# Thread\",\"params\":{}},{\"accessor\":3,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"winlog.logon.id: Descending\",\"params\":{}}],\"metrics\":[{\"accessor\":4,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"label\":\"Cantidad Eventos \",\"params\":{}}]},\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Logged on Administrators [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"804dd400-a248-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4672\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4672\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Administrator Users [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"winlog.logon.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"user.name: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"label\":\"Unique count of winlog.logon.id\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"bottom\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Administrator Users [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"e2516c10-a249-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjYsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"User Logon Dashboard [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"## **Logon Information Dashboard**\",\"openLinksInNewTab\":false},\"title\":\"User Logon Dashboard [Winlogbeat Security] \",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"18348f30-a24d-11e9-a422-d144027429da","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjcsMl0="} -{"attributes":{"columns":["user.name","winlog.logon.type","source.domain","source.ip","winlog.logon.id"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4624\"}, \"type\": \"phrase\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4624\", \"type\": \"phrase\"}}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"User Logons [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"ce71c9a0-a25e-11e9-a422-d144027429da","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjgsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboard links [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Winlogbeat Overview](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891) | [Logon Failed and Account Lockout](#/dashboard/d401ef40-a7d5-11e9-a422-d144027429da) | [User Management Events](#/dashboard/71f720f0-ff18-11e9-8405-516218e3d268) | [Group Management Events](#/dashboard/bb858830-f412-11e9-8405-516218e3d268)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard links [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"a3c3f350-9b6d-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjksMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Administrator Logons [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"d5bcde50-9bfc-11ea-aaa3-618beeff2d9c\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(181,49,0,1)\",\"id\":\"16018150-9bfd-11ea-aaa3-618beeff2d9c\",\"operator\":\"gte\",\"value\":0},{\"background_color\":\"rgba(181,49,0,1)\",\"id\":\"bc7a44aa-ac6a-44d2-9557-a2d638c43fdf\",\"operator\":\"empty\",\"value\":null}],\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4672\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Administrator Logons\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Administrator Logons [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"0622da40-9bfd-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzAsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"User Logons [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"d5bcde50-9bfc-11ea-aaa3-618beeff2d9c\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(7,139,141,1)\",\"id\":\"16018150-9bfd-11ea-aaa3-618beeff2d9c\",\"operator\":\"gte\",\"value\":0},{\"background_color\":\"rgba(7,139,141,1)\",\"id\":\"ced8b8b4-c6c8-43db-971a-7e609425e08e\",\"operator\":\"empty\",\"value\":null}],\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4624\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Logons \",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"User Logons [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"860706a0-9bfd-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzEsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Logon Events Timeline [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4672\\\" or event.code: \\\"4624\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_filters\":[{\"color\":\"rgba(226,115,0,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4672\\\"\"},\"id\":\"7560ee50-685f-11ea-8d46-c19e41702dd4\",\"label\":\"Admin logons\"},{\"color\":\"rgba(164,221,243,1)\",\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4624\\\"\"},\"id\":\"80e7fb10-685f-11ea-8d46-c19e41702dd4\",\"label\":\"Logon Events\"}],\"split_mode\":\"filters\",\"stacked\":\"none\",\"type\":\"timeseries\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"type\":\"timeseries\",\"use_kibana_indexes\":false},\"title\":\"Logon Events Timeline [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"a909b930-685f-11ea-896f-0d70f7ec3956","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzIsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4624\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4624\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon Types [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"legendOpen\": true}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"field\":\"winlog.logon.id\"},\"schema\":\"metric\",\"type\":\"cardinality\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"winlog.logon.type\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\",\"parsedUrl\":{\"basePath\":\"/s/siem\",\"origin\":\"https://192.168.1.72:5601\",\"pathname\":\"/s/siem/app/kibana\"}}},\"label\":\"user.name: Descending\",\"params\":{}}],\"metric\":{\"accessor\":1,\"aggType\":\"cardinality\",\"format\":{\"id\":\"number\"},\"label\":\"Unique count of winlog.logon.id\",\"params\":{}}},\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"Logon Types [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"006d75f0-9c03-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzMsMl0="} -{"attributes":{"columns":["user.name","source.domain","source.ip","winlog.logon.id","winlog.logon.type"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4624\"], \"type\": \"phrases\", \"value\": \"4624\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4624\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Logon Details [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"7e178c80-fee1-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTcsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Logon Sources [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"source.ip\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Logon Sources [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"21aadac0-9c0b-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"7e178c80-fee1-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzQsMl0="} -{"attributes":{"columns":["user.name","source.domain","source.ip","winlog.logon.id","event.action"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4778\", \"4779\"], \"type\": \"phrases\", \"value\": \"4778, 4779\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4778\"}}, {\"match_phrase\": {\"event.code\": \"4779\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Remote Interactive Connections and Disconnections [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"6f4071a0-7a78-11ea-bc9a-0baf2ca323a3","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4648\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4648\"}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Logon with Explicit Credentials [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"user.name\",\"field\":\"user.name\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":200},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"subjectUserName\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"5\",\"params\":{\"customLabel\":\"source.ip\",\"field\":\"source.ip\",\"json\":\"{\\\"missing\\\": \\\"::\\\"}\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"6\",\"params\":{\"customLabel\":\"LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Logon with Explicit Credentials [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"25f31ee0-9c23-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzYsMl0="} -{"attributes":{"columns":["user.name","user.domain","winlog.logon.id","event.action","winlog.logon.type","winlog.event_data.SubjectUserName"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4625\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"event.code\": \"4625\"}}}, {\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\", \"key\": \"winlog.provider_name\", \"negate\": false, \"params\": {\"query\": \"Microsoft-Windows-Security-Auditing\"}, \"type\": \"phrase\"}, \"query\": {\"match_phrase\": {\"winlog.provider_name\": \"Microsoft-Windows-Security-Auditing\"}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"User Logouts [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"06b6b060-7a80-11ea-bc9a-0baf2ca323a3","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNzcsMl0="} -{"attributes":{"description":"User logon activity dashboard.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":28,\"i\":\"1\",\"w\":18,\"x\":0,\"y\":34},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Admin Users Sessions\",\"panelRefName\":\"panel_1\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":18,\"i\":\"3\",\"w\":18,\"x\":0,\"y\":16},\"panelIndex\":\"3\",\"embeddableConfig\":{\"colors\":{\"AdminLocalSta\":\"#890F02\",\"SERVICIO LOCAL\":\"#508642\"},\"legendOpen\":true,\"vis\":{\"colors\":{\"AdminLocalSta\":\"#890F02\",\"NETWORK SERVICE\":\"#1F78C1\",\"SERVICIO LOCAL\":\"#508642\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Administrators Logged On\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"4\",\"w\":12,\"x\":0,\"y\":0},\"panelIndex\":\"4\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_4\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":47,\"i\":\"10\",\"w\":23,\"x\":0,\"y\":62},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Details\",\"panelRefName\":\"panel_10\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":6,\"i\":\"34fc9633-8a7c-444d-8d19-06095b55fb43\",\"w\":36,\"x\":12,\"y\":0},\"panelIndex\":\"34fc9633-8a7c-444d-8d19-06095b55fb43\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_34fc9633-8a7c-444d-8d19-06095b55fb43\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"67d2409d-3e51-45d5-972f-32a36537e622\",\"w\":9,\"x\":0,\"y\":6},\"panelIndex\":\"67d2409d-3e51-45d5-972f-32a36537e622\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_67d2409d-3e51-45d5-972f-32a36537e622\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":10,\"i\":\"33d05ce3-f60d-4a31-a668-aa6fab0cc800\",\"w\":9,\"x\":9,\"y\":6},\"panelIndex\":\"33d05ce3-f60d-4a31-a668-aa6fab0cc800\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_33d05ce3-f60d-4a31-a668-aa6fab0cc800\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":13,\"i\":\"7b3906e6-3a81-450c-bb31-ca0d670440b7\",\"w\":30,\"x\":18,\"y\":6},\"panelIndex\":\"7b3906e6-3a81-450c-bb31-ca0d670440b7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logon Events Timeline\",\"panelRefName\":\"panel_7b3906e6-3a81-450c-bb31-ca0d670440b7\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"cf50b48e-453c-46fb-ad35-7ccfb7b03de0\",\"w\":15,\"x\":18,\"y\":19},\"panelIndex\":\"cf50b48e-453c-46fb-ad35-7ccfb7b03de0\",\"embeddableConfig\":{\"colors\":{\"CachedInteractive\":\"#6ED0E0\",\"Interactive\":\"#2F575E\",\"Network\":\"#447EBC\",\"RemoteInteractive\":\"#64B0C8\",\"Service\":\"#6ED0E0\",\"Unlock\":\"#BADFF4\"},\"legendOpen\":true,\"vis\":{\"colors\":{\"CachedInteractive\":\"#6ED0E0\",\"Interactive\":\"#2F575E\",\"Network\":\"#447EBC\",\"RemoteInteractive\":\"#64B0C8\",\"Service\":\"#65C5DB\",\"Unlock\":\"#BADFF4\"},\"legendOpen\":true},\"enhancements\":{}},\"title\":\"Logon Types\",\"panelRefName\":\"panel_cf50b48e-453c-46fb-ad35-7ccfb7b03de0\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":15,\"i\":\"a743ffe5-a2ac-4c0b-9b6f-a81563140c42\",\"w\":15,\"x\":33,\"y\":19},\"panelIndex\":\"a743ffe5-a2ac-4c0b-9b6f-a81563140c42\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_a743ffe5-a2ac-4c0b-9b6f-a81563140c42\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":28,\"i\":\"454bb008-9720-455e-8ab9-b2f47d25aa4f\",\"w\":18,\"x\":18,\"y\":34},\"panelIndex\":\"454bb008-9720-455e-8ab9-b2f47d25aa4f\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"RDP Reconnections and Desconnections\",\"panelRefName\":\"panel_454bb008-9720-455e-8ab9-b2f47d25aa4f\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":28,\"i\":\"29a0e70a-ab23-4d48-8d4e-9a39c5af47ad\",\"w\":12,\"x\":36,\"y\":34},\"panelIndex\":\"29a0e70a-ab23-4d48-8d4e-9a39c5af47ad\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_29a0e70a-ab23-4d48-8d4e-9a39c5af47ad\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":46,\"i\":\"28115147-8399-4fcd-95ce-ed0a4f4239e3\",\"w\":25,\"x\":23,\"y\":62},\"panelIndex\":\"28115147-8399-4fcd-95ce-ed0a4f4239e3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Logout Details\",\"panelRefName\":\"panel_28115147-8399-4fcd-95ce-ed0a4f4239e3\"}]","timeRestore":false,"title":"[Winlogbeat Security] User Logons","version":1},"coreMigrationVersion":"7.14.0","id":"bae11b00-9bfc-11ea-87e4-49f31ec44891","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"804dd400-a248-11e9-a422-d144027429da","name":"1:panel_1","type":"visualization"},{"id":"e2516c10-a249-11e9-a422-d144027429da","name":"3:panel_3","type":"visualization"},{"id":"18348f30-a24d-11e9-a422-d144027429da","name":"4:panel_4","type":"visualization"},{"id":"ce71c9a0-a25e-11e9-a422-d144027429da","name":"10:panel_10","type":"search"},{"id":"a3c3f350-9b6d-11ea-87e4-49f31ec44891","name":"34fc9633-8a7c-444d-8d19-06095b55fb43:panel_34fc9633-8a7c-444d-8d19-06095b55fb43","type":"visualization"},{"id":"0622da40-9bfd-11ea-87e4-49f31ec44891","name":"67d2409d-3e51-45d5-972f-32a36537e622:panel_67d2409d-3e51-45d5-972f-32a36537e622","type":"visualization"},{"id":"860706a0-9bfd-11ea-87e4-49f31ec44891","name":"33d05ce3-f60d-4a31-a668-aa6fab0cc800:panel_33d05ce3-f60d-4a31-a668-aa6fab0cc800","type":"visualization"},{"id":"a909b930-685f-11ea-896f-0d70f7ec3956","name":"7b3906e6-3a81-450c-bb31-ca0d670440b7:panel_7b3906e6-3a81-450c-bb31-ca0d670440b7","type":"visualization"},{"id":"006d75f0-9c03-11ea-87e4-49f31ec44891","name":"cf50b48e-453c-46fb-ad35-7ccfb7b03de0:panel_cf50b48e-453c-46fb-ad35-7ccfb7b03de0","type":"visualization"},{"id":"21aadac0-9c0b-11ea-87e4-49f31ec44891","name":"a743ffe5-a2ac-4c0b-9b6f-a81563140c42:panel_a743ffe5-a2ac-4c0b-9b6f-a81563140c42","type":"visualization"},{"id":"6f4071a0-7a78-11ea-bc9a-0baf2ca323a3","name":"454bb008-9720-455e-8ab9-b2f47d25aa4f:panel_454bb008-9720-455e-8ab9-b2f47d25aa4f","type":"search"},{"id":"25f31ee0-9c23-11ea-87e4-49f31ec44891","name":"29a0e70a-ab23-4d48-8d4e-9a39c5af47ad:panel_29a0e70a-ab23-4d48-8d4e-9a39c5af47ad","type":"visualization"},{"id":"06b6b060-7a80-11ea-bc9a-0baf2ca323a3","name":"28115147-8399-4fcd-95ce-ed0a4f4239e3:panel_28115147-8399-4fcd-95ce-ed0a4f4239e3","type":"search"}],"type":"dashboard","updated_at":"2021-08-11T13:18:58.346Z","version":"WzIyNjQsMl0="} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management-tsvb.ndjson b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management-tsvb.ndjson deleted file mode 100644 index 5783cabf0563..000000000000 --- a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management-tsvb.ndjson +++ /dev/null @@ -1,28 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"User Management Events - Description [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"# **User Management Events**\\n\\n#### This dashboard shows information about User Management Events collected by winlogbeat\\n\",\"openLinksInNewTab\":false},\"title\":\"User Management Events - Description [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMDgsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4720\"}, \"type\": \"phrase\", \"value\": \"4720\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4720\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Created - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Created User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Created - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMDksMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4722\"}, \"type\": \"phrase\", \"value\": \"4722\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4722\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Enabled - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Enabled User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Enabled - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTAsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4725\"}, \"type\": \"phrase\", \"value\": \"4725\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4725\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Disabled - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Disabled User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Disabled - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"8f20c950-bcd4-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTEsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4726\"}, \"type\": \"phrase\", \"value\": \"4726\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4726\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Deleted - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Deleted User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performed LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Deleted - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTIsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4723\", \"4724\"], \"type\": \"phrases\", \"value\": \"4723, 4724\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4723\"}}, {\"match_phrase\": {\"event.code\": \"4724\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Password Changes - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Password Change to\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Password Changes - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTMsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4720\"}, \"type\": \"phrase\", \"value\": \"4720\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4720\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Created - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Users Created\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Created - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"102efd20-bcdd-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyODYsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4722\"}, \"type\": \"phrase\", \"value\": \"4722\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4722\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Enabled - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Users Enabled\",\"field\":\"user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Enabled - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"855957d0-bcdd-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyODcsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4726\"}, \"type\": \"phrase\", \"value\": \"4726\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4726\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Deleted - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Deleted Users\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Deleted - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"c359b020-bcdd-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyODgsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4725\"}, \"type\": \"phrase\", \"value\": \"4725\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4725\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Disabled - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Disabled Users\",\"field\":\"user.name\"},\"schema\":\"metric\",\"type\":\"cardinality\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Disabled - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"0cb2d940-bcde-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyODksMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4723\", \"4724\"], \"type\": \"phrases\", \"value\": \"4723, 4724\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4723\"}}, {\"match_phrase\": {\"event.code\": \"4724\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Password Reset / Changes [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Password Changes\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Password Reset / Changes [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"568a8130-bcde-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyOTAsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4767\"}, \"type\": \"phrase\", \"value\": \"4767\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4767\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Unlocked Users - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Unlocked User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer Logonid\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Unlocked Users - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"da2110c0-bcea-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTQsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4738\"}, \"type\": \"phrase\", \"value\": \"4738\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4738\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Changes Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Changed User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Changes Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"abf96c10-bcea-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4740\"], \"type\": \"phrases\", \"value\": \"4740\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4740\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Unlocks - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Users Locked Out\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Unlocks - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"84502430-bce8-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyOTMsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4767\"], \"type\": \"phrases\", \"value\": \"4767\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4767\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Unlocked Users - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Users Unlocks\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Unlocked Users - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"ab6f8d80-bce8-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyOTQsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4738\"], \"type\": \"phrases\", \"value\": \"4738\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4738\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Changes - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Changes in Users\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Changes - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"5d92b100-bce8-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyOTUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4740\"}, \"type\": \"phrase\", \"value\": \"4740\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4740\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Locked Out - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Locked User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Locked Out - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTYsMl0="} -{"attributes":{"columns":["user.name","source.domain","source.ip","winlog.logon.id","winlog.logon.type"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4624\"], \"type\": \"phrases\", \"value\": \"4624\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4624\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Logon Details [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"7e178c80-fee1-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTcsMl0="} -{"attributes":{"columns":["event.action","winlog.event_data.TargetUserName","user.domain","user.name","winlog.event_data.SubjectDomainName","winlog.logon.id","related.user"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4720\", \"4722\", \"4723\", \"4724\", \"4725\", \"4726\", \"4738\", \"4740\", \"4767\", \"4781\", \"4798\"], \"type\": \"phrases\", \"value\": \"4720, 4722, 4723, 4724, 4725, 4726, 4738, 4740, 4767, 4781, 4798\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4720\"}}, {\"match_phrase\": {\"event.code\": \"4722\"}}, {\"match_phrase\": {\"event.code\": \"4723\"}}, {\"match_phrase\": {\"event.code\": \"4724\"}}, {\"match_phrase\": {\"event.code\": \"4725\"}}, {\"match_phrase\": {\"event.code\": \"4726\"}}, {\"match_phrase\": {\"event.code\": \"4738\"}}, {\"match_phrase\": {\"event.code\": \"4740\"}}, {\"match_phrase\": {\"event.code\": \"4767\"}}, {\"match_phrase\": {\"event.code\": \"4781\"}}, {\"match_phrase\": {\"event.code\": \"4798\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"User management Details - Search [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"324686c0-fefb-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTgsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4781\"], \"type\": \"phrases\", \"value\": \"4781\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4781\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Renamed - Simple Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Renamed Users\"},\"schema\":\"metric\",\"type\":\"count\"}],\"params\":{\"addLegend\":false,\"addTooltip\":true,\"dimensions\":{\"metrics\":[{\"accessor\":0,\"format\":{\"id\":\"number\",\"params\":{}},\"type\":\"vis_dimension\"}]},\"metric\":{\"colorSchema\":\"Green to Red\",\"colorsRange\":[{\"from\":0,\"to\":10000,\"type\":\"range\"}],\"invertColors\":false,\"labels\":{\"show\":true},\"metricColorMode\":\"None\",\"percentageMode\":false,\"style\":{\"bgColor\":false,\"bgFill\":\"#000\",\"fontSize\":60,\"labelColor\":false,\"subText\":\"\"},\"useRanges\":false},\"type\":\"metric\"},\"title\":\"Users Renamed - Simple Metric [Winlogbeat Security]\",\"type\":\"metric\"}"},"coreMigrationVersion":"7.14.0","id":"5e19ff80-231c-11ea-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyOTksMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4781\"}, \"type\": \"phrase\", \"value\": \"4781\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4781\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Renamed - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Old User Name\",\"field\":\"winlog.event_data.OldTargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Renamed - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"fa876300-231a-11ea-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjgsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboard links - Simple [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Winlogbeat General ECS Dashboard](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/035846a0-a249-11e9-a422-d144027429da?) | [Logon failed and Account Lockout](#/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891) | [User Management Events](#/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf) | [Group Management Events](#/dashboard/01c54730-fee6-11e9-8405-516218e3d268)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard links - Simple [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"d770b040-9b35-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIzMDEsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"User Management Actions [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"User Management Actions [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"26877510-9b72-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzAsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"User Event Actions - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"event.action\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"event.code\",\"field\":\"event.code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"User Event Actions - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"5c9ee410-9b74-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzIsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Target Users [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Target Users [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"117f5a30-9b71-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzEsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"User Management Events - Affected Users vs Actions - Heatmap [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Target User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Blues\",\"colorsNumber\":4,\"colorsRange\":[],\"enableHover\":false,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":true},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"User Management Events - Affected Users vs Actions - Heatmap [Winlogbeat Security]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"7.14.0","id":"aa31c9d0-9b75-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzMsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Event Distribution in time [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-7d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Event Distribution in time [Winlogbeat Security]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"7.14.0","id":"caf4d2b0-9b76-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzQsMl0="} -{"attributes":{"description":"User management activity with TSVB metrics.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"1\",\"w\":17,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"3\",\"w\":9,\"x\":0,\"y\":55},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Created Users [Winlogbeat Security]\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"5\",\"w\":9,\"x\":9,\"y\":55},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Enabled Users [Winlogbeat Security]\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"6\",\"w\":9,\"x\":0,\"y\":80},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disabled Users [Winlogbeat Security]\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"7\",\"w\":9,\"x\":18,\"y\":55},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Deleted Users [Winlogbeat Security]\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"9\",\"w\":9,\"x\":18,\"y\":80},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Passwords Changes [Winlogbeat Security]\",\"panelRefName\":\"panel_9\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"10\",\"w\":9,\"x\":0,\"y\":46},\"panelIndex\":\"10\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_10\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"11\",\"w\":9,\"x\":9,\"y\":46},\"panelIndex\":\"11\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_11\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"12\",\"w\":9,\"x\":18,\"y\":46},\"panelIndex\":\"12\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_12\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"13\",\"w\":9,\"x\":0,\"y\":71},\"panelIndex\":\"13\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_13\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"14\",\"w\":9,\"x\":18,\"y\":71},\"panelIndex\":\"14\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_14\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"15\",\"w\":9,\"x\":9,\"y\":80},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Unlocked Users [Winlogbeat Security]\",\"panelRefName\":\"panel_15\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"16\",\"w\":9,\"x\":18,\"y\":105},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Users Changes [Winlogbeat Security]\",\"panelRefName\":\"panel_16\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"17\",\"w\":9,\"x\":0,\"y\":96},\"panelIndex\":\"17\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_17\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"18\",\"w\":9,\"x\":9,\"y\":71},\"panelIndex\":\"18\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"19\",\"w\":9,\"x\":18,\"y\":96},\"panelIndex\":\"19\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_19\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"20\",\"w\":9,\"x\":0,\"y\":105},\"panelIndex\":\"20\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Locked-out Users [Winlogbeat Security]\",\"panelRefName\":\"panel_20\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":48,\"i\":\"22\",\"w\":21,\"x\":27,\"y\":73},\"panelIndex\":\"22\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_22\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":19,\"i\":\"23\",\"w\":48,\"x\":0,\"y\":121},\"panelIndex\":\"23\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_23\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":9,\"i\":\"24\",\"w\":9,\"x\":9,\"y\":96},\"panelIndex\":\"24\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_24\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"25\",\"w\":9,\"x\":9,\"y\":105},\"panelIndex\":\"25\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_25\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"20adcb1b-cebf-4a75-9bc4-eaeeee626c5e\",\"w\":31,\"x\":17,\"y\":0},\"panelIndex\":\"20adcb1b-cebf-4a75-9bc4-eaeeee626c5e\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_20adcb1b-cebf-4a75-9bc4-eaeeee626c5e\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"8aad73ff-37b1-487a-a3f1-b80b93618ac4\",\"w\":18,\"x\":0,\"y\":7},\"panelIndex\":\"8aad73ff-37b1-487a-a3f1-b80b93618ac4\",\"embeddableConfig\":{\"colors\":{\"added-user-account\":\"#0A437C\",\"deleted-user-account\":\"#82B5D8\",\"enabled-user-account\":\"#0A50A1\",\"modified-user-account\":\"#052B51\",\"renamed-user-account\":\"#1F78C1\",\"reset-password\":\"#5195CE\"},\"vis\":{\"colors\":{\"added-user-account\":\"#0A437C\",\"deleted-user-account\":\"#82B5D8\",\"disabled-user-account\":\"#BADFF4\",\"enabled-user-account\":\"#0A50A1\",\"modified-user-account\":\"#052B51\",\"renamed-user-account\":\"#1F78C1\",\"reset-password\":\"#5195CE\"}},\"enhancements\":{}},\"panelRefName\":\"panel_8aad73ff-37b1-487a-a3f1-b80b93618ac4\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"18cc78ac-3f77-4f54-b351-cb94873cae3f\",\"w\":14,\"x\":18,\"y\":7},\"panelIndex\":\"18cc78ac-3f77-4f54-b351-cb94873cae3f\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_18cc78ac-3f77-4f54-b351-cb94873cae3f\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":19,\"i\":\"75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d\",\"w\":16,\"x\":32,\"y\":7},\"panelIndex\":\"75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":20,\"i\":\"f443b5b0-ada7-426f-ae2f-46573f94f24f\",\"w\":48,\"x\":0,\"y\":26},\"panelIndex\":\"f443b5b0-ada7-426f-ae2f-46573f94f24f\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"title\":\"Actions performed over Users [Winlogbeat Security]\",\"panelRefName\":\"panel_f443b5b0-ada7-426f-ae2f-46573f94f24f\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":27,\"i\":\"820c0311-d378-49dc-a614-e0fed2254603\",\"w\":21,\"x\":27,\"y\":46},\"panelIndex\":\"820c0311-d378-49dc-a614-e0fed2254603\",\"embeddableConfig\":{\"colors\":{\"added-user-account\":\"#0A437C\",\"deleted-user-account\":\"#82B5D8\",\"disabled-user-account\":\"#BADFF4\",\"enabled-user-account\":\"#0A50A1\",\"modified-user-account\":\"#2F575E\",\"renamed-user-account\":\"#1F78C1\",\"reset-password\":\"#5195CE\"},\"vis\":{\"colors\":{\"added-user-account\":\"#0A437C\",\"deleted-user-account\":\"#82B5D8\",\"disabled-user-account\":\"#BADFF4\",\"enabled-user-account\":\"#0A50A1\",\"modified-user-account\":\"#2F575E\",\"renamed-user-account\":\"#1F78C1\",\"reset-password\":\"#5195CE\",\"unlocked-user-account\":\"#0A437C\"}},\"enhancements\":{}},\"panelRefName\":\"panel_820c0311-d378-49dc-a614-e0fed2254603\"}]","timeRestore":false,"title":"[Winlogbeat Security] User Management Events - Simple Metric","version":1},"coreMigrationVersion":"7.14.0","id":"8223bed0-b9e9-11e9-b6a2-c9b4015c4baf","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf","name":"1:panel_1","type":"visualization"},{"id":"5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf","name":"3:panel_3","type":"visualization"},{"id":"0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf","name":"5:panel_5","type":"visualization"},{"id":"8f20c950-bcd4-11e9-b6a2-c9b4015c4baf","name":"6:panel_6","type":"visualization"},{"id":"ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf","name":"7:panel_7","type":"visualization"},{"id":"da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf","name":"9:panel_9","type":"visualization"},{"id":"102efd20-bcdd-11e9-b6a2-c9b4015c4baf","name":"10:panel_10","type":"visualization"},{"id":"855957d0-bcdd-11e9-b6a2-c9b4015c4baf","name":"11:panel_11","type":"visualization"},{"id":"c359b020-bcdd-11e9-b6a2-c9b4015c4baf","name":"12:panel_12","type":"visualization"},{"id":"0cb2d940-bcde-11e9-b6a2-c9b4015c4baf","name":"13:panel_13","type":"visualization"},{"id":"568a8130-bcde-11e9-b6a2-c9b4015c4baf","name":"14:panel_14","type":"visualization"},{"id":"da2110c0-bcea-11e9-b6a2-c9b4015c4baf","name":"15:panel_15","type":"visualization"},{"id":"abf96c10-bcea-11e9-b6a2-c9b4015c4baf","name":"16:panel_16","type":"visualization"},{"id":"84502430-bce8-11e9-b6a2-c9b4015c4baf","name":"17:panel_17","type":"visualization"},{"id":"ab6f8d80-bce8-11e9-b6a2-c9b4015c4baf","name":"18:panel_18","type":"visualization"},{"id":"5d92b100-bce8-11e9-b6a2-c9b4015c4baf","name":"19:panel_19","type":"visualization"},{"id":"4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf","name":"20:panel_20","type":"visualization"},{"id":"7e178c80-fee1-11e9-8405-516218e3d268","name":"22:panel_22","type":"search"},{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"23:panel_23","type":"search"},{"id":"5e19ff80-231c-11ea-8405-516218e3d268","name":"24:panel_24","type":"visualization"},{"id":"fa876300-231a-11ea-8405-516218e3d268","name":"25:panel_25","type":"visualization"},{"id":"d770b040-9b35-11ea-87e4-49f31ec44891","name":"20adcb1b-cebf-4a75-9bc4-eaeeee626c5e:panel_20adcb1b-cebf-4a75-9bc4-eaeeee626c5e","type":"visualization"},{"id":"26877510-9b72-11ea-87e4-49f31ec44891","name":"8aad73ff-37b1-487a-a3f1-b80b93618ac4:panel_8aad73ff-37b1-487a-a3f1-b80b93618ac4","type":"visualization"},{"id":"5c9ee410-9b74-11ea-87e4-49f31ec44891","name":"18cc78ac-3f77-4f54-b351-cb94873cae3f:panel_18cc78ac-3f77-4f54-b351-cb94873cae3f","type":"visualization"},{"id":"117f5a30-9b71-11ea-87e4-49f31ec44891","name":"75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d:panel_75f5f1fc-bc7c-4f8f-8e5b-0a52d525aa7d","type":"visualization"},{"id":"aa31c9d0-9b75-11ea-87e4-49f31ec44891","name":"f443b5b0-ada7-426f-ae2f-46573f94f24f:panel_f443b5b0-ada7-426f-ae2f-46573f94f24f","type":"visualization"},{"id":"caf4d2b0-9b76-11ea-87e4-49f31ec44891","name":"820c0311-d378-49dc-a614-e0fed2254603:panel_820c0311-d378-49dc-a614-e0fed2254603","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-11T13:18:59.362Z","version":"WzIyNzksMl0="} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management.ndjson b/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management.ndjson deleted file mode 100644 index 31a875d156a8..000000000000 --- a/x-pack/winlogbeat/module/security/_meta/kibana/7/dashboard/winlogbeat-security-user-management.ndjson +++ /dev/null @@ -1,28 +0,0 @@ -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"User Management Events - Description [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":10,\"markdown\":\"# **User Management Events**\\n\\n#### This dashboard shows information about User Management Events collected by winlogbeat\\n\",\"openLinksInNewTab\":false},\"title\":\"User Management Events - Description [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMDgsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4720\"}, \"type\": \"phrase\", \"value\": \"4720\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4720\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Created - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Created User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonID\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Created - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMDksMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4722\"}, \"type\": \"phrase\", \"value\": \"4722\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4722\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Enabled - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Enabled User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Enabled - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTAsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4725\"}, \"type\": \"phrase\", \"value\": \"4725\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4725\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Disabled - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Disabled User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Disabled - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"8f20c950-bcd4-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTEsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4726\"}, \"type\": \"phrase\", \"value\": \"4726\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4726\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Deleted - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Deleted User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performed LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Deleted - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTIsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4723\", \"4724\"], \"type\": \"phrases\", \"value\": \"4723, 4724\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4723\"}}, {\"match_phrase\": {\"event.code\": \"4724\"}}]}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Password Changes - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Password Change to\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Password Changes - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTMsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4767\"}, \"type\": \"phrase\", \"value\": \"4767\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4767\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Unlocked Users - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Unlocked User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer Logonid\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Unlocked Users - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"da2110c0-bcea-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTQsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4738\"}, \"type\": \"phrase\", \"value\": \"4738\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4738\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Changes Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Changed User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Changes Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"abf96c10-bcea-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4740\"}, \"type\": \"phrase\", \"value\": \"4740\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4740\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Locked Out - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Locked User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Locked Out - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTYsMl0="} -{"attributes":{"columns":["user.name","source.domain","source.ip","winlog.logon.id","winlog.logon.type"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4624\"], \"type\": \"phrases\", \"value\": \"4624\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4624\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"Logon Details [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"7e178c80-fee1-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTcsMl0="} -{"attributes":{"columns":["event.action","winlog.event_data.TargetUserName","user.domain","user.name","winlog.event_data.SubjectDomainName","winlog.logon.id","related.user"],"description":"","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": [\"4720\", \"4722\", \"4723\", \"4724\", \"4725\", \"4726\", \"4738\", \"4740\", \"4767\", \"4781\", \"4798\"], \"type\": \"phrases\", \"value\": \"4720, 4722, 4723, 4724, 4725, 4726, 4738, 4740, 4767, 4781, 4798\"}, \"query\": {\"bool\": {\"minimum_should_match\": 1, \"should\": [{\"match_phrase\": {\"event.code\": \"4720\"}}, {\"match_phrase\": {\"event.code\": \"4722\"}}, {\"match_phrase\": {\"event.code\": \"4723\"}}, {\"match_phrase\": {\"event.code\": \"4724\"}}, {\"match_phrase\": {\"event.code\": \"4725\"}}, {\"match_phrase\": {\"event.code\": \"4726\"}}, {\"match_phrase\": {\"event.code\": \"4738\"}}, {\"match_phrase\": {\"event.code\": \"4740\"}}, {\"match_phrase\": {\"event.code\": \"4767\"}}, {\"match_phrase\": {\"event.code\": \"4781\"}}, {\"match_phrase\": {\"event.code\": \"4798\"}}]}}}], \"highlightAll\": true, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"lucene\", \"query\": \"\"}, \"version\": true}"},"sort":[["@timestamp","desc"]],"title":"User management Details - Search [Winlogbeat Security]","version":1},"coreMigrationVersion":"7.14.0","id":"324686c0-fefb-11e9-8405-516218e3d268","migrationVersion":{"search":"7.9.3"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"search","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTgsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Disabled - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(79,147,150,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"640db356-7495-4973-be74-089c19405d78\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4725\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Disabled\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Disabled - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"97c70300-ff1c-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMTksMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Enabled - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(203,142,136,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"769ee004-5239-4a92-9d0b-626e2729ef80\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4722\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Enabled\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Enabled - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"bf45dc50-ff1a-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjAsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Deleted - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(228,155,75,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"ca03a640-84d1-4a48-8c91-d5522ea218fb\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4726\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Deleted\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Deleted - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"7322f9f0-ff1c-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjEsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Created - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(181,99,93,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"89ac7d8a-cc76-4e8a-9fcf-1bb9f33da0cc\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4720\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Created\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Created - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"d3a5fec0-ff18-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjIsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Unlocks - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(116,167,167,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"4d4b1d66-124d-4a42-98c7-877c32f4c3b0\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4767\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Unlocks\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Unlocks - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"1b6725f0-ff1d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjMsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Password Changes - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(154,196,198,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"d0af4621-9672-49a2-b335-a587c2b96bbb\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4723\\\" OR event.code: \\\"4724\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Password Changes/Reset\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Password Changes - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"60301890-ff1d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjQsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users locked Out - TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(102,102,102,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"466c06c9-6d85-4c50-98df-a17fe4320b7f\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4740\\\"\"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Locked Out\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users locked Out - TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"9dd22440-ff1d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjUsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Changes TS VB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(221,186,64,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"bd34b042-f527-4b44-8d56-16e4f1610cd0\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4738\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Changes\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Changes TS VB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"c9d959f0-ff1d-11e9-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjYsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{}"},"title":"Users Renamed TSVB Metric [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"axis_formatter\":\"number\",\"axis_position\":\"left\",\"axis_scale\":\"normal\",\"background_color_rules\":[{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"8d597960-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"lte\",\"value\":0},{\"background_color\":\"rgba(110,139,162,1)\",\"id\":\"a3f59730-ff18-11e9-8249-2371c695f3b0\",\"operator\":\"gte\",\"value\":1},{\"background_color\":\"rgba(204,204,204,1)\",\"id\":\"0e0cf738-625b-43f8-9a33-8c1eda49953a\",\"operator\":\"empty\",\"value\":null}],\"drop_last_bucket\":0,\"filter\":{\"language\":\"kuery\",\"query\":\"event.code: \\\"4781\\\" \"},\"id\":\"61ca57f0-469d-11e7-af02-69e470af7417\",\"index_pattern\":\"winlogbeat-*\",\"interval\":\"90d\",\"isModelInvalid\":false,\"series\":[{\"axis_position\":\"right\",\"chart_type\":\"line\",\"color\":\"#68BC00\",\"fill\":0.5,\"formatter\":\"number\",\"id\":\"61ca57f1-469d-11e7-af02-69e470af7417\",\"label\":\"Users Renamed\",\"line_width\":1,\"metrics\":[{\"id\":\"61ca57f2-469d-11e7-af02-69e470af7417\",\"type\":\"count\"}],\"point_size\":1,\"separate_axis\":0,\"split_mode\":\"everything\",\"stacked\":\"none\",\"split_color_mode\":\"gradient\"}],\"show_grid\":1,\"show_legend\":1,\"time_field\":\"@timestamp\",\"time_range_mode\":\"entire_time_range\",\"type\":\"metric\",\"use_kibana_indexes\":false,\"hide_last_value_indicator\":true},\"title\":\"Users Renamed TSVB Metric [Winlogbeat Security]\",\"type\":\"metrics\"}"},"coreMigrationVersion":"7.14.0","id":"1f271bc0-231a-11ea-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjcsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [{\"$state\": {\"store\": \"appState\"}, \"meta\": {\"alias\": null, \"disabled\": false, \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\", \"key\": \"event.code\", \"negate\": false, \"params\": {\"query\": \"4781\"}, \"type\": \"phrase\", \"value\": \"4781\"}, \"query\": {\"match\": {\"event.code\": {\"query\": \"4781\", \"type\": \"phrase\"}}}}], \"indexRefName\": \"kibanaSavedObjectMeta.searchSourceJSON.index\", \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Users Renamed - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Old User Name\",\"field\":\"winlog.event_data.OldTargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":100},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Performed by\",\"field\":\"winlog.event_data.SubjectUserName\",\"missingBucket\":true,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Performer LogonId\",\"field\":\"winlog.logon.id\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"dimensions\":{\"buckets\":[{\"accessor\":0,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":1,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}},{\"accessor\":2,\"aggType\":\"terms\",\"format\":{\"id\":\"terms\",\"params\":{\"id\":\"string\",\"missingBucketLabel\":\"Missing\",\"otherBucketLabel\":\"Other\"}},\"params\":{}}],\"metrics\":[{\"accessor\":3,\"aggType\":\"count\",\"format\":{\"id\":\"number\"},\"params\":{}}]},\"perPage\":10,\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"Users Renamed - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"fa876300-231a-11ea-8405-516218e3d268","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.index","type":"index-pattern"},{"id":"winlogbeat-*","name":"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index","type":"index-pattern"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjgsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"title":"Dashboard links [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[],\"params\":{\"fontSize\":12,\"markdown\":\"[Winlogbeat Overview](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891) | [Logon Failed and Account Lockout](#/dashboard/d401ef40-a7d5-11e9-a422-d144027429da) | [User Management Events](#/dashboard/71f720f0-ff18-11e9-8405-516218e3d268) | [Group Management Events](#/dashboard/bb858830-f412-11e9-8405-516218e3d268)\",\"openLinksInNewTab\":false},\"title\":\"Dashboard links [Winlogbeat Security]\",\"type\":\"markdown\"}"},"coreMigrationVersion":"7.14.0","id":"a3c3f350-9b6d-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMjksMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"User Management Actions [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"labels\":{\"last_level\":true,\"show\":false,\"truncate\":100,\"values\":true},\"legendPosition\":\"right\",\"type\":\"pie\",\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"distinctColors\":true},\"title\":\"User Management Actions [Winlogbeat Security]\",\"type\":\"pie\"}"},"coreMigrationVersion":"7.14.0","id":"26877510-9b72-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzAsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Target Users [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"segment\",\"type\":\"terms\"}],\"params\":{\"maxFontSize\":72,\"minFontSize\":18,\"orientation\":\"single\",\"scale\":\"linear\",\"showLabel\":false,\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"}},\"title\":\"Target Users [Winlogbeat Security]\",\"type\":\"tagcloud\"}"},"coreMigrationVersion":"7.14.0","id":"117f5a30-9b71-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzEsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"User Event Actions - Table [Winlogbeat Security]","uiStateJSON":"{\"vis\": {\"params\": {\"sort\": {\"columnIndex\": null, \"direction\": null}}}}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"event.action\",\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":25},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"event.code\",\"field\":\"event.code\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"params\":{\"perPage\":10,\"percentageCol\":\"\",\"showMetricsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\",\"showToolbar\":true},\"title\":\"User Event Actions - Table [Winlogbeat Security]\",\"type\":\"table\"}"},"coreMigrationVersion":"7.14.0","id":"5c9ee410-9b74-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzIsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"User Management Events - Affected Users vs Actions - Heatmap [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"Target User\",\"field\":\"winlog.event_data.TargetUserName\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":20},\"schema\":\"segment\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":10},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTooltip\":true,\"colorSchema\":\"Blues\",\"colorsNumber\":4,\"colorsRange\":[],\"enableHover\":false,\"invertColors\":false,\"legendPosition\":\"right\",\"percentageMode\":false,\"setColorRange\":false,\"times\":[],\"type\":\"heatmap\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"color\":\"black\",\"overwriteColor\":false,\"rotate\":0,\"show\":true},\"scale\":{\"defaultYExtents\":false,\"type\":\"linear\"},\"show\":false,\"type\":\"value\"}]},\"title\":\"User Management Events - Affected Users vs Actions - Heatmap [Winlogbeat Security]\",\"type\":\"heatmap\"}"},"coreMigrationVersion":"7.14.0","id":"aa31c9d0-9b75-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzMsMl0="} -{"attributes":{"description":"","kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"savedSearchRefName":"search_0","title":"Event Distribution in time [Winlogbeat Security]","uiStateJSON":"{}","version":1,"visState":"{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{},\"schema\":\"metric\",\"type\":\"count\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"drop_partials\":false,\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1,\"scaleMetricValues\":false,\"timeRange\":{\"from\":\"now-7d\",\"to\":\"now\"},\"useNormalizedEsInterval\":true},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"field\":\"event.action\",\"missingBucket\":false,\"missingBucketLabel\":\"Missing\",\"order\":\"desc\",\"orderBy\":\"1\",\"otherBucket\":false,\"otherBucketLabel\":\"Other\",\"size\":15},\"schema\":\"group\",\"type\":\"terms\"}],\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"categoryAxes\":[{\"id\":\"CategoryAxis-1\",\"labels\":{\"filter\":true,\"show\":true,\"truncate\":100},\"position\":\"bottom\",\"scale\":{\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{},\"type\":\"category\"}],\"grid\":{\"categoryLines\":false},\"labels\":{\"show\":false},\"legendPosition\":\"right\",\"seriesParams\":[{\"data\":{\"id\":\"1\",\"label\":\"Count\"},\"drawLinesBetweenPoints\":true,\"lineWidth\":2,\"mode\":\"stacked\",\"show\":true,\"showCircles\":true,\"type\":\"histogram\",\"valueAxis\":\"ValueAxis-1\"}],\"thresholdLine\":{\"color\":\"#E7664C\",\"show\":false,\"style\":\"full\",\"value\":10,\"width\":1},\"times\":[],\"type\":\"histogram\",\"valueAxes\":[{\"id\":\"ValueAxis-1\",\"labels\":{\"filter\":false,\"rotate\":0,\"show\":true,\"truncate\":100},\"name\":\"LeftAxis-1\",\"position\":\"left\",\"scale\":{\"mode\":\"normal\",\"type\":\"linear\"},\"show\":true,\"style\":{},\"title\":{\"text\":\"Count\"},\"type\":\"value\"}],\"palette\":{\"type\":\"palette\",\"name\":\"kibana_palette\"},\"isVislibVis\":true,\"detailedTooltip\":true},\"title\":\"Event Distribution in time [Winlogbeat Security]\",\"type\":\"histogram\"}"},"coreMigrationVersion":"7.14.0","id":"caf4d2b0-9b76-11ea-87e4-49f31ec44891","migrationVersion":{"visualization":"7.14.0"},"references":[{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"search_0","type":"search"}],"type":"visualization","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMzQsMl0="} -{"attributes":{"description":"User management activity.","hits":0,"kibanaSavedObjectMeta":{"searchSourceJSON":"{\"filter\": [], \"query\": {\"language\": \"kuery\", \"query\": \"\"}}"},"optionsJSON":"{\"hidePanelTitles\": false, \"useMargins\": false}","panelsJSON":"[{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"1\",\"w\":17,\"x\":0,\"y\":0},\"panelIndex\":\"1\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_1\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"3\",\"w\":9,\"x\":0,\"y\":56},\"panelIndex\":\"3\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Created Users [Winlogbeat Security]\",\"panelRefName\":\"panel_3\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"5\",\"w\":9,\"x\":9,\"y\":56},\"panelIndex\":\"5\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Enabled Users [Winlogbeat Security]\",\"panelRefName\":\"panel_5\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"6\",\"w\":9,\"x\":0,\"y\":79},\"panelIndex\":\"6\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Disabled Users [Winlogbeat Security]\",\"panelRefName\":\"panel_6\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"7\",\"w\":9,\"x\":18,\"y\":56},\"panelIndex\":\"7\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Deleted Users [Winlogbeat Security]\",\"panelRefName\":\"panel_7\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"9\",\"w\":9,\"x\":18,\"y\":79},\"panelIndex\":\"9\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Passwords Changes [Winlogbeat Security]\",\"panelRefName\":\"panel_9\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"15\",\"w\":9,\"x\":9,\"y\":79},\"panelIndex\":\"15\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Unlocked Users [Winlogbeat Security]\",\"panelRefName\":\"panel_15\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"16\",\"w\":9,\"x\":18,\"y\":102},\"panelIndex\":\"16\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Users Changes [Winlogbeat Security]\",\"panelRefName\":\"panel_16\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"20\",\"w\":9,\"x\":0,\"y\":102},\"panelIndex\":\"20\",\"embeddableConfig\":{\"enhancements\":{}},\"title\":\"Locked-out Users [Winlogbeat Security]\",\"panelRefName\":\"panel_20\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":46,\"i\":\"22\",\"w\":21,\"x\":27,\"y\":72},\"panelIndex\":\"22\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_22\"},{\"version\":\"7.7.0\",\"type\":\"search\",\"gridData\":{\"h\":19,\"i\":\"23\",\"w\":48,\"x\":0,\"y\":118},\"panelIndex\":\"23\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_23\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"24\",\"w\":9,\"x\":0,\"y\":72},\"panelIndex\":\"24\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_24\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"25\",\"w\":9,\"x\":9,\"y\":49},\"panelIndex\":\"25\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_25\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"26\",\"w\":9,\"x\":18,\"y\":49},\"panelIndex\":\"26\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_26\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"27\",\"w\":9,\"x\":0,\"y\":49},\"panelIndex\":\"27\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_27\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"28\",\"w\":9,\"x\":9,\"y\":72},\"panelIndex\":\"28\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_28\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"29\",\"w\":9,\"x\":18,\"y\":72},\"panelIndex\":\"29\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_29\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"30\",\"w\":9,\"x\":0,\"y\":95},\"panelIndex\":\"30\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_30\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"31\",\"w\":9,\"x\":18,\"y\":95},\"panelIndex\":\"31\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_31\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":7,\"i\":\"32\",\"w\":9,\"x\":9,\"y\":95},\"panelIndex\":\"32\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_32\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"33\",\"w\":9,\"x\":9,\"y\":102},\"panelIndex\":\"33\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_33\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":8,\"i\":\"cf0adfac-7cf2-479d-8ddb-1edeee62d37c\",\"w\":31,\"x\":17,\"y\":0},\"panelIndex\":\"cf0adfac-7cf2-479d-8ddb-1edeee62d37c\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_cf0adfac-7cf2-479d-8ddb-1edeee62d37c\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"a2871661-98a8-489b-b615-e66ebe3b971a\",\"w\":17,\"x\":0,\"y\":8},\"panelIndex\":\"a2871661-98a8-489b-b615-e66ebe3b971a\",\"embeddableConfig\":{\"colors\":{\"added-user-account\":\"#447EBC\",\"deleted-user-account\":\"#82B5D8\",\"disabled-user-account\":\"#82B5D8\",\"enabled-user-account\":\"#0A50A1\",\"modified-user-account\":\"#2F575E\",\"renamed-user-account\":\"#1F78C1\",\"reset-password\":\"#5195CE\"},\"vis\":{\"colors\":{\"added-user-account\":\"#447EBC\",\"deleted-user-account\":\"#82B5D8\",\"disabled-user-account\":\"#82B5D8\",\"enabled-user-account\":\"#0A50A1\",\"modified-user-account\":\"#2F575E\",\"renamed-user-account\":\"#1F78C1\",\"reset-password\":\"#5195CE\",\"unlocked-user-account\":\"#64B0C8\"}},\"enhancements\":{}},\"panelRefName\":\"panel_a2871661-98a8-489b-b615-e66ebe3b971a\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"e80fae4a-6087-41e1-b4b9-31802cb1e4bf\",\"w\":18,\"x\":30,\"y\":8},\"panelIndex\":\"e80fae4a-6087-41e1-b4b9-31802cb1e4bf\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_e80fae4a-6087-41e1-b4b9-31802cb1e4bf\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":16,\"i\":\"dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6\",\"w\":13,\"x\":17,\"y\":8},\"panelIndex\":\"dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6\",\"embeddableConfig\":{\"enhancements\":{}},\"panelRefName\":\"panel_dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":25,\"i\":\"29f54335-78db-4c49-a3e0-a641fd0099f6\",\"w\":48,\"x\":0,\"y\":24},\"panelIndex\":\"29f54335-78db-4c49-a3e0-a641fd0099f6\",\"embeddableConfig\":{\"vis\":null,\"enhancements\":{}},\"title\":\"Actions performed over Users [Winlogbeat Security]\",\"panelRefName\":\"panel_29f54335-78db-4c49-a3e0-a641fd0099f6\"},{\"version\":\"7.7.0\",\"type\":\"visualization\",\"gridData\":{\"h\":23,\"i\":\"1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa\",\"w\":21,\"x\":27,\"y\":49},\"panelIndex\":\"1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa\",\"embeddableConfig\":{\"colors\":{\"added-user-account\":\"#0A437C\",\"deleted-user-account\":\"#5195CE\",\"enabled-user-account\":\"#0A50A1\",\"modified-user-account\":\"#052B51\",\"renamed-user-account\":\"#1F78C1\",\"reset-password\":\"#5195CE\"},\"vis\":{\"colors\":{\"added-user-account\":\"#0A437C\",\"deleted-user-account\":\"#5195CE\",\"disabled-user-account\":\"#82B5D8\",\"enabled-user-account\":\"#0A50A1\",\"modified-user-account\":\"#052B51\",\"renamed-user-account\":\"#1F78C1\",\"reset-password\":\"#5195CE\"}},\"enhancements\":{}},\"panelRefName\":\"panel_1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa\"}]","timeRestore":false,"title":"[Winlogbeat Security] User Management Events","version":1},"coreMigrationVersion":"7.14.0","id":"71f720f0-ff18-11e9-8405-516218e3d268","migrationVersion":{"dashboard":"7.14.0"},"references":[{"id":"2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf","name":"1:panel_1","type":"visualization"},{"id":"5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf","name":"3:panel_3","type":"visualization"},{"id":"0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf","name":"5:panel_5","type":"visualization"},{"id":"8f20c950-bcd4-11e9-b6a2-c9b4015c4baf","name":"6:panel_6","type":"visualization"},{"id":"ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf","name":"7:panel_7","type":"visualization"},{"id":"da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf","name":"9:panel_9","type":"visualization"},{"id":"da2110c0-bcea-11e9-b6a2-c9b4015c4baf","name":"15:panel_15","type":"visualization"},{"id":"abf96c10-bcea-11e9-b6a2-c9b4015c4baf","name":"16:panel_16","type":"visualization"},{"id":"4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf","name":"20:panel_20","type":"visualization"},{"id":"7e178c80-fee1-11e9-8405-516218e3d268","name":"22:panel_22","type":"search"},{"id":"324686c0-fefb-11e9-8405-516218e3d268","name":"23:panel_23","type":"search"},{"id":"97c70300-ff1c-11e9-8405-516218e3d268","name":"24:panel_24","type":"visualization"},{"id":"bf45dc50-ff1a-11e9-8405-516218e3d268","name":"25:panel_25","type":"visualization"},{"id":"7322f9f0-ff1c-11e9-8405-516218e3d268","name":"26:panel_26","type":"visualization"},{"id":"d3a5fec0-ff18-11e9-8405-516218e3d268","name":"27:panel_27","type":"visualization"},{"id":"1b6725f0-ff1d-11e9-8405-516218e3d268","name":"28:panel_28","type":"visualization"},{"id":"60301890-ff1d-11e9-8405-516218e3d268","name":"29:panel_29","type":"visualization"},{"id":"9dd22440-ff1d-11e9-8405-516218e3d268","name":"30:panel_30","type":"visualization"},{"id":"c9d959f0-ff1d-11e9-8405-516218e3d268","name":"31:panel_31","type":"visualization"},{"id":"1f271bc0-231a-11ea-8405-516218e3d268","name":"32:panel_32","type":"visualization"},{"id":"fa876300-231a-11ea-8405-516218e3d268","name":"33:panel_33","type":"visualization"},{"id":"a3c3f350-9b6d-11ea-87e4-49f31ec44891","name":"cf0adfac-7cf2-479d-8ddb-1edeee62d37c:panel_cf0adfac-7cf2-479d-8ddb-1edeee62d37c","type":"visualization"},{"id":"26877510-9b72-11ea-87e4-49f31ec44891","name":"a2871661-98a8-489b-b615-e66ebe3b971a:panel_a2871661-98a8-489b-b615-e66ebe3b971a","type":"visualization"},{"id":"117f5a30-9b71-11ea-87e4-49f31ec44891","name":"e80fae4a-6087-41e1-b4b9-31802cb1e4bf:panel_e80fae4a-6087-41e1-b4b9-31802cb1e4bf","type":"visualization"},{"id":"5c9ee410-9b74-11ea-87e4-49f31ec44891","name":"dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6:panel_dd3e12e6-0d3c-448e-b0c4-91f7dc8742b6","type":"visualization"},{"id":"aa31c9d0-9b75-11ea-87e4-49f31ec44891","name":"29f54335-78db-4c49-a3e0-a641fd0099f6:panel_29f54335-78db-4c49-a3e0-a641fd0099f6","type":"visualization"},{"id":"caf4d2b0-9b76-11ea-87e4-49f31ec44891","name":"1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa:panel_1ec8b993-9ac1-4c7f-b7f7-5136f2e310aa","type":"visualization"}],"type":"dashboard","updated_at":"2021-08-11T13:19:00.386Z","version":"WzIzMDcsMl0="} diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/search/06b6b060-7a80-11ea-bc9a-0baf2ca323a3.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/search/06b6b060-7a80-11ea-bc9a-0baf2ca323a3.json new file mode 100644 index 000000000000..ef2bbe9c089c --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/search/06b6b060-7a80-11ea-bc9a-0baf2ca323a3.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "columns": [ + "user.name", + "user.domain", + "winlog.logon.id", + "event.action", + "winlog.logon.type", + "winlog.event_data.SubjectUserName" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4625" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.code": "4625" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "winlog.provider_name", + "negate": false, + "params": { + "query": "Microsoft-Windows-Security-Auditing" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "winlog.provider_name": "Microsoft-Windows-Security-Auditing" + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "User Logouts [Winlogbeat Security]", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "06b6b060-7a80-11ea-bc9a-0baf2ca323a3", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-11T13:18:58.346Z", + "version": "WzIyNzcsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/search/324686c0-fefb-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/search/324686c0-fefb-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..1d7e8f77e366 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/search/324686c0-fefb-11e9-8405-516218e3d268.json @@ -0,0 +1,145 @@ +{ + "attributes": { + "columns": [ + "event.action", + "winlog.event_data.TargetUserName", + "user.domain", + "user.name", + "winlog.event_data.SubjectDomainName", + "winlog.logon.id", + "related.user" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4720", + "4722", + "4723", + "4724", + "4725", + "4726", + "4738", + "4740", + "4767", + "4781", + "4798" + ], + "type": "phrases", + "value": "4720, 4722, 4723, 4724, 4725, 4726, 4738, 4740, 4767, 4781, 4798" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4720" + } + }, + { + "match_phrase": { + "event.code": "4722" + } + }, + { + "match_phrase": { + "event.code": "4723" + } + }, + { + "match_phrase": { + "event.code": "4724" + } + }, + { + "match_phrase": { + "event.code": "4725" + } + }, + { + "match_phrase": { + "event.code": "4726" + } + }, + { + "match_phrase": { + "event.code": "4738" + } + }, + { + "match_phrase": { + "event.code": "4740" + } + }, + { + "match_phrase": { + "event.code": "4767" + } + }, + { + "match_phrase": { + "event.code": "4781" + } + }, + { + "match_phrase": { + "event.code": "4798" + } + } + ] + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "User management Details - Search [Winlogbeat Security]", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "324686c0-fefb-11e9-8405-516218e3d268", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMTgsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/search/6f4071a0-7a78-11ea-bc9a-0baf2ca323a3.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/search/6f4071a0-7a78-11ea-bc9a-0baf2ca323a3.json new file mode 100644 index 000000000000..be27b863b703 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/search/6f4071a0-7a78-11ea-bc9a-0baf2ca323a3.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "columns": [ + "user.name", + "source.domain", + "source.ip", + "winlog.logon.id", + "event.action" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4778", + "4779" + ], + "type": "phrases", + "value": "4778, 4779" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4778" + } + }, + { + "match_phrase": { + "event.code": "4779" + } + } + ] + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Remote Interactive Connections and Disconnections [Winlogbeat Security]", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "6f4071a0-7a78-11ea-bc9a-0baf2ca323a3", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-11T13:18:58.346Z", + "version": "WzIyNzUsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/search/757510b0-a87f-11e9-a422-d144027429da.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/search/757510b0-a87f-11e9-a422-d144027429da.json new file mode 100644 index 000000000000..93f127254a38 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/search/757510b0-a87f-11e9-a422-d144027429da.json @@ -0,0 +1,117 @@ +{ + "attributes": { + "columns": [ + "event.action", + "user.name", + "related.user", + "user.domain", + "source.domain", + "source.ip", + "winlog.event_data.SubjectUserName" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4625", + "4740" + ], + "type": "phrases", + "value": "4625, 4740" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4625" + } + }, + { + "match_phrase": { + "event.code": "4740" + } + } + ] + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "winlog.provider_name", + "negate": false, + "params": { + "query": "Microsoft-Windows-Security-Auditing" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "winlog.provider_name": "Microsoft-Windows-Security-Auditing" + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "3. Login Failed Details", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "757510b0-a87f-11e9-a422-d144027429da", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-11T13:18:54.296Z", + "version": "WzIxOTksMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/search/7e178c80-fee1-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/search/7e178c80-fee1-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..21a0e0ca659d --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/search/7e178c80-fee1-11e9-8405-516218e3d268.json @@ -0,0 +1,83 @@ +{ + "attributes": { + "columns": [ + "user.name", + "source.domain", + "source.ip", + "winlog.logon.id", + "winlog.logon.type" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4624" + ], + "type": "phrases", + "value": "4624" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4624" + } + } + ] + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Logon Details [Winlogbeat Security]", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "7e178c80-fee1-11e9-8405-516218e3d268", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMTcsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/search/9066d5b0-fef2-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/search/9066d5b0-fef2-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..bcdf7af9a1e5 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/search/9066d5b0-fef2-11e9-8405-516218e3d268.json @@ -0,0 +1,264 @@ +{ + "attributes": { + "columns": [ + "event.action", + "group.name", + "group.domain", + "user.name", + "user.domain", + "host.name" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4731", + "4732", + "4733", + "4734", + "4735", + "4737", + "4764", + "4727", + "4728", + "4729", + "4730", + "4754", + "4755", + "4756", + "4757", + "4758", + "4799", + "4749", + "4750", + "4751", + "4752", + "4753", + "4759", + "4760", + "4761", + "4762", + "4763", + "4744", + "4745", + "4746", + "4748" + ], + "type": "phrases", + "value": "4731, 4732, 4733, 4734, 4735, 4737, 4764, 4727, 4728, 4729, 4730, 4754, 4755, 4756, 4757, 4758, 4799, 4749, 4750, 4751, 4752, 4753, 4759, 4760, 4761, 4762, 4763, 4744, 4745, 4746, 4748" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4731" + } + }, + { + "match_phrase": { + "event.code": "4732" + } + }, + { + "match_phrase": { + "event.code": "4733" + } + }, + { + "match_phrase": { + "event.code": "4734" + } + }, + { + "match_phrase": { + "event.code": "4735" + } + }, + { + "match_phrase": { + "event.code": "4737" + } + }, + { + "match_phrase": { + "event.code": "4764" + } + }, + { + "match_phrase": { + "event.code": "4727" + } + }, + { + "match_phrase": { + "event.code": "4728" + } + }, + { + "match_phrase": { + "event.code": "4729" + } + }, + { + "match_phrase": { + "event.code": "4730" + } + }, + { + "match_phrase": { + "event.code": "4754" + } + }, + { + "match_phrase": { + "event.code": "4755" + } + }, + { + "match_phrase": { + "event.code": "4756" + } + }, + { + "match_phrase": { + "event.code": "4757" + } + }, + { + "match_phrase": { + "event.code": "4758" + } + }, + { + "match_phrase": { + "event.code": "4799" + } + }, + { + "match_phrase": { + "event.code": "4749" + } + }, + { + "match_phrase": { + "event.code": "4750" + } + }, + { + "match_phrase": { + "event.code": "4751" + } + }, + { + "match_phrase": { + "event.code": "4752" + } + }, + { + "match_phrase": { + "event.code": "4753" + } + }, + { + "match_phrase": { + "event.code": "4759" + } + }, + { + "match_phrase": { + "event.code": "4760" + } + }, + { + "match_phrase": { + "event.code": "4761" + } + }, + { + "match_phrase": { + "event.code": "4762" + } + }, + { + "match_phrase": { + "event.code": "4763" + } + }, + { + "match_phrase": { + "event.code": "4744" + } + }, + { + "match_phrase": { + "event.code": "4745" + } + }, + { + "match_phrase": { + "event.code": "4746" + } + }, + { + "match_phrase": { + "event.code": "4748" + } + } + ] + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "Group Management Details - Search View [Winlogbeat Security]", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "9066d5b0-fef2-11e9-8405-516218e3d268", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyNDIsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/search/ce71c9a0-a25e-11e9-a422-d144027429da.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/search/ce71c9a0-a25e-11e9-a422-d144027429da.json new file mode 100644 index 000000000000..73d0349a6430 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/search/ce71c9a0-a25e-11e9-a422-d144027429da.json @@ -0,0 +1,78 @@ +{ + "attributes": { + "columns": [ + "user.name", + "winlog.logon.type", + "source.domain", + "source.ip", + "winlog.logon.id" + ], + "description": "", + "hits": 0, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4624" + }, + "type": "phrase" + }, + "query": { + "match": { + "event.code": { + "query": "4624", + "type": "phrase" + } + } + } + } + ], + "highlightAll": true, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + }, + "version": true + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "title": "User Logons [Winlogbeat Security]", + "version": 1 + }, + "coreMigrationVersion": "7.14.0", + "id": "ce71c9a0-a25e-11e9-a422-d144027429da", + "migrationVersion": { + "search": "7.9.3" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "search", + "updated_at": "2021-08-11T13:18:58.346Z", + "version": "WzIyNjgsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/006d75f0-9c03-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/006d75f0-9c03-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..eb48a614529b --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/006d75f0-9c03-11ea-87e4-49f31ec44891.json @@ -0,0 +1,145 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4624" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.code": "4624" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Logon Types [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "legendOpen": true + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "winlog.logon.id" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "winlog.logon.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "/s/siem", + "origin": "https://192.168.1.72:5601", + "pathname": "/s/siem/app/kibana" + } + } + }, + "label": "user.name: Descending", + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "cardinality", + "format": { + "id": "number" + }, + "label": "Unique count of winlog.logon.id", + "params": {} + } + }, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Logon Types [Winlogbeat Security]", + "type": "pie" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "006d75f0-9c03-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:58.346Z", + "version": "WzIyNzMsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..51660d0d3416 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,202 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4722" + }, + "type": "phrase", + "value": "4722" + }, + "query": { + "match": { + "event.code": { + "query": "4722", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Enabled - Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Enabled User", + "field": "winlog.event_data.TargetUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 100 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Performed by", + "field": "winlog.event_data.SubjectUserName", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Performer LogonId", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 3, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Users Enabled - Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "0620c3d0-bcd4-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMTAsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/0622da40-9bfd-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/0622da40-9bfd-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..dd31f4c07857 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/0622da40-9bfd-11ea-87e4-49f31ec44891.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Administrator Logons [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(204,204,204,1)", + "id": "d5bcde50-9bfc-11ea-aaa3-618beeff2d9c", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(181,49,0,1)", + "id": "16018150-9bfd-11ea-aaa3-618beeff2d9c", + "operator": "gte", + "value": 0 + }, + { + "background_color": "rgba(181,49,0,1)", + "id": "bc7a44aa-ac6a-44d2-9557-a2d638c43fdf", + "operator": "empty", + "value": null + } + ], + "filter": { + "language": "kuery", + "query": "event.code: \"4672\"" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Administrator Logons", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Administrator Logons [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "0622da40-9bfd-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:18:58.346Z", + "version": "WzIyNzAsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/0cb2d940-bcde-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/0cb2d940-bcde-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..99b38f9b5cbf --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/0cb2d940-bcde-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,121 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4725" + }, + "type": "phrase", + "value": "4725" + }, + "query": { + "match": { + "event.code": { + "query": "4725", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Disabled - Simple Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Disabled Users", + "field": "user.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Users Disabled - Simple Metric [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "0cb2d940-bcde-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:59.362Z", + "version": "WzIyODksMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/0f2f5280-feeb-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/0f2f5280-feeb-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..1105b403e457 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/0f2f5280-feeb-11e9-8405-516218e3d268.json @@ -0,0 +1,132 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4799" + }, + "type": "phrase", + "value": "4799" + }, + "query": { + "match": { + "event.code": { + "query": "4799", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "" + } + } + }, + "title": "Group Membership Enumeration - Simple Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Group Membership Enumerated" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Blues", + "colorsRange": [ + { + "from": 0, + "to": 500, + "type": "range" + }, + { + "from": 500, + "to": 20000 + }, + { + "from": 20000, + "to": 30000 + }, + { + "from": 30000, + "to": 40000 + } + ], + "invertColors": true, + "labels": { + "show": true + }, + "metricColorMode": "Labels", + "percentageMode": false, + "style": { + "bgColor": true, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Group Membership Enumeration - Simple Metric [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "0f2f5280-feeb-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:55.318Z", + "version": "WzIyMTksMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/102efd20-bcdd-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/102efd20-bcdd-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..ca9bd6d6fab4 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/102efd20-bcdd-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,120 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4720" + }, + "type": "phrase", + "value": "4720" + }, + "query": { + "match": { + "event.code": { + "query": "4720", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Created - Simple Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Users Created" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Users Created - Simple Metric [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "102efd20-bcdd-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:59.362Z", + "version": "WzIyODYsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/117f5a30-9b71-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/117f5a30-9b71-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..202889aff1e6 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/117f5a30-9b71-11ea-87e4-49f31ec44891.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Target Users [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "winlog.event_data.TargetUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "maxFontSize": 72, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": false + }, + "title": "Target Users [Winlogbeat Security]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "117f5a30-9b71-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "324686c0-fefb-11e9-8405-516218e3d268", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMzEsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/162d7ab0-a7d6-11e9-a422-d144027429da.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/162d7ab0-a7d6-11e9-a422-d144027429da.json new file mode 100644 index 000000000000..b8587a46bcc9 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/162d7ab0-a7d6-11e9-a422-d144027429da.json @@ -0,0 +1,246 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "winlog.provider_name", + "negate": false, + "params": { + "query": "Microsoft-Windows-Security-Auditing" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "winlog.provider_name": "Microsoft-Windows-Security-Auditing" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Logon Successful - Logon Failed Timeline [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "colors": { + "Login Failed": "#F9934E", + "Login OK": "#9AC48A", + "Logon Failed": "#EF843C", + "Logon Successful": "#9AC48A" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "2020-05-17T09:37:55.995Z", + "to": "2020-05-22T03:09:27.260Z" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "filters": [ + { + "input": { + "language": "lucene", + "query": "event.code: 4624" + }, + "label": "Logon Successful" + }, + { + "input": { + "language": "lucene", + "query": "event.code: 4625" + }, + "label": "Logon Failed" + } + ] + }, + "schema": "group", + "type": "filters" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "dimensions": { + "series": [ + { + "accessor": 1, + "aggType": "filters", + "format": {}, + "params": {} + } + ], + "x": { + "accessor": 0, + "aggType": "date_histogram", + "format": { + "id": "date", + "params": { + "pattern": "HH:mm" + } + }, + "params": { + "bounds": { + "max": "2019-07-16T14:30:11.515Z", + "min": "2019-07-16T12:30:11.514Z" + }, + "date": true, + "format": "HH:mm", + "interval": "PT1M" + } + }, + "y": [ + { + "accessor": 2, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": { + "show": false + }, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "mode": "stacked", + "show": "true", + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Logon Successful - Logon Failed Timeline [Winlogbeat Security]", + "type": "histogram" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "162d7ab0-a7d6-11e9-a422-d144027429da", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:54.296Z", + "version": "WzIxOTYsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/175a5760-a7d5-11e9-a422-d144027429da.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/175a5760-a7d5-11e9-a422-d144027429da.json new file mode 100644 index 000000000000..6273c606bc10 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/175a5760-a7d5-11e9-a422-d144027429da.json @@ -0,0 +1,142 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "winlog.provider_name", + "negate": false, + "params": { + "query": "Microsoft-Windows-Security-Auditing" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "winlog.provider_name": "Microsoft-Windows-Security-Auditing" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Logon Successful vs Failed [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "colors": { + "Failed Logins": "#EF843C", + "Failed Logons": "#EA6460", + "Successful Login": "#B7DBAB", + "Successful Logon": "#B7DBAB" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "filters": [ + { + "input": { + "language": "lucene", + "query": "event.code: 4624" + }, + "label": "Successful Logon" + }, + { + "input": { + "language": "lucene", + "query": "event.code: 4625" + }, + "label": "Failed Logons" + } + ] + }, + "schema": "segment", + "type": "filters" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "filters", + "format": {}, + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + }, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Logon Successful vs Failed [Winlogbeat Security]", + "type": "pie" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "175a5760-a7d5-11e9-a422-d144027429da", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:54.296Z", + "version": "WzIxOTQsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/18348f30-a24d-11e9-a422-d144027429da.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/18348f30-a24d-11e9-a422-d144027429da.json new file mode 100644 index 000000000000..a8a7eab9d6b9 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/18348f30-a24d-11e9-a422-d144027429da.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "User Logon Dashboard [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "## **Logon Information Dashboard**", + "openLinksInNewTab": false + }, + "title": "User Logon Dashboard [Winlogbeat Security] ", + "type": "markdown" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "18348f30-a24d-11e9-a422-d144027429da", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:18:58.346Z", + "version": "WzIyNjcsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/1b5f17d0-feea-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/1b5f17d0-feea-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..e2c6de36219f --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/1b5f17d0-feea-11e9-8405-516218e3d268.json @@ -0,0 +1,186 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4733", + "4729", + "4757", + "4786", + "4788", + "4752", + "4762", + "4747" + ], + "type": "phrases", + "value": "4733, 4729, 4757, 4786, 4788, 4752, 4762, 4747" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4733" + } + }, + { + "match_phrase": { + "event.code": "4729" + } + }, + { + "match_phrase": { + "event.code": "4757" + } + }, + { + "match_phrase": { + "event.code": "4786" + } + }, + { + "match_phrase": { + "event.code": "4788" + } + }, + { + "match_phrase": { + "event.code": "4752" + } + }, + { + "match_phrase": { + "event.code": "4762" + } + }, + { + "match_phrase": { + "event.code": "4747" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "" + } + } + }, + "title": "Users Removed from Group - Simple Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Users Removed from Groups" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Greens", + "colorsRange": [ + { + "from": 0, + "to": 1, + "type": "range" + }, + { + "from": 1, + "to": 5 + }, + { + "from": 5, + "to": 9 + }, + { + "from": 9, + "to": 13 + }, + { + "from": 13, + "to": 17 + }, + { + "from": 17, + "to": 20000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "Labels", + "percentageMode": false, + "style": { + "bgColor": true, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Users Removed from Group - Simple Metric [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "1b5f17d0-feea-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:55.318Z", + "version": "WzIyMTgsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/1b6725f0-ff1d-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/1b6725f0-ff1d-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..0623fe50aea3 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/1b6725f0-ff1d-11e9-8405-516218e3d268.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Users Unlocks - TSVB Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(204,204,204,1)", + "id": "8d597960-ff18-11e9-8249-2371c695f3b0", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(116,167,167,1)", + "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", + "operator": "gte", + "value": 1 + }, + { + "background_color": "rgba(204,204,204,1)", + "id": "4d4b1d66-124d-4a42-98c7-877c32f4c3b0", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code: \"4767\" " + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Users Unlocks", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Users Unlocks - TSVB Metric [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "1b6725f0-ff1d-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMjMsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/1f271bc0-231a-11ea-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/1f271bc0-231a-11ea-8405-516218e3d268.json new file mode 100644 index 000000000000..cdc9c2aa2b77 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/1f271bc0-231a-11ea-8405-516218e3d268.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Users Renamed TSVB Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(204,204,204,1)", + "id": "8d597960-ff18-11e9-8249-2371c695f3b0", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(110,139,162,1)", + "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", + "operator": "gte", + "value": 1 + }, + { + "background_color": "rgba(204,204,204,1)", + "id": "0e0cf738-625b-43f8-9a33-8c1eda49953a", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code: \"4781\" " + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Users Renamed", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Users Renamed TSVB Metric [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "1f271bc0-231a-11ea-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMjcsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/2084e300-a884-11e9-a422-d144027429da.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/2084e300-a884-11e9-a422-d144027429da.json new file mode 100644 index 000000000000..0b2e15d5ee81 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/2084e300-a884-11e9-a422-d144027429da.json @@ -0,0 +1,154 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4625" + }, + "type": "phrase" + }, + "query": { + "match": { + "event.code": { + "query": "4625", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "winlog.provider_name", + "negate": false, + "params": { + "query": "Microsoft-Windows-Security-Auditing" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "winlog.provider_name": "Microsoft-Windows-Security-Auditing" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Logon Failed Source IP [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "source.ip", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "bucket": { + "accessor": 0, + "format": { + "id": "terms", + "params": { + "id": "ip", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "/s/siem", + "origin": "https://192.168.1.72:5601", + "pathname": "/s/siem/app/kibana" + } + } + }, + "type": "vis_dimension" + }, + "maxFontSize": 38, + "metric": { + "accessor": 1, + "format": { + "id": "string", + "params": {} + }, + "type": "vis_dimension" + }, + "minFontSize": 10, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": false + }, + "title": "Logon Failed Source IP [Winlogbeat Security]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "2084e300-a884-11e9-a422-d144027429da", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:54.296Z", + "version": "WzIyMDAsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/21aadac0-9c0b-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/21aadac0-9c0b-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..b91dd13d593d --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/21aadac0-9c0b-11ea-87e4-49f31ec44891.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Logon Sources [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "source.ip", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "maxFontSize": 72, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": false + }, + "title": "Logon Sources [Winlogbeat Security]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "21aadac0-9c0b-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "7e178c80-fee1-11e9-8405-516218e3d268", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:58.346Z", + "version": "WzIyNzQsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/25f31ee0-9c23-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/25f31ee0-9c23-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..7812bb3ada8e --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/25f31ee0-9c23-11ea-87e4-49f31ec44891.json @@ -0,0 +1,164 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4648" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.code": "4648" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Logon with Explicit Credentials [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "user.name", + "field": "user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 200 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "subjectUserName", + "field": "winlog.event_data.SubjectUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "source.ip", + "field": "source.ip", + "json": "{\"missing\": \"::\"}", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "LogonID", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Logon with Explicit Credentials [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "25f31ee0-9c23-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:58.346Z", + "version": "WzIyNzYsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/26877510-9b72-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/26877510-9b72-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..a848245e5242 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/26877510-9b72-11ea-87e4-49f31ec44891.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "User Management Actions [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "User Management Actions [Winlogbeat Security]", + "type": "pie" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "26877510-9b72-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "324686c0-fefb-11e9-8405-516218e3d268", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMzAsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/2c71e0f0-9c0d-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/2c71e0f0-9c0d-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..bc3709d1c9b8 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/2c71e0f0-9c0d-11ea-87e4-49f31ec44891.json @@ -0,0 +1,115 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4624" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.code": "4624" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Logons Simple [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Logons" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "aggType": "cardinality", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Logons Simple [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "2c71e0f0-9c0d-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:57.330Z", + "version": "WzIyNTYsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..af041bd57909 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "User Management Events - Description [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "# **User Management Events**\n\n#### This dashboard shows information about User Management Events collected by winlogbeat\n", + "openLinksInNewTab": false + }, + "title": "User Management Events - Description [Winlogbeat Security]", + "type": "markdown" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "2dc6b820-b9e8-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMDgsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/33462600-9b47-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/33462600-9b47-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..bf232faa5eda --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/33462600-9b47-11ea-87e4-49f31ec44891.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Group Management Events - Event Actions - Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "event.action", + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 50 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "event.code", + "field": "event.code", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Group Management Events - Event Actions - Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "33462600-9b47-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "9066d5b0-fef2-11e9-8405-516218e3d268", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyNDUsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/400b63e0-f49a-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/400b63e0-f49a-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..5a27aeaab4cf --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/400b63e0-f49a-11e9-8405-516218e3d268.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Groups Changed TSVB Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(200,201,197,1)", + "id": "bfcaced0-f419-11e9-928e-8f5fd2b6c66e", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(221,186,64,1)", + "id": "a7d935e0-f497-11e9-928e-8f5fd2b6c66e", + "operator": "gt", + "value": 0 + }, + { + "background_color": "rgba(200,201,197,1)", + "id": "78de9594-840c-459f-b414-64ac93d3b1da", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code:4735 OR event.code:4737 OR event.code:\"4755\" OR event.code:\"4764\" OR event.code:\"4750\" OR event.code:\"4760\" OR event.code:\"4745\" OR event.code:\"4784\" OR event.code:\"4791\" " + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "60d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Groups Changed", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Groups Changed TSVB Metric [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "400b63e0-f49a-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyMzIsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/421f0610-af98-11e9-a422-d144027429da.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/421f0610-af98-11e9-a422-d144027429da.json new file mode 100644 index 000000000000..281b6df0bea4 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/421f0610-af98-11e9-a422-d144027429da.json @@ -0,0 +1,325 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4625" + }, + "type": "phrase" + }, + "query": { + "match": { + "event.code": { + "query": "4625", + "type": "phrase" + } + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "winlog.provider_name", + "negate": false, + "params": { + "query": "Microsoft-Windows-Security-Auditing" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "winlog.provider_name": "Microsoft-Windows-Security-Auditing" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Logon Failed Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Time Bucket", + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "h", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "2020-05-17T09:37:55.995Z", + "to": "2020-05-22T03:09:27.260Z" + }, + "useNormalizedEsInterval": true + }, + "schema": "bucket", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "user.name", + "field": "user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 1000 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "source workstation", + "field": "source.domain", + "json": "{\"missing\": \"N/A\"}", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "source.ip", + "field": "source.ip", + "json": "{\"missing\": \"::\"}", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "event.action", + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "7", + "params": { + "customLabel": "winlog.logon.type", + "field": "winlog.logon.type", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "8", + "params": { + "customLabel": "winlog.event_data.SubjectUserName", + "field": "winlog.event_data.SubjectUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "date_histogram", + "format": { + "id": "date", + "params": { + "pattern": "YYYY-MM-DD HH:mm" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 3, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "ip", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 4, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 5, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 15, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Logon Failed Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "421f0610-af98-11e9-a422-d144027429da", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:54.296Z", + "version": "WzIyMDEsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..82b0f5300403 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,202 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4740" + }, + "type": "phrase", + "value": "4740" + }, + "query": { + "match": { + "event.code": { + "query": "4740", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Locked Out - Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Locked User", + "field": "winlog.event_data.TargetUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 100 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Performed by", + "field": "winlog.event_data.SubjectUserName", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Performer LogonId", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 3, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Users Locked Out - Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "4ac8f5f0-bcfe-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMTYsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/4b683ac0-a7d7-11e9-a422-d144027429da.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/4b683ac0-a7d7-11e9-a422-d144027429da.json new file mode 100644 index 000000000000..01b632b864f6 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/4b683ac0-a7d7-11e9-a422-d144027429da.json @@ -0,0 +1,229 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4625" + ], + "type": "phrases", + "value": "4625" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4625" + } + } + ] + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "winlog.provider_name", + "negate": false, + "params": { + "query": "Microsoft-Windows-Security-Auditing" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "winlog.provider_name": "Microsoft-Windows-Security-Auditing" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Failed Logon HeatMap [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "defaultColors": { + "0 - 4": "rgb(255,255,204)", + "12 - 16": "rgb(252,91,46)", + "16 - 20": "rgb(212,16,32)", + "4 - 8": "rgb(254,225,135)", + "8 - 12": "rgb(254,171,73)" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "drop_partials": true, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "h", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "2020-05-17T09:37:55.995Z", + "to": "2020-05-22T03:09:27.260Z" + }, + "useNormalizedEsInterval": true + }, + "schema": "group", + "type": "date_histogram" + } + ], + "params": { + "addLegend": true, + "addTooltip": false, + "colorSchema": "Yellow to Red", + "colorsNumber": 5, + "colorsRange": [], + "dimensions": { + "series": [ + { + "accessor": 1, + "aggType": "date_histogram", + "format": { + "id": "date", + "params": { + "pattern": "YYYY-MM-DD HH:mm" + } + }, + "label": "@timestamp per hour", + "params": {} + } + ], + "x": { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "/s/siem", + "origin": "https://192.168.1.72:5601", + "pathname": "/s/siem/app/kibana" + } + } + }, + "label": "user.name: Descending", + "params": {} + }, + "y": [ + { + "accessor": 2, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Count", + "params": {} + } + ] + }, + "enableHover": true, + "invertColors": false, + "legendPosition": "bottom", + "percentageMode": false, + "setColorRange": false, + "times": [], + "type": "heatmap", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "color": "black", + "overwriteColor": false, + "rotate": 0, + "show": true + }, + "scale": { + "defaultYExtents": false, + "type": "linear" + }, + "show": false, + "type": "value" + } + ] + }, + "title": "Failed Logon HeatMap [Winlogbeat Security]", + "type": "heatmap" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "4b683ac0-a7d7-11e9-a422-d144027429da", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:54.296Z", + "version": "WzIxOTgsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/4bedf650-9ffd-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/4bedf650-9ffd-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..ede8b38d912f --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/4bedf650-9ffd-11ea-87e4-49f31ec44891.json @@ -0,0 +1,129 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4625" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.code": "4625" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "key": "winlog.provider_name", + "negate": false, + "params": { + "query": "Microsoft-Windows-Security-Auditing" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "winlog.provider_name": "Microsoft-Windows-Security-Auditing" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": " Failed Logons [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Failed Logons" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": " Failed Logons [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "4bedf650-9ffd-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:54.296Z", + "version": "WzIyMDQsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/546febc0-f49b-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/546febc0-f49b-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..0659fc32ce14 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/546febc0-f49b-11e9-8405-516218e3d268.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Groups Enumeration - TSVB Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(128,128,128,1)", + "color": "rgba(179,179,179,1)", + "id": "bfcaced0-f419-11e9-928e-8f5fd2b6c66e", + "operator": "gt", + "value": 0 + }, + { + "background_color": "rgba(179,179,179,1)", + "id": "8d3f3ed0-9b51-11ea-99a1-e5b989979a59", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(179,179,179,1)", + "id": "1fc1a366-626b-40f5-b76c-963926edaf83", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code:4799" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Group Membership Enumeration", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Groups Enumeration - TSVB Metric [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "546febc0-f49b-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyMzQsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/568a8130-bcde-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/568a8130-bcde-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..15e27e9bbfaf --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/568a8130-bcde-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,130 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4723", + "4724" + ], + "type": "phrases", + "value": "4723, 4724" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4723" + } + }, + { + "match_phrase": { + "event.code": "4724" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Password Reset / Changes [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Password Changes" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Users Password Reset / Changes [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "568a8130-bcde-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:59.362Z", + "version": "WzIyOTAsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/58fb9480-9b46-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/58fb9480-9b46-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..60a9089be744 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/58fb9480-9b46-11ea-87e4-49f31ec44891.json @@ -0,0 +1,73 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Group Management Events - Target Groups - Tag Cloud [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "group.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "maxFontSize": 58, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": false + }, + "title": "Group Management Events - Target Groups - Tag Cloud [Winlogbeat Security]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "58fb9480-9b46-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "9066d5b0-fef2-11e9-8405-516218e3d268", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyNDQsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5bb93ed0-a249-11e9-a422-d144027429da.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5bb93ed0-a249-11e9-a422-d144027429da.json new file mode 100644 index 000000000000..d16028567df3 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5bb93ed0-a249-11e9-a422-d144027429da.json @@ -0,0 +1,118 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4672" + }, + "type": "phrase" + }, + "query": { + "match": { + "event.code": { + "query": "4672", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Admin Logons Simple [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Admin Logons" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "aggType": "cardinality", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Admin Logons Simple [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "5bb93ed0-a249-11e9-a422-d144027429da", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:57.330Z", + "version": "WzIyNTEsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5c9ee410-9b74-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5c9ee410-9b74-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..1c1d038ed1dc --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5c9ee410-9b74-11ea-87e4-49f31ec44891.json @@ -0,0 +1,102 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "User Event Actions - Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "event.action", + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 25 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "event.code", + "field": "event.code", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "User Event Actions - Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "5c9ee410-9b74-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "324686c0-fefb-11e9-8405-516218e3d268", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMzIsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5d117970-9ffd-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5d117970-9ffd-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..396d108b01d3 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5d117970-9ffd-11ea-87e4-49f31ec44891.json @@ -0,0 +1,104 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4740" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.code": "4740" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Blocked Accounts [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Blocked Accounts", + "field": "user.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Blocked Accounts [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "5d117970-9ffd-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:54.296Z", + "version": "WzIyMDMsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5d92b100-bce8-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5d92b100-bce8-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..e563915b3c7b --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5d92b100-bce8-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,124 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4738" + ], + "type": "phrases", + "value": "4738" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4738" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Changes - Simple Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Changes in Users" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Users Changes - Simple Metric [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "5d92b100-bce8-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:59.362Z", + "version": "WzIyOTUsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5e19ff80-231c-11ea-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5e19ff80-231c-11ea-8405-516218e3d268.json new file mode 100644 index 000000000000..3c4fdb2df849 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5e19ff80-231c-11ea-8405-516218e3d268.json @@ -0,0 +1,124 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4781" + ], + "type": "phrases", + "value": "4781" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4781" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Renamed - Simple Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Renamed Users" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Users Renamed - Simple Metric [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "5e19ff80-231c-11ea-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:59.362Z", + "version": "WzIyOTksMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..61b7d08bc0df --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,202 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4720" + }, + "type": "phrase", + "value": "4720" + }, + "query": { + "match": { + "event.code": { + "query": "4720", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Created - Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Created User", + "field": "winlog.event_data.TargetUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 100 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Performed by", + "field": "winlog.event_data.SubjectUserName", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Performer LogonID", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 3, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Users Created - Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "5e7f0ed0-bcd2-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMDksMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5eeaafd0-fee7-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5eeaafd0-fee7-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..d17cb0251b2f --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/5eeaafd0-fee7-11e9-8405-516218e3d268.json @@ -0,0 +1,186 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4734", + "4730", + "4758", + "4748", + "4763", + "4753", + "4792", + "4789" + ], + "type": "phrases", + "value": "4734, 4730, 4758, 4748, 4763, 4753, 4792, 4789" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4734" + } + }, + { + "match_phrase": { + "event.code": "4730" + } + }, + { + "match_phrase": { + "event.code": "4758" + } + }, + { + "match_phrase": { + "event.code": "4748" + } + }, + { + "match_phrase": { + "event.code": "4763" + } + }, + { + "match_phrase": { + "event.code": "4753" + } + }, + { + "match_phrase": { + "event.code": "4792" + } + }, + { + "match_phrase": { + "event.code": "4789" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "" + } + } + }, + "title": "Groups Deleted- Simple Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Groups Deleted" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Greens", + "colorsRange": [ + { + "from": 0, + "to": 1, + "type": "range" + }, + { + "from": 1, + "to": 5 + }, + { + "from": 5, + "to": 10 + }, + { + "from": 10, + "to": 15 + }, + { + "from": 15, + "to": 20 + }, + { + "from": 20, + "to": 10000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "Labels", + "percentageMode": false, + "style": { + "bgColor": true, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Groups Deleted- Simple Metric [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "5eeaafd0-fee7-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:55.318Z", + "version": "WzIyMTUsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/60301890-ff1d-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/60301890-ff1d-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..1290b034b151 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/60301890-ff1d-11e9-8405-516218e3d268.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Users Password Changes - TSVB Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(204,204,204,1)", + "id": "8d597960-ff18-11e9-8249-2371c695f3b0", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(154,196,198,1)", + "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", + "operator": "gte", + "value": 1 + }, + { + "background_color": "rgba(204,204,204,1)", + "id": "d0af4621-9672-49a2-b335-a587c2b96bbb", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code: \"4723\" OR event.code: \"4724\"" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Password Changes/Reset", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Users Password Changes - TSVB Metric [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "60301890-ff1d-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMjQsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/6f0f2ea0-f414-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/6f0f2ea0-f414-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..80e453dfdb9a --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/6f0f2ea0-f414-11e9-8405-516218e3d268.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Group Management Events - Description [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "# **Group Management Events**\n\n#### This dashboard shows information about Group Management Events collected by winlogbeat\n", + "openLinksInNewTab": false + }, + "title": "Group Management Events - Description [Winlogbeat Security]", + "type": "markdown" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "6f0f2ea0-f414-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyMjgsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/729443b0-a7d6-11e9-a422-d144027429da.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/729443b0-a7d6-11e9-a422-d144027429da.json new file mode 100644 index 000000000000..f65b85d5b646 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/729443b0-a7d6-11e9-a422-d144027429da.json @@ -0,0 +1,139 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4625", + "4771" + ], + "type": "phrases", + "value": "4625, 4771" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4625" + } + }, + { + "match_phrase": { + "event.code": "4771" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Logon Failed Acconts [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "bucket": { + "accessor": 0, + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "/s/siem", + "origin": "https://192.168.1.72:5601", + "pathname": "/s/siem/app/kibana" + } + } + }, + "type": "vis_dimension" + }, + "maxFontSize": 37, + "metric": { + "accessor": 1, + "format": { + "id": "string", + "params": {} + }, + "type": "vis_dimension" + }, + "minFontSize": 15, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": false + }, + "title": "Logon Failed Acconts [Winlogbeat Security]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "729443b0-a7d6-11e9-a422-d144027429da", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:54.296Z", + "version": "WzIxOTcsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/7322f9f0-ff1c-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/7322f9f0-ff1c-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..5f7ea762fdb6 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/7322f9f0-ff1c-11e9-8405-516218e3d268.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Users Deleted - TSVB Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(204,204,204,1)", + "id": "8d597960-ff18-11e9-8249-2371c695f3b0", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(228,155,75,1)", + "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", + "operator": "gte", + "value": 1 + }, + { + "background_color": "rgba(204,204,204,1)", + "id": "ca03a640-84d1-4a48-8c91-d5522ea218fb", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code: \"4726\" " + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Users Deleted", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Users Deleted - TSVB Metric [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "7322f9f0-ff1c-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMjEsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/7a329a00-a7d5-11e9-a422-d144027429da.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/7a329a00-a7d5-11e9-a422-d144027429da.json new file mode 100644 index 000000000000..b5d3f6ed09a4 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/7a329a00-a7d5-11e9-a422-d144027429da.json @@ -0,0 +1,128 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4740" + }, + "type": "phrase" + }, + "query": { + "match": { + "event.code": { + "query": "4740", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Blocked Accounts Tag [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "winlog.event_data.TargetUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "bucket": { + "accessor": 0, + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "/s/siem", + "origin": "https://192.168.1.72:5601", + "pathname": "/s/siem/app/kibana" + } + } + }, + "type": "vis_dimension" + }, + "maxFontSize": 53, + "metric": { + "accessor": 1, + "format": { + "id": "string", + "params": {} + }, + "type": "vis_dimension" + }, + "minFontSize": 18, + "orientation": "single", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "scale": "linear", + "showLabel": false + }, + "title": "Blocked Accounts Tag [Winlogbeat Security]", + "type": "tagcloud" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "7a329a00-a7d5-11e9-a422-d144027429da", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:54.296Z", + "version": "WzIxOTUsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/7de2e3f0-9b4d-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/7de2e3f0-9b4d-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..3972c97c82a7 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/7de2e3f0-9b4d-11ea-87e4-49f31ec44891.json @@ -0,0 +1,165 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Group Management Action Distribution over Time [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "now-30d", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 25 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false, + "valueAxis": "" + }, + "isVislibVis": true, + "labels": { + "show": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Group Management Action Distribution over Time [Winlogbeat Security]", + "type": "histogram" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "7de2e3f0-9b4d-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "9066d5b0-fef2-11e9-8405-516218e3d268", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyNDcsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/804dd400-a248-11e9-a422-d144027429da.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/804dd400-a248-11e9-a422-d144027429da.json new file mode 100644 index 000000000000..a4b7d239cb04 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/804dd400-a248-11e9-a422-d144027429da.json @@ -0,0 +1,260 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4672" + ], + "type": "phrases", + "value": "4672" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4672" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Logged on Administrators [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "" + }, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Date", + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "2020-05-20T07:35:27.496Z", + "to": "2020-05-22T00:01:10.239Z" + }, + "useNormalizedEsInterval": true + }, + "schema": "bucket", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "user.name", + "field": "user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "8", + "params": { + "customLabel": "# Thread", + "field": "winlog.process.thread.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "9", + "params": { + "customLabel": "LogonID", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "date_histogram", + "format": { + "id": "date", + "params": { + "pattern": "YYYY-MM-DD HH:mm" + } + }, + "label": "Fecha - Hora ", + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "/s/siem", + "origin": "https://192.168.1.72:5601", + "pathname": "/s/siem/app/kibana" + } + } + }, + "label": "Usuario", + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "number", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "/s/siem", + "origin": "https://192.168.1.72:5601", + "pathname": "/s/siem/app/kibana" + } + } + }, + "label": "# Thread", + "params": {} + }, + { + "accessor": 3, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "/s/siem", + "origin": "https://192.168.1.72:5601", + "pathname": "/s/siem/app/kibana" + } + } + }, + "label": "winlog.logon.id: Descending", + "params": {} + } + ], + "metrics": [ + { + "accessor": 4, + "aggType": "count", + "format": { + "id": "number" + }, + "label": "Cantidad Eventos ", + "params": {} + } + ] + }, + "perPage": 10, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Logged on Administrators [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "804dd400-a248-11e9-a422-d144027429da", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:58.346Z", + "version": "WzIyNjUsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/84502430-bce8-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/84502430-bce8-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..8dcba13b6027 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/84502430-bce8-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,124 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4740" + ], + "type": "phrases", + "value": "4740" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4740" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Unlocks - Simple Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Users Locked Out" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Users Unlocks - Simple Metric [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "84502430-bce8-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:59.362Z", + "version": "WzIyOTMsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/855957d0-bcdd-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/855957d0-bcdd-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..07104f192075 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/855957d0-bcdd-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,121 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4722" + }, + "type": "phrase", + "value": "4722" + }, + "query": { + "match": { + "event.code": { + "query": "4722", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Enabled - Simple Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Users Enabled", + "field": "user.name" + }, + "schema": "metric", + "type": "cardinality" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Users Enabled - Simple Metric [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "855957d0-bcdd-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:59.362Z", + "version": "WzIyODcsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/860706a0-9bfd-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/860706a0-9bfd-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..b082348c8f89 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/860706a0-9bfd-11ea-87e4-49f31ec44891.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "User Logons [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(204,204,204,1)", + "id": "d5bcde50-9bfc-11ea-aaa3-618beeff2d9c", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(7,139,141,1)", + "id": "16018150-9bfd-11ea-aaa3-618beeff2d9c", + "operator": "gte", + "value": 0 + }, + { + "background_color": "rgba(7,139,141,1)", + "id": "ced8b8b4-c6c8-43db-971a-7e609425e08e", + "operator": "empty", + "value": null + } + ], + "filter": { + "language": "kuery", + "query": "event.code: \"4624\"" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Logons ", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "User Logons [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "860706a0-9bfd-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:18:58.346Z", + "version": "WzIyNzEsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/8ef59f90-6ab8-11ea-896f-0d70f7ec3956.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/8ef59f90-6ab8-11ea-896f-0d70f7ec3956.json new file mode 100644 index 000000000000..3daf633368af --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/8ef59f90-6ab8-11ea-896f-0d70f7ec3956.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Failed Logons TSVB [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(204,204,204,1)", + "id": "8d597960-ff18-11e9-8249-2371c695f3b0", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(181,99,93,1)", + "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", + "operator": "gte", + "value": 1 + }, + { + "background_color": "rgba(204,204,204,1)", + "id": "e046d275-9e09-4e59-be48-7f7276c42e0d", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code: \"4625\" and winlog.provider_name : \"Microsoft-Windows-Security-Auditing\" " + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Failed Logon", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Failed Logons TSVB [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "8ef59f90-6ab8-11ea-896f-0d70f7ec3956", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:18:53.287Z", + "version": "WzIxOTAsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/8f20c950-bcd4-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/8f20c950-bcd4-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..43b4844a4243 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/8f20c950-bcd4-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,202 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4725" + }, + "type": "phrase", + "value": "4725" + }, + "query": { + "match": { + "event.code": { + "query": "4725", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Disabled - Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Disabled User", + "field": "winlog.event_data.TargetUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 100 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Performed by", + "field": "winlog.event_data.SubjectUserName", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Performer LogonId", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 3, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Users Disabled - Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "8f20c950-bcd4-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMTEsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/97c70300-ff1c-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/97c70300-ff1c-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..967d2c439f1a --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/97c70300-ff1c-11e9-8405-516218e3d268.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Users Disabled - TSVB Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(204,204,204,1)", + "id": "8d597960-ff18-11e9-8249-2371c695f3b0", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(79,147,150,1)", + "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", + "operator": "gte", + "value": 1 + }, + { + "background_color": "rgba(204,204,204,1)", + "id": "640db356-7495-4973-be74-089c19405d78", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code: \"4725\" " + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Users Disabled", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Users Disabled - TSVB Metric [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "97c70300-ff1c-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMTksMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/98884120-f49d-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/98884120-f49d-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..fd0c351403ee --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/98884120-f49d-11e9-8405-516218e3d268.json @@ -0,0 +1,279 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4731", + "4727", + "4754", + "4744", + "4759", + "4779", + "4790", + "4783" + ], + "type": "phrases", + "value": "4731, 4727, 4754, 4744, 4759, 4779, 4790, 4783" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4731" + } + }, + { + "match_phrase": { + "event.code": "4727" + } + }, + { + "match_phrase": { + "event.code": "4754" + } + }, + { + "match_phrase": { + "event.code": "4744" + } + }, + { + "match_phrase": { + "event.code": "4759" + } + }, + { + "match_phrase": { + "event.code": "4779" + } + }, + { + "match_phrase": { + "event.code": "4790" + } + }, + { + "match_phrase": { + "event.code": "4783" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Groups Created - Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Group", + "field": "group.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Domain", + "field": "group.domain", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Performed by", + "field": "winlog.event_data.SubjectUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Performer LogonID", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 3, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 4, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 5, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Groups Created - Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "98884120-f49d-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyMzUsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/9dd22440-ff1d-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/9dd22440-ff1d-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..e82722e07c8d --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/9dd22440-ff1d-11e9-8405-516218e3d268.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Users locked Out - TSVB Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(204,204,204,1)", + "id": "8d597960-ff18-11e9-8249-2371c695f3b0", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(102,102,102,1)", + "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", + "operator": "gte", + "value": 1 + }, + { + "background_color": "rgba(204,204,204,1)", + "id": "466c06c9-6d85-4c50-98df-a17fe4320b7f", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code: \"4740\"" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Users Locked Out", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Users locked Out - TSVB Metric [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "9dd22440-ff1d-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMjUsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/9e534190-f49d-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/9e534190-f49d-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..2201041938c0 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/9e534190-f49d-11e9-8405-516218e3d268.json @@ -0,0 +1,285 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4735", + "4737", + "4755", + "4750", + "4760", + "4745", + "4791", + "4784", + "4764" + ], + "type": "phrases", + "value": "4735, 4737, 4755, 4750, 4760, 4745, 4791, 4784, 4764" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4735" + } + }, + { + "match_phrase": { + "event.code": "4737" + } + }, + { + "match_phrase": { + "event.code": "4755" + } + }, + { + "match_phrase": { + "event.code": "4750" + } + }, + { + "match_phrase": { + "event.code": "4760" + } + }, + { + "match_phrase": { + "event.code": "4745" + } + }, + { + "match_phrase": { + "event.code": "4791" + } + }, + { + "match_phrase": { + "event.code": "4784" + } + }, + { + "match_phrase": { + "event.code": "4764" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Group Changes - Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Group", + "field": "group.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Domain", + "field": "group.domain", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Performed by", + "field": "winlog.event_data.SubjectUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Performer LogonID", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 3, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 4, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 5, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Group Changes - Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "9e534190-f49d-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyMzYsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a13bf640-fee8-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a13bf640-fee8-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..ca5d6fb5f706 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a13bf640-fee8-11e9-8405-516218e3d268.json @@ -0,0 +1,186 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4732", + "4728", + "4756", + "4751", + "4761", + "4746", + "4785", + "4787" + ], + "type": "phrases", + "value": "4732, 4728, 4756, 4751, 4761, 4746, 4785, 4787" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4732" + } + }, + { + "match_phrase": { + "event.code": "4728" + } + }, + { + "match_phrase": { + "event.code": "4756" + } + }, + { + "match_phrase": { + "event.code": "4751" + } + }, + { + "match_phrase": { + "event.code": "4761" + } + }, + { + "match_phrase": { + "event.code": "4746" + } + }, + { + "match_phrase": { + "event.code": "4785" + } + }, + { + "match_phrase": { + "event.code": "4787" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "" + } + } + }, + "title": "Users Added - Simple Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Users Added to Groups" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Reds", + "colorsRange": [ + { + "from": 0, + "to": 1, + "type": "range" + }, + { + "from": 1, + "to": 5 + }, + { + "from": 5, + "to": 10 + }, + { + "from": 10, + "to": 15 + }, + { + "from": 15, + "to": 20 + }, + { + "from": 20, + "to": 9999 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "Labels", + "percentageMode": false, + "style": { + "bgColor": true, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Users Added - Simple Metric [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "a13bf640-fee8-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:55.318Z", + "version": "WzIyMTQsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a3c3f350-9b6d-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a3c3f350-9b6d-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..119a3a1607d3 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a3c3f350-9b6d-11ea-87e4-49f31ec44891.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Dashboard links [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "[Winlogbeat Overview](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/bae11b00-9bfc-11ea-87e4-49f31ec44891) | [Logon Failed and Account Lockout](#/dashboard/d401ef40-a7d5-11e9-a422-d144027429da) | [User Management Events](#/dashboard/71f720f0-ff18-11e9-8405-516218e3d268) | [Group Management Events](#/dashboard/bb858830-f412-11e9-8405-516218e3d268)", + "openLinksInNewTab": false + }, + "title": "Dashboard links [Winlogbeat Security]", + "type": "markdown" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "a3c3f350-9b6d-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMjksMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a5f664c0-f49a-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a5f664c0-f49a-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..694bcd8126d3 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a5f664c0-f49a-11e9-8405-516218e3d268.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Users Removed - TSVB Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(204,204,204,1)", + "id": "bfcaced0-f419-11e9-928e-8f5fd2b6c66e", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(228,155,75,1)", + "id": "11604700-9b51-11ea-99a1-e5b989979a59", + "operator": "gte", + "value": 1 + }, + { + "background_color": "rgba(204,204,204,1)", + "id": "262938b1-9927-40be-92ea-1498472d36be", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code:4733 OR event.code:4729 OR event.code:4788 OR event.code:4786 OR event.code:4752 OR event.code:4762 OR event.code:4747" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Users Removed from Group", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Users Removed - TSVB Metric [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "a5f664c0-f49a-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyMzMsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a79395f0-6aba-11ea-896f-0d70f7ec3956.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a79395f0-6aba-11ea-896f-0d70f7ec3956.json new file mode 100644 index 000000000000..5b4dc6b0a0fc --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a79395f0-6aba-11ea-896f-0d70f7ec3956.json @@ -0,0 +1,92 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Blocked Accounts TSVB [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(204,204,204,1)", + "color": "rgba(51,51,51,1)", + "id": "8d597960-ff18-11e9-8249-2371c695f3b0", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(102,102,102,1)", + "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", + "operator": "gte", + "value": 1 + }, + { + "background_color": "rgba(204,204,204,1)", + "color": "rgba(51,51,51,1)", + "id": "efbe538c-41df-4ea0-9072-09d71fb8c5d8", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code: \"4740\"" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Blocked Accounts", + "line_width": 1, + "metrics": [ + { + "field": "user.name", + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "cardinality" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Blocked Accounts TSVB [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "a79395f0-6aba-11ea-896f-0d70f7ec3956", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:18:53.287Z", + "version": "WzIxOTEsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a909b930-685f-11ea-896f-0d70f7ec3956.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a909b930-685f-11ea-896f-0d70f7ec3956.json new file mode 100644 index 000000000000..a1194bf16be2 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/a909b930-685f-11ea-896f-0d70f7ec3956.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Logon Events Timeline [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "filter": { + "language": "kuery", + "query": "event.code: \"4672\" or event.code: \"4624\" " + }, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_filters": [ + { + "color": "rgba(226,115,0,1)", + "filter": { + "language": "kuery", + "query": "event.code: \"4672\"" + }, + "id": "7560ee50-685f-11ea-8d46-c19e41702dd4", + "label": "Admin logons" + }, + { + "color": "rgba(164,221,243,1)", + "filter": { + "language": "kuery", + "query": "event.code: \"4624\"" + }, + "id": "80e7fb10-685f-11ea-8d46-c19e41702dd4", + "label": "Logon Events" + } + ], + "split_mode": "filters", + "stacked": "none", + "type": "timeseries" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "type": "timeseries", + "use_kibana_indexes": false + }, + "title": "Logon Events Timeline [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "a909b930-685f-11ea-896f-0d70f7ec3956", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:18:58.346Z", + "version": "WzIyNzIsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/aa31c9d0-9b75-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/aa31c9d0-9b75-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..cf1e7171d60f --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/aa31c9d0-9b75-11ea-87e4-49f31ec44891.json @@ -0,0 +1,110 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "User Management Events - Affected Users vs Actions - Heatmap [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Target User", + "field": "winlog.event_data.TargetUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "colorSchema": "Blues", + "colorsNumber": 4, + "colorsRange": [], + "enableHover": false, + "invertColors": false, + "legendPosition": "right", + "percentageMode": false, + "setColorRange": false, + "times": [], + "type": "heatmap", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "color": "black", + "overwriteColor": false, + "rotate": 0, + "show": true + }, + "scale": { + "defaultYExtents": false, + "type": "linear" + }, + "show": false, + "type": "value" + } + ] + }, + "title": "User Management Events - Affected Users vs Actions - Heatmap [Winlogbeat Security]", + "type": "heatmap" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "aa31c9d0-9b75-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "324686c0-fefb-11e9-8405-516218e3d268", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMzMsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ab6f8d80-bce8-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ab6f8d80-bce8-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..03bb521ff172 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ab6f8d80-bce8-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,124 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4767" + ], + "type": "phrases", + "value": "4767" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4767" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Unlocked Users - Simple Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Users Unlocks" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Unlocked Users - Simple Metric [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "ab6f8d80-bce8-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:59.362Z", + "version": "WzIyOTQsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/abd44840-9c0f-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/abd44840-9c0f-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..1152c4652d31 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/abd44840-9c0f-11ea-87e4-49f31ec44891.json @@ -0,0 +1,220 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4624", + "4672" + ], + "type": "phrases", + "value": "4624, 4672" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4624" + } + }, + { + "match_phrase": { + "event.code": "4672" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Logon Events in Time - Simple [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "colors": { + "Admin Logons": "#E24D42", + "Logon Events": "#447EBC" + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "2020-05-20T07:35:27.496Z", + "to": "2020-05-22T00:01:10.239Z" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "filters": [ + { + "input": { + "language": "kuery", + "query": "event.code: \"4624\" " + }, + "label": "Logon Events" + }, + { + "input": { + "language": "kuery", + "query": "event.code: \"4672\" " + }, + "label": "Admin Logons" + } + ] + }, + "schema": "group", + "type": "filters" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "fittingFunction": "zero", + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": {}, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "interpolate": "cardinal", + "lineWidth": 2, + "mode": "normal", + "show": true, + "showCircles": true, + "type": "line", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "line", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Logon Events in Time - Simple [Winlogbeat Security]", + "type": "line" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "abd44840-9c0f-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:57.330Z", + "version": "WzIyNTcsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/abf96c10-bcea-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/abf96c10-bcea-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..1d69955ca0b6 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/abf96c10-bcea-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,202 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4738" + }, + "type": "phrase", + "value": "4738" + }, + "query": { + "match": { + "event.code": { + "query": "4738", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Changes Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Changed User", + "field": "winlog.event_data.TargetUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 100 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Performed by", + "field": "winlog.event_data.SubjectUserName", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Performer LogonId", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 3, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Users Changes Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "abf96c10-bcea-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMTUsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/b5f38780-fee6-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/b5f38780-fee6-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..efddc02d5e7d --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/b5f38780-fee6-11e9-8405-516218e3d268.json @@ -0,0 +1,192 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4735", + "4737", + "4755", + "4750", + "4760", + "4745", + "4791", + "4784", + "4764" + ], + "type": "phrases", + "value": "4735, 4737, 4755, 4750, 4760, 4745, 4791, 4784, 4764" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4735" + } + }, + { + "match_phrase": { + "event.code": "4737" + } + }, + { + "match_phrase": { + "event.code": "4755" + } + }, + { + "match_phrase": { + "event.code": "4750" + } + }, + { + "match_phrase": { + "event.code": "4760" + } + }, + { + "match_phrase": { + "event.code": "4745" + } + }, + { + "match_phrase": { + "event.code": "4791" + } + }, + { + "match_phrase": { + "event.code": "4784" + } + }, + { + "match_phrase": { + "event.code": "4764" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "" + } + } + }, + "title": "Groups Changes - Simple Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Groups Changed" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Yellow to Red", + "colorsRange": [ + { + "from": 0, + "to": 1, + "type": "range" + }, + { + "from": 1, + "to": 5 + }, + { + "from": 5, + "to": 10 + }, + { + "from": 10, + "to": 15 + }, + { + "from": 15, + "to": 20 + }, + { + "from": 20, + "to": 100000 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "Labels", + "percentageMode": false, + "style": { + "bgColor": true, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Groups Changes - Simple Metric [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "b5f38780-fee6-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:55.318Z", + "version": "WzIyMTcsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/b89b0c90-9b41-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/b89b0c90-9b41-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..b2c5b421d6cb --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/b89b0c90-9b41-11ea-87e4-49f31ec44891.json @@ -0,0 +1,80 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Group Management Events - Event Actions [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Group Management Events - Event Actions [Winlogbeat Security]", + "type": "pie" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "b89b0c90-9b41-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "9066d5b0-fef2-11e9-8405-516218e3d268", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyNDMsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/bb9cf7a0-f49d-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/bb9cf7a0-f49d-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..ff7b2f0f38fa --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/bb9cf7a0-f49d-11e9-8405-516218e3d268.json @@ -0,0 +1,279 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4734", + "4730", + "4758", + "4748", + "4763", + "4753", + "4792", + "4789" + ], + "type": "phrases", + "value": "4734, 4730, 4758, 4748, 4763, 4753, 4792, 4789" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4734" + } + }, + { + "match_phrase": { + "event.code": "4730" + } + }, + { + "match_phrase": { + "event.code": "4758" + } + }, + { + "match_phrase": { + "event.code": "4748" + } + }, + { + "match_phrase": { + "event.code": "4763" + } + }, + { + "match_phrase": { + "event.code": "4753" + } + }, + { + "match_phrase": { + "event.code": "4792" + } + }, + { + "match_phrase": { + "event.code": "4789" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Groups Deleted - Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Group", + "field": "group.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Domain", + "field": "group.domain", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Performed by", + "field": "winlog.event_data.SubjectUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Performer LogonID", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 3, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 4, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 5, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Groups Deleted - Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "bb9cf7a0-f49d-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyMzcsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/bc165210-f4b8-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/bc165210-f4b8-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..e0efb591c617 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/bc165210-f4b8-11e9-8405-516218e3d268.json @@ -0,0 +1,236 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4799" + ], + "type": "phrases", + "value": "4799" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4799" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Group Enumeration - Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Group", + "field": "group.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Domain", + "field": "group.domain", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Creator", + "field": "winlog.event_data.SubjectUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Creator LogonID", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 3, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 4, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 5, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Group Enumeration - Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "bc165210-f4b8-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyNDAsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/bf45dc50-ff1a-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/bf45dc50-ff1a-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..c9b938d819d7 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/bf45dc50-ff1a-11e9-8405-516218e3d268.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Users Enabled - TSVB Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(204,204,204,1)", + "id": "8d597960-ff18-11e9-8249-2371c695f3b0", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(203,142,136,1)", + "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", + "operator": "gte", + "value": 1 + }, + { + "background_color": "rgba(204,204,204,1)", + "id": "769ee004-5239-4a92-9d0b-626e2729ef80", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code: \"4722\" " + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Users Enabled", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Users Enabled - TSVB Metric [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "bf45dc50-ff1a-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMjAsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/c2ea73f0-a4bd-11e9-a422-d144027429da.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/c2ea73f0-a4bd-11e9-a422-d144027429da.json new file mode 100644 index 000000000000..6a26bb9816b3 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/c2ea73f0-a4bd-11e9-a422-d144027429da.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Failed Logon and Account Lockout [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 10, + "markdown": "### **Failed Logons and Account Lockouts**", + "openLinksInNewTab": false + }, + "title": "Failed Logon and Account Lockout [Winlogbeat Security]", + "type": "markdown" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "c2ea73f0-a4bd-11e9-a422-d144027429da", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:18:54.296Z", + "version": "WzIxOTMsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/c359b020-bcdd-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/c359b020-bcdd-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..0ac43b99b1b1 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/c359b020-bcdd-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,120 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4726" + }, + "type": "phrase", + "value": "4726" + }, + "query": { + "match": { + "event.code": { + "query": "4726", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Deleted - Simple Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Deleted Users" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Green to Red", + "colorsRange": [ + { + "from": 0, + "to": 10000, + "type": "range" + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "None", + "percentageMode": false, + "style": { + "bgColor": false, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Users Deleted - Simple Metric [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "c359b020-bcdd-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:59.362Z", + "version": "WzIyODgsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/c9d959f0-ff1d-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/c9d959f0-ff1d-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..bccf1381db4e --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/c9d959f0-ff1d-11e9-8405-516218e3d268.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Users Changes TS VB Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(204,204,204,1)", + "id": "8d597960-ff18-11e9-8249-2371c695f3b0", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(221,186,64,1)", + "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", + "operator": "gte", + "value": 1 + }, + { + "background_color": "rgba(204,204,204,1)", + "id": "bd34b042-f527-4b44-8d56-16e4f1610cd0", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code: \"4738\" " + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Users Changes", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Users Changes TS VB Metric [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "c9d959f0-ff1d-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMjYsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/caf4d2b0-9b76-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/caf4d2b0-9b76-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..300af1fa0e82 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/caf4d2b0-9b76-11ea-87e4-49f31ec44891.json @@ -0,0 +1,164 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Event Distribution in time [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "drop_partials": false, + "extended_bounds": {}, + "field": "@timestamp", + "interval": "auto", + "min_doc_count": 1, + "scaleMetricValues": false, + "timeRange": { + "from": "now-7d", + "to": "now" + }, + "useNormalizedEsInterval": true + }, + "schema": "segment", + "type": "date_histogram" + }, + { + "enabled": true, + "id": "3", + "params": { + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 15 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTimeMarker": false, + "addTooltip": true, + "categoryAxes": [ + { + "id": "CategoryAxis-1", + "labels": { + "filter": true, + "show": true, + "truncate": 100 + }, + "position": "bottom", + "scale": { + "type": "linear" + }, + "show": true, + "style": {}, + "title": {}, + "type": "category" + } + ], + "detailedTooltip": true, + "grid": { + "categoryLines": false + }, + "isVislibVis": true, + "labels": { + "show": false + }, + "legendPosition": "right", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "seriesParams": [ + { + "data": { + "id": "1", + "label": "Count" + }, + "drawLinesBetweenPoints": true, + "lineWidth": 2, + "mode": "stacked", + "show": true, + "showCircles": true, + "type": "histogram", + "valueAxis": "ValueAxis-1" + } + ], + "thresholdLine": { + "color": "#E7664C", + "show": false, + "style": "full", + "value": 10, + "width": 1 + }, + "times": [], + "type": "histogram", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "filter": false, + "rotate": 0, + "show": true, + "truncate": 100 + }, + "name": "LeftAxis-1", + "position": "left", + "scale": { + "mode": "normal", + "type": "linear" + }, + "show": true, + "style": {}, + "title": { + "text": "Count" + }, + "type": "value" + } + ] + }, + "title": "Event Distribution in time [Winlogbeat Security]", + "type": "histogram" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "caf4d2b0-9b76-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "324686c0-fefb-11e9-8405-516218e3d268", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMzQsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ce867840-f49e-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ce867840-f49e-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..1ed065c7fd80 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ce867840-f49e-11e9-8405-516218e3d268.json @@ -0,0 +1,309 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4732", + "4728", + "4756", + "4751", + "4761", + "4746", + "4785", + "4787" + ], + "type": "phrases", + "value": "4732, 4728, 4756, 4751, 4761, 4746, 4785, 4787" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4732" + } + }, + { + "match_phrase": { + "event.code": "4728" + } + }, + { + "match_phrase": { + "event.code": "4756" + } + }, + { + "match_phrase": { + "event.code": "4751" + } + }, + { + "match_phrase": { + "event.code": "4761" + } + }, + { + "match_phrase": { + "event.code": "4746" + } + }, + { + "match_phrase": { + "event.code": "4785" + } + }, + { + "match_phrase": { + "event.code": "4787" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Added - Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "User", + "field": "winlog.event_data.MemberName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Group", + "field": "group.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Domain", + "field": "group.domain", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Performed by", + "field": "user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "Performed by Logon ID", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 3, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 4, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 5, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 5, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Users Added - Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "ce867840-f49e-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyMzgsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/d3a5fec0-ff18-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/d3a5fec0-ff18-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..8a42707b116e --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/d3a5fec0-ff18-11e9-8405-516218e3d268.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Users Created - TSVB Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(204,204,204,1)", + "id": "8d597960-ff18-11e9-8249-2371c695f3b0", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(181,99,93,1)", + "id": "a3f59730-ff18-11e9-8249-2371c695f3b0", + "operator": "gte", + "value": 1 + }, + { + "background_color": "rgba(204,204,204,1)", + "id": "89ac7d8a-cc76-4e8a-9fcf-1bb9f33da0cc", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code: \"4720\" " + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Users Created", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Users Created - TSVB Metric [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "d3a5fec0-ff18-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMjIsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/d770b040-9b35-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/d770b040-9b35-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..70c80a3daa73 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/d770b040-9b35-11ea-87e4-49f31ec44891.json @@ -0,0 +1,36 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Dashboard links - Simple [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "fontSize": 12, + "markdown": "[Winlogbeat General ECS Dashboard](#/dashboard/Winlogbeat-Dashboard-ecs) | [User Logon Information](#/dashboard/035846a0-a249-11e9-a422-d144027429da?) | [Logon failed and Account Lockout](#/dashboard/f49f3170-9ffc-11ea-87e4-49f31ec44891) | [User Management Events](#/dashboard/8223bed0-b9e9-11e9-b6a2-c9b4015c4baf) | [Group Management Events](#/dashboard/01c54730-fee6-11e9-8405-516218e3d268)", + "openLinksInNewTab": false + }, + "title": "Dashboard links - Simple [Winlogbeat Security]", + "type": "markdown" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "d770b040-9b35-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:18:59.362Z", + "version": "WzIzMDEsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/da2110c0-bcea-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/da2110c0-bcea-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..23c745029f92 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/da2110c0-bcea-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,202 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4767" + }, + "type": "phrase", + "value": "4767" + }, + "query": { + "match": { + "event.code": { + "query": "4767", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Unlocked Users - Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Unlocked User", + "field": "winlog.event_data.TargetUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 100 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Performed by", + "field": "winlog.event_data.SubjectUserName", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Performer Logonid", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 3, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Unlocked Users - Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "da2110c0-bcea-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMTQsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..959cef3ab7d2 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,212 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4723", + "4724" + ], + "type": "phrases", + "value": "4723, 4724" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4723" + } + }, + { + "match_phrase": { + "event.code": "4724" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Password Changes - Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Password Change to", + "field": "winlog.event_data.TargetUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 100 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Performed by", + "field": "winlog.event_data.SubjectUserName", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Performer LogonId", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 3, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Users Password Changes - Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "da5ffe40-bcd9-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMTMsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/e20c02d0-9b48-11ea-87e4-49f31ec44891.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/e20c02d0-9b48-11ea-87e4-49f31ec44891.json new file mode 100644 index 000000000000..28420cd2f0a8 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/e20c02d0-9b48-11ea-87e4-49f31ec44891.json @@ -0,0 +1,111 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "savedSearchRefName": "search_0", + "title": "Group Management Events - Groups vs Actions - Heatmap [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Target Groups", + "field": "group.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 20 + }, + "schema": "segment", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Actions", + "field": "event.action", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "group", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "colorSchema": "Blues", + "colorsNumber": 4, + "colorsRange": [], + "enableHover": false, + "invertColors": false, + "legendPosition": "right", + "percentageMode": false, + "setColorRange": false, + "times": [], + "type": "heatmap", + "valueAxes": [ + { + "id": "ValueAxis-1", + "labels": { + "color": "black", + "overwriteColor": false, + "rotate": 0, + "show": true + }, + "scale": { + "defaultYExtents": false, + "type": "linear" + }, + "show": false, + "type": "value" + } + ] + }, + "title": "Group Management Events - Groups vs Actions - Heatmap [Winlogbeat Security]", + "type": "heatmap" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "e20c02d0-9b48-11ea-87e4-49f31ec44891", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "9066d5b0-fef2-11e9-8405-516218e3d268", + "name": "search_0", + "type": "search" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyNDYsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/e22c6f40-f498-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/e22c6f40-f498-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..222a131fa2e3 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/e22c6f40-f498-11e9-8405-516218e3d268.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Groups Deleted TSVB Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(200,201,197,1)", + "id": "bfcaced0-f419-11e9-928e-8f5fd2b6c66e", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(228,155,75,1)", + "id": "a7d935e0-f497-11e9-928e-8f5fd2b6c66e", + "operator": "gt", + "value": 0 + }, + { + "background_color": "rgba(200,201,197,1)", + "id": "3627d626-8685-4afb-ac41-d38d691af211", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code:4734 OR event.code:4730 OR event.code:4758 OR event.code:4753 OR event.code:4763 OR event.code:4748 OR event.code:4789 OR event.code:4792" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Groups Deleted", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Groups Deleted TSVB Metric [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "e22c6f40-f498-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyMzAsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/e2516c10-a249-11e9-a422-d144027429da.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/e2516c10-a249-11e9-a422-d144027429da.json new file mode 100644 index 000000000000..bbb168c55714 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/e2516c10-a249-11e9-a422-d144027429da.json @@ -0,0 +1,148 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4672" + }, + "type": "phrase" + }, + "query": { + "match": { + "event.code": { + "query": "4672", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Administrator Users [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "legendOpen": true + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "field": "winlog.logon.id" + }, + "schema": "metric", + "type": "cardinality" + }, + { + "enabled": true, + "id": "2", + "params": { + "field": "user.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "segment", + "type": "terms" + } + ], + "params": { + "addLegend": true, + "addTooltip": true, + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other", + "parsedUrl": { + "basePath": "/s/siem", + "origin": "https://192.168.1.72:5601", + "pathname": "/s/siem/app/kibana" + } + } + }, + "label": "user.name: Descending", + "params": {} + } + ], + "metric": { + "accessor": 1, + "aggType": "cardinality", + "format": { + "id": "number" + }, + "label": "Unique count of winlog.logon.id", + "params": {} + } + }, + "distinctColors": true, + "isDonut": false, + "labels": { + "last_level": true, + "show": false, + "truncate": 100, + "values": true + }, + "legendPosition": "bottom", + "palette": { + "name": "kibana_palette", + "type": "palette" + }, + "type": "pie" + }, + "title": "Administrator Users [Winlogbeat Security]", + "type": "pie" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "e2516c10-a249-11e9-a422-d144027429da", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:58.346Z", + "version": "WzIyNjYsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf.json new file mode 100644 index 000000000000..96cefef851b7 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf.json @@ -0,0 +1,202 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4726" + }, + "type": "phrase", + "value": "4726" + }, + "query": { + "match": { + "event.code": { + "query": "4726", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Deleted - Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Deleted User", + "field": "winlog.event_data.TargetUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 100 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Performed by", + "field": "winlog.event_data.SubjectUserName", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Performed LogonId", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 3, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Users Deleted - Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "ee0319a0-bcd4-11e9-b6a2-c9b4015c4baf", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMTIsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ee292bc0-f499-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ee292bc0-f499-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..b3f3ef56e6cd --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ee292bc0-f499-11e9-8405-516218e3d268.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Groups Created TSVB Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(200,201,197,1)", + "id": "bfcaced0-f419-11e9-928e-8f5fd2b6c66e", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(181,99,93,1)", + "id": "a7d935e0-f497-11e9-928e-8f5fd2b6c66e", + "operator": "gt", + "value": 0 + }, + { + "background_color": "rgba(200,201,197,1)", + "id": "4013d6eb-54ec-4097-bff3-fb45467f44d3", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code:4731 OR event.code:4727 OR event.code:\"4754\" OR event.code:\"4749\" OR event.code:\"4759\" OR event.code:\"4744\" OR event.code:\"4783\" OR event.code:\"4790\" " + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Groups Created", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Groups Created TSVB Metric [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "ee292bc0-f499-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyMzEsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/f42f3b20-fee6-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/f42f3b20-fee6-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..52290cb282dc --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/f42f3b20-fee6-11e9-8405-516218e3d268.json @@ -0,0 +1,178 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4731", + "4727", + "4754", + "4744", + "4759", + "4779", + "4790", + "4783" + ], + "type": "phrases", + "value": "4731, 4727, 4754, 4744, 4759, 4779, 4790, 4783" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4731" + } + }, + { + "match_phrase": { + "event.code": "4727" + } + }, + { + "match_phrase": { + "event.code": "4754" + } + }, + { + "match_phrase": { + "event.code": "4744" + } + }, + { + "match_phrase": { + "event.code": "4759" + } + }, + { + "match_phrase": { + "event.code": "4779" + } + }, + { + "match_phrase": { + "event.code": "4790" + } + }, + { + "match_phrase": { + "event.code": "4783" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "lucene", + "query": "" + } + } + }, + "title": "Groups Created - Simple Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": { + "customLabel": "Groups Created" + }, + "schema": "metric", + "type": "count" + } + ], + "params": { + "addLegend": false, + "addTooltip": true, + "dimensions": { + "metrics": [ + { + "accessor": 0, + "format": { + "id": "number", + "params": {} + }, + "type": "vis_dimension" + } + ] + }, + "metric": { + "colorSchema": "Reds", + "colorsRange": [ + { + "from": 0, + "to": 1, + "type": "range" + }, + { + "from": 1, + "to": 10 + }, + { + "from": 10, + "to": 20 + }, + { + "from": 20, + "to": 9999 + } + ], + "invertColors": false, + "labels": { + "show": true + }, + "metricColorMode": "Labels", + "percentageMode": false, + "style": { + "bgColor": true, + "bgFill": "#000", + "fontSize": 60, + "labelColor": false, + "subText": "" + }, + "useRanges": false + }, + "type": "metric" + }, + "title": "Groups Created - Simple Metric [Winlogbeat Security]", + "type": "metric" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "f42f3b20-fee6-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:55.318Z", + "version": "WzIyMTYsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/fa876300-231a-11ea-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/fa876300-231a-11ea-8405-516218e3d268.json new file mode 100644 index 000000000000..5119036974e8 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/fa876300-231a-11ea-8405-516218e3d268.json @@ -0,0 +1,202 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": { + "query": "4781" + }, + "type": "phrase", + "value": "4781" + }, + "query": { + "match": { + "event.code": { + "query": "4781", + "type": "phrase" + } + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Renamed - Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "Old User Name", + "field": "winlog.event_data.OldTargetUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 100 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Performed by", + "field": "winlog.event_data.SubjectUserName", + "missingBucket": true, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Performer LogonId", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 3, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 10, + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Users Renamed - Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "fa876300-231a-11ea-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:19:00.386Z", + "version": "WzIzMjgsMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/fee83900-f49f-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/fee83900-f49f-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..c1dd68ed2856 --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/fee83900-f49f-11e9-8405-516218e3d268.json @@ -0,0 +1,309 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "event.code", + "negate": false, + "params": [ + "4733", + "4729", + "4757", + "4786", + "4788", + "4752", + "4762", + "4747" + ], + "type": "phrases", + "value": "4733, 4729, 4757, 4786, 4788, 4752, 4762, 4747" + }, + "query": { + "bool": { + "minimum_should_match": 1, + "should": [ + { + "match_phrase": { + "event.code": "4733" + } + }, + { + "match_phrase": { + "event.code": "4729" + } + }, + { + "match_phrase": { + "event.code": "4757" + } + }, + { + "match_phrase": { + "event.code": "4786" + } + }, + { + "match_phrase": { + "event.code": "4788" + } + }, + { + "match_phrase": { + "event.code": "4752" + } + }, + { + "match_phrase": { + "event.code": "4762" + } + }, + { + "match_phrase": { + "event.code": "4747" + } + } + ] + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "title": "Users Removed from Group - Table [Winlogbeat Security]", + "uiStateJSON": { + "vis": { + "params": { + "sort": { + "columnIndex": null, + "direction": null + } + } + } + }, + "version": 1, + "visState": { + "aggs": [ + { + "enabled": true, + "id": "1", + "params": {}, + "schema": "metric", + "type": "count" + }, + { + "enabled": true, + "id": "2", + "params": { + "customLabel": "User", + "field": "winlog.event_data.MemberName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "3", + "params": { + "customLabel": "Group", + "field": "group.name", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 10 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "4", + "params": { + "customLabel": "Domain", + "field": "group.domain", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "5", + "params": { + "customLabel": "Performed by", + "field": "winlog.event_data.SubjectUserName", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + }, + { + "enabled": true, + "id": "6", + "params": { + "customLabel": "Performed by Logon ID", + "field": "winlog.logon.id", + "missingBucket": false, + "missingBucketLabel": "Missing", + "order": "desc", + "orderBy": "1", + "otherBucket": false, + "otherBucketLabel": "Other", + "size": 5 + }, + "schema": "bucket", + "type": "terms" + } + ], + "params": { + "dimensions": { + "buckets": [ + { + "accessor": 0, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 1, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 2, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 3, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + }, + { + "accessor": 4, + "aggType": "terms", + "format": { + "id": "terms", + "params": { + "id": "string", + "missingBucketLabel": "Missing", + "otherBucketLabel": "Other" + } + }, + "params": {} + } + ], + "metrics": [ + { + "accessor": 5, + "aggType": "count", + "format": { + "id": "number" + }, + "params": {} + } + ] + }, + "perPage": 5, + "percentageCol": "", + "showMetricsAtAllLevels": false, + "showPartialRows": false, + "showToolbar": true, + "showTotal": false, + "sort": { + "columnIndex": null, + "direction": null + }, + "totalFunc": "sum" + }, + "title": "Users Removed from Group - Table [Winlogbeat Security]", + "type": "table" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "fee83900-f49f-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [ + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "winlogbeat-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyMzksMl0=" +} \ No newline at end of file diff --git a/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ffebe440-f419-11e9-8405-516218e3d268.json b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ffebe440-f419-11e9-8405-516218e3d268.json new file mode 100644 index 000000000000..dac14c4f39aa --- /dev/null +++ b/x-pack/winlogbeat/module/security/_meta/kibana/7/visualization/ffebe440-f419-11e9-8405-516218e3d268.json @@ -0,0 +1,89 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": {} + }, + "title": "Users Added - Metric [Winlogbeat Security]", + "uiStateJSON": {}, + "version": 1, + "visState": { + "aggs": [], + "params": { + "axis_formatter": "number", + "axis_position": "left", + "axis_scale": "normal", + "background_color_rules": [ + { + "background_color": "rgba(204,204,204,1)", + "id": "bfcaced0-f419-11e9-928e-8f5fd2b6c66e", + "operator": "lte", + "value": 0 + }, + { + "background_color": "rgba(181,99,93,1)", + "id": "a7d935e0-f497-11e9-928e-8f5fd2b6c66e", + "operator": "gte", + "value": 1 + }, + { + "background_color": "rgba(204,204,204,1)", + "id": "49d7bf77-f350-44f2-adf8-5b18b3f6e9cd", + "operator": "empty", + "value": null + } + ], + "drop_last_bucket": 0, + "filter": { + "language": "kuery", + "query": "event.code:4732 OR event.code:4728 OR event.code:4756 OR event.code:4751 OR event.code:4761 OR event.code:4746 OR event.code:4785 OR event.code:4787" + }, + "hide_last_value_indicator": true, + "id": "61ca57f0-469d-11e7-af02-69e470af7417", + "index_pattern": "winlogbeat-*", + "interval": "90d", + "isModelInvalid": false, + "series": [ + { + "axis_position": "right", + "chart_type": "line", + "color": "#68BC00", + "fill": 0.5, + "formatter": "number", + "id": "61ca57f1-469d-11e7-af02-69e470af7417", + "label": "Users Added to Group", + "line_width": 1, + "metrics": [ + { + "id": "61ca57f2-469d-11e7-af02-69e470af7417", + "type": "count" + } + ], + "point_size": 1, + "separate_axis": 0, + "split_color_mode": "gradient", + "split_mode": "everything", + "stacked": "none" + } + ], + "show_grid": 1, + "show_legend": 1, + "time_field": "@timestamp", + "time_range_mode": "entire_time_range", + "type": "metric", + "use_kibana_indexes": false + }, + "title": "Users Added - Metric [Winlogbeat Security]", + "type": "metrics" + } + }, + "coreMigrationVersion": "7.14.0", + "id": "ffebe440-f419-11e9-8405-516218e3d268", + "migrationVersion": { + "visualization": "7.14.0" + }, + "references": [], + "type": "visualization", + "updated_at": "2021-08-11T13:18:56.323Z", + "version": "WzIyMjksMl0=" +} \ No newline at end of file